Red Hat Enterprise Linux 7 NSS Cryptographic Module

This certificate has known related CVEs, which means that the certified product might be vulnerable.

Certificate #4498

Webpage information ?

Status active
Validation dates 02.05.2023
Sunset date 23-03-2026
Standard FIPS 140-2
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 2
Description Network Security Services (NSS) is a set of open source C libraries designed to support cross-platform development of security-enabled applications. NSS implements major Internet security standards. NSS is available free of charge under a variety of open source compatible licenses. See http://www.mozilla.org/projects/security/pki/nss/.
Tested configurations
  • Red Hat Enterprise Linux 7 running on Dell PowerEdge R630 with an Intel(R) Xeon(R) E5 with PAA
  • Red Hat Enterprise Linux 7 running on Dell PowerEdge R630 with an Intel(R) Xeon(R) E5 without PAA (single-user mode)
Vendor Red Hat®, Inc.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, RC2, RC5, RC4, DES, Triple-DES, TDEA, Camellia, SEED, HMAC, HMAC-SHA-224, HMAC-SHA-256, HMAC-SHA-512
Asymmetric Algorithms
RSA 2048, RSA 1024, ECDSA, Diffie-Hellman, DSA
Hash functions
SHA-1, SHA-256, SHA-224, SHA-512, SHA-384, MD5, PBKDF, PBKDF1
Schemes
MAC, AEAD
Protocols
TLS, TLS v1.0, TLS v1.1, TLS v1.2, IKE
Randomness
DRBG
Libraries
NSS
Elliptic Curves
P-384, P-521, P-256
Block cipher modes
ECB, CBC, CTR, GCM

Security level
Level 1, level 1
Side-channel analysis
Timing attacks, Timing attack, timing attacks, Timing Attacks

Standards
FIPS 140-2, FIPS186-4, FIPS 197, FIPS 180-4, FIPS 198-1, FIPS 186-4, NIST SP 800-56B, SP 800-90A, NIST SP 800-38A, NIST SP 800-38D, NIST SP 800-38F, NIST SP 800-56A, NIST SP 800-67, NIST SP 800-90A, PKCS #11, PKCS#1

File metadata

Title FIPS 140-2 Non-Proprietary Security Policy
Subject Red Hat Enterprise Linux NSS Cryptographic Module
Author Alejandro Fabio Masino
Creation date D:20230320152219-05'00'
Pages 36
Creator Writer
Producer LibreOffice 7.3

Heuristics ?

