This page was not yet optimized for use on mobile
devices.
SonicWall v11.4 EX6000, EX7000, EX9000, SMA 6200, SMA 7200
Certificate #2885
Webpage information
Security policy
Symmetric Algorithms
AES, RC4, HMACAsymmetric Algorithms
RSA 2048, ECDSA, ECCHash functions
SHA256, MD5Schemes
Key Exchange, Key AgreementProtocols
SSH, TLS, IKE, IPsec, VPNRandomness
DRBG, RNGElliptic Curves
secp160k1Block cipher modes
ECB, CBC, CTR, GCMTLS cipher suites
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA2561, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA3841Standards
FIPS 197, PKCS #12, RFC 2865, RFC 4254, RFC 4303, RFC 4511, RFC 5246, RFC 6379, X.509File metadata
| Title | Microsoft Word - 1905-02_SP-4k SMA_Series_v11_4_Security_Policy V1.4.docx |
|---|---|
| Author | lgarcia |
| Creation date | D:20170607132613-07'00' |
| Modification date | D:20170607132613-07'00' |
| Pages | 20 |
| Creator | PScript5.dll Version 5.2.2 |
| Producer | Acrobat Distiller 11.0 (Windows) |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2885,
"dgst": "10817df0e1576683",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"RSA#2076",
"HMAC#2639",
"AES#4044",
"SHS#3335",
"CVL#870",
"CVL#869",
"Triple-DES#2211",
"SHS#3334",
"DRBG#1211",
"ECDSA#907",
"RSA#2077",
"Triple-DES#2212",
"HMAC#2641",
"ECDSA#906",
"HMAC#2640",
"CVL#872",
"AES#4045",
"CVL#871",
"SHS#3333",
"AES#4046",
"Triple-DES#2213"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:sonicwall:sma_7200:-:*:*:*:*:*:*:*",
"cpe:2.3:h:sonicwall:sma_6200:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"11.4.0",
"11.4"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDSA": {
"ECDSA": 7
}
},
"RSA": {
"RSA 2048": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 7
},
"CTR": {
"CTR": 1
},
"ECB": {
"ECB": 6
},
"GCM": {
"GCM": 15
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 2
},
"IPsec": {
"IPsec": 6
},
"SSH": {
"SSH": 9
},
"TLS": {
"TLS": {
"TLS": 20
}
},
"VPN": {
"VPN": 7
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
},
"KEX": {
"Key Exchange": 3
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"secp160k1": 1
}
},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"# 2211": 1,
"# 2212": 1,
"# 2213": 1,
"#1": 6,
"#12": 3,
"#1211": 2,
"#2": 6,
"#2076": 1,
"#2077": 1,
"#2639": 1,
"#2640": 1,
"#2641": 1,
"#3": 4,
"#3333": 1,
"#3334": 1,
"#3335": 1,
"#4": 2,
"#4044": 1,
"#4045": 1,
"#4046": 1,
"#5": 2,
"#6": 2,
"#7": 2,
"#906": 1,
"#907": 1
}
},
"fips_certlike": {
"Certlike": {
"AES (#4044": 1,
"AES (#4045": 1,
"AES (#4046": 1,
"AES [197": 3,
"Cert. #1211 DRBG": 1,
"DRBG (#1211": 1,
"DRBG4": 1,
"HMAC (#2639": 1,
"HMAC (#2640": 1,
"HMAC (#2641": 1,
"HMAC [198": 3,
"PKCS #12": 4,
"RSA 2048": 1,
"SHA256": 2,
"SHS (#3333": 1,
"SHS (#3334": 1,
"SHS (#3335": 1,
"SHS [180": 3
}
},
"fips_security_level": {},
"hash_function": {
"MD": {
"MD5": {
"MD5": 1
}
},
"SHA": {
"SHA2": {
"SHA256": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 7
},
"RNG": {
"RNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 197": 1
},
"PKCS": {
"PKCS #12": 2
},
"RFC": {
"RFC 2865": 2,
"RFC 4254": 1,
"RFC 4303": 2,
"RFC 4511": 2,
"RFC 5246": 2,
"RFC 6379": 2
},
"X509": {
"X.509": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 9
},
"RC": {
"RC4": 2
}
},
"constructions": {
"MAC": {
"HMAC": 14
}
}
},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 1,
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA2561": 1,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 1,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA3841": 1,
"TLS_RSA_WITH_3DES_EDE_CBC_SHA": 1,
"TLS_RSA_WITH_AES_128_CBC_SHA": 2,
"TLS_RSA_WITH_AES_128_CBC_SHA256": 1,
"TLS_RSA_WITH_AES_256_CBC_SHA": 2,
"TLS_RSA_WITH_AES_256_CBC_SHA256": 1
}
},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "lgarcia",
"/CreationDate": "D:20170607132613-07\u002700\u0027",
"/Creator": "PScript5.dll Version 5.2.2",
"/ModDate": "D:20170607132613-07\u002700\u0027",
"/Producer": "Acrobat Distiller 11.0 (Windows)",
"/Title": "Microsoft Word - 1905-02_SP-4k SMA_Series_v11_4_Security_Policy V1.4.docx",
"pdf_file_size_bytes": 968562,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 20
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "733427209fdb9eb732223578dab81a71a8a82850800a03eafd10c88d6c9ffe1e",
"policy_txt_hash": "ed910f6e6b4cac65c0e1e9dcff6bef5950a58122dfa3a46c7e673f0541dff835"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When configured as specified in Section 8 and tamper-evident seals installed as indicated in the Security Policy and operated in FIPS mode",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertApr2017.pdf",
"date_sunset": null,
"description": "SonicWall Software SRA EX6000, SMA 6200, SRA EX7000, SMA 7200 and SRA EX9000 are part of the SonicWall Security Solution Enterprise product family. They provide hardware appliance based VPN Virtual Private Network mobile access solutions to a wide variety of end user devices including Microsoft Windows, Apple OSX, Linux, Apple iOS, Google Android and Google Chromebook among others.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Design Assurance: Level 3",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "11.4.0-512",
"historical_reason": "Moved to historical list due to sunsetting",
"hw_versions": "P/Ns 101-500210-78 Rev A, 101-500188-79 Rev A, 101-500352-62 Rev A, 101-500399-61 Rev B, 101-500398-61 Rev B",
"level": 2,
"mentioned_certs": {},
"module_name": "SonicWall v11.4 EX6000, EX7000, EX9000, SMA 6200, SMA 7200",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2017-04-19",
"lab": "UL Verification Services, Inc.",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2017-06-12",
"lab": "UL Verification Services, Inc.",
"validation_type": "Update"
}
],
"vendor": "SonicWall, Inc.",
"vendor_url": "http://www.sonicwall.com"
}
}