{"_type": "sec_certs.sample.fips.FIPSCertificate", "dgst": "197a2971491b3b3a", "cert_id": 5067, "web_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.WebData", "module_name": "Cisco Adaptive Security Appliance Cryptographic Module (FPR 4200 Series)", "validation_history": [{"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2025-09-22", "validation_type": "Initial", "lab": "Gossamer Security Solutions"}], "vendor_url": "http://www.cisco.com", "vendor": "Cisco Systems, Inc.", "certificate_pdf_url": null, "module_type": "Hardware", "standard": "FIPS 140-3", "status": "active", "level": 2, "caveat": "When installed, initialized and configured as specified in Section Life-Cycle Assurance of the Security Policy. The tamper evident seals installed as indicated in the Security Policy", "exceptions": ["Roles, services, and authentication: Level 3", "Operational environment: N/A", "Non-invasive security: N/A", "Mitigation of other attacks: N/A"], "embodiment": "Multi-Chip Stand Alone", "description": "Next generation security services on Cisco Firepower 4200 Series, capable of running multiple (firewall (NGFW), traffic management) security services simultaneously.", "tested_conf": null, "hw_versions": null, "fw_versions": null, "sw_versions": null, "mentioned_certs": {}, "historical_reason": null, "date_sunset": "2030-09-21", "revoked_reason": null, "revoked_link": null}, "pdf_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData", "keywords": {"fips_cert_id": {"Cert": {"#1": 3, "#2": 3, "#3": 3, "#7": 1}}, "fips_security_level": {"Level": {"Level 2": 2, "Level 1": 1}}, "fips_certlike": {"Certlike": {"HMAC-SHA-1": 16, "SHA2-224": 3, "SHA2-256": 13, "SHA2- 384": 2, "SHA2-512": 14, "SHA-1": 12, "SHA2-384": 5, "SHA2- 512": 1, "SHA3- 256": 1, "SHA2": 1, "SHA2- 256": 2, "RSA 2048": 3, "- PKCS 1": 2, "AES-128": 5, "AES-192": 2, "AES-256": 2, "AES-128/192/256": 1, "DRBG 384": 1, "PKCS 1": 2}}, "vendor": {"Cisco": {"Cisco Systems, Inc": 79, "Cisco": 7}}, "eval_facility": {}, "symmetric_crypto": {"AES_competition": {"AES": {"AES-128": 5, "AES-192": 2, "AES-256": 2, "AES": 27, "AES-": 6}, "CAST": {"CAST": 76}}, "constructions": {"MAC": {"HMAC": 25}}}, "asymmetric_crypto": {"RSA": {"RSA 2048": 3}, "ECC": {"ECDH": {"ECDH": 103, "ECDHE": 1}, "ECDSA": {"ECDSA": 93}, "ECC": {"ECC": 3}}, "FF": {"DH": {"Diffie-Hellman": 1, "DH": 100}, "DSA": {"DSA": 3}}}, "pq_crypto": {}, "hash_function": {"SHA": {"SHA1": {"SHA-1": 12}, "SHA2": {"SHA2": 1}}}, "crypto_scheme": {"MAC": {"MAC": 21}}, "crypto_protocol": {"SSH": {"SSHv2": 127, "SSH": 136}, "TLS": {"TLS": {"TLS v1.2": 9, "TLSv1.2": 119, "TLS": 151}}, "IKE": {"IKEv2": 92, "IKE": 3}, "IPsec": {"IPsec": 2}, "VPN": {"VPN": 6}}, "randomness": {"PRNG": {"DRBG": 90}, "RNG": {"RBG": 2}}, "cipher_mode": {"CTR": {"CTR": 1}, "GCM": {"GCM": 24}}, "ecc_curve": {"NIST": {"P-256": 34, "P-384": 8, "P-521": 12}}, "crypto_engine": {}, "tls_cipher_suite": {}, "crypto_library": {}, "vulnerability": {}, "side_channel_analysis": {}, "device_model": {}, "tee_name": {"AMD": {"PSP": 18}, "IBM": {"SSC": 22}}, "os_name": {}, "cplc_data": {}, "ic_data_group": {}, "standard_id": {"FIPS": {"FIPS 140-3": 6, "FIPS186-4": 34, "FIPS 186-4": 8, "FIPS 198-1": 9, "FIPS 180-4": 9}, "NIST": {"SP 800-140": 1, "SP 800-38A": 