Related CVEs

ID Links Severity CVSS Score Published on
Base Exploitability Impact
CVE-1999-0037
C M N
HIGH 7.5 6.4 21.05.1997 04:00
CVE-1999-0297
C M N
HIGH 7.2 10.0 12.12.1996 05:00
CVE-1999-0798
C M N
HIGH 10.0 10.0 04.12.1998 05:00
CVE-1999-0894
C M N
HIGH 10.0 10.0 04.01.2000 05:00
CVE-1999-1288
C M N
MEDIUM 4.6 6.4 19.11.1998 05:00
CVE-2000-0017
C M N
HIGH 10.0 10.0 21.12.1999 05:00
CVE-2000-0701
C M N
MEDIUM 4.6 6.4 20.10.2000 04:00
CVE-2000-0816
C M N
LOW 2.1 2.9 06.10.2000 04:00
CVE-2000-0917
C M N
HIGH 10.0 10.0 19.12.2000 05:00
CVE-2000-0963
C M N
HIGH 7.2 10.0 19.12.2000 05:00
CVE-2000-1095
C M N
HIGH 7.2 10.0 09.01.2001 05:00
CVE-2000-1207
C M N
HIGH 7.2 10.0 30.09.2000 04:00
CVE-2000-1208
C M N
HIGH 7.2 10.0 12.08.2002 04:00
CVE-2000-1213
C M N
HIGH 7.5 6.4 18.10.2000 04:00
CVE-2000-1214
C M N
MEDIUM 4.6 6.4 18.10.2000 04:00
CVE-2001-0116
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0117
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0118
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0119
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0120
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0128
C M N
HIGH 7.2 10.0 12.03.2001 05:00
CVE-2001-0138
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0139
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0140
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0142
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0143
C M N
LOW 1.2 2.9 12.03.2001 05:00
CVE-2001-0197
C M N
HIGH 10.0 10.0 26.03.2001 05:00
CVE-2001-0233
C M N
HIGH 10.0 10.0 26.03.2001 05:00
CVE-2001-0439
C M N
HIGH 7.5 6.4 02.07.2001 04:00
CVE-2001-0441
C M N
HIGH 7.5 6.4 27.06.2001 04:00
CVE-2001-0473
C M N
HIGH 7.5 6.4 27.06.2001 04:00
CVE-2001-0635
C M N
MEDIUM 4.6 6.4 14.08.2001 04:00
CVE-2001-0641
C M N
MEDIUM 4.6 6.4 20.09.2001 04:00
CVE-2001-0690
C M N
HIGH 7.5 6.4 20.09.2001 04:00
CVE-2001-0736
C M N
LOW 2.1 2.9 18.10.2001 04:00
CVE-2001-0787
C M N
MEDIUM 4.6 6.4 18.10.2001 04:00
CVE-2001-0852
C M N
MEDIUM 5.0 2.9 06.12.2001 05:00
CVE-2001-0859
C M N
MEDIUM 5.0 2.9 06.12.2001 05:00
CVE-2001-0869
C M N
HIGH 7.5 6.4 21.12.2001 05:00
CVE-2001-0872
C M N
HIGH 7.2 10.0 21.12.2001 05:00
CVE-2001-0886
C M N
MEDIUM 4.6 6.4 21.12.2001 05:00
CVE-2001-0889
C M N
HIGH 7.5 6.4 19.12.2001 05:00
CVE-2001-0946
C M N
