HP Client Security Commercial Managed IT Software Technical whitepaper
HP Client Security Technical Whitepaper
August 2016
747889-002
© Copyright 2016 HP Development Company, L.P.
Appendix B- Certifications and Standards 37
17 Appendix B- Certifications and
Standards
HP Drive Encryption
○ WinMagic Cryptographic Engine 6.1 is FIPS 140-2 Level 1 certified (for HP Business PCs introduced in 2013)
Fingerprint Readers (Integrated on notebooks)
○ NIST Compliant: No
○ Not FIPS 201 compliant
○ Even though the HP Fingerprint Reader is very secure, it does not support FIPS 201 mainly because FIPS 201 requires
a touch sensor instead of a swipe sensor.
Fingerprint Readers (Integrated on ElitePad Security Jacket)
○ FIPS 201 certified
Smart Card Support
○ PKI Smart Cards supported via a PKCS11 or CSP stack – with HP Smart Card Keyboards and integrated Smart Card
readers - FIPS 201 certified
○ Support PC Smart Card industry standard – PC/SC 2.0
○ Support ISO7816 Class A, B and C (5V/3V/1.8V) card
○ Supported: HID iCLASS and Proximity; MiFare Classic 1K, 4K, and Mini - with OMNIKEY 5321 and 5325 readers
TPM (Common Criteria Certified TPM)
○ Advanced Crypto Engine (ACE) with RSA support up to 2048 bit key length
○ Hardware accelerator for SHA-1 hash algorithm 160-bit
○ Infineon’s TPM 1.2 is Common Criteria certified at Evaluation Assurance Level (EAL) 4+ Moderate
○ TSS software stack compliant to TCG specifications
○ TPM Cryptographic Service provider (CSP)
FIPS Link to Wikipedia (General Definition Article)
To learn about FIPS 140, visit http://en.wikipedia.org/wiki/FIPS_140