This page was not yet optimized for use on mobile devices.

CryptoComply for Java 140-3

Certificate #4912

Webpage information

Status	active
Validation dates	05.12.2024 , 23.05.2025
Sunset date	28-07-2029
Standard	FIPS 140-3
Security level	1
Type	Software
Embodiment	Multi-Chip Stand Alone
Caveat	When operated in approved mode. No assurance of the minimum strength of generated SSPs (e.g., keys).
Exceptions	Physical security: N/A Non-invasive security: N/A
Description	SafeLogic’s CryptoComply for Java 140-3 is designed to provide FIPS 140-3 validated cryptographic functionality and is available for licensing
Tested configurations	OpenJDK Runtime Environment v11 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA OpenJDK Runtime Environment v17 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA OpenJDK Runtime Environment v21 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA OpenJDK Runtime Environment v8 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA
Vendor	SafeLogic Inc.
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, Twofish, Serpent, CAST5, CAST, RC4, RC2, DES, Triple-DES, TDEA, ChaCha20, Poly1305, IDEA, Blowfish, Camellia, SEED, HMAC, HMAC-SHA-256, KMAC, CMAC, CBC-MAC

Asymmetric Algorithms

RSA-OAEP, ECDSA, EdDSA, ECC, Diffie-Hellman, DH, DSA

Post-quantum Algorithms

LMS

Hash functions

SHA-1, SHA-256, SHA-224, SHA-384, SHA-512, SHA-2, SHA3-256, SHA3-384, SHA-3, SHA3-224, SHA3-512, SHAKE128, SHAKE256, MD5, RIPEMD128, RIPEMD160, RIPEMD320, RIPEMD256, RIPEMD, PBKDF, PBKDF2

Schemes

MAC, Key Agreement, AEAD

Protocols

SSH, SSHv2, TLS, TLS 1.2, TLS v1.2, TLS 1.0, TLS 1.1, IKEv2

Randomness

PRNG, DRBG, RNG, RBG

Libraries

OpenSSL

Elliptic Curves

P-224, P-256, P-521, P-192, K-233, K-283, K-409, B-233, B-283, B-409, B-571, K-163, Ed25519, Ed448

Block cipher modes

ECB, CBC, CTR, CFB, OFB, GCM, CCM

JavaCard API constants

X25519, X448

Trusted Execution Environments

SSC, SE

Vendor

Microsoft

Security level

Level 1

Side-channel analysis

timing attacks, timing attack

Standards

FIPS 140-3, FIPS 140, FIPS 197, FIPS 186-4, FIPS 186-5, FIPS 198-1, FIPS 186-2, FIPS 202, FIPS 180-4, FIPS PUB 140-3, SP 800-38G, SP 800-38A, SP 800-38C, SP 800-38B, SP 800-38D, SP 800-38F, SP 800-108, SP 800-132, SP 800-185, SP 800-90B, SP 800-90A, NIST SP 800-90C, SP 800-89, SP 800-131A, PKCS #1, PKCS1, PKCS 1, PKCS#12, PKCS#5, PKCS#1, RFC 8708, RFC 7914, RFC 5246

File metadata

Title	Security Policy
Subject	CryptoComply for Java 140-3
Author	SafeLogic Inc.
Creation date	D:20250116194240-08'00'
Modification date	D:20250116194240-08'00'
Pages	74
Creator	Microsoft® Word for Microsoft 365
Producer	Microsoft® Word for Microsoft 365

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state was updated.

The following values were inserted: {'policy_json_hash': None}.

The following properties were deleted: ['policy_convert_garbage'].
08.09.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated.
02.06.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated, with the [[1, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2025-05-23', 'validation_type': 'Update', 'lab': 'ACUMEN SECURITY, LLC'}]] values inserted.

The tested_conf property was set to ['OpenJDK Runtime Environment v11 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA', 'OpenJDK Runtime Environment v17 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA', 'OpenJDK Runtime Environment v21 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA', 'OpenJDK Runtime Environment v8 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA'].

The sw_versions property was set to 4.0.0.

