This page was not yet optimized for use on mobile devices.

ID-One PIV on Cosmo V8.1

Certificate #2986

Webpage information

Status	historical
Historical reason	SP 800-56Arev3 transition
Validation dates	10.08.2017 , 09.11.2017
Standard	FIPS 140-2
Security level	2
Type	Hardware
Embodiment	Single Chip
Caveat	When operated in FIPS mode and initialized to Overall Level 2 per Security Policy
Exceptions	Cryptographic Module Specification: Level 3 Roles, Services, and Authentication: Level 3 Physical Security: Level 4 EMI/EMC: Level 3 Design Assurance: Level 3
Description	ID-One PIV on Cosmo V8.1 is the next generation of Personal Identification and Verification cards. It has an AES-256 Security Architecture and support both contact and contactless communications. It supports all features described in FIPS 201-2, SP800-73-4 and SP800-76-2 including Virtual Contact Interface and fingerprint on-card comparison. It can be used as a Smart Card (PIV/CIV) to provide physical and logical access control, or embedded in a hardware token for Derived Credentials. Its additional SAM capabilities make it the ideal portable HSM for the post-issuance management of PIV cards.
Version (Hardware)	P/Ns ‘30-5F01’ [1], ‘30-5F02’ [2], '40-6001' [3] and ’40-6002’ [4]
Version (Firmware)	Firmware Extension: ‘086294’+’086683’ (ID-One PIV Applet Suite 2.4.0 on Cosmo V8.1 LARGE) [1], Firmware Extension: ‘090191’ (ID-One PIV 2.4.1 on Cosmo V8.1 LARGE) [2], Firmware Extension: ‘086294’+’086693’ (ID-One PIV Applet Suite 2.4.0 on Cosmo V8.1 STD) [3] and Firmware Extension: ‘090211’ (ID-One PIV 2.4.1 on Cosmo V8.1 STD) [4]
Vendor	Oberthur Technologies
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Certificate

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, TDEA, 3DES, HMAC, CMAC

Asymmetric Algorithms

RSA 2048, RSA 4096, ECDSA, ECC, DH

Hash functions

SHA1, SHA384

Schemes

MAC, Key Agreement

Randomness

DRBG, RNG

Block cipher modes

ECB, CBC, CTR

JavaCard versions

Java Card 3.0.4

Vendor

Oberthur Technologies, Oberthur

Security level

Level 2

Side-channel analysis

Side‐channel, DPA, SPA, DFA

Standards

FIPS113, FIPS197, FIPS 202, FIPS 197, FIPS 186, PKCS#1, PKCS #1, AIS 31, ISO/IEC 24787: 2010

File metadata

Title	Microsoft Word - 600j- ID-One PIV on Cosmo V8.1 NPIVPCIV Security Policy UL_updated for PIV 2.4.1.docx
Author	lgarcia
Creation date	D:20171018160252-07'00'
Modification date	D:20171018160252-07'00'
Pages	19
Creator	PScript5.dll Version 5.2.2
Producer	Acrobat Distiller 11.0 (Windows)

References

Incoming

3465 - historical - HiCOS PKI Applet v2.0 on IDEMIA ID-One Cosmo v8.1-R2

Heuristics

No heuristics are available for this certificate.

References

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state was updated.

The following values were inserted: {'policy_json_hash': None}.

The following properties were deleted: ['policy_convert_garbage'].
08.09.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated.
09.02.2023

The certificate data changed.
Certificate changed

The cert_id was updated.

The new value is 2986.

The web extraction data was updated.

The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2017-08-10', 'validation_type': 'Initial', 'lab': 'UL VERIFICATION SERVICES INC'}, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2017-11-09', 'validation_type': 'Update', 'lab': 'UL VERIFICATION SERVICES INC'}], 'vendor_url': 'http://www.oberthur.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AugConsolidatedCert.pdf', 'hw_versions': "P/Ns ‘30-5F01’ [1], ‘30-5F02’ [2], '40-6001' [3] and ’40-6002’ [4]", 'fw_versions': 'Firmware Extension: ‘086294’+’086683’ (ID-One PIV Applet Suite 2.4.0 on Cosmo V8.1 LARGE) [1], Firmware Extension: ‘090191’ (ID-One PIV 2.4.1 on Cosmo V8.1 LARGE) [2], Firmware Extension: ‘086294’+’086693’ (ID-One PIV Applet Suite 2.4.0 on Cosmo V8.1 STD) [3] and Firmware Extension: ‘090211’ (ID-One PIV 2.4.1 on Cosmo V8.1 STD) [4]'}.

The standard property was set to FIPS 140-2.

The status property was set to historical.

The level property was set to 2.

The tested_conf property was set to None.

The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].

The PDF extraction data was updated.

