Tablo Medical Informatics System

Certificate #4812

Webpage information

Status active
Validation dates 24.09.2024
Sunset date 23-09-2026
Standard FIPS 140-3
Security level 1
Type Hardware
Embodiment Multi-Chip Embedded
Caveat Interim validation
Exceptions
  • Non-invasive security: N/A
  • Mitigation of other attacks: N/A
Description The Outset Tablo Medical Informatics System is an internal component of the Outset Tablo and provides secure storage and transmission of patient data.
Version (Hardware) 1.0
Version (Firmware) 4.9.12.6269
Vendor Outset Medical, Inc.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, CAST, DES, Blowfish, HMAC, CMAC
Asymmetric Algorithms
ECDH, ECDSA, ECC, DH, Diffie-Hellman, DSA
Hash functions
SHA-1, SHA-3, SHA3-256, PBKDF
Schemes
Key Agreement
Protocols
SSH, SSHv2, TLS, TLS 1.2, TLS v1.2
Randomness
TRNG, DRBG, RNG, RBG
Libraries
OpenSSL
Elliptic Curves
P-192, P-224, P-256, P-384, P-521, B-163, B-233, B-283, B-409, B-571, K-163, K-233, K-283, K-409, K-571
Block cipher modes
ECB, CBC, CTR, CFB, OFB, GCM, CCM, XEX, XTS

Vendor
NXP

Security level
Level 1, level 1

Standards
FIPS 140-3, FIPS PUB 197, FIPS PUB 186-4, FIPS PUB 198-1, FIPS PUB 180-4, FIPS PUB 202, NIST SP 800-38A, NIST SP 800-38C, NIST SP 800-38D, PKCS#1, RFC 564725, RFC 5246, RFC 5288, RFC26, RFC 5647, ISO/IEC 19790, ISO/IEC 24579, ISO/IEC 19790:2021

File metadata

Title FIPS 140-3 Non-Proprietary Security Policy
Author Corsec Security, Inc.
Creation date D:20240906095142-04'00'
Modification date D:20240906095142-04'00'
Pages 32
Creator Microsoft® Word for Microsoft 365
Producer Microsoft® Word for Microsoft 365

