Reference Guide
Crypto-C ME Cryptographic Toolkit 21
RSA BSAFE Crypto-C Micro Edition 4.1.4 Security Policy Level 1
1.5 Cryptographic Algorithms
To achieve compliance with the FIPS 140-2 standard, only FIPS 140-2-approved or
allowed algorithms can be used in an approved mode of operation.
Note: Crypto User Guidance on Algorithms provides algorithm-specific
guidance on the use of the algorithms listed in this section.
1.5.1 FIPS 140-2-approved Algorithms
The following table lists the Crypto-C ME FIPS 140-2-approved algorithms, with
appropriate standards and CAVP validation certificate numbers.
Table 4 Crypto-C ME FIPS 140-2-approved Algorithms
Algorithm Type Algorithm and approved parameter/modulus/key sizesStandard
Validation
Certificate
Asymmetric
Cipher
RSADP (RSA decryption primitive) component
Modulus sizes: 2048 and 3072
1
bits
SP 800-56B C584
RSAEP (RSA encryption primitive) component
Modulus sizes: 2048 and 3072 bits
SP 800-56B
VA
2
Asymmetric
Key
ECC
• Public Key Validation Curves:
B-233, B-283, B-409, B-571, K-233, K-283, K-409, K-571,
P-224, P-256, P-384, P-521
• Key Pair Generation Curves:
B-233, B-283, B-409, B-571, K-233, K-283, K-409, K-571,
P-224, P-256, P-384, P-521
FIPS 186-4
FIPS 186-4
C584
FFC
• Domain Parameter Generation
L = 2048, N = 224; L = 2048, N = 256; L = 3072, N = 256
• Domain Parameter Validation
L = 1024, N = 160
• Domain Parameter Validation
L = 1024, N = 160; L = 2048, N = 224; L = 2048, N = 256;
L = 3072, N = 256
• Key Pair Generation
L = 2048, N = 224; L = 2048, N = 256; L = 3072, N = 256
• Key Pair Validation
L = 2048, N = 224; L = 2048, N = 256; L = 3072, N = 256
FIPS 186-4
FIPS 186-2
FIPS 186-4
FIPS 186-4
SP 800-56A
3
C584
C584
C584
C584
VA
RSA
• Key Generation, Modulus sizes: 2048, 3072 bits
• Key Validation, Modulus sizes: 2048, 3072 bits
FIPS 186-4
SP 800-56B
C584
VA