BlackBerry Cryptographic Tool Kit

Certificate #2402

Webpage information

Status historical
Historical reason 186-2 transition
Validation dates 01.07.2015 , 16.03.2016 , 03.06.2016
Standard FIPS 140-2
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode
Exceptions
  • Physical Security: N/A
Description The BlackBerry Cryptographic Tool Kit is a standards-based cryptographic toolkit that supports optimized Elliptic Curve Cryptography and provides application developers with sophisticated tools to flexibly integrate encryption, digital signatures and other security mechanisms into both mobile and server-based applications. The BlackBerry Cryptographic Tool Kit, part of the suite of BlackBerry cryptographic modules, provides application developers with a means to expand the secure capabilities and features BlackBerry is known for, to devices running operating systems other than BlackBerry OS.
Tested configurations
  • Android 4.0.4
  • Android 4.4.2
  • Android 5.0.1
  • CentOS Linux Release 7.1 64-bit
  • iOS 8.0
  • iOS version 6.1.4
  • Mac OS X El Capitan 10.11.4 (single-user mode)
  • Mac OS X Yosemite 10.10.4
  • QNX Neutrino 6.5
  • QNX Neutrino 6.6
  • Red Hat Linux AS 5.6
  • Windows 7 Enterprise 32 bit
  • Windows 7 Enterprise 64 bit
  • Windows Phone 8.0
Vendor BlackBerry Limited
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy

Symmetric Algorithms
AES, DES, TDES, Triple-DES, HMAC, HMAC-SHA-224, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512, CMAC, CBC-MAC
Asymmetric Algorithms
ECDH, ECDSA, ECIES, ECC, DH, Diffie-Hellman, DSA
Hash functions
SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, MD4, MD5
Schemes
MAC, KEM, Key agreement
Randomness
DRBG, RNG
Block cipher modes
ECB, CBC, CTR, CFB, OFB, GCM, CCM, XTS

Security level
Level 1
Side-channel analysis
Timing attack, timing attacks, Timing Attacks, Bleichenbacher attack

Standards
FIPS 140-2, FIPS 46-3, FIPS 197, FIPS 180-4, FIPS 198, FIPS 186-4, FIPS 186-2, FIPS PUB 140-2, NIST SP 800-90A, NIST SP 800-56A, NIST SP 800-56B, NIST SP 800-131A, SP 800-131A, PKCS1, PKCS#1, RFC 2268, RFC 1321, RFC 1320, RFC 1115, RFC 2104, RFC 3566

File metadata

Title FIPS 140-2 Security Policy
Subject Module name
Keywords FIPS, 140-2, Security Policy, validation, certification
Author Randy Eyamie
Creation date D:20160530144734-04'00'
Modification date D:20160530144734-04'00'
Pages 33
Creator Microsoft® Word 2016
Producer Microsoft® Word 2016

References

Outgoing
  • 67 - historical - CERTIFAX Fax Encryptor CF3102

Heuristics

No heuristics are available for this certificate.

References

Loading...

