This page was not yet optimized for use on mobile devices.

CN Series Ethernet Encryptors

Certificate #2794

Webpage information

Status	historical
Historical reason	Moved to historical list due to sunsetting
Validation dates	15.11.2016 , 02.06.2017
Standard	FIPS 140-2
Security level	3
Type	Hardware
Embodiment	Multi-Chip Stand Alone
Caveat	When operated in FIPS mode.
Description	The CN4010, CN4020 and CN6010 are high-speed hardware encryption modules that secure data over twisted-pair Ethernet and optical networks. The modules support data rates to 1Gb/s and 100Mb/s and 10Mb/s modes. The CN6010 is also equipped with pluggable SFPs to support a variety of optical network interfaces. Data privacy is provided by FIPS approved AES CFB and CTR algorithms and GCM for applications that demand authentication. Additional transmission security is provided via TRANSEC (Traffic Flow Security) which can be used to remove patterns in network traffic and prevent traffic analysis.
Version (Hardware)	Senetas Corp. Ltd. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC); Senetas Corp. Ltd. & SafeNet Inc. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. & SafeNet Inc. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC)
Version (Firmware)	2.7.1 and 2.7.2
Vendor	Senetas Corporation Ltd, distributed by Gemalto NV (SafeNet)
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Certificate

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, AES-128, AES-256, AES128, AES256, DES, Triple-DES, HMAC, HMAC-SHA-256

Asymmetric Algorithms

RSA-1024, RSA2048, RSA 2048, ECDH, ECDSA, Diffie-Hellman, DH

Hash functions

SHA-1, SHA1, SHA-256, SHA-384, SHA-512

Schemes

MAC, Key Exchange, Key Agreement

Protocols

SSH, TLS

Randomness

DRBG, RNG

Libraries

OpenSSL

Elliptic Curves

P-256, P-384, P-521, NIST P-256, NIST P-521

Block cipher modes

ECB, CBC, CTR, CFB, GCM

Vendor

Gemalto

Security level

Level 3

Side-channel analysis

physical probing

Standards

FIPS 140-2, FIPS PUB 140-2, FIPS140-2, FIPS186-4, NIST SP 800-90, SP 800-90A, RFC 2459, X.509

File metadata

Title	Microsoft Word - CN4010-CN4020-CN6010-Public-Security-Policy_124_Co-branded.doc
Author	ben.king
Creation date	D:20170505075142
Modification date	D:20170505075142
Pages	54
Creator	PScript5.dll Version 5.2.2
Producer	GPL Ghostscript 8.15

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state was updated.

The following values were inserted: {'policy_json_hash': None}.

The following properties were deleted: ['policy_convert_garbage'].
09.02.2023

The certificate data changed.
Certificate changed

The cert_id was updated.

The new value is 2794.

The web extraction data was updated.

The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2016-11-15', 'validation_type': 'Initial', 'lab': 'DXC Technology'}, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2017-06-02', 'validation_type': 'Update', 'lab': 'DXC Technology'}], 'vendor_url': 'http://www.senetas.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertNov2016.pdf', 'hw_versions': 'Senetas Corp. Ltd. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC); Senetas Corp. Ltd. & SafeNet Inc. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. & SafeNet Inc. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC)', 'fw_versions': '2.7.1 and 2.7.2'}.

The standard property was set to FIPS 140-2.

The status property was set to historical.

The level property was set to 3.

The embodiment property was set to Multi-Chip Stand Alone.

The tested_conf property was set to None.

The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].

The PDF extraction data was updated.

The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 5073076, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 54, '/Producer': 'GPL Ghostscript 8.15', '/CreationDate': 'D:20170505075142', '/ModDate': 'D:20170505075142', '/Title': 'Microsoft Word - CN4010-CN4020-CN6010-Public-Security-Policy_124_Co-branded.doc', '/Creator': 'PScript5.dll Version 5.2.2', '/Author': 'ben.king', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}}.

The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].

The computed heuristics were updated.

The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}.

