This page was not yet optimized for use on mobile
devices.
NITROXIII CNN35XX-NFBE HSM Family
Certificate #2733
Webpage information
Security policy
Symmetric Algorithms
AES, RC4, HMACAsymmetric Algorithms
RSA 2048, ECDH, ECDSA, ECC, DH, DSAHash functions
SHA256, MD5Schemes
MAC, Key agreement, Key AgreementProtocols
SSH, SSL, TLSRandomness
DRBG, RNGBlock cipher modes
ECB, CBC, CTR, GCMSecurity level
Level 3Standards
PKCS #1, PKCS#1, RFC 5288File metadata
| Title | Microsoft Word - 3l - CNN35xx-NFBE-SPD-L3-v1.3better.docx |
|---|---|
| Author | lgarcia |
| Creation date | D:20160825150313-07'00' |
| Modification date | D:20160825150313-07'00' |
| Pages | 33 |
| Creator | PScript5.dll Version 5.2.2 |
| Producer | Acrobat Distiller 11.0 (Windows) |
References
Outgoing- 53 - historical - PERMIT/Gate 4520™ Cryptographic Module
Heuristics
No heuristics are available for this certificate.
References
Loading...
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2733,
"dgst": "2e67088920b9fb6f",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"CVL#563",
"DRBG#680",
"AES#3205",
"AES#2035",
"Triple-DES#1311",
"KBKDF#65",
"DSA#916",
"AES#2033",
"ECDSA#589",
"SHS#1780",
"HMAC#1233",
"HMAC#2019",
"AES#2034",
"CVL#167",
"KTS#3206",
"RSA#1634",
"AES#3206",
"SHS#2652"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"1.1"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"53"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"53"
]
}
},
"policy_prunned_references": {
"_type": "Set",
"elements": [
"53"
]
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 17
},
"ECDH": {
"ECDH": 3
},
"ECDSA": {
"ECDSA": 6
}
},
"FF": {
"DH": {
"DH": 6
},
"DSA": {
"DSA": 4
}
},
"RSA": {
"RSA 2048": 2
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 2
},
"CTR": {
"CTR": 2
},
"ECB": {
"ECB": 7
},
"GCM": {
"GCM": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"SSH": {
"SSH": 1
},
"TLS": {
"SSL": {
"SSL": 4
},
"TLS": {
"TLS": 16
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1,
"Key agreement": 1
},
"MAC": {
"MAC": 4
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1": 2,
"#1233": 1,
"#1311": 1,
"#1634": 1,
"#167": 1,
"#1780": 1,
"#2019": 1,
"#2033": 1,
"#2034": 1,
"#2035": 1,
"#2652": 1,
"#3205": 1,
"#3206": 1,
"#53": 1,
"#563": 1,
"#589": 2,
"#680": 1,
"#916": 1
}
},
"fips_certlike": {
"Certlike": {
"AES 128, 192": 1,
"AES 256": 4,
"HMAC SHA256": 1,
"PKCS #1": 4,
"PKCS#1": 1,
"RSA 2048": 2,
"RSA PKCS#1": 1,
"SHA256": 1
}
},
"fips_security_level": {
"Level": {
"Level 3": 6
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 1
}
},
"SHA": {
"SHA2": {
"SHA256": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 7
},
"RNG": {
"RNG": 4
}
},
"side_channel_analysis": {},
"standard_id": {
"PKCS": {
"PKCS #1": 2,
"PKCS#1": 1
},
"RFC": {
"RFC 5288": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 28
},
"RC": {
"RC4": 2
}
},
"constructions": {
"MAC": {
"HMAC": 14
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "lgarcia",
"/CreationDate": "D:20160825150313-07\u002700\u0027",
"/Creator": "PScript5.dll Version 5.2.2",
"/ModDate": "D:20160825150313-07\u002700\u0027",
"/Producer": "Acrobat Distiller 11.0 (Windows)",
"/Title": "Microsoft Word - 3l - CNN35xx-NFBE-SPD-L3-v1.3better.docx",
"pdf_file_size_bytes": 413748,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 33
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "5bba6f92e486765cb3bff0dcf485abbafb359438c945aa36d02749f17b2ff2ad",
"policy_txt_hash": "bde5170937e75bc4e2b125bc4009dfcc198babb724965e00bf6749daee921124"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertSept2016.pdf",
"date_sunset": null,
"description": "CNN35XX-NFBE HSM Family is a high performance purpose built solution for key management and crypto acceleration compliance to FIPS 140-2. The module supports flexible key store that can be partitioned up to 32 individually managed and isolated partitions. This is a SRIOV capable PCIe adapter and can be used in virtualization environment to extend services like virtual key management, crypto and TLS offloads to VMs in dedicated I/O channels. This product is suitable for PKI vendors, SSL servers/load balancers.",
"embodiment": "Multi-Chip Embedded",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "CNN35XX-NFBE-FW-1.1 build 01",
"historical_reason": "Moved to historical list due to sunsetting",
"hw_versions": "P/Ns CNL3560P-NFBE-G, CNL3560-NFBE-G, CNL3530-NFBE-G, CNL3510-NFBE-G, CNL3510P-NFBE-G, CNN3560P-NFBE-G, CNN3560-NFBE-G, CNN3530-NFBE-G and CNN3510-NFBE-G",
"level": 3,
"mentioned_certs": {},
"module_name": "NITROXIII CNN35XX-NFBE HSM Family",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2016-09-01",
"lab": "UL Verification Services, Inc.",
"validation_type": "Initial"
}
],
"vendor": "Cavium Inc.",
"vendor_url": "http://www.cavium.com"
}
}