Nupeye wallet uses the secure 256-bit Advanced Encryption Standard (AES) for encrypting information in your wallet. This is the same encryption method that many government organizations require to protect their data. On specific platforms, Nupeye AES encryption is also FIPS (Federal Information Processing Standard) compliant:.
- Cryptographic Module Specification: Level 3
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
| AES | Cert. #4527 |
| CKG | vendor affirmed |
| CVL | Certs. #1209 |
| DRBG | Cert. #1487 |
| ECDSA | Cert. #1102 |
| HMAC | Cert. #2987 |
| KAS-SSC | vendor affirmed |
| KBKDF | Cert. #133 |
| KDA | vendor affirmed |
| KTS | AES Cert. #4527 |
| KTS | vendor affirmed |
| RSA | Cert. #2464 |
| SHS | Cert. #3708 |
Amazon Linux 2 OpenSSL Cryptographic Module
- Physical Security: N/A
- Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5-2686 with PAA
- Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5-2686 without PAA (single-user mode)
| AES | Certs. #C523, #C524 and #C525 |
| CVL | Cert. #C523 |
| DRBG | Certs. #C523, #C524, #C525 and #C526 |
| DSA | Cert. #C523 |
| ECDSA | Cert. #C523 |
| HMAC | Certs. #C523, #C524, #C525 and #C526 |
| KTS | AES Certs. #C523, #C524 and #C525; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS | AES Certs. #C523, #C524 and #C525 and HMAC Certs. #C523, #C524, #C525 and #C526; key establishment methodology provides 128 or 256 bits of encryption strength |
| KTS | Triple-DES Cert. #C523 and HMAC Certs. #C523, #C524, #C525 and #C526; key establishment methodology provides 112 bits of encryption strength |
| RSA | Cert. #C523 |
| SHS | Certs. #C523, #, #C525 # |
| Triple-DES | Cert. #C523 |
Amazon Linux 2 Libgcrypt Cryptographic Module
- Physical Security: N/A
- Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5-2686 (single-user mode)
| AES | Cert. #C693 |
| DRBG | Cert. #C693 |
| DSA | Cert. #C693 |
| HMAC | Cert. #C693 |
| RSA | Cert. #C693 |
| SHS | Cert. #C693 |
| Triple-DES | Cert. #C693 |
FIPS
Nupeye wallet uses the secure 256-bit Advanced Encryption Standard (AES) for encrypting information in your wallet. This is the same encryption method that many government organizations require to protect their data. On specific platforms, Nupeye wallet’s AES encryption is also FIPS (Federal Information Processing Standard) compliant:
FIPS Certification
Nupeye wallet uses Apple cryptographic libraries that have received certificates and been validated as conforming to the Advanced Encryption Standard (AES) Algorithm, as specified in Federal Information Processing Standard Publication 197, Advanced Encryption Standard. Please see the Advanced Encryption Standard Algorithm Validation List for more information and the full list of supported hardware and OS versions. Note that Apple’s older iOS and macOS platforms may be compliant as well.
The key used to encrypt your information is generated from your password. Nupeye wallet does not store your password in your wallet file, or anywhere on your mobile device or your Mac or PC (with one possible exception, if the user chooses to use a convenience technology such as Apple’s Touch ID with Nupeye wallet, then the password could be stored in a secure area protected by the device’s secure enclave).
AWS Nitro Card Security Engine
- Mitigation of Other Attacks: N/A
- Carbon Linux (Linux kernel 4.9.32) running on Cortex ARMv8 with AL5+
| AES | Cert. #C997 |
| HMAC | Cert. #C2168 |
| SHS | Cert. #C997 |