This page was not yet optimized for use on mobile
devices.
Amazon Linux 2 NSS Cryptographic Module
Certificate #3646
Webpage information
| Status | historical |
|---|---|
| Historical reason | SP 800-56Arev3 transition - replaced by certificate #4565 |
| Validation dates | 20.04.2020 |
| Standard | FIPS 140-2 |
| Security level | 1 |
| Type | Software |
| Embodiment | Multi-Chip Stand Alone |
| Caveat | When operated in FIPS mode. When installed, initialized and configured as specified in Section 10.2 of the Security Policy. |
| Exceptions |
|
| Description | The Amazon Linux 2 NSS Cryptographic Module is a set of libraries designed to support cross-platform development of security-enabled applications. These applications may support the TLS protocol, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards supporting FIPS 140-2 validated cryptographic algorithms. |
| Tested configurations |
|
| Vendor | Amazon Web Services, Inc. |
| References | This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates. |
Security policy
Symmetric Algorithms
AES, AES-256, RC2, RC4, RC5, DES, Triple-DES, TDEA, Camellia, GOST 28147-89, SEED, HMAC, HMAC-SHA-224, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512Asymmetric Algorithms
ECDH, ECDSA, ECC, Diffie-Hellman, DH, DHE, DSAHash functions
SHA-1, SHA-256, SHA-224, SHA-384, SHA-512, MD5Schemes
MAC, Key Exchange, Key agreement, PAKEProtocols
TLS, TLS v1.2, DTLS, IKERandomness
DRBG, RNGLibraries
NSSElliptic Curves
P-256, P-384, P-521Block cipher modes
ECB, CBC, CTR, GCMSecurity level
Level 1Side-channel analysis
Timing Attacks, Timing attack, timing attacksStandards
FIPS 140-2, FIPS 140, FIPS 186-4, FIPS197, FIPS186-4, FIPS198-1, FIPS186-2, FIPS180-4, FIPS140-2, FIPS PUB 140-2, NIST SP 800-90A, NIST SP 800-135, PKCS #5, PKCS #7, PKCS #11, PKCS #12, PKCS#11, PKCS#1, RFC3711, RFC4347, RFC4357, RFC5246, RFC5288, RFC5764, X.509File metadata
| Title | FIPS 140-2 Non-Proprietary Security Policy |
|---|---|
| Author | Marcos Portnoi |
| Creation date | D:20200330174354-05'00' |
| Modification date | D:20200330174354-05'00' |
| Pages | 43 |
| Creator | Microsoft® Word for Office 365 |
| Producer | Microsoft® Word for Office 365 |
References
IncomingHeuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
- cpe:2.3:o:amazon:amazon_linux:2.0.20210701.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20210721.2:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20210813.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20211001.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20211005.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20211103.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20211201.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20211223.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.202200406.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.202200419.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220121.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220207.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220218.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220218.3:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220310.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220316.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220426.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220606.1.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220719.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220805.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20220912.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20221004.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20221103.3:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20221210.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230119.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230207.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230221.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230307.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230320.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230404.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230404.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230418.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230504.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230515.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230530.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230612.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230628.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230719.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230808.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230822.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230906.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230912.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20230926.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20231012.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20231018.2:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20231020.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20231101.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20231116.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20231206.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20231218.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240109.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240124.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240223.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240306.2:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240318.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240329.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240412.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240503.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240521.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240529.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240610.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240620.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240709.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240719.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240809.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240816.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240903.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20240916.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20241001.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20241014.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20241031.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20241113.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20241217.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250108.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250113.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250116.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250123.4:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250201.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250220.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250305.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250321.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250328.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250405.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250414.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250428.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250512.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250527.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250603.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250605.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250610.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250623.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250707.0:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250721.2:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250728.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250804.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250808.1:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250818.2:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250902.3:*:*:*:*:*:*:*
- cpe:2.3:o:amazon:amazon_linux:2.0.20250915.0:*:*:*:*:*:*:*
References
Loading...