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4812,
  "dgst": "5010c493958a86e5",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "ECDSA KeyVer (FIPS186-4)A2699",
        "Counter DRBGA2701",
        "KDF SSHA2703",
        "AES-CBCA2701",
        "AES-CTRA2701",
        "SHA2-256A2701",
        "RSA SigVer (FIPS186-4)A2701",
        "SHA2-384A2701",
        "HMAC-SHA2-384A2701",
        "KDF TLSA2702",
        "AES-CCMA2701",
        "HMAC-SHA-1A2701",
        "KAS-ECC-SSC Sp800-56Ar3A2701",
        "HMAC-SHA2-512A2701",
        "DSA KeyGen (FIPS186-4)A2699",
        "DSA SigVer (FIPS186-4)A2701",
        "KAS-FFC-SSC Sp800-56Ar3A2699",
        "SHA2-512A2701",
        "AES-GCMA2701",
        "SHA-1A2701",
        "SHA3-256A2700",
        "ECDSA KeyGen (FIPS186-4)A2699",
        "ECDSA SigVer (FIPS186-4)A2701",
        "HMAC-SHA2-256A2701",
        "SHA2-224A2701"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "1.0",
        "4.9.12.6269"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 7
          },
          "ECDH": {
            "ECDH": 14
          },
          "ECDSA": {
            "ECDSA": 7
          }
        },
        "FF": {
          "DH": {
            "DH": 14,
            "Diffie-Hellman": 3
          },
          "DSA": {
            "DSA": 7
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 12
        },
        "CCM": {
          "CCM": 6
        },
        "CFB": {
          "CFB": 1
        },
        "CTR": {
          "CTR": 29
        },
        "ECB": {
          "ECB": 3
        },
        "GCM": {
          "GCM": 24
        },
        "OFB": {
          "OFB": 1
        },
        "XEX": {
          "XEX": 1
        },
        "XTS": {
          "XTS": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 6
        }
      },
      "crypto_protocol": {
        "SSH": {
          "SSH": 35,
          "SSHv2": 3
        },
        "TLS": {
          "TLS": {
            "TLS": 44,
            "TLS 1.2": 5,
            "TLS v1.2": 1
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "B-163": 2,
          "B-233": 4,
          "B-283": 4,
          "B-409": 4,
          "B-571": 4,
          "K-163": 2,
          "K-233": 5,
          "K-283": 4,
          "K-409": 4,
          "K-571": 4,
          "P-192": 4,
          "P-224": 12,
          "P-256": 12,
          "P-384": 8,
          "P-521": 6
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 2,
          "Certificate2": 2
        }
      },
      "fips_certlike": {
        "Certlike": {
          "Diffie-Hellman 6": 1,
          "PKCS#1": 6,
          "SHA-1": 16,
          "SHA-3": 5,
          "SHA2- 256": 2,
          "SHA2- 384": 2,
          "SHA2-224": 11,
          "SHA2-256": 18,
          "SHA2-384": 13,
          "SHA2-512": 12,
          "SHA2-512 1024": 2,
          "SHA2-512 112": 2,
          "SHA2-512 2048": 1,
          "SHA3-256": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 3,
          "level 1": 1
        }
      },
      "hash_function": {
        "PBKDF": {
          "PBKDF": 1
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 16
          },
          "SHA3": {
            "SHA-3": 5,
            "SHA3-256": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 49
        },
        "RNG": {
          "RBG": 2,
          "RNG": 1
        },
        "TRNG": {
          "TRNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-3": 12,
          "FIPS PUB 180-4": 2,
          "FIPS PUB 186-4": 6,
          "FIPS PUB 197": 2,
          "FIPS PUB 198-1": 2,
          "FIPS PUB 202": 1
        },
        "ISO": {
          "ISO/IEC 19790": 6,
          "ISO/IEC 19790:2021": 1,
          "ISO/IEC 24579": 2
        },
        "NIST": {
          "NIST SP 800-38A": 2,
          "NIST SP 800-38C": 2,
          "NIST SP 800-38D": 2
        },
        "PKCS": {
          "PKCS#1": 3
        },
        "RFC": {
          "RFC 5246": 2,
          "RFC 5288": 1,
          "RFC 5647": 1,
          "RFC 564725": 1,
          "RFC26": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 45
          },
          "CAST": {
            "CAST": 1
          }
        },
        "DES": {
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 1,
            "HMAC": 9
          }
        },
        "miscellaneous": {
          "Blowfish": {
            "Blowfish": 1
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "NXP": {
          "NXP": 1
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Corsec Security, Inc.",
      "/CreationDate": "D:20240906095142-04\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20240906095142-04\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "/Title": "FIPS 140-3 Non-Proprietary Security Policy",
      "pdf_file_size_bytes": 930694,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=15167",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=15168",
          "http://www.outsetmedical.com/",
          "http://www.corsec.com/",
          "http://csrc.nist.gov/groups/STM/cmvp",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=15169",
          "https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Validated-Modules/Search",
          "mailto:[email protected]",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=15170",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=15166"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 32
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "06a39050449b2194d091d83a2838a65f0e1365ddc8b56850671aba4c2c4ad974",
    "policy_txt_hash": "8acd3f2a47c0cca9109108e2c439ee62dce287dd592f8b089ee26bcbece63fa2"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "Interim validation",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2024_011024_0217.pdf",
    "date_sunset": "2026-09-23",
    "description": "The Outset Tablo Medical Informatics System is an internal component of the Outset Tablo and provides secure storage and transmission of patient data.",
    "embodiment": "Multi-Chip Embedded",
    "exceptions": [
      "Non-invasive security: N/A",
      "Mitigation of other attacks: N/A"
    ],
    "fw_versions": "4.9.12.6269",
    "historical_reason": null,
    "hw_versions": "1.0",
    "level": 1,
    "mentioned_certs": {},
    "module_name": "Tablo Medical Informatics System",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-3",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2024-09-24",
        "lab": "Lightship Security, Inc.",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Outset Medical, Inc.",
    "vendor_url": "http://www.outsetmedical.com"
  }
}