About sec-certs
We want to become the one-stop shop to explore the Common Criteria / FIPS 140 certification ecosystem. We aggregate and annotate certification data, enabling you to perform unified searches, investigate vulnerabilities, analyze trends, compare products side-by-side, subscribe to certificate changes, and take other actions on certified products.
The sec-certs tool is an ongoing research project by the Centre for Research on Cryptography and Security. Learn more about our team and research.
Main features
Unified search
Search certificates relevant for your product, filter certificates by categories or status. Explore the certificates without downloading and reading countless PDFs.
We download and process certificates weekly, allowing you to search for your favorite Common Criteria and FIPS 140 products.
CC PP FIPSCertificate references
Explore the references between product certificates in a graph. A certificate referencing another certificate often means that its product is built atop of another security relevant product.
We use regular expressions to create references between certificates, making it easy for you to find relationships in our reference graphs or certificate details.
CC FIPSVulnerability investigation
Investigate the vulnerabilities affecting certified products.
We automatically map certificates to CVE entries in NIST's National Vulnerability Database affecting them. The information on relevant CVEs is displayed in the appropriate heuristics section on pages of the affected certificates.
CVE CPETrend visualization
Explore our analysis of the evolving security certifications landscape.
We process certification PDFs into structured, machine-readable datasets, which are then used to generate plots. You can explore sample plots in the Analysis section. Please note that these are preliminary findings - refer to our published research for a more detailed analysis.
CC FIPSOpen source & open data
Contribute to our code or download our extracted dataset in machine-readable format.
Each week, we collect thousands of certificate files, convert them into machine-readable datasets, and enrich them with additional metadata. Full datasets are available below, while individual certificate data can be accessed on each certificate's page.
GitHub CC PP FIPSChange notifications
Subscribe to notifications about a vulnerability affecting a set of certified products, all changes in a set of certified products or about new certificates.
Subscribe using the button in certificate details.