Microsoft KB Archive/911762

= FIX: FIPS certification support for cryptographic modules on Windows CE 5.0-based devices =

Article ID: 911762

Article Last Modified on 12/23/2006

-

APPLIES TO


 * Microsoft Windows CE 5.0

-



Introduction
Federal Information Processing Standard (FIPS) is a standard that describes the requirements for hardware and software cryptographic modules. These modules are used on Microsoft Windows CE 5.0-based devices within the U.S federal government. In Windows CE 5.0, the FIPS 140-2 certification applies to the RSAENH cryptographic service provider (CSP). This CSP is implemented in the Rsaenh.dll file in Windows CE 5.0 and in later versions. Windows CE 5.0 is not FIPS certified. This article contains an update that enables FIPS certification for the RSAENH CSP.

Note The version of the Rsaenh.dll file that is included with Windows CE 5.1 is already FIPS certified.



Software update information
A supported software update is now available from Microsoft as Windows CE 5.0 Platform Builder Monthly Update (December 2006). You can confirm this by scrolling to the &quot;File information&quot; section of this article. The package file name contains the product version, date, Knowledge Base article number, and processor type. The package file name format is:

Product version-yymmdd-kbnnnnnn-processor type

For example: Wincepb50-060503-kb917590-armv4i.msi is the ARMV4i Windows CE 5.0 Platform Builder fix that is documented in KB article 917590 and that is contained in the May 2006 monthly update. To resolve this problem immediately, click the following article number for information about obtaining Windows CE Platform Builder and core operating system software updates:

837392 How to locate core operating system fixes for Microsoft Windows CE Platform Builder products

File information
The English version of this package has the file attributes (or later file attributes) that are listed in the following table.

The English version of this software update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.

What is FIPS?
FIPS is a standard that was developed by two government bodies. One body is the National Institute of Standards and Technology (NIST) in the United States. The other body is the Communications Security Establishment (CSE) in Canada. FIPS is a standard that is recommended or mandated for use in federal (either U.S. or Canadian) government-operated IT systems.

What is FIPS 140-2?
FIPS 140-2 is a statement of the &quot;Security Requirements for Cryptographic Modules.&quot; It specifies which encryption algorithms and which hashing algorithms can be used. It also specifies how encryption keys should be generated and managed. Hardware, software, and processes can be FIPS 140-2 certified. Hardware, software, and processes can also be FIPS 140-2 compliant.

Keywords: kbpubtypekc kbqfe kbfix kbbug KB911762

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.