|
|
|
Attachmate Products with FIPS 140-2 Validated Crypto Modules
Technical Note 2400
Last Reviewed 02-May-2013
Applies To
Reflection Standard Suite 2011
Reflection Standard Suite 2008
Reflection for IBM 2011
Reflection for IBM 2008
Reflection for UNIX and OpenVMS 2011
Reflection for UNIX and OpenVMS 2008
Reflection for the Web 2011 (All Editions)
Reflection for the Web 2008 (All Editions) R3
EXTRA! X-treme version 9.0 SP2 or higher
INFOConnect version 8.1 or higher
Luminet version 4.2.0 or higher
Reflection for UNIX and OpenVMS version 14.0 or higher
Reflection for HP with NS/VT version 14.0 or higher
Reflection X 2011
Reflection Suite for X 2011
Reflection X Advantage version 2.0 or higher
Reflection X version 14.0 or higher
Reflection for Secure IT version 7.0 or higher
Reflection for Secure IT Web Edition
Reflection PKI Services Manager
Verastream Host Integrator version 6.6 or higher
Verastream Process Designer R4 SP1 or higher
Summary
Technical Note 2400
Last Reviewed 02-May-2013
Applies To
Reflection Standard Suite 2011
Reflection Standard Suite 2008
Reflection for IBM 2011
Reflection for IBM 2008
Reflection for UNIX and OpenVMS 2011
Reflection for UNIX and OpenVMS 2008
Reflection for the Web 2011 (All Editions)
Reflection for the Web 2008 (All Editions) R3
EXTRA! X-treme version 9.0 SP2 or higher
INFOConnect version 8.1 or higher
Luminet version 4.2.0 or higher
Reflection for UNIX and OpenVMS version 14.0 or higher
Reflection for HP with NS/VT version 14.0 or higher
Reflection X 2011
Reflection Suite for X 2011
Reflection X Advantage version 2.0 or higher
Reflection X version 14.0 or higher
Reflection for Secure IT version 7.0 or higher
Reflection for Secure IT Web Edition
Reflection PKI Services Manager
Verastream Host Integrator version 6.6 or higher
Verastream Process Designer R4 SP1 or higher
Summary
This technical note lists Attachmate products that have Federal Information Processing Standards (FIPS) 140-2 validated cryptographic modules. FIPS 140-2 is a US federal government security regulation.
To meet FIPS 140-2 standards, Attachmate products must be run in FIPS mode and use specific FIPS-validated cryptographic modules. When running in FIPS mode the module’s security policy (the definition of what the module has been certified to do) is used for secure connections. To view the detailed cryptographic module security policy, click the certificate link below for the specific certificate number.
Note: Contact your Chief Information Security Officer for information about the implications and applicability of using FIPS 140-2 validated cryptography on all of your systems.
Refer to the tables below to verify that your Attachmate product contains a FIPS 140-2 validated crypto module.
Cryptographic Library version 2.0.40
Attachmate cryptographic library version 2.0.40 is used in the following products when operated in FIPS mode and has been validated by the National Institute of Standards and Technology (NIST), certificate #1027: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2008.htm#1027
| Product |
Version (Related Tech Note) |
Cryptographic Library |
Version |
| EXTRA! |
9.1 – 9.2 SP1* |
rssccm.dll |
2.0.40 |
| INFOConnect |
9.0 SP1 – 9.1 SP1 |
rssccm.dll |
2.0.40 |
| Reflection for Secure IT Windows Client and Server |
8.0 7.2 7.1** |
rssccm.dll |
2.0.40 |
| Reflection for Secure IT UNIX Client and Server |
8.0 7.2 7.1** 7.0 (2389) |
libssccm.so.2.0.40, libssccm.sl.2.0.40 |
2.0.40 2.0.40 |
| Reflection for Secure IT Web Edition |
8.0 |
rssccm.dll |
2.0.40 |
| Reflection 2011 |
R1 |
rssccm.dll |
2.0.40 |
| Reflection 2008 |
R2 |
rssccm.dll |
2.0.40 |
| Reflection for HP |
14.0.5 – 14.1 |
rssccm.dll |
2.0.40 |
| Reflection for IBM |
14.0.5 – 14.1 |
rssccm.dll |
2.0.40 |
| Reflection for UNIX and OpenVMS |
14.0.5 – 14.1 |
rssccm.dll |
2.0.40 |
| Reflection X |
14.0.5 – 14.1 |
rssccm.dll |
2.0.40 |
| Verastream Host Integrator (on Windows) |
7.0 – 7.1 SP2 (10068) |
rssccm.dll |
2.0.40 |
| Verastream Host Integrator (on Linux and Solaris) |
7.0 – 7.1 SP2 (10068) |
libssccm.so.2.0.40 |
2.0.40 |
* Applies to EXTRA! 9.2 or higher connections configured to use Security Type "Attachmate SSL v3.0," "Attachmate TLS v1.0," or "Attachmate FIPS 140-2," and to EXTRA! 9.1 connections configured to "Use Attachmate Security" with "SSL/TLS" or "FIPS 140-2" selected as the Level of Encryption.
** Reflection for Secure IT version 7.1 adds support for the following new algorithms: AES 128, 192 and 256-bit counter mode (CTR), Arcfour 128 and 256-bit, SHA256, and SHA512. Reflection for Secure IT UNIX Client and Server (version 7.1.0.248 or higher) and Windows Server (version 7.1.211 or higher), available since 01-May-2009, more properly enforce FIPS 140-2 requirements.