The algorithms property was set to {'_type': 'Set', 'elements': ['Triple-DES#2182', 'RSA#2039', 'KAS#81', 'SHS#3282', 'DRBG#1170', 'AES#3977', 'CVL#807', 'AES#4005', 'AES#4004', 'HMAC#2595', 'AES#4003', 'ECDSA#876']}.

The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].

The state was updated.

The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': '14f85a18abf82aeb518d145dc809372074d3bbe6690a3985af22e50496e37d2b', 'policy_txt_hash': 'eac16a04247086c03a872f39dc6ba804c875744ebf5d3176612ac77b7977eb75'}.

The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
07.12.2022

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The clean_cert_ids property was set to {'#2182': 1}.

The st_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['2182']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['164', '1376', '182', '288', '47', '453', '79', '174', '650', '738', '234', '451', '204', '519', '153', '1067', '387', '419', '210', '103', '469', '424', '388', '1607', '415', '217', '520', '641', '642', '1379', '1380', '172', '202', '324', '719', '156', '2182', '48', '270', '338', '420', '1086', '272', '339', '158', '296', '118', '190', '233', '143', '168', '1605', '718', '739', '382', '192', '676', '46', '171', '428', '380', '423', '452', '92', '592', '225']}} data.
05.11.2022

The certificate data changed.
Certificate changed

The web extraction data was updated.

The algorithms property was set to {'_type': 'Set', 'elements': []}.

The PDF extraction data was updated.

The clean_cert_ids property was set to {'#2182': 1, '#876': 1, '#81': 1}.

The computed heuristics were updated.

The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4004', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3977', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1170', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4005', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#81', 'algorithm_type': 'KAS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2039', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3282', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2595', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2182', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#876', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#807', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4003', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}]} values discarded.
25.10.2022

The certificate data changed.
Certificate changed

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_certlike': {'__update__': {'Certlike': {'__update__': {'SHA-256': 7, 'SHA-512': 4, 'SHA-1': 7, 'RSA1': 2, 'AES-128': 1, 'AES-256': 2, 'AES256': 2, 'AES128': 2, 'DES168': 1}, '__delete__': ['SHA-1 3', 'RSASSA-PKCS1', 'DES #2182', 'DSA #876', 'DSA1', 'PKCS1']}}}, 'vendor': {'__update__': {'Gemalto': {'__update__': {'Gemalto': 2}}}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES-128': 1, 'AES-256': 2, 'AES256': 2, 'AES128': 2}}}}, 'DES': {'__update__': {'DES': {'__update__': {'DES': 1}}, '3DES': {'__update__': {'Triple-DES': 11}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 6}}}}}}, 'asymmetric_crypto': {'__update__': {'ECC': {'__update__': {'ECDH': {'__update__': {'ECDH': 33}}, 'ECDSA': {'__update__': {'ECDSA': 36}}}}, 'FF': {'__update__': {'DH': {'__update__': {'DH': 3}}}, '__delete__': ['DSA']}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 8}}, 'SHA2': {'__update__': {'SHA-256': 9, 'SHA-384': 3, 'SHA-512': 4}, '__delete__': ['SHA-2']}}, '__delete__': ['SHA3']}}, '__delete__': ['MD']}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 5}}, 'KA': {'__delete__': ['KA']}}}, 'crypto_protocol': {'__update__': {'TLS': {'__delete__': ['SSL']}}}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 15}}, 'RNG': {'__delete__': ['RBG']}}}, 'cipher_mode': {'__update__': {'CBC': {'__update__': {'CBC': 2}}, 'CTR': {'__update__': {'CTR': 8}}, 'CFB': {'__update__': {'CFB': 3}}, 'GCM': {'__update__': {'GCM': 7}}}}, 'crypto_library': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': 2}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'FIPS': {'__update__': {'FIPS PUB 140-2': 4}, '__delete__': ['FIPS140']}, 'NIST': {'NIST SP 800-90': 1, 'SP 800-90A': 1}, 'RFC': {'RFC 2459': 1}}, '__delete__': ['PKCS']}} data.

The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '0', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '7', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 4000', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '6010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '6', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 6010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4020', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'Cert.#807', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '232', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 0', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '509', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '45', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 6', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 6010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]}.

