Luna® XPplus
Certificate #220
Webpage information ?
Security policy ?
Symmetric Algorithms
CAST, CAST5, RC4, RC2, RC5, DESAsymmetric Algorithms
RSA-1024, RSA-2048, DSAHash functions
SHA-1, MD5Schemes
MACProtocols
SSLBlock cipher modes
CCMSecurity level
Level 4, Level 3, Level 2, level 2, level 3, level 1Side-channel analysis
timing attacksStandards
FIPS 140-1, PKCS#11File metadata
Title | Chrysalis Luna XPplus 3.97 Security Policy |
---|---|
Subject | None Yet |
Author | David Binnie |
Creation date | D:20020510100459 |
Modification date | D:20020510100733-04'00' |
Pages | 18 |
Creator | Microsoft Word 9.0 |
Producer | Acrobat Distiller 4.05 for Windows |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
09.02.2023 The certificate data changed.
Certificate changed
The cert_id was updated.
- The new value is
220
.
The web extraction data was updated.
- The following values were inserted:
{'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2002-05-28', 'validation_type': 'Initial', 'lab': 'DOMUS'}, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2004-10-18', 'validation_type': 'Update', 'lab': ''}], 'vendor_url': 'http://www.safenet-inc.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt220.pdf', 'hw_versions': '1 and 2', 'fw_versions': '3.97'}
. - The standard property was set to
FIPS 140-1
. - The status property was set to
historical
. - The level property was set to
3
. - The embodiment property was set to
Multi-Chip Stand Alone
. - The description property was set to
Luna XPplus, Luna XL/XLR and XL/XLR Premium are cryptographic modules based on a board that is equivalent to two Luna CA3 tokens with hardware cryptographic acceleration support. The XL/XLR is configured as a Level 2 stand-alone module. The XPplus and XL/XLR Premium operate as subordinate devices in conjunction with a Luna CA3 token. Each module can support all cryptographic algorithms listed in Appendix A of the Luna XPplus, XL/XLR and XL/XLR Premium Security Policy.
. - The following properties were deleted:
['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url']
.
The PDF extraction data was updated.
- The following values were inserted:
{'policy_metadata': {'pdf_file_size_bytes': 352063, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 18, '/Producer': 'Acrobat Distiller 4.05 for Windows', '/Creator': 'Microsoft Word 9.0', '/ModDate': "D:20020510100733-04'00'", '/Author': 'David Binnie', '/Subject': 'None Yet', '/Title': 'Chrysalis Luna XPplus 3.97 Security Policy', '/CreationDate': 'D:20020510100459', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}}
. - The following properties were deleted:
['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata']
.
The computed heuristics were updated.
- The following values were inserted:
{'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}
. - The algorithms property was set to
{'_type': 'Set', 'elements': ['SHA-1#64', 'Triple-DES#73', 'DSA#51']}
. - The following properties were deleted:
['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references']
.
The state was updated.
- The following values were inserted:
{'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': 'd253d5ff69d18c6ced929c22b67db4f8d8ef0ec0a78a7b228984eda3ec40fb4e', 'policy_txt_hash': '661ec8f0f00d6af7c40dc7d2cf5c64660d98c693fe834c2ec8e735a53bbf1936'}
. - The following properties were deleted:
['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state']
.
- The new value is
-
07.12.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The st_references property was updated, with the
{'directly_referenced_by': {'__add__': {'_type': 'Set', 'elements': ['859']}}, 'indirectly_referenced_by': {'__add__': {'_type': 'Set', 'elements': ['859', '1666']}}}
data.
- The st_references property was updated, with the
-
05.11.2022 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The algorithms property was set to
{'_type': 'Set', 'elements': []}
.
The computed heuristics were updated.
- The algorithms property was set to
{'_type': 'Set', 'elements': []}
. - The st_references property was updated, with the
{'directly_referenced_by': {'_type': 'Set', 'elements': ['996']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['996']}}
data.
- The algorithms property was set to
-
25.10.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The keywords property was updated, with the
{'fips_cert_id': {}, 'fips_certlike': {'__update__': {'Certlike': {'__update__': {'SHA-1': 2, 'PKCS#11': 4}, '__delete__': ['SHA1', 'DES-CBC1']}}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'CAST': {'__update__': {'CAST': 1, 'CAST5': 1}, '__delete__': ['CAST-']}, 'RC': {'__update__': {'RC2': 1, 'RC5': 1}}}}, 'DES': {'__update__': {'DES': {'__update__': {'DES': 4}}}, '__delete__': ['3DES']}}, '__delete__': ['miscellaneous', 'constructions']}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DSA': {'__update__': {'DSA': 1}}}, '__delete__': ['DH']}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 2}, '__delete__': ['SHA1']}}}, 'MD': {'__update__': {'MD5': {'__update__': {'MD5': 2}}}}}}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 1}}}}, 'crypto_protocol': {'__update__': {'TLS': {'__update__': {'SSL': {'__update__': {'SSL': 1}}}}}}, 'cipher_mode': {'__update__': {'CCM': {'__update__': {'CCM': 6}}}, '__delete__': ['ECB', 'CBC', 'XTR', 'XTS']}, 'tee_name': {}, 'standard_id': {'__update__': {'FIPS': {'__update__': {'FIPS 140-1': 9}, '__delete__': ['FIPS 140']}, 'PKCS': {'__update__': {'PKCS#11': 2}}}}}
data.
The state was updated.
- The tables_done property was set to
True
.
- The keywords property was updated, with the
-
17.07.2022 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.fips.FIPSCertificate
.
The computed heuristics were updated.