LOW 3.6 4.9 04.12.2001 05:00
CVE-2001-0977
C M N
MEDIUM 5.0 2.9 16.07.2001 04:00
CVE-2001-1002
C M N
HIGH 7.5 6.4 31.08.2001 04:00
CVE-2001-1013
C M N
MEDIUM 5.0 2.9 12.09.2001 04:00
CVE-2001-1030
C M N
HIGH 7.5 6.4 18.07.2001 04:00
CVE-2001-1374
C M N
HIGH 7.2 10.0 19.07.2001 04:00
CVE-2001-1375
C M N
MEDIUM 4.6 6.4 19.07.2001 04:00
CVE-2001-1383
C M N
MEDIUM 6.2 10.0 26.09.2001 04:00
CVE-2002-0002
C M N
HIGH 7.5 6.4 31.01.2002 05:00
CVE-2002-0044
C M N
LOW 3.6 4.9 31.01.2002 05:00
CVE-2002-0045
C M N
HIGH 7.5 6.4 31.01.2002 05:00
CVE-2002-0080
C M N
LOW 2.1 2.9 15.03.2002 05:00
CVE-2002-0083
C M N
CRITICAL 9.8 5.9 15.03.2002 05:00
CVE-2002-0638
C M N
MEDIUM 6.2 10.0 12.08.2002 04:00
CVE-2002-0836
C M N
HIGH 7.5 6.4 28.10.2002 05:00
CVE-2002-1155
C M N
HIGH 7.2 10.0 16.06.2003 04:00
CVE-2002-1160
C M N
HIGH 7.2 10.0 19.02.2003 05:00
CVE-2002-1232
C M N
MEDIUM 5.0 2.9 04.11.2002 05:00
CVE-2002-1509
C M N
LOW 3.6 4.9 03.03.2003 05:00
CVE-2003-0041
C M N
HIGH 10.0 10.0 19.02.2003 05:00
CVE-2003-0188
C M N
HIGH 7.2 10.0 09.06.2003 04:00
CVE-2003-0194
C M N
MEDIUM 4.6 6.4 09.06.2003 04:00
CVE-2003-0247
C M N
MEDIUM 5.0 2.9 16.06.2003 04:00
CVE-2003-0248
C M N
HIGH 10.0 10.0 16.06.2003 04:00
CVE-2003-0354
C M N
HIGH 7.5 6.4 16.06.2003 04:00
CVE-2003-0364
C M N
MEDIUM 5.0 2.9 16.06.2003 04:00
CVE-2003-0370
C M N
HIGH 7.5 6.4 16.06.2003 04:00
CVE-2003-0434
C M N
HIGH 7.5 6.4 24.07.2003 04:00
CVE-2003-0461
C M N
LOW 2.1 2.9 27.08.2003 04:00
CVE-2003-0464
C M N
MEDIUM 4.6 6.4 27.08.2003 04:00
CVE-2004-0079
C M N
HIGH 7.5 3.6 23.11.2004 05:00
CVE-2004-0081
C M N
MEDIUM 5.0 2.9 23.11.2004 05:00
CVE-2004-0112
C M N
MEDIUM 5.0 2.9 23.11.2004 05:00
CVE-2004-0902
C M N
HIGH 10.0 10.0 27.01.2005 05:00
CVE-2004-0903
C M N
HIGH 10.0 10.0 27.01.2005 05:00
CVE-2004-0904
C M N
HIGH 10.0 10.0 31.12.2004 05:00
CVE-2004-0905
C M N
MEDIUM 4.6 6.4 14.09.2004 04:00
CVE-2004-1025
C M N
HIGH 10.0 10.0 10.01.2005 05:00
CVE-2004-1026
C M N
HIGH 10.0 10.0 10.01.2005 05:00
CVE-2004-1333
C M N
LOW 2.1 2.9 15.12.2004 05:00
CVE-2004-1334
C M N
LOW 2.1 2.9 15.12.2004 05:00
CVE-2004-1335
C M N
LOW 2.1 2.9 15.12.2004 05:00
CVE-2004-1613
C M N
MEDIUM 5.0 2.9 18.10.2004 04:00
CVE-2005-0750
C M N
HIGH 7.2 10.0 27.03.2005 05:00
CVE-2007-3103
C M N
MEDIUM 6.2 10.0 15.07.2007 22:30
CVE-2011-2767
C M N
CRITICAL 9.8 5.9 26.08.2018 16:29
