{"_type": "sec_certs.sample.fips.FIPSCertificate", "dgst": "4ee813262a515c9a", "cert_id": 3040, "web_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.WebData", "module_name": "nShield Solo XC F2", "validation_history": [{"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2017-10-10", "validation_type": "Initial", "lab": "DXC Technology"}, {"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2017-11-07", "validation_type": "Update", "lab": "DXC Technology"}, {"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2018-07-18", "validation_type": "Update", "lab": "DXC Technology"}, {"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2019-06-03", "validation_type": "Update", "lab": "DXC Technology"}, {"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2020-03-23", "validation_type": "Update", "lab": "Lightship Security, Inc."}], "vendor_url": "http://www.ncipher.com", "vendor": "nCipher Security Limited", "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertOct2017.pdf", "module_type": "Hardware", "standard": "FIPS 140-2", "status": "historical", "level": 2, "caveat": "When operated in FIPS mode and initialized to Overall Level 2 per Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy", "exceptions": ["Roles, Services, and Authentication: Level 3", "Physical Security: Level 3", "EMI/EMC: Level 3", "Design Assurance: Level 3", "Mitigation of Other Attacks: N/A"], "embodiment": "Multi-Chip Embedded", "description": "The nShield XC F2 PCIe card, sold as nShield XC F2 PCIe server-embedded hardware security modules (HSMs) are multi-tasking HSMs optimized for symmetric and asymmetric operations on protected keys. The nShield module is FIPS 140-2 Level 2 embedded devices for applications including but not limited to PKI, SSL/TLS, Secure Manufacturing, Data Protection, Key Management and Provisioning.", "tested_conf": null, "hw_versions": "NC3025E-000", "fw_versions": "3.3.21, 3.4.1, and 3.4.2", "sw_versions": null, "mentioned_certs": {}, "historical_reason": "186-2 transition", "date_sunset": null, "revoked_reason": null, "revoked_link": null}, "pdf_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData", "keywords": {"fips_cert_id": {"Cert": {"#3664": 5, "#3697": 2, "#3711": 4, "#2046": 3, "#2073": 3, "#1897": 4, "#1917": 4, "#1903": 4, "#1034": 5, "#1039": 5, "#771": 6, "#790": 5, "#776": 6, "#669": 7, "#696": 5, "#682": 6, "#73": 2, "#75": 3, "#1111": 4, "#3130": 2, "#805": 2, "#3082": 5, "#2414": 2, "#985": 2, "#8": 1}}, "fips_security_level": {"Level": {"level 2": 9, "level 3": 1}}, "fips_certlike": {"Certlike": {"HMAC SHA2": 1, "HMAC-SHA1": 2, "HMAC-SHA224": 2, "HMAC-SHA256": 2, "HMAC-SHA384": 2, "HMAC-SHA512": 2, "HMAC #2414": 2, "SHA2": 1, "SHA- 256": 1, "SHA 256": 2, "SHA-256": 25, "SHA-1": 8, "SHA256": 3, "SHA-512": 24, "SHA-224": 19, "SHA-384": 22, "SHA(224": 20, "SHA(1": 22, "SHA(256": 16, "SHA-1, 224": 9, "SHA512": 2, "SHA512 #805": 1, "SHA1": 1, "RSA PKCS1": 1, "PKCS #8": 2, "AES-256": 7, "AES-128": 5, "AES-192": 2, "AES 256": 2, "DRBG #985": 1, "DSA 1024": 2, "DSA 3072": 1, "#1111 DRBG": 1, "#3130 SHA": 1, "#3664 AES": 3, "#3082 SHA": 2, "#2414 HMAC": 2, "#1897 RSA": 2, "#985 DRBG": 2, "#3697 AES": 1, "#3711 AES": 3, "#1917 RSA": 2, "#1903 RSA": 2, "#1111 CVL": 1, "PKCS1": 1}}, "vendor": {}, "eval_facility": {}, "symmetric_crypto": {"AES_competition": {"AES": {"AES": 19, "AES-256": 7, "AES-128": 5, "AES-192": 2}, "CAST": {"CAST": 1}, "RC": {"RC4": 1}}, "DES": {"DES": {"DES": 4}, "3DES": {"Triple-DES": 11, "TDES": 2}}, "miscellaneous": {"Camellia": {"Camellia": 1}, "SEED": {"SEED": 1}}, "constructions": {"MAC": {"HMAC": 10, "CMAC": 3}}}, "asymmetric_crypto": {"ECC": {"ECDH": {"ECDH": 8}, "ECDSA": {"ECDSA": 24}}, "FF": {"DH": {"DH": 9, "Diffie-Hellman": 2}, "DSA": {"DSA": 23}}}, "pq_crypto": {}, "hash_function": {"SHA": {"SHA1": {"SHA-1": 17, "SHA1": 1}, "SHA2": {"SHA-256": 25, "SHA256": 3, "SHA-512": 24, "SHA-224": 19, "SHA-384": 22, "SHA512": 3, "SHA2": 1}}, "MD": {"MD5": {"MD5": 2}}, "RIPEMD": {"RIPEMD160": 1, "RIPEMD": 1}, "PBKDF": {"PBKDF": 4}}, "crypto_scheme": {"MAC": {"MAC": 9}, "KA": {"KA": 24, "Key Agreement": 10, "Key agreement": 1}}, "crypto_protocol": {}, "randomness": {"PRNG": {"DRBG": 32}}, "cipher_mode": {"ECB": {"ECB": 6}, "CBC": {"CBC": 11}, "CTR": {"CTR": 2}, "GCM": {"GCM": 3}}, "ecc_curve": {"NIST": {"P-224": 28, "P-384": 28, "P-256": 22, "P-521": 14, "P-192": 6, "K-233": 