The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 431070, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 19, '/Author': 'lgarcia', '/CreationDate': "D:20171018160252-07'00'", '/Creator': 'PScript5.dll Version 5.2.2', '/ModDate': "D:20171018160252-07'00'", '/Producer': 'Acrobat Distiller 11.0 (Windows)', '/Title': 'Microsoft Word - 600j- ID-One PIV on Cosmo V8.1 NPIVPCIV Security Policy UL_updated for PIV 2.4.1.docx', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}}.

The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].

The computed heuristics were updated.

The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': {'_type': 'Set', 'elements': ['3465']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['3465']}, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': {'_type': 'Set', 'elements': ['3465']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['3465']}, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}.

The algorithms property was set to {'_type': 'Set', 'elements': ['AES#4108', 'KBKDF#106', 'SHA-3#6', 'CVL#953', 'AES#4107', 'KTS#4108', 'SHS#3379', 'Triple-DES#2245', 'KTS#4107', 'SHS#3380', 'CVL#921', 'DRBG#1234', 'CVL#954', 'HMAC#2683', 'ECDSA#933', 'KTS#4109', 'AES#4109', 'RSA#2253', 'KAS#48', 'RSA#2252']}.

The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].

The state was updated.

The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': 'cb8e207a134b5c756c959badafc2c77edc3b9de82201bdff12ccd4c3f9b05de9', 'policy_txt_hash': '3f2baa4a34797a44a054368ce7ee73e499de43cc253dae5f8b333d0c05a85912'}.

The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
05.11.2022

The certificate data changed.
Certificate changed

The web extraction data was updated.

The algorithms property was set to {'_type': 'Set', 'elements': []}.

The PDF extraction data was updated.

The clean_cert_ids property was updated, with the {'#4108': 1} values inserted.

The computed heuristics were updated.

The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4108', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#6', 'algorithm_type': 'SHA-3', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2683', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1234', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4107', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#921', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4107', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#953', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2252', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3380', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3379', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#106', 'algorithm_type': 'KBKDF', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4109', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2245', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2253', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#933', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#954', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4109', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4108', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#48', 'algorithm_type': 'KAS', 'vendor': None, 'implementation': None, 'date': None}]} values discarded.
25.10.2022

The certificate data changed.
Certificate changed

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_cert_id': {'__update__': {'Cert': {'__update__': {'#1': 1, '#4108': 1}, '__delete__': ['#4107', '#4109', '#921', '#953', '#954', '#1234', '#933', '#2683', '#3379', '#48', '#106', '#2252', '#2253', '#6', '#3380', '#2245']}}}, 'fips_certlike': {'__update__': {'Certlike': {'__update__': {'RSA 2048': 5}, '__delete__': ['SHA3', 'RSA 3072', 'PKCS1', '#4107 AES', '#921 RSA', '#954 RSA', '#1234 DRBG', '#2683 HMAC', '#2252 RSA', '#2253 RSA', '#6 SHA', '#3379 SHS', '#3380 SHS']}}}, 'vendor': {'__update__': {'Oberthur': {'__update__': {'Oberthur Technologies': 21}}}, '__delete__': ['Microsoft']}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES': 19}}}}, 'DES': {'__delete__': ['DES']}, 'constructions': {'__update__': {'MAC': {'__update__': {'CMAC': 7}, '__delete__': ['KMAC']}}}}, '__delete__': ['miscellaneous']}, 'asymmetric_crypto': {'__update__': {'RSA': {'__update__': {'RSA 2048': 5}, '__delete__': ['RSA 3072']}, 'FF': {'__update__': {'DH': {'__update__': {'DH': 1}}}, '__delete__': ['DSA']}}}, 'hash_function': {'__update__': {'SHA': {'__delete__': ['SHA3']}}}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 5}}, 'KA': {'__delete__': ['KA']}}}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 8}}, 'RNG': {'__delete__': ['RBG']}}}, 'cipher_mode': {'__update__': {'ECB': {'__update__': {'ECB': 2}}, 'CBC': {'__update__': {'CBC': 1}}, 'CTR': {'__update__': {'CTR': 1}}}}, 'side_channel_analysis': {'__update__': {'SCA': {'__update__': {'DPA': 1, 'SPA': 1}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'FIPS': {'__update__': {'FIPS 186': 1}, '__delete__': ['FIPS 140', 'FIPS201', 'FIPS140', 'FIPS PUB 140', 'FIPS 180', 'FIPS 198', 'FIPS 201']}, 'PKCS': {'__delete__': ['PKCS1']}, 'BSI': {'AIS 31': 2}, 'ISO': {'__delete__': ['ISO/IEC 7816', 'ISO/IEC 24787']}}}} data.