CVE-2015-5229
C M N
HIGH 7.5 3.6 08.04.2016 15:59
CVE-2015-7833
C M N
MEDIUM 4.9 6.9 19.10.2015 10:59
CVE-2015-7837
C M N
MEDIUM 5.5 3.6 19.09.2017 16:29
CVE-2016-3616
C M N
HIGH 8.8 5.9 13.02.2017 18:59
CVE-2016-3699
C M N
HIGH 7.4 5.9 07.10.2016 14:59
CVE-2016-7091
C M N
MEDIUM 4.4 3.6 22.12.2016 21:59
CVE-2016-9675
C M N
HIGH 7.8 5.9 22.12.2016 21:59
CVE-2017-1000253
C M N
HIGH 7.8 5.9 05.10.2017 01:29
CVE-2017-15134
C M N
HIGH 7.5 3.6 01.03.2018 22:29
CVE-2017-15710
C M N
HIGH 7.5 3.6 26.03.2018 15:29
CVE-2017-15715
C M N
HIGH 8.1 5.9 26.03.2018 15:29
CVE-2017-5645
C M N
CRITICAL 9.8 5.9 17.04.2017 21:59
CVE-2018-1000199
C M N
MEDIUM 5.5 3.6 24.05.2018 13:29
CVE-2018-1002200
C M N
MEDIUM 5.5 3.6 25.07.2018 17:29
CVE-2018-10184
C M N
HIGH 7.5 3.6 09.05.2018 07:29
CVE-2018-1079
C M N
MEDIUM 6.5 3.6 12.04.2018 17:29
CVE-2018-1111
C M N
HIGH 7.5 5.9 17.05.2018 16:29
CVE-2018-1124
C M N
HIGH 7.8 5.9 23.05.2018 13:29
CVE-2018-11763
C M N
MEDIUM 5.9 3.6 25.09.2018 21:29
CVE-2018-12372
C M N
MEDIUM 6.5 3.6 18.10.2018 13:29
CVE-2018-12373
C M N
MEDIUM 6.5 3.6 18.10.2018 13:29
CVE-2018-12374
C M N
MEDIUM 4.3 1.4 18.10.2018 13:29
CVE-2018-1283
C M N
MEDIUM 5.3 3.6 26.03.2018 15:29
CVE-2018-1301
C M N
MEDIUM 5.9 3.6 26.03.2018 15:29
CVE-2018-14618
C M N
CRITICAL 9.8 5.9 05.09.2018 19:29
CVE-2018-14645
C M N
HIGH 7.5 3.6 21.09.2018 13:29
CVE-2018-16395
C M N
CRITICAL 9.8 5.9 16.11.2018 18:29
CVE-2018-16396
C M N
HIGH 8.1 5.9 16.11.2018 18:29
CVE-2018-16850
C M N
CRITICAL 9.8 5.9 13.11.2018 15:29
CVE-2018-16866
C M N
LOW 3.3 1.4 11.01.2019 19:29
CVE-2018-17456
C M N
CRITICAL 9.8 5.9 06.10.2018 14:29
CVE-2018-18311
C M N
CRITICAL 9.8 5.9 07.12.2018 21:29
CVE-2018-18312
C M N
CRITICAL 9.8 5.9 05.12.2018 22:29
CVE-2018-18313
C M N
CRITICAL 9.1 5.2 07.12.2018 21:29
CVE-2018-18314
C M N
CRITICAL 9.8 5.9 07.12.2018 21:29
CVE-2018-20615
C M N
HIGH 7.5 3.6 21.03.2019 16:00
CVE-2018-3760
C M N
HIGH 7.5 3.6 26.06.2018 19:29
CVE-2018-6914
C M N
HIGH 7.5 3.6 03.04.2018 22:29
CVE-2018-8777
C M N
HIGH 7.5 3.6 03.04.2018 22:29
CVE-2018-8778
C M N
HIGH 7.5 3.6 03.04.2018 22:29
CVE-2019-12384
C M N
MEDIUM 5.9 3.6 24.06.2019 16:15
CVE-2019-14816
C M N
HIGH 7.8 5.9 20.09.2019 19:15
CVE-2019-9636
C M N
CRITICAL 9.8 5.9 08.03.2019 21:29
CVE-2021-3672
C M N
MEDIUM 5.6 3.4 23.11.2021 19:15
Showing 5 out of 132.