The computed heuristics were updated.

The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '0', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '7', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 4000', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '6010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '6', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 6010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4020', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'Cert.#807', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '232', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 0', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '509', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '45', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 6', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 6010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4010', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]} values added.

The state was updated.

The tables_done property was set to True.
17.07.2022

The certificate data changed.
Certificate changed

The _type was updated.

The new value is sec_certs.sample.fips.FIPSCertificate.

The computed heuristics were updated.

The following values were inserted: {'clean_cert_ids': {}}.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.Heuristics.

The keywords property was set to {}.

The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4004', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3977', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1170', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4005', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#81', 'algorithm_type': 'KAS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2039', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3282', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2595', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2182', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#876', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#807', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4003', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}]}.

The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

The web_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

The state was updated.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.InternalState.

The following properties were deleted: ['fragment_path'].
29.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
25.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
23.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
21.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
14.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The pdf_scan was updated.

The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS PUB 140-2': {'__update__': {'count': 1}}}, '__delete__': ['FIPS 140-2', 'FIPS140-2']}, '[Xx]\\.509': {'__update__': {'X.509': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'CTR': {'__update__': {'CTR': {'__update__': {'count': 1}}}}, 'CFB': {'__update__': {'CFB': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-256', 'P-384']}}}, 'rules_crypto_libs': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': {'__update__': {'count': 1}}}}}}} data.

The computed heuristics were updated.

The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS PUB 140-2': {'__update__': {'count': 1}}}, '__delete__': ['FIPS 140-2', 'FIPS140-2']}, '[Xx]\\.509': {'__update__': {'X.509': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'CTR': {'__update__': {'CTR': {'__update__': {'count': 1}}}}, 'CFB': {'__update__': {'CFB': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-256', 'P-384']}}}, 'rules_crypto_libs': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': {'__update__': {'count': 1}}}}}}} data.

The algorithms property was updated.
07.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
24.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
22.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
20.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
19.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
17.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
13.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.04.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
11.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
10.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
08.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The following properties were deleted: ['connections'].

The pdf_scan was updated.

The following properties were deleted: ['connections'].

The computed heuristics were updated.

The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}.

The algorithms property was updated.

The following properties were deleted: ['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
23.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The extracted_versions property was set to {'_type': 'Set', 'elements': ['2.7.2', '2.7.1']}.
12.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
11.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
03.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
02.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The module_type property was set to Hardware.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
31.01.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
30.01.2022