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 3646,
"dgst": "283f3aceea5cb2cb",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"SHS#C803",
"AES#C803",
"HMAC#C803",
"KTS#C804",
"KTS#C803",
"RSA#C803",
"AES#C804",
"DSA#C803",
"ECDSA#C803",
"DRBG#C803",
"Triple-DES#C803",
"CVL#C803"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:o:amazon:amazon_linux:2.0.20230404.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20221103.3:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20231020.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220912.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250603.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240610.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250201.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250414.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250804.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220218.3:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220207.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250428.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240412.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250902.3:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240719.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240620.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230504.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230320.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20211223.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220218.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250113.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20231206.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220805.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220719.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240521.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240709.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20241001.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250610.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20211201.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20241014.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230307.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250915.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240109.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230628.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20231012.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250728.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.202200419.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20221004.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20231218.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250328.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250123.4:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250116.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220606.1.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240223.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250623.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20231116.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230926.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20241113.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240306.2:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20210813.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240329.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240124.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20241217.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20241031.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220316.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240503.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220310.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20211005.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230221.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230906.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250808.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250220.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230912.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230822.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20211103.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230808.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240809.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250512.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230530.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20221210.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20211001.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240529.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220426.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230404.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250305.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230612.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240916.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250527.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250108.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20220121.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250721.2:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250321.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250818.2:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20210721.2:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20210701.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230719.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240318.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20231018.2:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250707.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.202200406.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240903.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230418.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230207.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230119.1:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250605.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20240816.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20250405.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20231101.0:*:*:*:*:*:*:*",
"cpe:2.3:o:amazon:amazon_linux:2.0.20230515.0:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"2"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": {