- The following values were inserted:
{'clean_cert_ids': {}}
. - The _type property was set to
sec_certs.sample.fips.FIPSCertificate.Heuristics
. - The keywords property was set to
{}
. - The algorithms property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#51', 'algorithm_type': 'DSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#73', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#64', 'algorithm_type': 'SHA-1', 'vendor': None, 'implementation': None, 'date': None}]}
. - The st_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}
data. - The web_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}
data.
The state was updated.
- The _type property was set to
sec_certs.sample.fips.FIPSCertificate.InternalState
. - The following properties were deleted:
['fragment_path']
.
- The new value is
-
14.06.2022 The certificate data changed.
Certificate changed
The pdf_scan was updated.
- The keywords property was updated, with the
{'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 140-1': {'__update__': {'count': 1}}}}, 'PKCS[ #]*[1-9]+': {'__update__': {'PKCS#11': {'__update__': {'count': 1}}}}}}, 'rules_security_assurance_components': {'__update__': {'ATE(?:_[A-Z]{3,4}){1,2}(?:\\.[0-9]|\\.[0-9]\\.[0-9]|)': {'__update__': {'ATE_KEY': {'__update__': {'count': 1}}}, '__delete__': ['ATE_USER', 'ATE_KEY_PAIR']}}}, 'rules_block_cipher_modes': {'CCM': {'CCM': {'count': 1}}, 'XTS': {'XTS': {'count': 1}}}}
data.
The computed heuristics were updated.
- The keywords property was updated, with the
{'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 140-1': {'__update__': {'count': 1}}}}, 'PKCS[ #]*[1-9]+': {'__update__': {'PKCS#11': {'__update__': {'count': 1}}}}}}, 'rules_security_assurance_components': {'__update__': {'ATE(?:_[A-Z]{3,4}){1,2}(?:\\.[0-9]|\\.[0-9]\\.[0-9]|)': {'__update__': {'ATE_KEY': {'__update__': {'count': 1}}}, '__delete__': ['ATE_USER', 'ATE_KEY_PAIR']}}}, 'rules_block_cipher_modes': {'CCM': {'CCM': {'count': 1}}, 'XTS': {'XTS': {'count': 1}}}}
data.
- The keywords property was updated, with the
-
08.03.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The following properties were deleted:
['connections']
.
The pdf_scan was updated.
- The following properties were deleted:
['connections']
.
The computed heuristics were updated.
- The following values were inserted:
{'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}
. - The following properties were deleted:
['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting']
.
- The following properties were deleted:
-
18.02.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The extracted_versions property was set to
{'_type': 'Set', 'elements': ['3.97']}
.
- The extracted_versions property was set to
-
02.02.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The module_type property was set to
Hardware
.
- The module_type property was set to
-
30.01.2022 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 220,
"dgst": "36790ecd55c2030d",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"SHA-1#64",
"DSA#51",
"Triple-DES#73"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"3.97"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"FF": {
"DSA": {
"DSA": 1
}
},
"RSA": {
"RSA-1024": 3,
"RSA-2048": 3
}
},
"certification_process": {},
"cipher_mode": {
"CCM": {
"CCM": 6
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 1
}
}
},
"crypto_scheme": {
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"DSA-1024": 1,
"HMAC-SHA1": 2,
"PKCS#11": 4,
"SHA-1": 2
}
},
"fips_security_level": {
"Level": {
"Level 2": 7,
"Level 3": 7,
"Level 4": 18,
"level 1": 2,
"level 2": 3,
"level 3": 5
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 2
}
},
"SHA": {
"SHA1": {
"SHA-1": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {
"SCA": {
"timing attacks": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140-1": 9
},
"PKCS": {
"PKCS#11": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"CAST": {
"CAST": 1,
"CAST5": 1
},
"RC": {
"RC2": 1,
"RC4": 2,
"RC5": 1
}
},
"DES": {
"DES": {
"DES": 4
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "David Binnie",
"/CreationDate": "D:20020510100459",
"/Creator": "Microsoft Word 9.0",
"/ModDate": "D:20020510100733-04\u002700\u0027",
"/Producer": "Acrobat Distiller 4.05 for Windows",
"/Subject": "None Yet",
"/Title": "Chrysalis Luna XPplus 3.97 Security Policy",
"pdf_file_size_bytes": 352063,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 18
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "d253d5ff69d18c6ced929c22b67db4f8d8ef0ec0a78a7b228984eda3ec40fb4e",
"policy_txt_hash": "661ec8f0f00d6af7c40dc7d2cf5c64660d98c693fe834c2ec8e735a53bbf1936"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt220.pdf",
"date_sunset": null,
"description": "Luna XPplus, Luna XL/XLR and XL/XLR Premium are cryptographic modules based on a board that is equivalent to two Luna CA3 tokens with hardware cryptographic acceleration support. The XL/XLR is configured as a Level 2 stand-alone module. The XPplus and XL/XLR Premium operate as subordinate devices in conjunction with a Luna CA3 token. Each module can support all cryptographic algorithms listed in Appendix A of the Luna XPplus, XL/XLR and XL/XLR Premium Security Policy.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": null,
"fw_versions": "3.97",
"historical_reason": "Validation Sunsetting Policy - FIPS 140-1 Certificate",
"hw_versions": "1 and 2",
"level": 3,
"mentioned_certs": {},
"module_name": "Luna\u00ae XPplus",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-1",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2002-05-28",
"lab": "DOMUS",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2004-10-18",
"lab": "",
"validation_type": "Update"
}
],
"vendor": "SafeNet, Inc.",
"vendor_url": "http://www.safenet-inc.com"
}
}