Cryptographic Library version 1.0.170
Attachmate cryptographic library version 1.0.170 is used in the following products when operated in FIPS mode and has been validated by the National Institute of Standards and Technology (NIST), certificate #766: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2007.htm#766
| Product |
Version (Related Tech Note) |
Cryptographic Library |
Version |
| EXTRA! |
9.0 SP1 – SP2 * |
rssccm.dll |
1.0.170 |
| INFOConnect |
8.1 SP1 – 9.0 |
rssccm.dll |
1.0.170 |
| Reflection for Secure IT Windows Client |
7.0 |
rssccm.dll |
1.0.170 |
| Reflection for Secure IT Windows Server |
7.0 (2273) 7.0 SP1 (2375) |
rssccm.dll |
1.0.170 |
| Reflection 2007 |
R1 |
rssccm.dll |
1.0.170 |
| Reflection for HP |
14.0 – 14.0.4 |
rssccm.dll |
1.0.170 |
| Reflection for IBM |
14.0 – 14.0.4 |
rssccm.dll |
1.0.170 |
| Reflection for UNIX and OpenVMS |
14.0 – 14.0.4 |
rssccm.dll |
1.0.170 |
| Reflection X |
14.0 – 14.0.4 |
rssccm.dll |
1.0.170 |
| Reflection 2008 |
R1 |
rssccm.dll |
1.0.170 |
* Applies to EXTRA! connections that are configured to "Use Attachmate Security" with "SSL/TLS" or "FIPS 140-2" selected as the Level of Encryption.
Attachmate Security Component for Java version 1.32
Attachmate Security Component for Java cryptographic library version 1.32 is used in the following product for TLS connections when operated in FIPS mode and has been validated by the National Institute of Standards and Technology (NIST), certificate #787: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2007.htm#787
| Product |
Version |
Cryptographic Library |
Version |
| Reflection for the Web 2011 (All Editions) |
R1 |
Attachmate Security Component for Java |
1.32 |
| Reflection for the Web 2008 (All Editions) |
R3 |
Attachmate Security Component for Java |
1.32 |
RSA BSAFE Crypto-J JSAFE and JCE Module version 6.1
RSA BSAFE Crypto-J JSAFE and JCE software module version 6.1 is used in the following Attachmate product when operated in FIPS mode. This version is currently (May 2013) in the Coordination stage of certification with the National Institute of Standards and Technology (NIST). See page 13 in this document: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140InProcess.pdf.
| Product |
Version |
Cryptographic Library |
Version |
| Verastream Process Designer (on Windows, Linux, and Solaris) |
R5 SP1 |
jcmFIPS.jar |
6.1 |
RSA BSAFE Crypto-J JCE Provider Module version 4.1
RSA BSAFE Crypto-J JCE Provider software module version 4.1 is used in the following Attachmate products when operated in FIPS mode and has been validated by the National Institute of Standards and Technology (NIST), certificate #1291: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2010.htm#1291
| Product |
Version |
Cryptographic Library |
Version |
| Verastream Process Designer (on Windows, Linux, and Solaris) |
R4 SP1 |
cryptojFIPS.jar |
4.1 |
| Verastream Host Integrator (on Windows, Linux, and Solaris) |
7.1 SP1 – SP2 |
cryptojFIPS.jar |
4.1 |
| Luminet * |
4.2.0 – 4.4.1 |
cryptojFIPS.jar |
4.1 |
| Reflection for Secure IT Web Edition |
8.0 |
cryptoFIPS.jar |
4.1 |
* For information about installing the cryptographic module in Luminet, see http://docs.attachmate.com/luminet/4.4/luminet_fips_module_installation_guide.pdf
RSA BSAFE Crypto-J JCE Provider Module version 4.0
RSA BSAFE Crypto-J JCE Provider software module version 4.0 is used in the following Attachmate products when operated in FIPS mode and has been validated by the National Institute of Standards and Technology (NIST), certificate #1048: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2008.htm#1048
| Product |
Version |
Cryptographic Library |
Version |
| Reflection X Advantage |
2.0 – 3.0 |
jsafeJCEFIPS.jar |
4.0 |
| Reflection PKI Services Manager |
1.0 – 1.2 SP1 |
jsafeJCEFIPS.jar |
4.0 |
RSA BSAFE Crypto-J JCE Provider Module version 3.6
RSA BSAFE Crypto-J JCE Provider software module version 3.6 is used in the following Attachmate product for SSH and SFTP connections when operated in FIPS mode and has been validated by the National Institute of Standards and Technology (NIST), certificate #820: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2007.htm#820
| Product |
Version |
Cryptographic Library |
Version |
| Reflection for the Web 2011 (All Editions) |
R1 |
RSA BSAFE Crypto-J JCE Provider |
3.6 |
| Reflection for the Web 2008 (All Editions) |
R3 |
RSA BSAFE Crypto-J JCE Provider |
3.6 |
OpenSSL FIPS Object Module 1.1.2
OpenSSL version 0.9.7m, FIPS object module 1.1.2 is used in the following Attachmate product when operated in FIPS mode and has been validated by the National Institute of Standards and Technology (NIST), certificate #918: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2008.htm#918
| Product |
Version (Related Tech Note) |
Cryptographic Library |
Version |
| Verastream Host Integrator (on Windows, Linux, and Solaris) |
6.6 (10068) |
OpenSSL |
0.9.7m |
Security Updates and Attachmate Products
To review security update information for Attachmate products, see http://support.attachmate.com/security.
Notice: This technical note is updated from time to time and is provided for informational purposes only. Attachmate makes no representation or warranty that the functions contained in our software products will meet your requirements or that the operation of our software products will be interruption or error free. Attachmate EXPRESSLY DISCLAIMS ALL WARRANTIES REGARDING OUR SOFTWARE INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
|
|
|
©2013 Attachmate Corporation. All Rights Reserved. | |
 | |
