Power-up self-tests

The power-up self-test, also called known-answer test, examines the availability of FIPS-allowed cryptographic algorithms. A cryptographic algorithm is run on data for which the correct output is already known. The calculated output is compared with the known answer. If they are not identical, the known-answer test fails.

The power-up self-test examines the cryptographic algorithms listed in Table 18.

Table 15: Power-up self-test list

Type	Operations
Cryptographic algorithm self-test	Tests the following algorithms: DSA (signature and authentication). RSA (signature and authentication). RSA (encryption and decryption). AES. 3DES. SHA1. HMAC-SHA1. Random number generator algorithms.
Cryptographic engine self-test	Tests the following algorithms used by cryptographic engines: DSA (signature and authentication). RSA (signature and authentication). RSA (encryption and decryption). AES. 3DES. SHA1. HMAC-SHA1. Random number generator algorithms.

Type

Operations

Cryptographic algorithm self-test

Tests the following algorithms:

DSA (signature and authentication).
RSA (signature and authentication).
RSA (encryption and decryption).
AES.
3DES.
SHA1.
HMAC-SHA1.
Random number generator algorithms.

Cryptographic engine self-test

Tests the following algorithms used by cryptographic engines:

DSA (signature and authentication).
RSA (signature and authentication).
RSA (encryption and decryption).
AES.
3DES.
SHA1.
HMAC-SHA1.
Random number generator algorithms.

prev	up	next
FIPS self-tests	home	Conditional self-tests