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_cert_id': {'__update__': {'Cert': {'__update__': {'#1': 5}}}}, 'fips_certlike': {'__update__': {'Certlike': {'__insert__': {'HMAC SHA- 224': 1, 'HMAC-SHA- 384': 6, 'HMAC-SHA- 512/224': 6, 'HMAC- SHA-512/256': 3, 'HMAC-SHA- 224': 4, 'HMAC 10': 2, 'SHA3- 512': 3, 'SHA- 224': 2, 'SHA- 512': 1, 'SHA2- 224': 2, 'SHA2- 512': 1, 'SHA3- 256': 1, 'PKCS 1': 2, 'DRBG20': 19, 'DRBG 21': 1}, '__update__': {'HMAC-SHA-256': 8, 'HMAC-SHA- 512': 6, 'HMAC-SHA- 256': 6, 'HMAC-SHA- 1': 8, 'SHA-256': 4, 'SHA-1': 10, 'SHA-224': 7, 'SHA2-512': 5, 'SHA-512': 5, 'SHA3-224': 1, 'SHA3-256': 3, 'SHA3-512': 1, 'SHA- 256': 6, 'SHA3- 224': 3, 'SHA3-384': 4, 'SHA2-256': 3, 'SHA2- 256': 2, 'SHA2-384': 3, 'PKCS #1': 10, 'PKCS1': 10}, '__delete__': ['HMAC-SHA-1', 'HMAC SHA-224', 'HMAC-SHA-384', 'HMAC-SHA-512/224', 'HMAC-SHA-512/256', 'HMAC-SHA-224', 'HMAC- SHA-512', 'HMAC- SHA-224', 'SHA3- 384', 'SHA2- 384', 'SHA2-224', 'AES192', 'DRBG19', 'DRBG 20']}}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__delete__': ['AES192']}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC-SHA-256': 4}, '__delete__': ['HMAC-SHA-384', 'HMAC-SHA-224']}}}}}, 'asymmetric_crypto': {'__update__': {'ECC': {'__update__': {'ECDSA': {'__update__': {'ECDSA': 17}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 10}}, 'SHA2': {'__update__': {'SHA-256': 4, 'SHA-224': 7, 'SHA-512': 5}}, 'SHA3': {'__update__': {'SHA3-224': 1, 'SHA3-256': 3, 'SHA3-512': 1, 'SHA3-384': 4}}}}}}, 'ecc_curve': {'__update__': {'NIST': {'__insert__': {'K-233': 2}, '__update__': {'P-192': 2, 'K-163': 1, 'B-233': 3, 'B-571': 2}, '__delete__': ['P-384', 'K-571', 'B-163']}}}, 'crypto_library': {'__delete__': ['BouncyCastle']}, 'standard_id': {'__update__': {'FIPS': {'__insert__': {'FIPS 186-5': 8}, '__update__': {'FIPS 186-4': 6}}, 'PKCS': {'__insert__': {'PKCS 1': 1}, '__update__': {'PKCS #1': 5, 'PKCS1': 5}}}}, 'javacard_packages': {'__insert__': {'com': {'com.safelogic.cryptocomply.util': 1, 'com.safelogic.cryptocomply.fips': 2, 'com.safelogic.cryptocomply.jcajce.provider': 1, 'com.safelogic.cryptocomply.entropy.factors': 1, 'com.safelogic.cryptocomply.entropy': 1, 'com.safelogic.cryptocomply.crypto': 2}}, '__delete__': ['org']}} data.

The policy_metadata property was updated, with the {'pdf_file_size_bytes': 1076951, 'pdf_number_of_pages': 74, '/CreationDate': "D:20250116194240-08'00'", '/ModDate': "D:20250116194240-08'00'"} data.

The computed heuristics were updated.

