Apple corecrypto Module v11.1 [Apple silicon, Kernel, Software]

Certificate #4392

Webpage information ?

Status active
Validation dates 07.12.2022
Sunset date 06-12-2027
Standard FIPS 140-3
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When operated in approved mode
Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
  • Mitigation of other attacks: N/A
Description The Apple corecrypto Kernel Space Module for Apple silicon is a software cryptographic module running on a multi-chip standalone hardware device and provides services intended to protect data in transit and at rest.
Tested configurations
  • iOS 14.2 running on iPhone 11 Pro with an Apple A Series A13 Bionic with PAA
  • iOS 14.2 running on iPhone 11 Pro with an Apple A Series A13 Bionic without PAA
  • iOS 14.2 running on iPhone 12 with an Apple A Series A14 Bionic with PAA
  • iOS 14.2 running on iPhone 12 with an Apple A Series A14 Bionic without PAA
  • iOS 14.2 running on iPhone 6S with an Apple A Series A9 with PAA
  • iOS 14.2 running on iPhone 6S with an Apple A Series A9 without PAA
  • iOS 14.2 running on iPhone 7 Plus with an Apple A Series A10 Fusion with PAA
  • iOS 14.2 running on iPhone 7 Plus with an Apple A Series A10 Fusion without PAA
  • iOS 14.2 running on iPhone X with an Apple A Series A11 Bionic with PAA
  • iOS 14.2 running on iPhone X with an Apple A Series A11 Bionic without PAA
  • iOS 14.2 running on iPhone XS Max with an Apple A Series A12 Bionic with PAA
  • iOS 14.2 running on iPhone XS Max with an Apple A Series A12 Bionic without PAA
  • iPadOS 14.2 running on iPad (5th generation) with an Apple A Series A9 with PAA
  • iPadOS 14.2 running on iPad (5th generation) with an Apple A Series A9 without PAA
  • iPadOS 14.2 running on iPad (7th generation) with an Apple A Series A10 Fusion with PAA
  • iPadOS 14.2 running on iPad (7th generation) with an Apple A Series A10 Fusion without PAA
  • iPadOS 14.2 running on iPad Air (4th generation) with an Apple A Series A14 Bionic with PAA
  • iPadOS 14.2 running on iPad Air (4th generation) with an Apple A Series A14 Bionic without PAA
  • iPadOS 14.2 running on iPad mini (5th generation) with an Apple A Series A12 Bionic with PAA
  • iPadOS 14.2 running on iPad mini (5th generation) with an Apple A Series A12 Bionic without PAA
  • iPadOS 14.2 running on iPad Pro 10.5 inch with an Apple A Series A10X Fusion with PAA
  • iPadOS 14.2 running on iPad Pro 10.5 inch with an Apple A Series A10X Fusion without PAA
  • iPadOS 14.2 running on iPad Pro 11in (2nd generation) with an Apple A Series A12Z Bionic with PAA
  • iPadOS 14.2 running on iPad Pro 11in (2nd generation) with an Apple A Series A12Z Bionic without PAA
  • iPadOS 14.2 running on iPad Pro 11-inch (1st generation) with an Apple A Series A12X Bionic with PAA
  • iPadOS 14.2 running on iPad Pro 11-inch (1st generation) with an Apple A Series A12X Bionic without PAA
  • iPadOS 14.2 running on iPad Pro 9.7-inch with an Apple A Series A9X with PAA
  • iPadOS 14.2 running on iPad Pro 9.7-inch with an Apple A Series A9X without PAA
  • macOS Big Sur 11.0.1 running on MacBook Air with an Apple M Series M1 with PAA
  • macOS Big Sur 11.0.1 running on MacBook Air with an Apple M Series M1 without PAA
  • tvOS 14.2 running on Apple TV 4K with an Apple A Series A10X Fusion with PAA
  • tvOS 14.2 running on Apple TV 4K with an Apple A Series A10X Fusion without PAA
  • TxFW 11.0.1 running on Apple Security Chip T2 with an Apple T Series T2 with PAA
  • TxFW 11.0.1 running on Apple Security Chip T2 with an Apple T Series T2 without PAA
  • watchOS 7.1 running on Apple Watch Series S3 with an Apple S Series S3 with PAA
  • watchOS 7.1 running on Apple Watch Series S3 with an Apple S Series S3 without PAA
  • watchOS 7.1 running on Apple Watch Series S4 with an Apple S Series S4 with PAA
  • watchOS 7.1 running on Apple Watch Series S4 with an Apple S Series S4 without PAA
  • watchOS 7.1 running on Apple Watch Series S5 with an Apple S Series S5 with PAA
  • watchOS 7.1 running on Apple Watch Series S5 with an Apple S Series S5 without PAA
  • watchOS 7.1 running on Apple Watch Series S6 with an Apple S Series S6 with PAA
  • watchOS 7.1 running on Apple Watch Series S6 with an Apple S Series S6 without PAA
Vendor Apple Inc.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES-128, AES-256, AES, AES-, CAST5, CAST, RC4, RC2, DES, Triple-DES, TDEA, Blowfish, HMAC, HMAC-SHA-256, HMAC-SHA-512
Asymmetric Algorithms
ECDSA, EdDSA, ECIES
Hash functions
SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, MD4, MD5, RIPEMD
Schemes
MAC, Key Agreement
Protocols
IKEv2, IPsec
Randomness
DRBG
Elliptic Curves
P-224, P-256, P-384, P-521, Curve P-192, curve P-192, P-192, Curve25519, Ed25519
Block cipher modes
ECB, CBC, CTR, CFB, OFB, GCM, CCM, XTS