2, "SP 800-38D": 2, "SP 800-90A": 2, "SP 800-56A": 3, "SP 800-135": 4, "SP 800-52": 1}, "PKCS": {"PKCS 1": 2}, "RFC": {"RFC7627": 6, "RFC 5288": 1, "RFC 7296": 1, "RFC 4419": 2, "RFC 7919": 2, "RFC 3526": 2}, "ISO": {"ISO/IEC 19790": 2}}, "javacard_version": {}, "javacard_api_const": {}, "javacard_packages": {}, "certification_process": {"OutOfScope": {"out of scope": 1, "fails. Any firmware loaded into the module that is not shown on the module certificate, is out of scope of this validation and requires a separate FIPS 140-3 validation. 4.6 Bypass Actions and Status The": 1}}}, "policy_metadata": {"pdf_file_size_bytes": 1294490, "pdf_is_encrypted": false, "pdf_number_of_pages": 75, "/Author": "Hawes, David J. (Fed)", "/ClassificationContentMarkingFooterFontProps": "#000000,8,Calibri", "/ClassificationContentMarkingFooterShapeIds": "76b99bd2,3faae116,5e41b8de", "/ClassificationContentMarkingFooterText": "Cisco Confidential", "/Comments": "", "/Company": "", "/CreationDate": "D:20250922090837-04'00'", "/Creator": "Acrobat PDFMaker 25 for Word", "/Keywords": "", "/MSIP_Label_c8f49a32-fde3-48a5-9266-b5b0972a22dc_ActionId": "8e222a41-a2fa-4afa-aea3-427b99154667", "/MSIP_Label_c8f49a32-fde3-48a5-9266-b5b0972a22dc_ContentBits": "2", "/MSIP_Label_c8f49a32-fde3-48a5-9266-b5b0972a22dc_Enabled": "true", "/MSIP_Label_c8f49a32-fde3-48a5-9266-b5b0972a22dc_Method": "Standard", "/MSIP_Label_c8f49a32-fde3-48a5-9266-b5b0972a22dc_Name": "Cisco Confidential", "/MSIP_Label_c8f49a32-fde3-48a5-9266-b5b0972a22dc_SetDate": "2024-05-08T11:43:39Z", "/MSIP_Label_c8f49a32-fde3-48a5-9266-b5b0972a22dc_SiteId": "5ae1af62-9505-4097-a69a-c1553ef7840e", "/ModDate": "D:20250922091052-04'00'", "/Producer": "Adobe PDF Library 25.1.51", "/SourceModified": "", "/Subject": "", "/Title": "", "pdf_hyperlinks": {"_type": "Set", "elements": ["https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/threat-defense/use-case/multi-instance-sec-fw/multi-instance-sec-fw.html", "https://www.cisco.com/c/en/us/products/collateral/security/firewalls/secure-firewall-4200-ds.html", "https://www.cisco.com/c/en/us/td/docs/security/asa/asa923/asdm723/general/asdm-723-general-config.html", "https://www.cisco.com/c/en/us/td/docs/security/asa/special/cluster-sec-fw/secure-firewall-cluster.html"]}}}, "heuristics": {"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics", "algorithms": {"_type": "Set", "elements": []}, "extracted_versions": {"_type": "Set", "elements": ["4200"]}, "cpe_matches": null, "verified_cpe_matches": null, "related_cves": null, "policy_prunned_references": {"_type": "Set", "elements": []}, "module_prunned_references": {"_type": "Set", "elements": []}, "policy_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "module_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "direct_transitive_cves": null, "indirect_transitive_cves": null}, "state": {"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState", "module_download_ok": true, "policy_download_ok": true, "policy_convert_ok": true, "module_extract_ok": true, "policy_extract_ok": true, "policy_pdf_hash": "c469f57e1b34c3a59699c90748b165299201fe9b8b66ed52251b21e804407c88", "policy_txt_hash": "941d9f01bbfe9695fdca404ce7a05a83cd496235b48e50860d68cc32ab4a6114", "policy_json_hash": null}}