References ?

No references are available for this certificate.

Updates ?

  • 14.10.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:redhat:enterprise_linux:7.9:*:*:*:*:*:*:*', 'cpe:2.3:o:redhat:enterprise_linux:7.8:*:*:*:*:*:*:*']} values added.
    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2000-0701', 'CVE-2001-1030', 'CVE-2000-1095', 'CVE-2018-18312', 'CVE-2001-0439', 'CVE-2001-1374', 'CVE-2001-0138', 'CVE-2002-1509', 'CVE-2001-0119', 'CVE-2018-11763', 'CVE-2011-2767', 'CVE-2001-0852', 'CVE-2000-1207', 'CVE-2001-0635', 'CVE-2018-1000199', 'CVE-2001-1375', 'CVE-2002-0044', 'CVE-2001-0889', 'CVE-2003-0370', 'CVE-2018-1124', 'CVE-2004-1333', 'CVE-2001-0977', 'CVE-2018-1111', 'CVE-2004-0905', 'CVE-2001-0641', 'CVE-2001-0142', 'CVE-2018-14645', 'CVE-2001-0233', 'CVE-2018-17456', 'CVE-2002-0080', 'CVE-2002-0002', 'CVE-2001-0117', 'CVE-2003-0461', 'CVE-2002-1155', 'CVE-2000-1214', 'CVE-2003-0464', 'CVE-2000-1213', 'CVE-2018-10184', 'CVE-2019-14816', 'CVE-2007-3103', 'CVE-2018-18314', 'CVE-2001-0139', 'CVE-2018-18311', 'CVE-2000-0017', 'CVE-2003-0188', 'CVE-2003-0354', 'CVE-2001-0946', 'CVE-2003-0194', 'CVE-2004-0079', 'CVE-2001-0143', 'CVE-2004-1334', 'CVE-2002-0083', 'CVE-2018-20615', 'CVE-2001-1383', 'CVE-1999-1288', 'CVE-2004-0112', 'CVE-2003-0247', 'CVE-2001-0859', 'CVE-2004-1613', 'CVE-2002-0638', 'CVE-1999-0798', 'CVE-2002-1160', 'CVE-2003-0434', 'CVE-2001-0441', 'CVE-2002-0836', 'CVE-2001-0120', 'CVE-2004-1335', 'CVE-2001-0197', 'CVE-2003-0364', 'CVE-2001-0736', 'CVE-2002-0045', 'CVE-2019-9636', 'CVE-2001-0872', 'CVE-2001-0886', 'CVE-2001-0128', 'CVE-2001-0118', 'CVE-2001-0690', 'CVE-2001-0116', 'CVE-2000-0816', 'CVE-2003-0248', 'CVE-2000-0917', 'CVE-2001-0473', 'CVE-2000-0963', 'CVE-2001-0140', 'CVE-2004-0904', 'CVE-1999-0297', 'CVE-2002-1232', 'CVE-2018-16866', 'CVE-2000-1208', 'CVE-1999-0037', 'CVE-2019-12384', 'CVE-2001-0869', 'CVE-1999-0894', 'CVE-2003-0041', 'CVE-2001-1013', 'CVE-2018-18313', 'CVE-2004-0081', 'CVE-2018-14618', 'CVE-2001-0787', 'CVE-2001-1002']} values added.
  • 01.10.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2001-1030', 'CVE-2000-0701', 'CVE-2000-1095', 'CVE-2018-18312', 'CVE-2001-0439', 'CVE-2001-1374', 'CVE-2001-0138', 'CVE-2002-1509', 'CVE-2001-0119', 'CVE-2018-11763', 'CVE-2011-2767', 'CVE-2001-0852', 'CVE-2000-1207', 'CVE-2018-1000199', 'CVE-2001-0635', 'CVE-2001-1375', 'CVE-2002-0044', 'CVE-2001-0889', 'CVE-2003-0370', 'CVE-2018-1124', 'CVE-2004-1333', 'CVE-2001-0977', 'CVE-2018-1111', 'CVE-2004-0905', 'CVE-2001-0641', 'CVE-2001-0142', 'CVE-2018-14645', 'CVE-2001-0233', 'CVE-2018-17456', 'CVE-2002-0080', 'CVE-2002-0002', 'CVE-2001-0117', 'CVE-2003-0461', 'CVE-2002-1155', 'CVE-2000-1214', 'CVE-2003-0464', 'CVE-2000-1213', 'CVE-2018-10184', 'CVE-2007-3103', 'CVE-2018-18314', 'CVE-2001-0139', 'CVE-2018-18311', 'CVE-2000-0017', 'CVE-2003-0188', 'CVE-2003-0354', 'CVE-2001-0946', 'CVE-2003-0194', 'CVE-2004-0079', 'CVE-2001-0143', 'CVE-2004-1334', 'CVE-2002-0083', 'CVE-2018-20615', 'CVE-2001-1383', 'CVE-1999-1288', 'CVE-2004-0112', 'CVE-2003-0247', 'CVE-2001-0859', 'CVE-2004-1613', 'CVE-2002-0638', 'CVE-1999-0798', 'CVE-2002-1160', 'CVE-2003-0434', 'CVE-2001-0441', 'CVE-2002-0836', 'CVE-2001-0120', 'CVE-2004-1335', 'CVE-2001-0197', 'CVE-2003-0364', 'CVE-2002-0045', 'CVE-2001-0736', 'CVE-2019-9636', 'CVE-2001-0872', 'CVE-2001-0886', 'CVE-2001-0128', 'CVE-2001-0118', 'CVE-2001-0690', 'CVE-2001-0116', 'CVE-2000-0816', 'CVE-2003-0248', 'CVE-2000-0917', 'CVE-2001-0473', 'CVE-2000-0963', 'CVE-2001-0140', 'CVE-2004-0904', 'CVE-1999-0297', 'CVE-2002-1232', 'CVE-2018-16866', 'CVE-2001-0869', 'CVE-2000-1208', 'CVE-2019-12384', 'CVE-1999-0037', 'CVE-1999-0894', 'CVE-2001-1013', 'CVE-2018-18313', 'CVE-2004-0081', 'CVE-2001-0787', 'CVE-2018-14618', 'CVE-2001-1002']} values discarded.