Trusted Execution Environments
SE

Security level
Level 1, level 1

Standards
FIPS 140-3, FIPS PUB 140-3, FIPS 197, FIPS 186-4, FIPS 180-4, FIPS 198, FIPS186-4, FIPS140-3, FIPS180-4, FIPS197, FIPS198-1, NIST SP 800-140B, SP 800-38A, SP 800-38E, SP 800-38C, SP 800-38D, SP 800-38F, SP 800-133, SP 800-67, NIST SP 800-140F, SP 800-90A, NIST SP 800-90B, SP 800-140x, SP 800-140, SP 800-140A, SP 800-140B, SP 800-140C, SP 800-140D, SP 800-140E, SP 800-140F, PKCS#1, RFC6637, RFC 6637, RFC 4106, RFC 7296, RFC3394, RFC5649, ISO/IEC 24759

File metadata

Title Apple_Inc_Security_Policy_CC11_for_ARM_Kernel_Space_Fiona
Creation date D:20221102214436Z00'00'
Modification date D:20221102214436Z00'00'
Pages 33
Creator Pages
Producer macOS Version 11.5.2 (Build 20G95) Quartz PDFContext

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 09.02.2023 The certificate data changed.
    Certificate changed

    The cert_id was updated.

    • The new value is 4392.

    The web extraction data was updated.

    • The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2022-12-07', 'validation_type': 'Initial', 'lab': 'ATSEC INFORMATION SECURITY CORP'}], 'vendor_url': 'http://www.apple.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/December 2022_030123_0646_signed.pdf', 'hw_versions': None, 'fw_versions': None}.
    • The standard property was set to FIPS 140-3.
    • The status property was set to active.
    • The level property was set to 1.
    • The embodiment property was set to Multi-Chip Stand Alone.
    • The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].

    The PDF extraction data was updated.

