Is Symantec Endpoint Encryption a validated FIPS 140-1 and FIPS 140-2 Cryptographic Module?

Article:TECH164126  |  Created: 2011-07-07  |  Updated: 2011-07-07  |  Article URL http://www.symantec.com/docs/TECH164126
Article Type
Technical Solution


Issue



 You need to know if Symantec Endpoint Encryption(SEE) and/or Guardian Edge Hard Drive (GEHD) encryption is a validated FIPS 140-1 and/or 140-2 Cryptographic Module.


Solution



 Yes, both SEE and GEHD are validated FIPS 140-1 and 140-2 Cryptographic Modules.

Here is the link to the NIST Falidated FIPS 140-1 and 140-2 

http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2010.htm

Here is the link to the Certificate.

http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140crt/140crt1463.pdf

Here is the details of the Symantec section:

Cert# Vendor / CST Lab Cryptographic Module
Module
Type
Val.
Date
Level / Description

1463 Symantec Corporation
350 Ellis St, PO Box 7011
Mountain View, CA 94043
USA

-Rama Vissapragada 
TEL: 650-527-0217 
FAX: 650-527-1984

CST Lab: NVLAP 100432-0

Encryption Plus Cryptographic Library
(Software Version: 1.0.5)

Validated to FIPS 140-2

Security Policy 

Certificate

Software 12/21/2010 Overall Level: 1 

 

-Operational Environment: Tested as meeting Level 1 with Mac OS X (32-bit and 64-bit); Windows 7 (32-bit and 64-bit); Windows Vista (32-bit and 64-bit); Windows XP (32-bit and 64-bit); Windows Server 2008 (32-bit and 64-bit) (single-user mode)

-FIPS-approved algorithms: AES (Cert. #1420); HMAC (Cert. #838); SHS (Cert. #1288); RNG (Cert. #777)

-Other algorithms: N/A

Multi-chip standalone

"The Encryption Plus Cryptographic Library (EPCL) provides cryptographic services to the Symantec Corporation for Symantec, GuardianEdge, Encryption Anywhere, and Encryption Plus families of data protection products."




Article URL http://www.symantec.com/docs/TECH164126


Terms of use for this information are found in Legal Notices