  • 26.06.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf.
  • 18.05.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4498,
  "dgst": "4c97149849c06376",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "Triple-DES#C1387",
        "CVL#C1387",
        "DRBG#C1387",
        "Triple-DES#C1420",
        "AES#C1420",
        "AES#C1388",
        "DRBG#C1420",
        "DSA#C1387",
        "ECDSA#C1387",
        "CVL#C1420",
        "AES#C1387",
        "ECDSA#C1420",
        "RSA#C1420",
        "HMAC#C1387",
        "SHS#C1420",
        "SHS#C1387",
        "HMAC#C1420",
        "AES#C1421",
        "DSA#C1420",
        "RSA#C1387"
      ]
    },
    "cpe_matches": {
      "_type": "Set",
      "elements": [
        "cpe:2.3:o:redhat:linux:7.0:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.2:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.4:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.7:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:linux:7.2:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.5:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:linux:7.1:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.6:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:linux:7.3:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.3:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.9:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:linux:7:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.8:*:*:*:*:*:*:*",
        "cpe:2.3:o:redhat:enterprise_linux:7.1:*:*:*:*:*:*:*"
      ]
    },
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "7"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": {
      "_type": "Set",
      "elements": [
        "CVE-2002-1232",
        "CVE-2001-0473",
        "CVE-2001-0233",
        "CVE-2018-6914",
        "CVE-2016-3616",
        "CVE-2004-0902",
        "CVE-2001-0889",
        "CVE-2001-0138",
        "CVE-2002-0083",
        "CVE-2005-0750",
        "CVE-2018-10184",
        "CVE-2018-12373",
        "CVE-2001-0118",
        "CVE-2000-0701",
        "CVE-2007-3103",
        "CVE-2018-1002200",
        "CVE-2018-17456",
        "CVE-2018-18314",
        "CVE-2018-8778",
        "CVE-2000-0017",
        "CVE-2018-1283",
        "CVE-2001-0143",
        "CVE-1999-0798",
        "CVE-2016-7091",
        "CVE-2018-3760",
        "CVE-2003-0364",
        "CVE-2019-14816",
        "CVE-2002-0080",
        "CVE-2001-1375",
        "CVE-1999-1288",
        "CVE-2018-1111",
        "CVE-2003-0354",
        "CVE-2018-20615",
        "CVE-2003-0434",
        "CVE-2001-0120",
        "CVE-2001-0197",
        "CVE-2002-0002",
        "CVE-2000-1214",
        "CVE-2004-1335",
        "CVE-2001-0441",
        "CVE-2000-1208",
        "CVE-2001-0119",
        "CVE-2004-0112",
        "CVE-2018-12372",
        "CVE-2001-0736",
        "CVE-2001-0116",
        "CVE-2017-15134",
        "CVE-2001-0139",
        "CVE-2018-1079",
        "CVE-2001-0117",
        "CVE-2000-1207",
        "CVE-2003-0188",
        "CVE-2018-11763",
        "CVE-2001-1002",
        "CVE-2002-1509",
        "CVE-2004-1333",
        "CVE-2004-1025",
        "CVE-2000-0963",
        "CVE-2017-15715",
        "CVE-2018-16866",
        "CVE-2003-0247",
        "CVE-2004-0081",
        "CVE-2015-7833",
        "CVE-2004-1026",
        "CVE-2002-0045",
        "CVE-2019-12384",
        "CVE-2002-1155",
        "CVE-2018-1124",
        "CVE-2001-0852",
        "CVE-2001-0886",
        "CVE-2003-0248",