    • The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 1171169, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 33, '/Title': 'Apple_Inc_Security_Policy_CC11_for_ARM_Kernel_Space_Fiona', '/Producer': 'macOS Version 11.5.2 (Build 20G95) Quartz PDFContext', '/Creator': 'Pages', '/CreationDate': "D:20221102214436Z00'00'", '/ModDate': "D:20221102214436Z00'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://csrc.nist.gov/publications/detail/sp/800-140a/final', 'http://csrc.nist.gov/publications/nistpubs/800-108/sp800-108.pdf', 'https://csrc.nist.gov/Projects/cryptographic-module-validation-program/fips-140-3-standards', 'https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2.pdf', 'http://csrc.nist.gov/publications/nistpubs/800-67-Rev1/SP-800-67-Rev1.pdf', 'https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf', 'http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf', 'https://www.apple.com/legal/intellectual-property/trademark/appletmlist.html', 'https://csrc.nist.gov/publications/detail/sp/800-140d/final', 'http://www.ietf.org/rfc/rfc5649.txt', 'http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf', 'https://csrc.nist.gov/CSRC/media/Projects/cryptographic-module-validation-program/documents/fips%2520140-3/Draft%2520FIPS-140-3-CMVP%2520Management%2520Manual%252009-18-2020.pdf', 'https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf', 'http://www.ietf.org/rfc/rfc3394.txt', 'http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf', 'http://csrc.nist.gov/publications/nistpubs/800-38E/nist-sp-800-38E.pdf', 'https://support.apple.com/en-us/HT208389', 'http://csrc.nist.gov/publications/fips/fips198-1/FIPS-198-1_final.pdf', 'https://support.apple.com/en-us/HT208675', 'https://manuals.info.apple.com/MANUALS/1000/MA1902/en_US/apple-platform-security-guide.pdf', 'https://support.apple.com/guide/security/welcome/web', 'https://csrc.nist.gov/Projects/cryptographic-module-validation-program/fips-140-3-ig-announcements', 'https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf', 'http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf', 'https://csrc.nist.gov/publications/detail/sp/800-140/final', 'https://support.apple.com/en-us/HT211006', 'https://csrc.nist.gov/publications/detail/sp/800-140f/final', 'http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf', 'https://doi.org/10.6028/NIST.FIPS.140-3', 'https://developer.apple.com/macos/', 'http://www.ietf.org/rfc/rfc3447.txt', 'http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf', 'https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf', 'http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf', 'https://csrc.nist.gov/publications/detail/sp/800-140c/final', 'https://support.apple.com/en-us/HT202739', 'https://csrc.nist.gov/publications/detail/sp/800-140b/final', 'https://support.apple.com/en-us/HT208390', 'http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf', 'https://csrc.nist.gov/publications/detail/sp/800-140e/final', 'https://support.apple.com/HT201159', 'http://csrc.nist.gov/publications/nistpubs/800-38D/SP-800-38D.pdf']}}}.
    • The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].

    The computed heuristics were updated.

    • The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}.
    • The algorithms property was set to {'_type': 'Set', 'elements': ['AES-CFB8A945', 'ECDSA SigGen (FIPS186-4)A942', 'ECDSA SigVer (FIPS186-4)A942', 'HMAC-SHA2-512/256A944', 'AES-OFBA946', 'SHA2-224A942', 'HMAC DRBGA944', 'AES-CFB128A946', 'AES-CBCA946', 'SHA2-256A947', 'SHA-1A942', 'HMAC-SHA2-224A942', 'AES-CTRA945', 'AES-XTSA946', 'RSA SigVer (FIPS186-4)A942', 'RSA SigGen (FIPS186-4)A942', 'SHA2-512A944', 'HMAC-SHA-1A942', 'ECDSA KeyGen (FIPS186-4)A942', 'HMAC-SHA2-512A944', 'HMAC-SHA2-384A944', 'AES-CCMA943', 'AES-ECBA946', 'HMAC-SHA2-256A947', 'AES-GCMA943', 'Counter DRBGA945', 'SHA2-512/256A944', 'AES-KWA945', 'SHA2-384A944', 'ECDSA KeyVer (FIPS186-4)A942']}.
    • The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].

    The state was updated.

