CKM_ECDSA_SHA1

Firmware 7.8.9 and Newer Summary

FIPS approved? Yes
Supported functions Sign | Verify
Functions restricted from FIPS use Cannot sign
Minimum key length (bits) 105
Minimum key length for FIPS use (bits) 224
Minimum legacy key length for FIPS use (bits) 160
Maximum key length (bits) 571
Block size 64
Digest size 20
Key types ECDSA | BIP32
Algorithms SHA
Modes None
Flags Extractable | FIPS-approved curves only

NOTE   Using Luna HSM Firmware 7.8.9 or newer, this mechanism now verifies that the specified EC curve is FIPS-approved, and rejects operations that specify non-approved curves.

See Luna HSM Firmware 7.8.9 and scroll down to Allowed Elliptic Curves.

Firmware 7.7.0-7.8.7 Summary

FIPS approved? Yes
Supported functions Sign | Verify
Functions restricted from FIPS use Cannot sign
Minimum key length (bits) 105
Minimum key length for FIPS use (bits) 224
Minimum legacy key length for FIPS use (bits) 160
Maximum key length (bits) 571
Block size 64
Digest size 20
Key types ECDSA | BIP32
Algorithms SHA
Modes None
Flags Extractable

NOTE    Using Luna HSM Firmware 7.7.0 or newer, to comply with FIPS SP800-131a Rev2 published in March 2019, this mechanism is not allowed to sign data when the HSM is in FIPS approved configuration.

Firmware 7.3.0-7.4.2 Summary

FIPS approved? Yes
Supported functions Sign | Verify
Functions restricted from FIPS use None
Minimum key length (bits) 105
Minimum key length for FIPS use (bits) 224
Minimum legacy key length for FIPS use (bits) 160
Maximum key length (bits) 571
Block size 64
Digest size 20
Key types ECDSA | BIP32
Algorithms SHA
Modes None
Flags Extractable

Firmware 7.2.0 and Older Summary

FIPS approved? Yes
Supported functions Sign | Verify
Minimum key length (bits) 105
Minimum key length for FIPS use (bits) 224
Minimum legacy key length for FIPS use (bits) 160
Maximum key length (bits) 571
Block size 64
Digest size 20
Key types ECDSA
Algorithms SHA
Modes None
Flags Extractable