The algorithms property was set to {'_type': 'Set', 'elements': ['cSHAKE-128A6047', 'AES-CBC-CS2A6047', 'RSA SigVer (FIPS186-2)A6047', 'KAS-FFC Sp800-56Ar3A6047', 'AES-CFB128A6047', 'AES-CFB8A6047', 'SHA2-512/256A6047', 'HMAC-SHA2-224A6047', 'KAS-IFCA6047', 'AES-CCMA6047', 'ParallelHash-128A6047', 'AES-ECBA6047', 'AES-CBC-CS3A6047', 'Hash DRBGA6047', 'ECDSA KeyGen (FIPS186-4)A6047', 'SHA3-384A6047', 'AES-OFBA6047', 'PBKDFA6047', 'TupleHash-256A6047', 'SHA3-256A6047', 'KDA TwoStep SP800-56Cr2A6047', 'SHA-1A6047', 'SHA2-512/224A6047', 'AES-CBCA6047', 'HMAC-SHA2-384A6047', 'SHA2-224A6047', 'ParallelHash-256A6047', 'KDF SNMPA6047', 'cSHAKE-256A6047', 'HMAC-SHA3-256A6047', 'SHA3-512A6047', 'RSA Decryption PrimitiveA6047', 'RSA SigGen (FIPS186-4)A6047', 'Safe Primes Key GenerationA6047', 'Safe Primes Key VerificationA6047', 'KDF ANS 9.63A6047', 'HMAC-SHA2-512/256A6047', 'HMAC-SHA3-224A6047', 'AES-GCMA6047', 'KDF SRTPA6047', 'KMAC-128A6047', 'SHA3-224A6047', 'ECDSA KeyVer (FIPS186-4)A6047', 'ECDSA SigGen (FIPS186-4)A6047', 'DSA SigGen (FIPS186-4)A6047', 'SHA2-512A6047', 'AES-KWPA6047', 'SHA2-256A6047', 'AES-FF1A6047', 'HMAC DRBGA6047', 'KMAC-256A6047', 'DSA PQGGen (FIPS186-4)A6047', 'TupleHash-128A6047', 'AES-CTRA6047', 'SHAKE-256A6047', 'HMAC-SHA3-384A6047', 'AES-CMACA6047', 'ECDSA SigVer (FIPS186-4)A6047', 'HMAC-SHA2-512A6047', 'RSA SigVer (FIPS186-4)A6047', 'DSA KeyGen (FIPS186-4)A6047', 'KDF TLSA6047', 'AES-KWA6047', 'DSA SigVer (FIPS186-4)A6047', 'HMAC-SHA2-256A6047', 'RSA KeyGen (FIPS186-4)A6047', 'HMAC-SHA3-512A6047', 'HMAC-SHA-1A6047', 'SHA2-384A6047', 'KDF SP800-108A6047', 'RSA Signature PrimitiveA6047', 'AES-CBC-CS1A6047', 'KDA OneStep SP800-56Cr2A6047', 'KDA HKDF SP800-56Cr2A6047', 'HMAC-SHA2-512/224A6047', 'Counter DRBGA6047', 'KTS-IFCA6047', 'KDF IKEv2A6047', 'DSA PQGVer (FIPS186-4)A6047', 'KDF SSHA6047', 'AES-GMACA6047', 'KAS-ECC Sp800-56Ar3A6047', 'SHAKE-128A6047']}.

The state was updated.

The policy_pdf_hash property was set to 0e143dc8fc1fd4834c30858ec95bd93e6fe9b589505686dcb914e454a69ef8bb.

The policy_txt_hash property was set to b6069f49f8c92c1e492a1248014fd8901e244d855557b4c7e006414e11791659.
04.04.2025

The certificate data changed.
Certificate changed

The PDF extraction data was updated.

The keywords property was updated, with the {'crypto_protocol': {'__update__': {'SSH': {'__insert__': {'SSHv2': 1}}}}} data.
24.02.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The exceptions property was updated.
09.12.2024