    • The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': 'ce569079b8a72928d57f55bd3fa9888fc0eb55aa6b1320eb3dd22238c3fa2899', 'policy_txt_hash': '48b01723d3230913906e0347eadabeb36b976e443e3c9b379a3206e43332b1db'}.
    • The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
  • 08.12.2022 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4392,
  "dgst": "0f43d4158f76017e",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "HMAC-SHA2-384A944",
        "SHA2-224A942",
        "AES-KWA945",
        "AES-ECBA946",
        "HMAC-SHA2-256A947",
        "HMAC-SHA2-512/256A944",
        "ECDSA KeyVer (FIPS186-4)A942",
        "Counter DRBGA945",
        "ECDSA SigGen (FIPS186-4)A942",
        "HMAC-SHA2-224A942",
        "ECDSA SigVer (FIPS186-4)A942",
        "RSA SigVer (FIPS186-4)A942",
        "AES-CCMA943",
        "SHA-1A942",
        "HMAC-SHA-1A942",
        "SHA2-384A944",
        "AES-CTRA945",
        "SHA2-256A947",
        "ECDSA KeyGen (FIPS186-4)A942",
        "AES-CFB8A945",
        "HMAC-SHA2-512A944",
        "HMAC DRBGA944",
        "SHA2-512A944",
        "SHA2-512/256A944",
        "AES-CFB128A946",
        "RSA SigGen (FIPS186-4)A942",
        "AES-CBCA946",
        "AES-XTSA946",
        "AES-GCMA943",
        "AES-OFBA946"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "11.1"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDSA": {
            "ECDSA": 33
          },
          "ECIES": {
            "ECIES": 3
          },
          "EdDSA": {
            "EdDSA": 2
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 6
        },
        "CCM": {
          "CCM": 3
        },
        "CFB": {
          "CFB": 1
        },
        "CTR": {
          "CTR": 4
        },
        "ECB": {
          "ECB": 5
        },
        "GCM": {
          "GCM": 6
        },
        "OFB": {
          "OFB": 3
        },
        "XTS": {
          "XTS": 3
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKEv2": 2
        },
        "IPsec": {
          "IPsec": 1
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 4
        },
        "MAC": {
          "MAC": 4
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Curve": {
          "Curve25519": 5
        },
        "Edwards": {
          "Ed25519": 11
        },
        "NIST": {
          "Curve P-192": 4,
          "P-192": 13,
          "P-224": 8,
          "P-256": 10,
          "P-384": 8,
          "P-521": 8,
          "curve P-192": 1
        }
      },
      "eval_facility": {
        "atsec": {
          "atsec": 3
        }
      },
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "AES-128": 3,
          "AES-256": 4,
          "HMAC SHA-256": 1,
          "HMAC-256": 2,
          "HMAC-SHA-1": 2,
          "HMAC-SHA-256": 6,
          "HMAC-SHA-512": 2,
          "HMAC-SHA256": 6,
          "PKCS#1": 16,
          "SHA-1": 7,
          "SHA-224": 4,
          "SHA-256": 13,
          "SHA-384": 7,
          "SHA-512": 9
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 2,
          "level 1": 2
        }
      },
      "hash_function": {
        "MD": {
          "MD4": {
            "MD4": 2
          },
          "MD5": {
            "MD5": 2
          }
        },
        "RIPEMD": {
          "RIPEMD": 2
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 7
          },
          "SHA2": {
            "SHA-224": 4,
            "SHA-256": 13,
            "SHA-384": 7,
            "SHA-512": 9
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 10
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-3": 49,
          "FIPS 180-4": 3,
          "FIPS 186-4": 6,
          "FIPS 197": 4,
          "FIPS 198": 3,
          "FIPS PUB 140-3": 2,
          "FIPS140-3": 1,
          "FIPS180-4": 1,
          "FIPS186-4": 3,
          "FIPS197": 1,
          "FIPS198-1": 1
        },
        "ISO": {
          "ISO/IEC 24759": 2
        },
        "NIST": {
          "NIST SP 800-140B": 2,
          "NIST SP 800-140F": 1,
          "NIST SP 800-90B": 1,
          "SP 800-133": 1,
          "SP 800-140": 1,
          "SP 800-140A": 1,
          "SP 800-140B": 1,
          "SP 800-140C": 1,
          "SP 800-140D": 1,
          "SP 800-140E": 1,
          "SP 800-140F": 1,
          "SP 800-140x": 1,
          "SP 800-38A": 3,
          "SP 800-38C": 1,
          "SP 800-38D": 1,
          "SP 800-38E": 1,
          "SP 800-38F": 1,
          "SP 800-67": 1,
          "SP 800-90A": 4
        },
        "PKCS": {
          "PKCS#1": 8
        },
        "RFC": {
          "RFC 4106": 2,
          "RFC 6637": 1,
          "RFC 7296": 1,