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 2794,
  "dgst": "23adf0dede5322e6",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "DRBG#1170",
        "AES#4004",
        "AES#4003",
        "HMAC#2595",
        "ECDSA#876",
        "AES#4005",
        "RSA#2039",
        "SHS#3282",
        "AES#3977",
        "CVL#807",
        "KAS#81",
        "Triple-DES#2182"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "2.7.1",
        "2.7.2"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 33
          },
          "ECDSA": {
            "ECDSA": 36
          }
        },
        "FF": {
          "DH": {
            "DH": 3,
            "Diffie-Hellman": 18
          }
        },
        "RSA": {
          "RSA 2048": 1,
          "RSA-1024": 1,
          "RSA2048": 2
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "CFB": {
          "CFB": 3
        },
        "CTR": {
          "CTR": 8
        },
        "ECB": {
          "ECB": 4
        },
        "GCM": {
          "GCM": 7
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 2
        }
      },
      "crypto_protocol": {
        "SSH": {
          "SSH": 39
        },
        "TLS": {
          "TLS": {
            "TLS": 16
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 10
        },
        "KEX": {
          "Key Exchange": 10
        },
        "MAC": {
          "MAC": 5
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "NIST P-256": 20,
          "NIST P-521": 3,
          "P-256": 24,
          "P-384": 40,
          "P-521": 37
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1170": 1,
          "#2039": 1,
          "#2182": 1,
          "#2595": 1,
          "#3282": 1,
          "#3977": 4,
          "#4003": 4,
          "#4004": 4,
          "#4005": 4,
          "#807": 3,
          "#81": 1,
          "#876": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "#3977 AES": 3,
          "#4003 AES": 3,
          "#4004 AES": 2,
          "#4005 AES": 3,
          "AES #3977": 4,
          "AES #4003": 4,
          "AES #4004": 4,
          "AES #4005": 4,
          "AES 128": 5,
          "AES 256": 3,
          "AES-128": 1,
          "AES-256": 2,
          "AES128": 2,
          "AES256": 2,
          "Certificate RSA": 1,
          "DES168": 1,
          "DRBG #1170": 1,
          "HMAC #2595": 2,
          "HMAC SHA-1": 1,
          "HMAC-SHA-1": 2,
          "HMAC-SHA-1 3": 2,
          "HMAC-SHA-256": 4,
          "RSA #2039": 1,
          "RSA 2048": 1,
          "RSA1": 2,
          "RSA2": 1,
          "RSA2048": 2,
          "SHA #3282": 1,
          "SHA-1": 7,
          "SHA-1 2": 1,
          "SHA-256": 7,
          "SHA-384": 4,
          "SHA-512": 4,
          "SHA1": 2
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 3": 4
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 8,
            "SHA1": 2
          },
          "SHA2": {
            "SHA-256": 9,
            "SHA-384": 3,
            "SHA-512": 4
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 15
        },
        "RNG": {
          "RNG": 4
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "physical probing": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 22,
          "FIPS PUB 140-2": 4,
          "FIPS140-2": 2,
          "FIPS186-4": 1
        },
        "NIST": {
          "NIST SP 800-90": 1,
          "SP 800-90A": 1
        },
        "RFC": {
          "RFC 2459": 1
        },
        "X509": {
          "X.509": 18
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 66,
            "AES-128": 1,
            "AES-256": 2,
            "AES128": 2,
            "AES256": 2
          }
        },
        "DES": {
          "3DES": {
            "Triple-DES": 11
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 6,
            "HMAC-SHA-256": 2
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Gemalto": {
          "Gemalto": 2
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "ben.king",
      "/CreationDate": "D:20170505075142",
      "/Creator": "PScript5.dll Version 5.2.2",
      "/ModDate": "D:20170505075142",
      "/Producer": "GPL Ghostscript 8.15",
      "/Title": "Microsoft Word - CN4010-CN4020-CN6010-Public-Security-Policy_124_Co-branded.doc",
      "pdf_file_size_bytes": 5073076,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 54
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "14f85a18abf82aeb518d145dc809372074d3bbe6690a3985af22e50496e37d2b",
    "policy_txt_hash": "eac16a04247086c03a872f39dc6ba804c875744ebf5d3176612ac77b7977eb75"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertNov2016.pdf",
    "date_sunset": null,
    "description": "The CN4010, CN4020 and CN6010 are high-speed hardware encryption modules that secure data over twisted-pair Ethernet and optical networks. The modules support data rates to 1Gb/s and 100Mb/s and 10Mb/s modes. The CN6010 is also equipped with pluggable SFPs to support a variety of optical network interfaces. Data privacy is provided by FIPS approved AES CFB and CTR algorithms and GCM for applications that demand authentication. Additional transmission security is provided via TRANSEC (Traffic Flow Security) which can be used to remove patterns in network traffic and prevent traffic analysis.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": null,
    "fw_versions": "2.7.1 and 2.7.2",
    "historical_reason": "Moved to historical list due to sunsetting",
    "hw_versions": "Senetas Corp. Ltd. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC); Senetas Corp. Ltd. \u0026 SafeNet Inc. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. \u0026 SafeNet Inc. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC)",
    "level": 3,
    "mentioned_certs": {},
    "module_name": "CN Series Ethernet Encryptors",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2016-11-15",
        "lab": "DXC Technology",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2017-06-02",
        "lab": "DXC Technology",
        "validation_type": "Update"
      }
    ],
    "vendor": "Senetas Corporation Ltd, distributed by Gemalto NV (SafeNet)",
    "vendor_url": "http://www.senetas.com"
  }
}

Sections