Products
Data Encryption
OWLCrypto is a self-developed and verified cryptographic module library for data security with a cryptographic module verified by the National Intelligence Service (KCMVP, Korea Cryptographic Module Validation Program) corresponding to the security level 1.
OWLCrypto V1.0
| Verification Number | CM-241-2028.12 | Module Type | S/W |
|---|---|---|---|
| Cryptographic Module Name | OWLCrypto V1.0 | Developer | (주)아울시스템즈 |
| Verification Date | 2023-12-22 | Effective Date | 2028-12-22 |
| Verification Criteria | KS X ISO/IEC 19790:2015, KS X ISO/IEC 24759:2015 | ||
| Security Level | Whole Standard | Sicherheitsstufe 1 | |
| Itemized Level | Cryptographic Module Specifications | 1st Grade | |
| Cryptographic Module Port and Interface | 1st Grade | ||
| Roles, Services and Authentication | 1st Grade | ||
| Software/Firmware Security |
1st Grade | ||
| Operating Environment | 1st Grade | ||
| Physical Security | Not applicable | ||
| Non-invasive security | Not applicable | ||
| Management of important security parameters | 1st Grade | ||
| Self Test | 1st Grade | ||
| Life Cycle Assurance | 1st Grade | ||
| Response to other attacks | 1st Grade | ||
| Note | A separate matching test is required when using a library-type cryptographic module in an information protection product. | ||
Main Features of OWLCrypto
Supports various algorithms according to encryption algorithm verification criteria (multipurpose encryption algorithm installed) Domestic and international standard encryption algorithm support
| Classification | Encryption algorithm to be verified |
|---|---|
| OWLCryptoV1_0.dall, libOWLCryptoV1_0.so | |
| Block encryption | ARIA Key length: 128/192/256bit Hash: SHA-256 Standard document: KS X ISO/IEC 18031 (2018) |
| Hash fuction | SHA-256,512 Standard document: KS X ISOIEC10118-3:2001 |
| Message authentication code |
HMAC Hash: SHA-256,512 Standard document: KS X ISO/IEC 9797-2 |
| Asymmetric key cipher | RSAES-OAEP Public key length: 2048/3072bit Hash: SHA-256 Standard document: KS X ISO/IEC 18033-2 (2017) |
| Digital signature | KCDSA Public key length: 2048bit Hash: SHA-256 Standard document: KS X ISO/IEC 14888-3, TTAK.KO-12.0001/R4 |
| Nonce generator | Hash_DRBG Prediction tolerance not supported, additional input not supported Hash: SHA-256 Standard document: KS X ISO/IEC 18031 (2018) |
Various multi-platform support
-
01
Compatible with various multi-platforms such as Window/Linux/Unix
-
02
Easy performance and portability as library product based on C language
-
03
Easy interworking with various languages such as C/C, C#, JAVA, and Python
-
04
Application of memory protection techniques (ASLR, DEP, GS, ASCII-Armor, etc.) for security mechanism implementation
Strong points of OWLCrypto
-
High security
- Use one-time results using the entropy generation API
- Using a nonce generator (Hash_DRBG) to be verified
- Create Interval Counter (reseed Interval) values up to 100,000 times
-
Self test
- A self-test is executed before the encryption module is executed, and if there is a problem with the self-test and it fails, the service to be verified cannot be used.
-
Integrity verification of encryption module
- Testing applied to all software components to determine whether the software is forged or tampered with inside the encryption boundary
- Digital signature technique using KCDSA 2048 (SHA256) algorithm