          "RFC3394": 1,
          "RFC5649": 1,
          "RFC6637": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 21,
            "AES-": 3,
            "AES-128": 3,
            "AES-256": 4
          },
          "CAST": {
            "CAST": 6,
            "CAST5": 3
          },
          "RC": {
            "RC2": 2,
            "RC4": 2
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "Triple-DES": 5
          },
          "DES": {
            "DES": 2
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 18,
            "HMAC-SHA-256": 3,
            "HMAC-SHA-512": 1
          }
        },
        "miscellaneous": {
          "Blowfish": {
            "Blowfish": 2
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SE": 3
        }
      },
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/CreationDate": "D:20221102214436Z00\u002700\u0027",
      "/Creator": "Pages",
      "/ModDate": "D:20221102214436Z00\u002700\u0027",
      "/Producer": "macOS Version 11.5.2 (Build 20G95) Quartz PDFContext",
      "/Title": "Apple_Inc_Security_Policy_CC11_for_ARM_Kernel_Space_Fiona",
      "pdf_file_size_bytes": 1171169,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://csrc.nist.gov/publications/nistpubs/800-67-Rev1/SP-800-67-Rev1.pdf",
          "https://www.apple.com/legal/intellectual-property/trademark/appletmlist.html",
          "http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
          "http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
          "http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf",
          "https://support.apple.com/en-us/HT211006",
          "http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf",
          "https://support.apple.com/en-us/HT208675",
          "https://support.apple.com/guide/security/welcome/web",
          "http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf",
          "https://developer.apple.com/macos/",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2.pdf",
          "https://support.apple.com/en-us/HT208390",
          "https://csrc.nist.gov/CSRC/media/Projects/cryptographic-module-validation-program/documents/fips%2520140-3/Draft%2520FIPS-140-3-CMVP%2520Management%2520Manual%252009-18-2020.pdf",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf",
          "http://csrc.nist.gov/publications/nistpubs/800-108/sp800-108.pdf",
          "https://csrc.nist.gov/publications/detail/sp/800-140e/final",
          "http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf",
          "https://csrc.nist.gov/Projects/cryptographic-module-validation-program/fips-140-3-standards",
          "https://csrc.nist.gov/publications/detail/sp/800-140/final",
          "https://csrc.nist.gov/publications/detail/sp/800-140b/final",
          "https://manuals.info.apple.com/MANUALS/1000/MA1902/en_US/apple-platform-security-guide.pdf",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf",
          "http://www.ietf.org/rfc/rfc3394.txt",
          "https://support.apple.com/en-us/HT202739",
          "https://csrc.nist.gov/publications/detail/sp/800-140a/final",
          "https://csrc.nist.gov/publications/detail/sp/800-140d/final",
          "http://www.ietf.org/rfc/rfc3447.txt",
          "http://www.ietf.org/rfc/rfc5649.txt",
          "https://csrc.nist.gov/Projects/cryptographic-module-validation-program/fips-140-3-ig-announcements",
          "https://support.apple.com/en-us/HT208389",
          "https://csrc.nist.gov/publications/detail/sp/800-140f/final",
          "http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf",
          "http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf",
          "https://csrc.nist.gov/publications/detail/sp/800-140c/final",
          "https://support.apple.com/HT201159",
          "https://doi.org/10.6028/NIST.FIPS.140-3",
          "http://csrc.nist.gov/publications/fips/fips198-1/FIPS-198-1_final.pdf",
          "http://csrc.nist.gov/publications/nistpubs/800-38D/SP-800-38D.pdf",
          "http://csrc.nist.gov/publications/nistpubs/800-38E/nist-sp-800-38E.pdf",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 33
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "ce569079b8a72928d57f55bd3fa9888fc0eb55aa6b1320eb3dd22238c3fa2899",
    "policy_txt_hash": "48b01723d3230913906e0347eadabeb36b976e443e3c9b379a3206e43332b1db"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in approved mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/December 2022_030123_0646_signed.pdf",
    "date_sunset": "2027-12-06",
