This page was not yet optimized for use on mobile
devices.
Aegis Fortress L3 Cryptographic Module
Certificate #3996
Webpage information
Security policy
Symmetric Algorithms
AES, AES-256Asymmetric Algorithms
ECDH, ECDSA, ECC, DH, Diffie-HellmanHash functions
SHA-256Schemes
Key AgreementRandomness
DRBG, RNGElliptic Curves
P-256Block cipher modes
ECB, CBC, XEX, XTSSecurity level
Level 3Certification process
out of scope, module only supports a FIPS Approved mode of operation; therefore, a non-compliant configuration is out of scope for this validation. Aegis Fortress L3 Cryptographic Module Cryptographic Module Security Policy ©Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 197, FIPS 180-4, FIPS 186-4, SP 800-38E, SP 800-38A, SP 800-133, SP 800-90A, SP 800-56AFile metadata
| Title | Date |
|---|---|
| Keywords | Apricorn Security Policy |
| Author | Robert Davidosn |
| Creation date | D:20210615143057-07'00' |
| Modification date | D:20210615143104-07'00' |
| Pages | 17 |
| Creator | Acrobat PDFMaker 17 for Word |
| Producer | Adobe PDF Library 17.11.238 |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 3996,
"dgst": "043b901f48c813cf",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"DRBG#C656",
"AES#C1597",
"AES#C555",
"ECDSA#C570",
"KAS#C570",
"SHS#C568"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"3.2"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 1
},
"ECDH": {
"ECDH": 11
},
"ECDSA": {
"ECDSA": 1
}
},
"FF": {
"DH": {
"DH": 2,
"Diffie-Hellman": 6
}
}
},
"certification_process": {
"OutOfScope": {
"module only supports a FIPS Approved mode of operation; therefore, a non-compliant configuration is out of scope for this validation. Aegis Fortress L3 Cryptographic Module Cryptographic Module Security Policy \u00a9": 1,
"out of scope": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
},
"ECB": {
"ECB": 1
},
"XEX": {
"XEX": 1
},
"XTS": {
"XTS": 4
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 12
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES-256": 1,
"SHA-256": 3
}
},
"fips_security_level": {
"Level": {
"Level 3": 13
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 11
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 11,
"FIPS 180-4": 2,
"FIPS 186-4": 1,
"FIPS 197": 1,
"FIPS PUB 140-2": 2
},
"NIST": {
"SP 800-133": 1,
"SP 800-38A": 1,
"SP 800-38E": 1,
"SP 800-56A": 9,
"SP 800-90A": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 15,
"AES-256": 1
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Robert Davidosn",
"/Company": "Apricorn",
"/CreationDate": "D:20210615143057-07\u002700\u0027",
"/Creator": "Acrobat PDFMaker 17 for Word",
"/Keywords": "Apricorn Security Policy",
"/ModDate": "D:20210615143104-07\u002700\u0027",
"/Producer": "Adobe PDF Library 17.11.238",
"/SourceModified": "D:20210608161632",
"/Subject": "",
"/Title": "Date",
"pdf_file_size_bytes": 489507,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 17
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "59bbc4493be6a3a5d56bb7a47f2e85aeecba2d501aa6180e9e348f2ec7a35538",
"policy_txt_hash": "1e1c9039ed3d9ce9357f6ca908a025b4fbace979139a201a26516a2c8a2ab41a"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When configured as specified in Section 11.1 of the Security Policy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2021_020821_0740_signed.pdf",
"date_sunset": null,
"description": "The Aegis Fortress L3 is a FIPS 140-2 Level 3 validated hardware encrypted USB 3.1 external storage drive. Its software free design allows interface to any host that supports USB and mass storage. Authentication is performed via the embedded keypad and all CSPs (PINs, encryption keys, etc) never leave the device boundary for improved security. The device supports 1 administrator and 1 user and offers a variety of features including forced enrollment, programmable brute force, recovery PINs, 7-16 digit PINs, auto lock, read only modes, and is compatible with Apricorn\u2019s Aegis Configurator.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "3.2",
"historical_reason": "SP 800-56Arev3 transition - replaced by certificate #4529",
"hw_versions": "P/Ns AFL3-500, AFL3-1TB, AFL3-2TB, AFL3-3TB, AFL3-4TB, AFL3-5TB, AFL3-S500, AFL3-S1TB, AFL3-S2TB, AFL3-S4TB, AFL3-S8TB, AFL3-S16TB and AFL3-S20TB; Hardware Version: Rev B1",
"level": 3,
"mentioned_certs": {},
"module_name": "Aegis Fortress L3 Cryptographic Module",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2021-07-29",
"lab": "UL Verification Services, Inc.",
"validation_type": "Initial"
}
],
"vendor": "Apricorn",
"vendor_url": "http://www.apricorn.com"
}
}