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4912,
  "dgst": "1eab3dfd35a341f4",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "SHA2-256A6047",
        "AES-CCMA6047",
        "HMAC-SHA-1A6047",
        "Hash DRBGA6047",
        "AES-KWPA6047",
        "Safe Primes Key VerificationA6047",
        "HMAC-SHA2-512/256A6047",
        "Counter DRBGA6047",
        "KDF TLSA6047",
        "Safe Primes Key GenerationA6047",
        "cSHAKE-256A6047",
        "AES-CBC-CS3A6047",
        "AES-CBCA6047",
        "HMAC-SHA2-384A6047",
        "KDF SRTPA6047",
        "HMAC-SHA3-384A6047",
        "SHAKE-128A6047",
        "AES-ECBA6047",
        "SHA2-512A6047",
        "KDA TwoStep SP800-56Cr2A6047",
        "ParallelHash-256A6047",
        "RSA Signature PrimitiveA6047",
        "cSHAKE-128A6047",
        "SHA2-512/224A6047",
        "SHA3-512A6047",
        "AES-FF1A6047",
        "KMAC-128A6047",
        "KDA OneStep SP800-56Cr2A6047",
        "RSA SigVer (FIPS186-2)A6047",
        "SHAKE-256A6047",
        "ECDSA SigVer (FIPS186-4)A6047",
        "SHA2-512/256A6047",
        "KDF SP800-108A6047",
        "AES-GMACA6047",
        "KDA HKDF SP800-56Cr2A6047",
        "AES-GCMA6047",
        "ECDSA KeyVer (FIPS186-4)A6047",
        "KAS-ECC Sp800-56Ar3A6047",
        "HMAC-SHA2-224A6047",
        "KDF ANS 9.63A6047",
        "AES-CBC-CS1A6047",
        "ParallelHash-128A6047",
        "HMAC-SHA3-256A6047",
        "SHA2-384A6047",
        "SHA-1A6047",
        "RSA SigVer (FIPS186-4)A6047",
        "SHA3-384A6047",
        "DSA PQGGen (FIPS186-4)A6047",
        "AES-CFB8A6047",
        "ECDSA KeyGen (FIPS186-4)A6047",
        "DSA SigVer (FIPS186-4)A6047",
        "DSA PQGVer (FIPS186-4)A6047",
        "HMAC-SHA2-512A6047",
        "AES-CFB128A6047",
        "KAS-IFCA6047",
        "KMAC-256A6047",
        "SHA3-256A6047",
        "DSA SigGen (FIPS186-4)A6047",
        "KAS-FFC Sp800-56Ar3A6047",
        "ECDSA SigGen (FIPS186-4)A6047",
        "KDF SSHA6047",
        "SHA3-224A6047",
        "HMAC-SHA2-256A6047",
        "KDF SNMPA6047",
        "AES-CMACA6047",
        "SHA2-224A6047",
        "RSA KeyGen (FIPS186-4)A6047",
        "AES-CBC-CS2A6047",
        "PBKDFA6047",
        "AES-OFBA6047",
        "HMAC-SHA3-224A6047",
        "KTS-IFCA6047",
        "HMAC-SHA2-512/224A6047",
        "DSA KeyGen (FIPS186-4)A6047",
        "HMAC-SHA3-512A6047",
        "AES-CTRA6047",
        "RSA Decryption PrimitiveA6047",
        "RSA SigGen (FIPS186-4)A6047",
        "KDF IKEv2A6047",
        "AES-KWA6047",
        "TupleHash-256A6047",
        "TupleHash-128A6047",
        "HMAC DRBGA6047"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "140",
        "3"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDSA": {
            "ECDSA": 17
          },
          "EdDSA": {
            "EdDSA": 2
          }
        },
        "FF": {
          "DH": {
            "DH": 15,
            "Diffie-Hellman": 6
          },
          "DSA": {
            "DSA": 27
          }
        },
        "RSA": {
          "RSA-OAEP": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 8
        },
        "CCM": {
          "CCM": 9
        },
        "CFB": {
          "CFB": 1
        },
        "CTR": {
          "CTR": 11
        },
        "ECB": {
          "ECB": 8
        },
        "GCM": {
          "GCM": 24
        },
        "OFB": {
          "OFB": 6
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 2
        }
      },
      "crypto_protocol": {
        "IKE": {
          "IKEv2": 11
        },
        "SSH": {
          "SSH": 10,
          "SSHv2": 1
        },
        "TLS": {
          "TLS": {
            "TLS": 22,
            "TLS 1.0": 2,
            "TLS 1.1": 2,
            "TLS 1.2": 6,
            "TLS v1.2": 2
          }
        }
      },
      "crypto_scheme": {
        "AEAD": {
          "AEAD": 1
        },
        "KA": {
          "Key Agreement": 8
        },
        "MAC": {
          "MAC": 8
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Edwards": {
          "Ed25519": 2,
          "Ed448": 2
        },
        "NIST": {
          "B-233": 3,
          "B-283": 2,
          "B-409": 2,
          "B-571": 2,
          "K-163": 1,
          "K-233": 2,
          "K-283": 2,
          "K-409": 2,
          "P-192": 2,
          "P-224": 4,
          "P-256": 10,
          "P-521": 4
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 5
