IDPrime PIV v3.0 Applet on IDCore 3130 Platform

Certificate #4563

Webpage information ?

Status historical
Historical reason Moved to historical list due to sunsetting
Validation dates 29.08.2023
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Single Chip
Caveat When operated in FIPS mode with the IDCore 3130 Platform and when initialized and configured as specified in Section 13 of the Security Policy
Exceptions
  • Roles, Services, and Authentication: Level 3
  • Physical Security: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Description « IDPrime PIV v3.0 » is the next generation of FIPS201-2 smart card running on latest IDCore 3130 platform, which complies with the latest version of NIST SP800-73-4, SP800-85A-4 and all algorithms of SP800-78-4. The product can be used over Contact and Contactless interfaces (ISO 7816 & 14443) to provide physical and logical accesss control. It embeds latest optimized FIPS POST feature, OPACITY secure messaging with Pairing code, and Biometric Match on card.
Version (Hardware) SLE78CFX400VPH with packaging options A1977038 and A2410334 and SLE78CLFX400VPH with packaging option A1714221
Version (Firmware) IDCore 3130 (Build09C) with Applets [PIV v3.0 (Build08), PIV Admin v3.0 (Build 08), MoC Server (version 1.1)]
Vendor Gemalto
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-128, DES, Triple-DES, TDES, TDEA, CMAC
Asymmetric Algorithms
RSA 2048, RSA-OAEP, ECDSA, ECC, Diffie-Hellman
Hash functions
SHA-1, SHA-256, SHA-384, SHA-512, SHA-224, SHA-2
Schemes
MAC
Randomness
DRBG, RNG
Elliptic Curves
P-256, P-384, P-224, P-192, P-521
Block cipher modes
ECB, CBC, CTR

JavaCard versions
Java Card 3.0.5, JavaCard 3.0.5
Trusted Execution Environments
SE
Vendor
Infineon, Gemalto

Security level
Level 2, Level 3
Side-channel analysis
Side channel, DPA, SPA

Standards
FIPS 140-2, FIPS140-2, FIPS113, FIPS 197, FIPS 186-4, FIPS 180-4, FIPS PUB 140-2, FIPS201-2, FIPS 201-2, SP 800-133, SP 800-38B, SP 800-90A, SP 800-67, SP 800-56A, SP 800-56B, SP 800-38F, SP 800-108, NIST SP 800-131A, SP 800-90, PKCS#1, PKCS #1, SCP03

File metadata

Subject FIPS 140-2 Security Policy Template
Author Vendor
Creation date D:20220630095119-07'00'
Modification date D:20220630095138-07'00'
Pages 29
Creator Acrobat PDFMaker 22 for Word
Producer Adobe PDF Library 22.1.174

References

Outgoing
  • 1713 - historical - BlackBerry Cryptographic Library

Heuristics ?

No heuristics are available for this certificate.

References ?

Updates ?

