CipherTrust Transparent Encryption Cryptographic Module

Certificate #3987

Webpage information

Status active
Validation dates 19.07.2021
Sunset date 18-07-2026
Standard FIPS 140-2
Security level 1
Type Software-Hybrid
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode.
Exceptions
  • Mitigation of Other Attacks: N/A
Description The Vormetric Transparent Encryption Cryptographic Module is a loadable kernel module. This module comprises a layer that enforces an access and encryption policy upon selected data on end-user systems. The policy specifies a key to be used when writing data to disk and while reading data from disk. This module contains the Vormetric Transparent Encryption Cryptographic Library, which provides all cryptographic services.
Version (Hardware) 5118 and EPXH
Tested configurations
  • AIX 7.1 TL 7100-05-04-1914 running on an IBM 8286-42A with IBM EPXH Power8 with PAA
  • Red Hat Enterprise Linux 7.7 on VMware ESXi 6.5.0 running on a Dell Proliant DL380 with an Intel® Xeon® Gold 5118 Skylake with PAA
  • Windows 2016 Server on VMware ESXi 6.5.0 running on a Dell Proliant DL380 with an Intel® Xeon® Gold 5118 Skylake with PAA
Vendor Thales
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, ARIA, HMAC, HMAC-SHA-256, HMAC-SHA-384
Hash functions
SHA-256, SHA-384, PBKDF, PBKDF2
Randomness
DRBG
Block cipher modes
CBC, XTS

Vendor
Thales

Security level
Level 1, level 1

Standards
FIPS PUB 140-2, FIPS 140-2, SP 800-132, RFC 2898

File metadata

Author Wolfe, Susan
Creation date D:20210707004214-04'00'
Modification date D:20210707004214-04'00'
Pages 16
Creator Microsoft® Word 2016
Producer Microsoft® Word 2016

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 3987,
  "dgst": "452b4dcb2c2a4d93",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#A1287",
        "HMAC#A1287",
        "AES#C1464",
        "SHS#C1464",
        "HMAC#C1464",
        "SHS#A1287",
        "PBKDF#A1287"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "5118"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {},
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "XTS": {
          "XTS": 5
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "# C1464": 4,
          "HMAC SHA-384": 1,
          "HMAC-SHA-256": 6,
          "HMAC-SHA-384": 10,
          "SHA-256": 3,
          "SHA-384": 3
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 4,
          "level 1": 2
        }
      },
      "hash_function": {
        "PBKDF": {
          "PBKDF": 4,
          "PBKDF2": 2
        },
        "SHA": {
          "SHA2": {
            "SHA-256": 3,
            "SHA-384": 3
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 4
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 11,
          "FIPS PUB 140-2": 1
        },
        "NIST": {
          "SP 800-132": 1
        },
        "RFC": {
          "RFC 2898": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 18
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 5,
            "HMAC-SHA-256": 3,
            "HMAC-SHA-384": 5
          }
        },
        "miscellaneous": {
          "ARIA": {
            "ARIA": 5
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Thales": {
          "Thales": 32
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Wolfe, Susan",
      "/CreationDate": "D:20210707004214-04\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2016",
      "/ModDate": "D:20210707004214-04\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2016",
      "pdf_file_size_bytes": 782316,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.vormetric.com/",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31932"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 16
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "d6a3658563f84bc9cb5ad99a66c918717a4fe844c5e998b5c7b42ae4db0abd2a",
    "policy_txt_hash": "9905e5de711c3b462a64c90fd010f3657b9f45500e686525d7a36b81cbbc08c0"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2021_020821_0740_signed.pdf",
    "date_sunset": "2026-07-18",
    "description": "The Vormetric Transparent Encryption Cryptographic Module is a loadable kernel module. This module comprises a layer that enforces an access and encryption policy upon selected data on end-user systems. The policy specifies a key to be used when writing data to disk and while reading data from disk. This module contains the Vormetric Transparent Encryption Cryptographic Library, which provides all cryptographic services.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": "5118 and EPXH",
    "level": 1,
    "mentioned_certs": {},
    "module_name": "CipherTrust Transparent Encryption Cryptographic Module",
    "module_type": "Software-Hybrid",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": "2.0",
    "tested_conf": [
      "AIX 7.1 TL 7100-05-04-1914 running on an IBM 8286-42A with IBM EPXH Power8 with PAA",
      "Red Hat Enterprise Linux 7.7 on VMware ESXi 6.5.0 running on a Dell Proliant DL380 with an Intel\u00ae Xeon\u00ae Gold 5118 Skylake with PAA",
      "Windows 2016 Server on VMware ESXi 6.5.0 running on a Dell Proliant DL380 with an Intel\u00ae Xeon\u00ae Gold 5118 Skylake with PAA"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2021-07-19",
        "lab": "CYGNACOM SOLUTIONS INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Thales",
    "vendor_url": "http://www.thalesgroup.com"
  }
}