Updates Feed

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 2402,
  "dgst": "4708f9c61a5e58b7",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "HMAC#1054",
        "DSA#563",
        "SHS#1571",
        "AES#3029",
        "DRBG#127",
        "KAS#25",
        "ECDSA#553",
        "Triple-DES#1773",
        "CVL#367",
        "RSA#2017",
        "CVL#789",
        "DSA#891",
        "ECDSA#242",
        "RSA#1574",
        "Triple-DES#2164",
        "RSA#894",
        "HMAC#2571",
        "CVL#7",
        "DRBG#1151",
        "HMAC#1914",
        "DSA#1076",
        "AES#1789",
        "KAS#79",
        "Triple-DES#1159",
        "DRBG#579",
        "KAS#50",
        "SHS#3256",
        "ECDSA#866",
        "SHS#2530"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "67"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "67"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "67"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 2
          },
          "ECDH": {
            "ECDH": 8
          },
          "ECDSA": {
            "ECDSA": 9
          },
          "ECIES": {
            "ECIES": 3
          }
        },
        "FF": {
          "DH": {
            "DH": 10,
            "Diffie-Hellman": 4
          },
          "DSA": {
            "DSA": 10
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 6
        },
        "CCM": {
          "CCM": 3
        },
        "CFB": {
          "CFB": 1
        },
        "CTR": {
          "CTR": 2
        },
        "ECB": {
          "ECB": 6
        },
        "GCM": {
          "GCM": 3
        },
        "OFB": {
          "OFB": 1
        },
        "XTS": {
          "XTS": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "KA": {
          "Key agreement": 1
        },
        "KEM": {
          "KEM": 2
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1054": 5,
          "#1076": 1,
          "#1151": 1,
          "#1159": 1,
          "#127": 1,
          "#1571": 5,
          "#1773": 1,
          "#1789": 1,
          "#1914": 5,
          "#2017": 2,
          "#2164": 1,
          "#242": 1,
          "#25": 3,
          "#2530": 5,
          "#2571": 5,
          "#3029": 1,
          "#3256": 5,
          "#3946": 1,
          "#50": 3,
          "#553": 1,
          "#563": 1,
          "#579": 1,
          "#67": 1,
          "#7": 1,
          "#789": 1,
          "#79": 2,
          "#866": 1,
          "#891": 1,
          "#894": 2
        }
      },
      "fips_certlike": {
        "Certlike": {
          "#2017 RSA": 1,
          "#2164 AES": 1,
          "#3946 AES": 1,
          "#866 RSA": 1,
          "DSA 10": 1,
          "HMAC-SHA-1": 4,
          "HMAC-SHA-224": 2,
          "HMAC-SHA-256": 2,
          "HMAC-SHA-384": 2,
          "HMAC-SHA-512": 2,
          "PKCS#1": 6,
          "PKCS1": 3,
          "RSA PKCS1": 3,
          "SHA-1": 2,
          "SHA-224": 1,
          "SHA-256": 1,
          "SHA-384": 1,
          "SHA-512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 4
        }
      },
      "hash_function": {
        "MD": {
          "MD4": {
            "MD4": 2
          },
          "MD5": {
            "MD5": 2
          }
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 2
          },
          "SHA2": {
            "SHA-224": 1,
            "SHA-256": 1,
            "SHA-384": 1,
            "SHA-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 7
        },
        "RNG": {
          "RNG": 10
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "Timing Attacks": 2,
          "Timing attack": 2,
          "timing attacks": 1
        },
        "other": {
          "Bleichenbacher attack": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 14,
          "FIPS 180-4": 5,
          "FIPS 186-2": 1,
          "FIPS 186-4": 4,
          "FIPS 197": 1,
          "FIPS 198": 5,
          "FIPS 46-3": 1,
          "FIPS PUB 140-2": 7
        },
        "NIST": {
          "NIST SP 800-131A": 1,
          "NIST SP 800-56A": 4,
          "NIST SP 800-56B": 1,
          "NIST SP 800-90A": 1,
          "SP 800-131A": 1
        },
        "PKCS": {
          "PKCS#1": 3,
          "PKCS1": 3
        },
        "RFC": {
          "RFC 1115": 1,
          "RFC 1320": 1,
          "RFC 1321": 1,
          "RFC 2104": 1,
          "RFC 2268": 1,
          "RFC 3566": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 10
          }
        },
        "DES": {
          "3DES": {
            "TDES": 5,
            "Triple-DES": 2
          },
          "DES": {
            "DES": 3
          }
        },
        "constructions": {
          "MAC": {
            "CBC-MAC": 1,
            "CMAC": 2,
            "HMAC": 4,
            "HMAC-SHA-224": 1,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Randy Eyamie",
      "/CreationDate": "D:20160530144734-04\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2016",
      "/Keywords": "FIPS, 140-2, Security Policy, validation, certification",
      "/ModDate": "D:20160530144734-04\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2016",
      "/Subject": "Module name",
      "/Title": "FIPS 140-2 Security Policy",
      "pdf_file_size_bytes": 601557,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf",
          "http://ca.blackberry.com/",
          "http://www.blackberry.com/",
          "mailto:[email protected]"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 33
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.InternalState",
    "module": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "source_hash": null,
      "txt_hash": null
    },
    "policy": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "source_hash": "5b700d27f9c4fdef299a963e1a84c2127f5044d71d361db695c1bc6dd44289a9",
      "txt_hash": "0ba6a791777cb1913e7b815fb8bdbc3789b7bf961dcb72207be54bd24213922d"
    }
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertList0055.pdf",
    "date_sunset": null,
    "description": "The BlackBerry Cryptographic Tool Kit is a standards-based cryptographic toolkit that supports optimized Elliptic Curve Cryptography and provides application developers with sophisticated tools to flexibly integrate encryption, digital signatures and other security mechanisms into both mobile and server-based applications. The BlackBerry Cryptographic Tool Kit, part of the suite of BlackBerry cryptographic modules, provides application developers with a means to expand the secure capabilities and features BlackBerry is known for, to devices running operating systems other than BlackBerry OS.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical Security: N/A"
    ],
    "fw_versions": null,
    "historical_reason": "186-2 transition",
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "BlackBerry Cryptographic Tool Kit",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": "6.0, 6.0.2 and 6.0.3",
    "tested_conf": [
      "Android 4.0.4",
      "Android 4.4.2",
      "Android 5.0.1",
      "CentOS Linux Release 7.1 64-bit",
      "iOS 8.0",
      "iOS version 6.1.4",
      "Mac OS X El Capitan 10.11.4 (single-user mode)",
      "Mac OS X Yosemite 10.10.4",
      "QNX Neutrino 6.5",
      "QNX Neutrino 6.6",
      "Red Hat Linux AS 5.6",
      "Windows 7 Enterprise 32 bit",
      "Windows 7 Enterprise 64 bit",
      "Windows Phone 8.0"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2015-07-01",
        "lab": "CGI Information Systems \u0026 Management Consultants Inc",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2016-03-16",
        "lab": "CGI Information Systems \u0026 Management Consultants Inc",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2016-06-03",
        "lab": "CGI Information Systems \u0026 Management Consultants Inc",
        "validation_type": "Update"
      }
    ],
    "vendor": "BlackBerry Limited",
    "vendor_url": "http://www.blackberry.com"
  }
}