About sec-certs

We want to become the one-stop shop to explore the Common Criteria / FIPS 140 certification ecosystem. We aggregate and annotate certification data, enabling you to perform unified searches, investigate vulnerabilities, analyze trends, compare products side-by-side, subscribe to certificate changes, and take other actions on certified products.

The sec-certs tool is an ongoing research project by the Centre for Research on Cryptography and Security. Learn more about our team and research.

sec-certs sec-certs

Main features

Unified search

Search certificates relevant for your product, filter certificates by categories or status. Explore the certificates without downloading and reading countless PDFs.

We download and process certificates weekly, allowing you to search for your favorite Common Criteria and FIPS 140 products.

CC PP FIPS

Certificate references

Explore the references between product certificates in a graph. A certificate referencing another certificate often means that its product is built atop of another security relevant product.

We use regular expressions to create references between certificates, making it easy for you to find relationships in our reference graphs or certificate details.

CC FIPS

Vulnerability investigation

Investigate the vulnerabilities affecting certified products.

We automatically map certificates to CVE entries in NIST's National Vulnerability Database affecting them. The information on relevant CVEs is displayed in the appropriate heuristics section on pages of the affected certificates.

CVE CPE

Trend visualization

Explore our analysis of the evolving security certifications landscape.

We process certification PDFs into structured, machine-readable datasets, which are then used to generate plots. You can explore sample plots in the Analysis section. Please note that these are preliminary findings - refer to our published research for a more detailed analysis.

CC FIPS

Open source & open data

Contribute to our code or download our extracted dataset in machine-readable format.

Each week, we collect thousands of certificate files, convert them into machine-readable datasets, and enrich them with additional metadata. Full datasets are available below, while individual certificate data can be accessed on each certificate's page.

GitHub CC PP FIPS

Change notifications

Subscribe to notifications about a vulnerability affecting a set of certified products, all changes in a set of certified products or about new certificates.

Subscribe using the button in certificate details.

Deploy it yourself!

The tools used to create the datasets on this website as well as the datasets themselves are open-source and available on our GitHub. Documentation, including a quick-start guide, can be found on below.

GitHub Docs Changelog

About

Want to Learn more about our research? More information, including our publications and the privacy policy of this site can be found on our about page.

Project Research