The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '512', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 186', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3379', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 180', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2245', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '384', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '128', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 31', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A 4096', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2253', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A 3072', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#6', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '192', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 800', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A 2048', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '256', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 202', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '224', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3380', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '67', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]}.

The computed heuristics were updated.

The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '512', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 186', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3379', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 180', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2245', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '384', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '128', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 31', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A 4096', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2253', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A 3072', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#6', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '192', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 800', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': 'A 2048', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '256', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 202', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '224', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3380', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '67', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]} values added.

The st_references property was updated, with the {'directly_referenced_by': {'_type': 'Set', 'elements': ['3465']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['3465']}} data.

The web_references property was updated, with the {'directly_referenced_by': {'_type': 'Set', 'elements': ['3465']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['3465']}} data.

The state was updated.

The tables_done property was set to True.
17.07.2022

The certificate data changed.
Certificate changed

The _type was updated.

The new value is sec_certs.sample.fips.FIPSCertificate.

The computed heuristics were updated.

The following values were inserted: {'clean_cert_ids': {}}.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.Heuristics.

The keywords property was set to {}.

The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4108', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#6', 'algorithm_type': 'SHA-3', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2683', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1234', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4107', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#921', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4107', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2252', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#953', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3380', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3379', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#106', 'algorithm_type': 'KBKDF', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4109', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2245', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2253', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#933', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#954', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4109', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4108', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#48', 'algorithm_type': 'KAS', 'vendor': None, 'implementation': None, 'date': None}]}.

The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

The web_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

The state was updated.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.InternalState.

The following properties were deleted: ['fragment_path'].
02.07.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The status property was set to Historical.

The date_sunset property was set to None.

The historical_reason property was set to SP 800-56Arev3 transition.
29.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
25.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
23.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
21.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
14.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The pdf_scan was updated.

The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+?': {'__update__': {'FIPS 202': {'__update__': {'count': 1}}}, '__delete__': ['FIPS113', 'FIPS197', 'FIPS 197', 'FIPS 186']}, 'PKCS[ #]*[1-9]+': {'__delete__': ['PKCS#1']}, 'AIS[ ]*[0-9]+?': {'__update__': {'AIS 31': {'__update__': {'count': 1}}}}}}, 'rules_javacard': {'__update__': {'(?:Java Card|JavaCard) [2-3]\\.[0-9](?:\\.[0-9]|)': {'__update__': {'Java Card 3.0.4': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}}}} data.

The computed heuristics were updated.

The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+?': {'__update__': {'FIPS 202': {'__update__': {'count': 1}}}, '__delete__': ['FIPS113', 'FIPS197', 'FIPS 197', 'FIPS 186']}, 'PKCS[ #]*[1-9]+': {'__delete__': ['PKCS#1']}, 'AIS[ ]*[0-9]+?': {'__update__': {'AIS 31': {'__update__': {'count': 1}}}}}}, 'rules_javacard': {'__update__': {'(?:Java Card|JavaCard) [2-3]\\.[0-9](?:\\.[0-9]|)': {'__update__': {'Java Card 3.0.4': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}}}} data.

The algorithms property was updated.
07.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
24.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
22.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
20.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
19.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
17.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
13.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.04.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
11.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
10.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
08.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The following properties were deleted: ['connections'].

The pdf_scan was updated.

The following properties were deleted: ['connections'].

The computed heuristics were updated.

The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}.

The algorithms property was updated.

The following properties were deleted: ['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
23.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The extracted_versions property was set to {'_type': 'Set', 'elements': ['8.1', '2.4.1', '2.4.0']}.
12.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
11.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
03.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
02.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The module_type property was set to Hardware.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
31.01.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
30.01.2022