"_type": "Set",
"elements": [
"3709",
"3652"
]
},
"directly_referencing": null,
"indirectly_referenced_by": {
"_type": "Set",
"elements": [
"3709",
"3652"
]
},
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": {
"_type": "Set",
"elements": [
"3709",
"3652"
]
},
"directly_referencing": null,
"indirectly_referenced_by": {
"_type": "Set",
"elements": [
"3709",
"3652",
"3566",
"2958",
"2606",
"2605"
]
},
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 1
},
"ECDSA": {
"ECDSA": 12
}
},
"FF": {
"DH": {
"DH": 1,
"DHE": 1,
"Diffie-Hellman": 19
},
"DSA": {
"DSA": 20
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 4
},
"CTR": {
"CTR": 2
},
"ECB": {
"ECB": 4
},
"GCM": {
"GCM": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"NSS": {
"NSS": 52
}
},
"crypto_protocol": {
"IKE": {
"IKE": 1
},
"TLS": {
"DTLS": {
"DTLS": 2
},
"TLS": {
"TLS": 44,
"TLS v1.2": 1
}
}
},
"crypto_scheme": {
"KA": {
"Key agreement": 1
},
"KEX": {
"Key Exchange": 1
},
"MAC": {
"MAC": 5
},
"PAKE": {
"PAKE": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 16,
"P-384": 14,
"P-521": 14
}
},
"eval_facility": {
"atsec": {
"atsec": 44
}
},
"fips_cert_id": {
"Cert": {
"#11": 1,
"#12": 1,
"#5": 1,
"#7": 1
}
},
"fips_certlike": {
"Certlike": {
"AES-256": 1,
"Cert# AES": 1,
"HMAC-SHA-1": 2,
"HMAC-SHA-224": 2,
"HMAC-SHA-256": 2,
"HMAC-SHA-384": 2,
"HMAC-SHA-512": 2,
"PKCS #11": 2,
"PKCS #12": 2,
"PKCS #5": 2,
"PKCS #7": 2,
"PKCS#1": 2,
"PKCS#11": 4,
"SHA- 256": 1,
"SHA-1": 9,
"SHA-224": 12,
"SHA-256": 23,
"SHA-384": 15,
"SHA-512": 11,
"SHA-512 1024": 1,
"SHA-512 112": 1,
"SHA-512 2048 and 3072": 1,
"SHA-512 4096": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 4
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 3
}
},
"SHA": {
"SHA1": {
"SHA-1": 9
},
"SHA2": {
"SHA-224": 12,
"SHA-256": 23,
"SHA-384": 15,
"SHA-512": 15
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 34
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {
"SCA": {
"Timing Attacks": 4,
"Timing attack": 1,
"timing attacks": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140": 2,
"FIPS 140-2": 59,
"FIPS 186-4": 7,
"FIPS PUB 140-2": 1,
"FIPS140-2": 1,
"FIPS180-4": 2,
"FIPS186-2": 1,
"FIPS186-4": 5,
"FIPS197": 3,
"FIPS198-1": 2
},
"NIST": {
"NIST SP 800-135": 1,
"NIST SP 800-90A": 1
},
"PKCS": {
"PKCS #11": 1,
"PKCS #12": 1,
"PKCS #5": 1,
"PKCS #7": 1,
"PKCS#1": 1,
"PKCS#11": 2
},
"RFC": {
"RFC3711": 1,
"RFC4347": 1,
"RFC4357": 1,
"RFC5246": 1,
"RFC5288": 1,
"RFC5764": 1
},
"X509": {
"X.509": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 25,
"AES-256": 1
},
"RC": {
"RC2": 2,
"RC4": 2,
"RC5": 1
}
},
"DES": {
"3DES": {
"TDEA": 1,
"Triple-DES": 16
},
"DES": {
"DES": 5
}
},
"constructions": {
"MAC": {
"HMAC": 30,
"HMAC-SHA-224": 1,
"HMAC-SHA-256": 1,
"HMAC-SHA-384": 1,
"HMAC-SHA-512": 1
}
},
"miscellaneous": {
"Camellia": {
"Camellia": 2
},
"GOST": {
"GOST 28147-89": 1
},
"SEED": {
"SEED": 1
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Marcos Portnoi",
"/CreationDate": "D:20200330174354-05\u002700\u0027",
"/Creator": "Microsoft\u00ae Word for Office 365",
"/ModDate": "D:20200330174354-05\u002700\u0027",
"/Producer": "Microsoft\u00ae Word for Office 365",
"/Title": "FIPS 140-2 Non-Proprietary Security Policy",
"pdf_file_size_bytes": 837606,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://tools.ietf.org/html/rfc3711",
"http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf",
"http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf",
"https://tools.ietf.org/html/rfc4357",
"https://tools.ietf.org/html/rfc4347",
"https://tools.ietf.org/html/rfc5246",
"http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=11157",
"https://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf",
"http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf",
"https://tools.ietf.org/html/rfc5288",
"https://www.oasis-open.org/standards#pkcs11-base-v2.40",
"http://www.daemonology.net/papers/htt.pdf",
"https://csrc.nist.gov/CSRC/media/Projects/cryptographic-module-validation-program/documents/fips140-2/FIPS1402IG.pdf",
"http://www.cryptography.com/timingattack/",
"http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf",
"http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=11158",
"http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-67r2.pdf",
"http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-52r1.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf",
"http://csrc.nist.gov/publications/fips/fips198-1/FIPS-198-1_final.pdf",
"https://tools.ietf.org/rfc/rfc8017.txt",
"http://csrc.nist.gov/publications/nistpubs/800-56A/SP800-56A_Revision1_Mar08-2007.pdf",
"https://tools.ietf.org/html/rfc5764"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 43
}
},
"state": {
"_type": "sec_certs.sample.fips.InternalState",
"module": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"json_hash": null,
"source_hash": null,
"txt_hash": null
},
"policy": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"json_hash": null,
"source_hash": "248e26062328b01211c21ac97bd3a8042185020c7c7b64f9c588a75469af378a",
"txt_hash": "47d3f5332a3de373c6256aa58369c4d60f7b0a58891ebe030ce450ac27e32c89"
}
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode. When installed, initialized and configured as specified in Section 10.2 of the Security Policy.",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/April 2020_010520_0717.pdf",
"date_sunset": null,
"description": "The Amazon Linux 2 NSS Cryptographic Module is a set of libraries designed to support cross-platform development of security-enabled applications. These applications may support the TLS protocol, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards supporting FIPS 140-2 validated cryptographic algorithms.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 2",
"Physical Security: N/A"
],
"fw_versions": null,
"historical_reason": "SP 800-56Arev3 transition - replaced by certificate #4565",
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Amazon Linux 2 NSS Cryptographic Module",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": "1.0",
"tested_conf": [
"Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5 with PAA",
"Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5 without PAA (single-user mode)"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2020-04-20",
"lab": "atsec information security corporation",
"validation_type": "Initial"
}
],
"vendor": "Amazon Web Services, Inc.",
"vendor_url": "http://aws.amazon.com"
}
}