This page was not yet optimized for use on mobile
devices.
HiCOS PKI Native Smart Card Cryptographic Module
Certificate #2595
Webpage information
Security policy
Symmetric Algorithms
DES, DEA, TDES, Triple-DES, TDEA, HMAC, KMAC, CMACAsymmetric Algorithms
RSA 2048, ECDSAHash functions
SHA-1, SHA1, SHA-256, SHA-384, SHA-512, SHA256, SHA384, SHA512Schemes
MACRandomness
DRBG, RNGBlock cipher modes
ECB, CBCSecurity level
Level 2, Level 3, level 3Side-channel analysis
SPA, DPA, timing attacks, DFAStandards
FIPS 140-2, FIPS 186-4, FIPS 180-4, FIPS140-2, FIPS PUB 140-2, NIST SP 800-90A, NIST SP 800-67, NIST SP 800-90, SP 800-57, SP 800-90A, PKCS1, PKCS #1, PKCS#1, RFC 2459, RFC 2313, ISO/IEC 7816-2, ISO/IEC 7816-1, ISO/IEC 7816-4, ISO/IEC 7816-3, ISO/IEC 15408, ISO/IEC 7816, X.509File metadata
| Creation date | D:20171107083146-05'00' |
|---|---|
| Pages | 24 |
| Producer | PDF-XChange Printer 2012 (5.0 build 270 270) [270Windows 7 Enterprise x64 (Build 7601: Service Pack 1)] |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2595,
"dgst": "4a81bf42d193fd4a",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"RSA#1846",
"SHS#2953",
"DRBG#927",
"ECDSA#731",
"CVL#614",
"Triple-DES#1999"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"2.2",
"1.3",
"1.2"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 57
}
},
"RSA": {
"RSA 2048": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"ECB": {
"ECB": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"MAC": {
"MAC": 4
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1": 3,
"#1846": 2,
"#1999": 4,
"#2953": 1,
"#614": 1,
"#731": 2,
"#927": 1
}
},
"fips_certlike": {
"Certlike": {
"#1846 RSA": 1,
"Certificate RSA": 1,
"PKCS #1": 5,
"PKCS#1": 1,
"PKCS1": 4,
"RSA 2048": 1,
"RSA PKCS #1": 1,
"RSA PKCS#1": 1,
"RSA PKCS1": 4,
"SHA-1": 4,
"SHA-1 80": 1,
"SHA-256": 2,
"SHA-384": 2,
"SHA-512": 1,
"SHA-512 256": 1,
"SHA1": 1,
"SHA256": 1,
"SHA384": 1,
"SHA512": 1
}
},
"fips_security_level": {
"Level": {
"Level 2": 2,
"Level 3": 3,
"level 3": 2
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 5,
"SHA1": 1
},
"SHA2": {
"SHA-256": 2,
"SHA-384": 2,
"SHA-512": 2,
"SHA256": 1,
"SHA384": 1,
"SHA512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 20
},
"RNG": {
"RNG": 16
}
},
"side_channel_analysis": {
"FI": {
"DFA": 2
},
"SCA": {
"DPA": 2,
"SPA": 2,
"timing attacks": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140-2": 19,
"FIPS 180-4": 1,
"FIPS 186-4": 6,
"FIPS PUB 140-2": 1,
"FIPS140-2": 1
},
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 7816": 2,
"ISO/IEC 7816-1": 1,
"ISO/IEC 7816-2": 1,
"ISO/IEC 7816-3": 1,
"ISO/IEC 7816-4": 2
},
"NIST": {
"NIST SP 800-67": 1,
"NIST SP 800-90": 1,
"NIST SP 800-90A": 5,
"SP 800-57": 1,
"SP 800-90A": 1
},
"PKCS": {
"PKCS #1": 3,
"PKCS#1": 1,
"PKCS1": 4
},
"RFC": {
"RFC 2313": 1,
"RFC 2459": 1
},
"X509": {
"X.509": 1
}
},
"symmetric_crypto": {
"DES": {
"3DES": {
"TDEA": 1,
"TDES": 14,
"Triple-DES": 39
},
"DES": {
"DEA": 1,
"DES": 4
}
},
"constructions": {
"MAC": {
"CMAC": 3,
"HMAC": 1,
"KMAC": 5
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/CreationDate": "D:20171107083146-05\u002700\u0027",
"/Producer": "PDF-XChange Printer 2012 (5.0 build 270 270) [270Windows 7 Enterprise x64 (Build 7601: Service Pack 1)]",
"pdf_file_size_bytes": 798316,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 24
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "e768cdcb0b086a77e8511fa5e9565e2420379946d65bd196824c608100bb5bd7",
"policy_txt_hash": "9af0598d47655ed6a928187ed21ffc0eba38c8f61829fb0d915f19f5fab3d9e8"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "No assurance of the minimum strength of generated keys",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertMarch2016.pdf",
"date_sunset": null,
"description": "The HiCOS PKI native smart card module is a single chip implementation of a cryptographic module. The HiCOS PKI native smart card module is mounted in an ID-1 class smart card body that adheres to ISO/IEC specifications for Integrated Circuit Chip (ICC) based identification cards. The module consists of the chip (ICC), the contact faceplate, and the electronic connectors between the chip and contact pad, all contained within an epoxy substrate.",
"embodiment": "Single Chip",
"exceptions": [
"Cryptographic Module Ports and Interfaces: Level 3",
"Roles, Services, and Authentication: Level 3",
"Physical Security: Level 3",
"EMI/EMC: Level 3",
"Design Assurance: Level 3"
],
"fw_versions": "HardMask: 2.2 and SoftMask: 1.2 and 1.3",
"historical_reason": "SP 800-131A transition which disallows key wrapping not compliant to SP 800-38F.",
"hw_versions": "RS45C",
"level": 2,
"mentioned_certs": {},
"module_name": "HiCOS PKI Native Smart Card Cryptographic Module",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2016-03-29",
"lab": "CGI Information Systems \u0026 Management Consultants Inc",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2017-11-29",
"lab": "CGI Information Systems \u0026 Management Consultants Inc",
"validation_type": "Update"
}
],
"vendor": "Chunghwa Telecom Co., Ltd.",
"vendor_url": "http://www.cht.com.tw"
}
}