        "CVE-2004-1613",
        "CVE-2001-0859",
        "CVE-2001-1030",
        "CVE-2018-14618",
        "CVE-2011-2767",
        "CVE-2017-1000253",
        "CVE-2018-18311",
        "CVE-2003-0041",
        "CVE-2018-8777",
        "CVE-1999-0297",
        "CVE-2001-0977",
        "CVE-2001-0635",
        "CVE-2001-0641",
        "CVE-1999-0037",
        "CVE-2001-0142",
        "CVE-2001-0946",
        "CVE-2003-0464",
        "CVE-2000-0917",
        "CVE-2019-9636",
        "CVE-2001-1383",
        "CVE-2004-0079",
        "CVE-2015-5229",
        "CVE-2018-16395",
        "CVE-2021-3672",
        "CVE-2002-1160",
        "CVE-2018-16850",
        "CVE-1999-0894",
        "CVE-2018-16396",
        "CVE-2001-0869",
        "CVE-2015-7837",
        "CVE-2001-1013",
        "CVE-2002-0044",
        "CVE-2017-15710",
        "CVE-2001-0872",
        "CVE-2002-0638",
        "CVE-2001-0439",
        "CVE-2016-3699",
        "CVE-2018-18313",
        "CVE-2001-0128",
        "CVE-2003-0370",
        "CVE-2003-0461",
        "CVE-2017-5645",
        "CVE-2000-0816",
        "CVE-2000-1095",
        "CVE-2018-1301",
        "CVE-2001-0787",
        "CVE-2018-18312",
        "CVE-2001-1374",
        "CVE-2004-1334",
        "CVE-2001-0690",
        "CVE-2002-0836",
        "CVE-2003-0194",
        "CVE-2018-12374",
        "CVE-2001-0140",
        "CVE-2004-0903",
        "CVE-2018-14645",
        "CVE-2016-9675",
        "CVE-2000-1213",
        "CVE-2018-1000199",
        "CVE-2004-0905",
        "CVE-2004-0904"
      ]
    },
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDSA": {
            "ECDSA": 15
          }
        },
        "FF": {
          "DH": {
            "Diffie-Hellman": 4
          },
          "DSA": {
            "DSA": 31
          }
        },
        "RSA": {
          "RSA 1024": 1,
          "RSA 2048": 4
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 5
        },
        "CTR": {
          "CTR": 3
        },
        "ECB": {
          "ECB": 5
        },
        "GCM": {
          "GCM": 5
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "NSS": {
          "NSS": 48
        }
      },
      "crypto_protocol": {
        "IKE": {
          "IKE": 1
        },
        "TLS": {
          "TLS": {
            "TLS": 19,
            "TLS v1.0": 1,
            "TLS v1.1": 1,
            "TLS v1.2": 1
          }
        }
      },
      "crypto_scheme": {
        "AEAD": {
          "AEAD": 1
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 2,
          "P-384": 6,
          "P-521": 8
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#11": 9
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES 128, 192 and 256": 2,
          "Certificate RSA": 1,
          "DSA 2048": 2,
          "HMAC-SHA- 384": 2,
          "HMAC-SHA-1": 2,
          "HMAC-SHA-224": 2,
          "HMAC-SHA-256": 2,
          "HMAC-SHA-512": 2,
          "PKCS #11": 16,
          "PKCS#1": 2,
          "RSA 1024": 1,
          "RSA 2048": 4,
          "RSA PKCS#1": 2,
          "SHA- 1": 4,
          "SHA- 224": 5,
          "SHA- 256": 2,
          "SHA- 384": 4,
          "SHA- 512": 1,
          "SHA-1": 7,
          "SHA-224": 9,
          "SHA-256": 16,
          "SHA-384": 8,
          "SHA-512": 11
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 2,
          "level 1": 1
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 4
          }
        },
        "PBKDF": {
          "PBKDF": 11,
          "PBKDF1": 1
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 7
          },
          "SHA2": {
            "SHA-224": 9,
            "SHA-256": 16,