3, "K-409": 3, "B-233": 3, "B-409": 3, "B-163": 3}}, "crypto_engine": {}, "tls_cipher_suite": {}, "crypto_library": {}, "vulnerability": {}, "side_channel_analysis": {"SCA": {"Side channel": 1}}, "device_model": {}, "tee_name": {"IBM": {"Secure Execution": 3}}, "os_name": {}, "cplc_data": {}, "ic_data_group": {}, "standard_id": {"FIPS": {"FIPS 140-2": 9, "FIPS 180-4": 2, "FIPS 186-4": 10, "FIPS 197": 2, "FIPS 198-1": 1}, "NIST": {"SP 800-90A": 1}, "PKCS": {"PKCS1": 1, "PKCS #8": 1}, "RFC": {"RFC2612": 1}}, "javacard_version": {}, "javacard_api_const": {}, "javacard_packages": {}, "certification_process": {}}, "policy_metadata": {"pdf_file_size_bytes": 1132577, "pdf_is_encrypted": false, "pdf_number_of_pages": 36, "/CreationDate": "D:20190424160623+02'00'", "/Creator": "Microsoft\u00ae Word 2013", "/ModDate": "D:20190429122920-04'00'", "/Producer": "Microsoft\u00ae Word 2013", "pdf_hyperlinks": {"_type": "Set", "elements": ["http://csrc.nist.gov/groups/STM/cavp/documents/dss/ecdsanewval.html#805", "https://ncipher.zendesk.com/hc/en-us/categories/360001306412-Customer-Service", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/ecdsanewval.html#771", "http://csrc.nist.gov/groups/STM/cavp/documents/shs/shaval.html#3130", "http://www.ncipher.com/", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/dsanewval.html#1039", "http://csrc.nist.gov/groups/STM/cavp/documents/drbg/drbgnewval.html#985", "http://grok.ncipher.com:8080/source/s?defs=data&project=msgs", "http://csrc.nist.gov/groups/STM/cavp/documents/components/componentnewval.html#682", "http://csrc.nist.gov/groups/STM/cavp/documents/KBKDF800-108/kbkdfnewval.html#73", "http://csrc.nist.gov/groups/STM/cavp/documents/des/tripledesnewval.html#2046", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/ecdsanewval.html#776", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/rsanewval.html#1903", "http://csrc.nist.gov/groups/STM/cavp/documents/components/componentnewval.html#696", "http://csrc.nist.gov/groups/STM/cavp/documents/KBKDF800-108/kbkdfnewval.html#75", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/ecdsanewval.html#790", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/rsanewval.html#1897", "http://csrc.nist.gov/groups/STM/cavp/documents/components/componentnewval.html#669", "mailto:support@ncipher.com", "http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#3697", "http://csrc.nist.gov/groups/STM/cavp/documents/components/componentnewval.html#1111", "http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#3711", "http://csrc.nist.gov/groups/STM/cavp/documents/mac/hmacval.html#2414", "http://grok.ncipher.com:8080/source/s?defs=direct&project=msgs", "http://csrc.nist.gov/groups/STM/cavp/documents/shs/shaval.html#3082", "http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#3664", "https://www.ncipher.com/", "http://csrc.nist.gov/groups/STM/cavp/documents/des/tripledesnewval.html#2073", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/dsanewval.html#1034", "http://csrc.nist.gov/groups/STM/cavp/documents/dss/rsanewval.html#1917"]}}}, "heuristics": {"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics", "algorithms": {"_type": "Set", "elements": ["KTS#3711", "RSA#1903", "KTS#3664", "CVL#696", "AES#3697", "ECDSA#771", "DSA#1039", "Triple-DES#2073", "SHS#3082", "ECDSA#776", "CVL#1111", "RSA#1917", "Triple-DES#2046", "DSA#1034", "KBKDF#75", "AES#3664", "CVL#669", "CVL#682", "ECDSA#790", "ECDSA#805", "HMAC#2414", "RSA#1897", "DRBG#985", "SHS#3130", "AES#3711", "KBKDF#73"]}, "extracted_versions": {"_type": "Set", "elements": ["3.4.1", "3.3.21", "3.4.2"]}, "cpe_matches": null, "verified_cpe_matches": null, "related_cves": null, "policy_prunned_references": {"_type": "Set", "elements": []}, "module_prunned_references": {"_type": "Set", "elements": []}, "policy_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "module_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "direct_transitive_cves": null, "indirect_transitive_cves": null}, "state": {"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState", "module_download_ok": true, "policy_download_ok": true, "policy_convert_ok": true, "module_extract_ok": true, "policy_extract_ok": true, "policy_pdf_hash": "6ef5826cdae00d36cc3320ffd5c17334bd4ef6aa0d8675f91e75d4d5f14dca62", "policy_txt_hash": "f56bf231d7c8fd45fad8513659aad3352981cd6b6964345484ba35fc9f5c861c", "policy_json_hash": null}}