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES (128": 1,
          "AES 128": 1,
          "AES 192": 1,
          "AES 256": 1,
          "AES CTR 256": 1,
          "AES GCM Decrypt KAT (128": 1,
          "AES GCM Encrypt KAT (128": 1,
          "AES2": 1,
          "DRBG 21": 1,
          "DRBG20": 19,
          "DSA3": 1,
          "HMAC 10": 2,
          "HMAC SHA- 224": 1,
          "HMAC- SHA-2": 1,
          "HMAC- SHA-256": 1,
          "HMAC- SHA-512/256": 3,
          "HMAC-SHA- 1": 8,
          "HMAC-SHA- 224": 4,
          "HMAC-SHA- 256": 6,
          "HMAC-SHA- 3": 2,
          "HMAC-SHA- 384": 6,
          "HMAC-SHA- 512": 6,
          "HMAC-SHA- 512/224": 6,
          "HMAC-SHA-256": 8,
          "PKCS #1": 10,
          "PKCS 1": 2,
          "PKCS#1": 6,
          "PKCS#12": 6,
          "PKCS#5": 6,
          "PKCS1": 10,
          "SHA- 1": 1,
          "SHA- 224": 2,
          "SHA- 256": 6,
          "SHA- 3": 1,
          "SHA- 384": 1,
          "SHA- 512": 1,
          "SHA-1": 10,
          "SHA-2": 1,
          "SHA-224": 7,
          "SHA-256": 4,
          "SHA-3": 7,
          "SHA-384": 7,
          "SHA-512": 5,
          "SHA2- 224": 2,
          "SHA2- 256": 2,
          "SHA2- 512": 1,
          "SHA2-256": 3,
          "SHA2-384": 3,
          "SHA2-512": 5,
          "SHA3- 224": 3,
          "SHA3- 256": 1,
          "SHA3- 512": 3,
          "SHA3-224": 1,
          "SHA3-256": 3,
          "SHA3-384": 4,
          "SHA3-512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 4
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 6
          }
        },
        "PBKDF": {
          "PBKDF": 21,
          "PBKDF2": 1
        },
        "RIPEMD": {
          "RIPEMD": 1,
          "RIPEMD128": 2,
          "RIPEMD160": 2,
          "RIPEMD256": 1,
          "RIPEMD320": 2
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 10
          },
          "SHA2": {
            "SHA-2": 1,
            "SHA-224": 7,
            "SHA-256": 4,
            "SHA-384": 7,
            "SHA-512": 5
          },
          "SHA3": {
            "SHA-3": 7,
            "SHA3-224": 1,
            "SHA3-256": 3,
            "SHA3-384": 4,
            "SHA3-512": 1
          }
        },
        "SHAKE": {
          "SHAKE128": 1,
          "SHAKE256": 2
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {
        "curves": {
          "X25519": 2,
          "X448": 2
        }
      },
      "javacard_packages": {
        "com": {
          "com.safelogic.cryptocomply.crypto": 2,
          "com.safelogic.cryptocomply.entropy": 1,
          "com.safelogic.cryptocomply.entropy.factors": 1,
          "com.safelogic.cryptocomply.fips": 2,
          "com.safelogic.cryptocomply.jcajce.provider": 1,
          "com.safelogic.cryptocomply.util": 1
        },
        "java": {
          "java.runtime.name": 1,
          "java.security": 2
        }
      },
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {
        "LMS": {
          "LMS": 1
        }
      },
      "randomness": {
        "PRNG": {
          "DRBG": 63,
          "PRNG": 2
        },
        "RNG": {
          "RBG": 2,
          "RNG": 2
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "timing attack": 1,
          "timing attacks": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140": 7,
          "FIPS 140-3": 18,
          "FIPS 180-4": 2,
          "FIPS 186-2": 2,
          "FIPS 186-4": 6,
          "FIPS 186-5": 8,
          "FIPS 197": 2,
          "FIPS 198-1": 2,
          "FIPS 202": 2,
          "FIPS PUB 140-3": 1
        },
        "NIST": {
          "NIST SP 800-90C": 1,
          "SP 800-108": 1,
          "SP 800-131A": 1,
          "SP 800-132": 5,
          "SP 800-185": 2,
          "SP 800-38A": 3,
          "SP 800-38B": 2,
          "SP 800-38C": 2,
          "SP 800-38D": 3,
          "SP 800-38F": 2,
          "SP 800-38G": 4,
          "SP 800-89": 1,
          "SP 800-90A": 2,
          "SP 800-90B": 3
        },
        "PKCS": {
          "PKCS #1": 5,
          "PKCS 1": 1,
          "PKCS#1": 3,
          "PKCS#12": 3,
          "PKCS#5": 3,
          "PKCS1": 5
        },
        "RFC": {
          "RFC 5246": 1,
          "RFC 7914": 1,
          "RFC 8708": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 117
          },
          "CAST": {
            "CAST": 2,
            "CAST5": 1
          },
          "RC": {