    "description": "The Apple corecrypto Kernel Space Module for Apple silicon is a software cryptographic module running on a multi-chip standalone hardware device and provides services intended to protect data in transit and at rest.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical security: N/A",
      "Non-invasive security: N/A",
      "Mitigation of other attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "Apple corecrypto Module v11.1 [Apple silicon, Kernel, Software]",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-3",
    "status": "active",
    "sw_versions": "11.1",
    "tested_conf": [
      "iOS 14.2 running on iPhone 11 Pro with an Apple A Series A13 Bionic with PAA",
      "iOS 14.2 running on iPhone 11 Pro with an Apple A Series A13 Bionic without PAA",
      "iOS 14.2 running on iPhone 12 with an Apple A Series A14 Bionic with PAA",
      "iOS 14.2 running on iPhone 12 with an Apple A Series A14 Bionic without PAA",
      "iOS 14.2 running on iPhone 6S with an Apple A Series A9 with PAA",
      "iOS 14.2 running on iPhone 6S with an Apple A Series A9 without PAA",
      "iOS 14.2 running on iPhone 7 Plus with an Apple A Series A10 Fusion with PAA",
      "iOS 14.2 running on iPhone 7 Plus with an Apple A Series A10 Fusion without PAA",
      "iOS 14.2 running on iPhone X with an Apple A Series A11 Bionic with PAA",
      "iOS 14.2 running on iPhone X with an Apple A Series A11 Bionic without PAA",
      "iOS 14.2 running on iPhone XS Max with an Apple A Series A12 Bionic with PAA",
      "iOS 14.2 running on iPhone XS Max with an Apple A Series A12 Bionic without PAA",
      "iPadOS 14.2 running on iPad (5th generation) with an Apple A Series A9 with PAA",
      "iPadOS 14.2 running on iPad (5th generation) with an Apple A Series A9 without PAA",
      "iPadOS 14.2 running on iPad (7th generation) with an Apple A Series A10 Fusion with PAA",
      "iPadOS 14.2 running on iPad (7th generation) with an Apple A Series A10 Fusion without PAA",
      "iPadOS 14.2 running on iPad Air (4th generation) with an Apple A Series A14 Bionic with PAA",
      "iPadOS 14.2 running on iPad Air (4th generation) with an Apple A Series A14 Bionic without PAA",
      "iPadOS 14.2 running on iPad mini (5th generation) with an Apple A Series A12 Bionic with PAA",
      "iPadOS 14.2 running on iPad mini (5th generation) with an Apple A Series A12 Bionic without PAA",
      "iPadOS 14.2 running on iPad Pro 10.5 inch with an Apple A Series A10X Fusion with PAA",
      "iPadOS 14.2 running on iPad Pro 10.5 inch with an Apple A Series A10X Fusion without PAA",
      "iPadOS 14.2 running on iPad Pro 11in (2nd generation) with an Apple A Series A12Z Bionic with PAA",
      "iPadOS 14.2 running on iPad Pro 11in (2nd generation) with an Apple A Series A12Z Bionic without PAA",
      "iPadOS 14.2 running on iPad Pro 11-inch (1st generation) with an Apple A Series A12X Bionic with PAA",
      "iPadOS 14.2 running on iPad Pro 11-inch (1st generation) with an Apple A Series A12X Bionic without PAA",
      "iPadOS 14.2 running on iPad Pro 9.7-inch with an Apple A Series A9X with PAA",
      "iPadOS 14.2 running on iPad Pro 9.7-inch with an Apple A Series A9X without PAA",
      "macOS Big Sur 11.0.1 running on MacBook Air with an Apple M Series M1 with PAA",
      "macOS Big Sur 11.0.1 running on MacBook Air with an Apple M Series M1 without PAA",
      "tvOS 14.2 running on Apple TV 4K with an Apple A Series A10X Fusion with PAA",
      "tvOS 14.2 running on Apple TV 4K with an Apple A Series A10X Fusion without PAA",
      "TxFW 11.0.1 running on Apple Security Chip T2 with an Apple T Series T2 with PAA",
      "TxFW 11.0.1 running on Apple Security Chip T2 with an Apple T Series T2 without PAA",
      "watchOS 7.1 running on Apple Watch Series S3 with an Apple S Series S3 with PAA",
      "watchOS 7.1 running on Apple Watch Series S3 with an Apple S Series S3 without PAA",
      "watchOS 7.1 running on Apple Watch Series S4 with an Apple S Series S4 with PAA",
      "watchOS 7.1 running on Apple Watch Series S4 with an Apple S Series S4 without PAA",
      "watchOS 7.1 running on Apple Watch Series S5 with an Apple S Series S5 with PAA",
      "watchOS 7.1 running on Apple Watch Series S5 with an Apple S Series S5 without PAA",
      "watchOS 7.1 running on Apple Watch Series S6 with an Apple S Series S6 with PAA",
      "watchOS 7.1 running on Apple Watch Series S6 with an Apple S Series S6 without PAA"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-12-07",
        "lab": "ATSEC INFORMATION SECURITY CORP",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Apple Inc.",
    "vendor_url": "http://www.apple.com"
  }
}