OpenSSL Cryptographic Module for Oracle Linux 7.5 and 7.6 Received FIPS 140-2 Certification

July 12, 2019 | 2 minute read
Honglin Su
VP of Product Management, Oracle Linux and Virtualization
Text Size 100%:

OpenSSL cryptographic module for Oracle Linux 7.5 and 7.6 has just received FIPS 140-2 Level 1 certification. This is the first completed FIPS 140-2 certification with the latest Oracle Linux 7.6 update, ahead of any other Linux distributions. This certification adds to recent, related certifications and advancements, which enable Oracle Linux to deliver more security features that can help keep systems secure and improve the speed and stability of your operations on premises and in the cloud.

Conformance with the FIPS 140-2 standard provides assurance to government and industry purchasers that products are correctly implementing cryptographic functions as the FIPS 140-2 standard specifies. FIPS 140-2 is a public sector procurement requirement in both the United States and Canada for any products claiming or providing encryption. The FIPS 140-2 program is jointly administered by the National Institute of Standards and Technology (NIST) in the US and the Canadian Center for Cyber Security (CCCE) in Canada. The joint program is called the CMVP (Cryptographic Module Validation Program).

The platforms that are used for Oracle Linux 7.5 and 7.6 OpenSSL cryptographic module FIPS 140 validation testing include Oracle Server X7-2, running Oracle Linux 7.5 and 7.6. Oracle “vendor affirms” that the FIPS validation is maintained on other x86-64 equivalent hardware that has been qualified, per the Oracle Linux Hardware Certification List (HCL), on the corresponding Oracle Linux releases.

Oracle Linux cryptographic modules enable FIPS 140 compliant operations for key use cases such as data protection and integrity, remote administration, cryptographic key generation, and key/certificate management. The packages that are FIPS 140-2 level 1 certified for Oracle Linux 7 can be obtained from Oracle Linux yum server. When the packages are installed, you can enable FIPS mode by following the Oracle Linux 7 Documentation.

Oracle Linux is engineered for open cloud infrastructure. It delivers leading performance, scalability, reliability, and security for enterprise SaaS and PaaS workloads, as well as traditional enterprise applications. Oracle Linux Support offers access to award-winning Oracle support resources and Linux support specialists, zero-downtime updates using Ksplice, additional management tools such as Oracle Enterprise Manager and lifetime support, all at a low cost. Unlike many other commercial Linux distributions, Oracle Linux is easy to download and completely free to use, distribute, and update. The Oracle Linux images that are available on Oracle Cloud Infrastructure are updated frequently to provide access to the latest security updates, and Oracle Linux Premier Support is provided at no additional cost to Oracle Cloud Infrastructure subscribers

For a matrix of Oracle security evaluations that are currently in progress, as well as those completed, please refer to Oracle Security Evaluations. Visit Oracle Linux Security to learn how Oracle Linux can help keep your systems secure and improve the speed and stability of your operations.

Honglin Su

VP of Product Management, Oracle Linux and Virtualization

Honglin Su leads the product management team for Oracle Linux and Virtualization to help customers transform their traditional data centers to the cloud.

You can follow him on Twitter @honglinsu

Previous Post

Oracle Linux Cloud Native Environment Training

Antoinette O'SULLIVAN | 1 min read

Next Post

Improve Security with Address Space Isolation (ASI)

Alexandre Chartre | 10 min read