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 2986,
  "dgst": "41b241da37235677",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#4108",
        "SHS#3380",
        "CVL#921",
        "HMAC#2683",
        "AES#4107",
        "DRBG#1234",
        "AES#4109",
        "SHA-3#6",
        "KAS#48",
        "KTS#4107",
        "KTS#4109",
        "Triple-DES#2245",
        "CVL#954",
        "SHS#3379",
        "RSA#2252",
        "CVL#953",
        "RSA#2253",
        "ECDSA#933",
        "KBKDF#106",
        "KTS#4108"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "2.4.1",
        "8.1",
        "2.4.0"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": {
        "_type": "Set",
        "elements": [
          "3465"
        ]
      },
      "directly_referencing": null,
      "indirectly_referenced_by": {
        "_type": "Set",
        "elements": [
          "3465"
        ]
      },
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": {
        "_type": "Set",
        "elements": [
          "3465"
        ]
      },
      "directly_referencing": null,
      "indirectly_referenced_by": {
        "_type": "Set",
        "elements": [
          "3465"
        ]
      },
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 21
          },
          "ECDSA": {
            "ECDSA": 3
          }
        },
        "FF": {
          "DH": {
            "DH": 1
          }
        },
        "RSA": {
          "RSA 2048": 5,
          "RSA 4096": 2
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        },
        "CTR": {
          "CTR": 1
        },
        "ECB": {
          "ECB": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        },
        "MAC": {
          "MAC": 5
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1,
          "#39": 1,
          "#4108": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES 128 192 256": 1,
          "AES CMAC 128": 1,
          "AES/CMAC 128": 1,
          "HMAC SHA1": 1,
          "PKCS #1": 2,
          "PKCS#1": 2,
          "RSA 2048": 5,
          "RSA 4096": 2,
          "SHA1": 1,
          "SHA384": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA1": 1
          },
          "SHA2": {
            "SHA384": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {
        "JavaCard": {
          "Java Card 3.0.4": 3
        }
      },
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 8
        },
        "RNG": {
          "RNG": 7
        }
      },
      "side_channel_analysis": {
        "FI": {
          "DFA": 1
        },
        "SCA": {
          "DPA": 1,
          "SPA": 1,
          "Side\u2010channel": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 31": 2
        },
        "FIPS": {
          "FIPS 186": 1,
          "FIPS 197": 1,
          "FIPS 202": 2,
          "FIPS113": 1,
          "FIPS197": 1
        },
        "ISO": {
          "ISO/IEC 24787: 2010": 1
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 19
          }
        },
        "DES": {
          "3DES": {
            "3DES": 1,
            "TDEA": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 7,
            "HMAC": 4
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Oberthur": {
          "Oberthur": 2,
          "Oberthur Technologies": 21
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "lgarcia",
      "/CreationDate": "D:20171018160252-07\u002700\u0027",
      "/Creator": "PScript5.dll Version 5.2.2",
      "/ModDate": "D:20171018160252-07\u002700\u0027",
      "/Producer": "Acrobat Distiller 11.0 (Windows)",
      "/Title": "Microsoft Word - 600j- ID-One PIV on Cosmo V8.1 NPIVPCIV Security Policy UL_updated for PIV 2.4.1.docx",
      "pdf_file_size_bytes": 431070,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 19
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "cb8e207a134b5c756c959badafc2c77edc3b9de82201bdff12ccd4c3f9b05de9",
    "policy_txt_hash": "3f2baa4a34797a44a054368ce7ee73e499de43cc253dae5f8b333d0c05a85912"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode and initialized to Overall Level 2 per Security Policy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AugConsolidatedCert.pdf",
    "date_sunset": null,
    "description": "ID-One PIV on Cosmo V8.1 is the next generation of Personal Identification and Verification cards. It has an AES-256 Security Architecture and support both contact and contactless communications. It supports all features described in FIPS 201-2, SP800-73-4 and SP800-76-2 including Virtual Contact Interface and fingerprint on-card comparison. It can be used as a Smart Card (PIV/CIV) to provide physical and logical access control, or embedded in a hardware token for Derived Credentials. Its additional SAM capabilities make it the ideal portable HSM for the post-issuance management of PIV cards.",
    "embodiment": "Single Chip",
    "exceptions": [
      "Cryptographic Module Specification: Level 3",
      "Roles, Services, and Authentication: Level 3",
      "Physical Security: Level 4",
      "EMI/EMC: Level 3",
      "Design Assurance: Level 3"
    ],
    "fw_versions": "Firmware Extension: \u2018086294\u2019+\u2019086683\u2019 (ID-One PIV Applet Suite 2.4.0 on Cosmo V8.1 LARGE) [1], Firmware Extension: \u2018090191\u2019 (ID-One PIV 2.4.1 on Cosmo V8.1 LARGE) [2], Firmware Extension: \u2018086294\u2019+\u2019086693\u2019 (ID-One PIV Applet Suite 2.4.0 on Cosmo V8.1 STD) [3] and Firmware Extension: \u2018090211\u2019 (ID-One PIV 2.4.1 on Cosmo V8.1 STD) [4]",
    "historical_reason": "SP 800-56Arev3 transition",
    "hw_versions": "P/Ns \u201830-5F01\u2019 [1], \u201830-5F02\u2019 [2], \u002740-6001\u0027 [3] and \u201940-6002\u2019 [4]",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "ID-One PIV on Cosmo V8.1",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2017-08-10",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2017-11-09",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Update"
      }
    ],
    "vendor": "Oberthur Technologies",
    "vendor_url": "http://www.oberthur.com"
  }
}

Sections

ID-One PIV on Cosmo V8.1

Certificate #2986

Webpage information

Security policy

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Randomness

Block cipher modes

Device

JavaCard versions

Vendor

Security

Security level

Side-channel analysis

Other

Standards

File metadata

References

Heuristics

References

Updates Feed

Raw data

Toggle raw data