{"_type": "sec_certs.sample.fips.FIPSCertificate", "dgst": "51e197d549d75965", "cert_id": 3843, "web_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.WebData", "module_name": "Cisco Adaptive Security Appliance (ASA) Virtual", "validation_history": [{"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2021-03-10", "validation_type": "Initial", "lab": "Gossamer Security Solutions"}], "vendor_url": "http://www.cisco.com", "vendor": "Cisco Systems, Inc.", "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2021_010421_0724_signed.pdf", "module_type": "Software", "standard": "FIPS 140-2", "status": "historical", "level": 1, "caveat": "When operated in FIPS mode", "exceptions": ["Roles, Services, and Authentication: Level 3", "Physical Security: N/A", "Mitigation of Other Attacks: N/A"], "embodiment": "Multi-Chip Stand Alone", "description": "The market-leading Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA Virtual Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environments of all sizes.", "tested_conf": ["FXOS version 2 on NFVIS 3 running on ENCS 5412 with Intel Xeon D-1528 (single-user mode)", "FXOS version 2 on VMware ESXi 6.0 running on Cisco UCS C220 M5 with Intel Xeon Silver 4110", "FXOS version 2 on VMware ESXi 6.5 running on Cisco UCS C220 M5 with Intel Xeon Silver 4110"], "hw_versions": null, "fw_versions": null, "sw_versions": "9.12", "mentioned_certs": {}, "historical_reason": "SP 800-56Arev3 transition", "date_sunset": null, "revoked_reason": null, "revoked_link": null}, "pdf_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData", "keywords": {"fips_cert_id": {"Cert": {"#1": 2, "#1561": 1}}, "fips_security_level": {"Level": {"Level 1": 6, "level 1": 1}}, "fips_certlike": {"Certlike": {"HMAC-SHA-1 160": 2, "HMAC-SHA 256/384": 2, "HMAC-SHA-1": 2, "SHA-512": 1, "RSA 2048": 7, "AES- 256": 2, "AES-256": 2, "AES 128/192/256": 4, "Diffie-Hellman (CVL Cert. #1561": 1, "Certificate AES": 1}}, "vendor": {"Cisco": {"Cisco": 19, "Cisco Systems, Inc": 19, "Cisco Systems": 3}}, "eval_facility": {}, "symmetric_crypto": {"AES_competition": {"AES": {"AES-": 2, "AES-256": 2, "AES": 10}, "RC": {"RC4": 3}}, "DES": {"DES": {"DES": 4}, "3DES": {"Triple-DES": 9}}, "constructions": {"MAC": {"HMAC": 4}}}, "asymmetric_crypto": {"RSA": {"RSA 2048": 7, "RSA-2048": 1}, "ECC": {"ECDSA": {"ECDSA": 21}}, "FF": {"DH": {"Diffie-Hellman": 14, "DH": 9}}}, "pq_crypto": {}, "hash_function": {"SHA": {"SHA2": {"SHA-512": 1}}, "MD": {"MD5": {"MD5": 6}}}, "crypto_scheme": {}, "crypto_protocol": {"SSH": {"SSHv2": 33, "SSH": 16}, "TLS": {"SSL": {"SSL": 2}, "TLS": {"TLSv1.2": 6, "TLS": 50}}, "IKE": {"IKE": 38, "IKEv2": 8}, "VPN": {"VPN": 5}}, "randomness": {"PRNG": {"DRBG": 56}}, "cipher_mode": {"CBC": {"CBC": 4}, "CTR": {"CTR": 1}, "GCM": {"GCM": 5}}, "ecc_curve": {"NIST": {"P-256": 2, "P-384": 2, "P-521": 2}}, "crypto_engine": {}, "tls_cipher_suite": {}, "crypto_library": {}, "vulnerability": {}, "side_channel_analysis": {}, "device_model": {}, "tee_name": {}, "os_name": {}, "cplc_data": {}, "ic_data_group": {}, "standard_id": {"FIPS": {"FIPS 140-2": 19, "FIPS PUB 140-2": 1, "FIPS 140": 2, "FIPS 186-4": 2}, "NIST": {"SP 800-90A": 5, "SP 800-52": 1}, "RFC": {"RFC 5288": 1, "RFC 7296": 2, "RFC 5246": 1, "RFC 4253": 1, "RFC 6071": 1}}, "javacard_version": {}, "javacard_api_const": {}, "javacard_packages": {}, "certification_process": {}}, "policy_metadata": {"pdf_file_size_bytes": 441253, "pdf_is_encrypted": false, "pdf_number_of_pages": 19, "/Title": "CISCO 831 Security Policy", "/Author": "Scott Shorter", "/Subject": "FIPS 140-2 Security Policy", "/Creator": "Microsoft\u00ae Word 2016", "/CreationDate": "D:20210106204635-05'00'", "/ModDate": "D:20210106204635-05'00'", "/Producer": "Microsoft\u00ae Word 2016", "pdf_hyperlinks": {"_type": "Set", "elements": ["https://csrc.nist.gov/groups/computer-security-division/security-testing-validation-and-measurement", "http://www.cisco.com/c/en/us/products/index.html", "http://www.cisco.com/", "https://www.cisco.com/c/en/us/td/docs/security/firepower/640/fdm/fptd-fdm-config-guide-640.html", "http://www.cisco.com/en/US/products/ps6120/index.html"]}}}, "heuristics": {"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics", "algorithms": {"_type": "Set", "elements": ["CVL#1561", "ECDSA#1277", "AES#5008", "RSA#2703", "DRBG#1828", "Triple-DES#2584", "SHS#4074", "HMAC#3329"]}, "extracted_versions": {"_type": "Set", "elements": ["-"]}, "cpe_matches": {"_type": "Set", "elements": ["cpe:2.3:h:cisco:adaptive_security_appliance_5550:-:*:*:*:*:*:*:*", "cpe:2.3:h:cisco:adaptive_security_appliance_5510:-:*:*:*:*:*:*:*", "cpe:2.3:h:cisco:adaptive_security_appliance_5540:-:*:*:*:*:*:*:*", "cpe:2.3:h:cisco:adaptive_security_appliance_5505:-:*:*:*:*:*:*:*", "cpe:2.3:h:cisco:adaptive_security_appliance_5520:-:*:*:*:*:*:*:*"]}, "verified_cpe_matches": null, "related_cves": null, "policy_prunned_references": {"_type": "Set", "elements": []}, "module_prunned_references": {"_type": "Set", "elements": []}, "policy_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "module_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "direct_transitive_cves": null, "indirect_transitive_cves": null}, "state": {"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState", "module_download_ok": true, "policy_download_ok": true, "policy_convert_ok": true, "module_extract_ok": true, "policy_extract_ok": true, "policy_pdf_hash": "1da54c3141d6d949c7fd39f2a50645dd6789872592f5f7bf4f2fd5e21d1e9a5f", "policy_txt_hash": "3b0573f2ae9915f85a82e219a1fd1d71f703631288ac708aaa2df233caa4e9cc", "policy_json_hash": null}}