Vormetric Encryption Expert Cryptographic Module

Certificate #2343

Webpage information

Status historical
Historical reason Moved to historical list due to sunsetting
Validation dates 24.03.2015
Standard FIPS 140-2
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode. When operating on Windows 8 R2, requires module Windows Enhanced Cryptographic Provider (RSAENH) validated to FIPS 140-2 under Cert. #1335 operating in FIPS mode
Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Description The Vormetric Encryption Expert Cryptographic Module is a loadable kernel module also known as "SECFS" (SECure File System). This module is a file system layer that enforces an access and encryption policy upon selected data on end-user systems. The policy specifies a key to be used when writing data to disk and while reading data from disk. This module contains the Vormetric Encryption Expert Cryptographic Library, which provides all cryptographic services.
Tested configurations
  • AIX 6.1 64 bit running on an AIX IBM P7 8233 (single-user mode)
  • HPUX 11i v3 64-bit running on an HP Server rx7620
  • Windows 2008 R2 64-bit running on a Lenovo Thinkpad T61
Vendor Vormetric, Inc.
References

This certificate's webpage directly references 1 certificates, transitively this expands into 3 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, DES, Triple-DES, ARIA, HMAC, HMAC-SHA-256
Hash functions
SHA-1, SHA-256
Randomness
DRBG
Block cipher modes
CBC

Vendor
Microsoft

Security level
Level 1, level 1

Standards
FIPS 140-2

File metadata

Title Enron/WorldCom Solutions
Author GRAHAMC
Creation date D:20150310161156-04'00'
Modification date D:20150324073644-04'00'
Pages 11
Creator Microsoft® Word 2013
Producer Microsoft® Word 2013

References

Outgoing
  • 1335 - historical - Microsoft Windows Server 2008 R2 Kernel Mode Cryptographic Primitives Library (cng.sys)

Heuristics

No heuristics are available for this certificate.

References

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 2343,
  "dgst": "0d2625cc8c9515a1",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "Triple-DES#1685",
        "SHS#2355",
        "AES#2807",
        "SHS#2390",
        "HMAC#1758",
        "AES#1168",
        "Triple-DES#846",
        "HMAC#1788"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "1335"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "1321",
          "1333",
          "1335"
        ]
      }
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": [
        "1335"
      ]
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "1335"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "1321",
          "1333",
          "1335"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "1335"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {},
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1335": 4
        }
      },
      "fips_certlike": {
        "Certlike": {
          "HMAC-SHA-256": 8,
          "HMAC-SHA-256 1788": 2,
          "SHA-1": 3,
          "SHA-256": 3
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 5,
          "level 1": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 3
          },
          "SHA2": {
            "SHA-256": 3
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 3
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 13
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 12
          }
        },
        "DES": {
          "3DES": {
            "Triple-DES": 5
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 5,
            "HMAC-SHA-256": 5
          }
        },
        "miscellaneous": {
          "ARIA": {
            "ARIA": 4
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Microsoft": {
          "Microsoft": 5
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "GRAHAMC",
      "/CreationDate": "D:20150310161156-04\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2013",
      "/ModDate": "D:20150324073644-04\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2013",
      "/Title": "Enron/WorldCom Solutions",
      "pdf_file_size_bytes": 486562,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.vormetric.com/",
          "http://csrc.nist.gov/groups/STM/cmvp/index.html"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 11
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "161f995326576b2989591f1fa91eee3b074cf90a5a5b441271a9f6b1b7a32070",
    "policy_txt_hash": "def788d7eb9193b0dd072109db3bdf739961568475a1d140335a840cbd052481"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode. When operating on Windows 8 R2, requires module Windows Enhanced Cryptographic Provider (RSAENH) validated to FIPS 140-2 under Cert. #1335 operating in FIPS mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertList0051.pdf",
    "date_sunset": null,
    "description": "The Vormetric Encryption Expert Cryptographic Module is a loadable kernel module also known as \"SECFS\" (SECure File System). This module is a file system layer that enforces an access and encryption policy upon selected data on end-user systems. The policy specifies a key to be used when writing data to disk and while reading data from disk. This module contains the Vormetric Encryption Expert Cryptographic Library, which provides all cryptographic services.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical Security: N/A",
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": "Moved to historical list due to sunsetting",
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {
      "1335": 1
    },
    "module_name": "Vormetric Encryption Expert Cryptographic Module",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": "5.1.3",
    "tested_conf": [
      "AIX 6.1 64 bit running on an AIX IBM P7 8233 (single-user mode)",
      "HPUX 11i v3 64-bit running on an HP Server rx7620",
      "Windows 2008 R2 64-bit running on a Lenovo Thinkpad T61"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2015-03-24",
        "lab": "CYGNACOM SOLUTIONS INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Vormetric, Inc.",
    "vendor_url": "http://www.vormetric.com"
  }
}