            "RC2": 1,
            "RC4": 1
          },
          "Serpent": {
            "Serpent": 1
          },
          "Twofish": {
            "Twofish": 1
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 2,
            "Triple-DES": 7
          },
          "DES": {
            "DES": 2
          }
        },
        "constructions": {
          "MAC": {
            "CBC-MAC": 1,
            "CMAC": 10,
            "HMAC": 34,
            "HMAC-SHA-256": 4,
            "KMAC": 14
          }
        },
        "djb": {
          "ChaCha": {
            "ChaCha20": 2
          },
          "Poly": {
            "Poly1305": 2
          }
        },
        "miscellaneous": {
          "Blowfish": {
            "Blowfish": 1
          },
          "Camellia": {
            "Camellia": 1
          },
          "IDEA": {
            "IDEA": 1
          },
          "SEED": {
            "SEED": 1
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SE": 79,
          "SSC": 1
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "Microsoft": {
          "Microsoft": 12
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "SafeLogic Inc.",
      "/CreationDate": "D:20250116194240-08\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20250116194240-08\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "/Subject": "CryptoComply for Java 140-3",
      "/Title": "Security Policy",
      "pdf_file_size_bytes": 1076951,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "mailto:[email protected]",
          "https://nvd.nist.gov/",
          "http://www.safelogic.com/",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program",
          "https://www.safelogic.com/cryptocomply"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 74
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "0e143dc8fc1fd4834c30858ec95bd93e6fe9b589505686dcb914e454a69ef8bb",
    "policy_txt_hash": "b6069f49f8c92c1e492a1248014fd8901e244d855557b4c7e006414e11791659"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in approved mode. No assurance of the minimum strength of generated SSPs (e.g., keys).",
    "certificate_pdf_url": null,
    "date_sunset": "2029-07-28",
    "description": "SafeLogic\u2019s CryptoComply for Java 140-3 is designed to provide FIPS 140-3 validated cryptographic functionality and is available for licensing",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical security: N/A",
      "Non-invasive security: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "CryptoComply for Java 140-3",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-3",
    "status": "active",
    "sw_versions": "4.0.0",
    "tested_conf": [
      "OpenJDK Runtime Environment v11 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA",
      "OpenJDK Runtime Environment v17 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA",
      "OpenJDK Runtime Environment v21 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA",
      "OpenJDK Runtime Environment v8 on VMware Photon OS 5.0 on VMware ESXi 8.0 running on Dell PowerEdge R830 with Intel Xeon E5 without PAA"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2024-12-05",
        "lab": "EWA - Canada",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2025-05-23",
        "lab": "Acumen Security",
        "validation_type": "Update"
      }
    ],
    "vendor": "SafeLogic Inc.",
    "vendor_url": "https://www.safelogic.com/"
  }
}

Sections

CryptoComply for Java 140-3

Certificate #4912

Webpage information

Security policy

Symmetric Algorithms

Asymmetric Algorithms

Post-quantum Algorithms

Hash functions

Schemes

Protocols

Randomness

Libraries

Elliptic Curves

Block cipher modes

JavaCard API constants

Trusted Execution Environments

Vendor

Security level

Side-channel analysis

Standards

File metadata

Heuristics

References

Updates Feed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

New certificate

Raw data

Sections

CryptoComply for Java 140-3

Certificate #4912

Webpage information

Security policy

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Post-quantum Algorithms

Hash functions

Schemes

Protocols

Randomness

Libraries

Elliptic Curves

Block cipher modes

Device

JavaCard API constants

Trusted Execution Environments

Vendor

Security

Security level

Side-channel analysis

Other

Standards

File metadata

Heuristics

References

Updates Feed

Raw data

Toggle raw data