  • 04.07.2024 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The status property was set to historical.
    • The historical_reason property was set to Moved to historical list due to sunsetting.
    • The date_sunset property was set to None.
  • 18.09.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4563,
  "dgst": "5524fe000ffd5c17",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "CVL#1716",
        "CVL#1715",
        "RSA#2802",
        "RSA#2803",
        "AES#5243",
        "ECDSA#1365",
        "KBKDF#177",
        "CVL#1717",
        "CVL#1714",
        "Triple-DES#2651",
        "SHS#4221",
        "DRBG#2005"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.0",
        "1.1"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "1713"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "1713"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "1713"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 17
          },
          "ECDSA": {
            "ECDSA": 7
          }
        },
        "FF": {
          "DH": {
            "Diffie-Hellman": 2
          }
        },
        "RSA": {
          "RSA 2048": 1,
          "RSA-OAEP": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "CTR": {
          "CTR": 1
        },
        "ECB": {
          "ECB": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "MAC": {
          "MAC": 6
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-192": 2,
          "P-224": 10,
          "P-256": 30,
          "P-384": 30,
          "P-521": 4
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1,
          "#1713": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES 128": 2,
          "AES-128": 4,
          "AES-128/192/256": 9,
          "Cert # AES": 1,
          "PKCS #1": 2,
          "PKCS#1": 10,
          "RSA 2048": 1,
          "RSA PKCS#1": 2,
          "SHA-1": 3,
          "SHA-1 (160": 1,
          "SHA-2": 5,
          "SHA-224": 1,
          "SHA-256": 3,
          "SHA-384": 2,
          "SHA-512": 2
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 1,
          "Level 3": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 4
          },
          "SHA2": {
            "SHA-2": 6,
            "SHA-224": 1,
            "SHA-256": 3,
            "SHA-384": 2,
            "SHA-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {
        "JavaCard": {
          "Java Card 3.0.5": 3,
          "JavaCard 3.0.5": 1
        }
      },
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 8
        },
        "RNG": {
          "RNG": 2
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "DPA": 1,
          "SPA": 1,
          "Side channel": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 38,
          "FIPS 180-4": 2,
          "FIPS 186-4": 5,
          "FIPS 197": 2,
          "FIPS 201-2": 1,
          "FIPS PUB 140-2": 1,
          "FIPS113": 1,
          "FIPS140-2": 1,
          "FIPS201-2": 1
        },
        "NIST": {
          "NIST SP 800-131A": 1,
          "SP 800-108": 1,
          "SP 800-133": 2,
          "SP 800-38B": 2,
          "SP 800-38F": 3,
          "SP 800-56A": 3,
          "SP 800-56B": 3,
          "SP 800-67": 2,
          "SP 800-90": 1,
          "SP 800-90A": 3
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 6
        },
        "SCP": {
          "SCP03": 6
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 17,
            "AES-128": 4
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "TDES": 3,
            "Triple-DES": 6
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 4
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SE": 1
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "Gemalto": {
          "Gemalto": 30
        },
        "Infineon": {
          "Infineon": 2
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Vendor",
      "/Company": "Vendor",
      "/CreationDate": "D:20220630095119-07\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 22 for Word",
      "/ModDate": "D:20220630095138-07\u002700\u0027",
      "/Producer": "Adobe PDF Library 22.1.174",
      "/SourceModified": "D:20220630165033",
      "/Subject": "FIPS 140-2 Security Policy Template",
      "/Title": "",
      "pdf_file_size_bytes": 619696,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 29
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "81a0e9e81d6aa37cc941a20c36ede98ebbe801a24bb8df59ce0096a1ae5df890",
    "policy_txt_hash": "73a5ea79bb802ee9a69a8418541b87d8e92ad43d5b758bc09f905538b5d53c00"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode with the IDCore 3130 Platform and when initialized and configured as specified in Section 13 of the Security Policy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/August 2023_010923_0844.pdf",
    "date_sunset": null,
    "description": "\u00ab IDPrime PIV v3.0 \u00bb is the next generation of FIPS201-2 smart card running on latest IDCore 3130 platform, which complies with the latest version of NIST SP800-73-4, SP800-85A-4 and all algorithms of SP800-78-4. The product can be used over Contact and Contactless interfaces (ISO 7816 \u0026 14443) to provide physical and logical accesss control. It embeds latest optimized FIPS POST feature, OPACITY secure messaging with Pairing code, and Biometric Match on card.",
    "embodiment": "Single Chip",
    "exceptions": [
      "Roles, Services, and Authentication: Level 3",
      "Physical Security: Level 3",
      "EMI/EMC: Level 3",
      "Design Assurance: Level 3"
    ],
    "fw_versions": "IDCore 3130 (Build09C) with Applets [PIV v3.0 (Build08), PIV Admin v3.0 (Build 08), MoC Server (version 1.1)]",
    "historical_reason": "Moved to historical list due to sunsetting",
    "hw_versions": "SLE78CFX400VPH with packaging options A1977038 and A2410334 and SLE78CLFX400VPH with packaging option A1714221",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "IDPrime PIV v3.0 Applet on IDCore 3130 Platform",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-08-29",
        "lab": "UL VERIFICATION SERVICES INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Gemalto",
    "vendor_url": "http://www.gemalto.com"
  }
}