            "SHA-384": 8,
            "SHA-512": 11
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 20
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "Timing Attacks": 2,
          "Timing attack": 1,
          "Timing attacks": 1,
          "timing attacks": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 50,
          "FIPS 180-4": 1,
          "FIPS 186-4": 1,
          "FIPS 197": 1,
          "FIPS 198-1": 1,
          "FIPS186-4": 1
        },
        "NIST": {
          "NIST SP 800-38A": 1,
          "NIST SP 800-38D": 1,
          "NIST SP 800-38F": 1,
          "NIST SP 800-56A": 1,
          "NIST SP 800-56B": 1,
          "NIST SP 800-67": 1,
          "NIST SP 800-90A": 1,
          "SP 800-90A": 1
        },
        "PKCS": {
          "PKCS #11": 8,
          "PKCS#1": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 17
          },
          "RC": {
            "RC2": 7,
            "RC4": 6,
            "RC5": 7
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "Triple-DES": 19
          },
          "DES": {
            "DES": 9
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 17,
            "HMAC-SHA-224": 1,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-512": 1
          }
        },
        "miscellaneous": {
          "Camellia": {
            "Camellia": 7
          },
          "SEED": {
            "SEED": 7
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Alejandro Fabio Masino",
      "/CreationDate": "D:20230320152219-05\u002700\u0027",
      "/Creator": "Writer",
      "/Producer": "LibreOffice 7.3",
      "/Subject": "Red Hat Enterprise Linux NSS Cryptographic Module",
      "/Title": "FIPS 140-2 Non-Proprietary Security Policy",
      "pdf_file_size_bytes": 356911,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://crypto.stanford.edu/~dabo/abstracts/ssl-timing.html",
          "http://www.cryptography.com/timingattack/",
          "http://csrc.nist.gov/publications/PubsFIPS.html",
          "http://csrc.nist.gov/groups/STM/cmvp/standards.html",
          "http://www.daemonology.net/papers/htt.pdf"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 36
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "d7ba4a8db695b5ded300a6a60f547207caaa3c4098b370dad8174736a55fb904",
    "policy_txt_hash": "9c3b3f196e8291df0823ada743e081b5ac37737ee246b6f306060d78925039e7"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf",
    "date_sunset": "2026-03-23",
    "description": "Network Security Services (NSS) is a set of open source C libraries designed to support cross-platform development of security-enabled applications. NSS implements major Internet security standards. NSS is available free of charge under a variety of open source compatible licenses. See http://www.mozilla.org/projects/security/pki/nss/.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Roles, Services, and Authentication: Level 2",
      "Physical Security: N/A",
      "Design Assurance: Level 2"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "Red Hat Enterprise Linux 7 NSS Cryptographic Module",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": "rhel7.20190606",
    "tested_conf": [
      "Red Hat Enterprise Linux 7 running on Dell PowerEdge R630 with an Intel(R) Xeon(R) E5 with PAA",
      "Red Hat Enterprise Linux 7 running on Dell PowerEdge R630 with an Intel(R) Xeon(R) E5 without PAA (single-user mode)"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-05-02",
        "lab": "ATSEC INFORMATION SECURITY CORP",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Red Hat\u00ae, Inc.",
    "vendor_url": "http://www.redhat.com"
  }
}