This page was not yet optimized for use on mobile devices.
Aegis Secure Key 3Z and Aegis Secure Key 3NX Cryptographic Module
Certificate #4420
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, AES-256Asymmetric Algorithms
ECDH, ECDSA, ECC, DH, Diffie-HellmanHash functions
SHA-256Schemes
Key AgreementRandomness
DRBG, RNGElliptic Curves
P-256Block cipher modes
ECB, CBC, XEX, XTSTrusted Execution Environments
SSCSecurity level
Level 3Certification process
out of scope, a FIPS Approved mode of operation, therefore a non-compliant configuration is not possible and out of scope for this validation. Aegis Secure Key 3Z and Aegis Secure Key 3NX Cryptographic Module SecurityStandards
FIPS 140-2, FIPS PUB 140-2, FIPS 197, FIPS 180-4, FIPS 186-4, SP 800-38E, SP 800-38A, SP 800-133, SP 800-90A, SP 800-90BFile metadata
| Title | Date |
|---|---|
| Keywords | Apricorn Security Policy |
| Author | Robert Davidosn |
| Creation date | D:20241022221225-04'00' |
| Modification date | D:20241022221238-04'00' |
| Pages | 23 |
| Creator | Acrobat PDFMaker 24 for Word |
| Producer | Adobe PDF Library 24.3.144 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
02.12.2024 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The validation_history property was updated, with the
[[2, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2024-11-27', 'validation_type': 'Update', 'lab': 'ÆGISOLVE'}]]values inserted. - The hw_versions property was set to
P/Ns ASK3Z-16GB [2.0], ASK3Z-32GB [2.0], ASK3Z-64GB [2.0], ASK3Z-128GB [2.0], ASK3-NX-2GB [2.0], ASK3-NX-4GB [2.0], ASK3-NX-8GB [2.0], ASK3-NX-16GB [2.0], ASK3-NX-32GB [2.0], ASK3-NX-64GB [2.0], ASK3-NX-128GB [2.0], ASK3-NX-256GB [2.0], ASK3-NXC-4GB [2.0], ASK3-NXC-8GB [2.0], ASK3-NXC-16GB [2.0], ASK3-NXC-32GB [2.0], ASK3-NXC-64GB [2.0], ASK3-NXC-128GB [2.0] ASK3-NXC-256GB [2.0]; Hardware Version: Rev A; P/Ns ASK3-NXC-4GB [2.1], ASK3-NXC-8GB [2.1], ASK3-NXC-16GB [2.1], ASK3-NXC-32GB [2.1], ASK3-NXC-64GB [2.1], ASK3-NXC-128GB [2.1], ASK3-NXC-256GB [2.1], ASK3-NXC-512GB [2.1]; Hardware Version: Rev B; P/Ns ASK3Z-16GB [2.1], ASK3Z-32GB [2.1], ASK3Z-64GB [2.1], ASK3Z-128GB [2.1], ASK3-NX-2GB [2.1], ASK3-NX-4GB [2.1], ASK3-NX-8GB [2.1], ASK3-NX-16GB [2.1], ASK3-NX-32GB [2.1], ASK3-NX-64GB [2.1], ASK3-NX-128GB [2.1], ASK3-NX-256GB [2.1], ASK3-NX-512GB [2.1]; Hardware Version: Rev C. - The fw_versions property was set to
2.0 and 2.1.
The PDF extraction data was updated.
- The policy_metadata property was updated, with the
{'pdf_file_size_bytes': 850926, 'pdf_number_of_pages': 23, '/Creator': 'Acrobat PDFMaker 24 for Word', '/CreationDate': "D:20241022221225-04'00'", '/ModDate': "D:20241022221238-04'00'", '/Producer': 'Adobe PDF Library 24.3.144'}data.
The computed heuristics were updated.
- The extracted_versions property was updated, with the
{'_type': 'Set', 'elements': ['2.1']}values added.
The state was updated.
- The policy_pdf_hash property was set to
9621c4fb998966a8ab31e35b1c067c04ac17d3de9f89520690765e7139458d85. - The policy_txt_hash property was set to
73078285c9b65822bb1de37b216eacb22bcd9bd717af4f84b84c97d6babcdba2.
- The validation_history property was updated, with the
-
26.02.2023 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The validation_history property was updated, with the
[[1, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2023-02-14', 'validation_type': 'Update', 'lab': 'ÆGISOLVE'}]]values inserted. - The hw_versions property was set to
P/Ns ASK3Z-16GB, ASK3Z-32GB, ASK3Z-64GB, ASK3Z-128GB, ASK3-NX-2GB, ASK3-NX-4GB, ASK3-NX-8GB, ASK3-NX-16GB , ASK3-NX-32GB, ASK3-NX-64GB, ASK3-NX-128GB, ASK3-NX-256GB, ASK3-NXC-4GB, ASK3-NXC-8GB, ASK3-NXC-16GB, ASK3-NXC-32GB, ASK3-NXC-64GB, ASK3-NXC-128GB and ASK3-NXC-256GB; Hardware Version: Rev A. - The fw_versions property was set to
2.0.
The PDF extraction data was updated.
- The policy_metadata property was updated, with the
{'pdf_file_size_bytes': 542153, '/Author': 'Robert Davidosn', '/CreationDate': "D:20221223114922-08'00'", '/ModDate': "D:20221223114922-08'00'", '/Producer': 'Microsoft® Word for Microsoft 365', '/Title': 'Date'}data.
The computed heuristics were updated.
- The extracted_versions property was set to
{'_type': 'Set', 'elements': ['2.0']}.
The state was updated.
- The policy_pdf_hash property was set to
ec13b9edee93256910d009838e90dfa75f3bd75cb2ed54304a6bea6b3ca8152a. - The policy_txt_hash property was set to
7506de0cefbc1e48f4f52d2c12b2d9d1478fec535b73953197bd2bca92e76b30.
- The validation_history property was updated, with the
-
09.02.2023 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4420,
"dgst": "594333a314f65378",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"KAS#A1913",
"KAS-SSC#A1913",
"SHS#C1029",
"AES#A1909",
"DRBG#C1032",
"KDA#A1913",
"AES#C967",
"ECDSA#C1033"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"2.1",
"2.0"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 13
},
"ECDH": {
"ECDH": 9
},
"ECDSA": {
"ECDSA": 1
}
},
"FF": {
"DH": {
"DH": 2,
"Diffie-Hellman": 6
}
}
},
"certification_process": {
"OutOfScope": {
"a FIPS Approved mode of operation, therefore a non-compliant configuration is not possible and out of scope for this validation. Aegis Secure Key 3Z and Aegis Secure Key 3NX Cryptographic Module Security": 1,
"out of scope": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 2
},
"ECB": {
"ECB": 1
},
"XEX": {
"XEX": 1
},
"XTS": {
"XTS": 4
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"KA": {
"Key Agreement": 3
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 18
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES-256": 3,
"DRBG KAT1": 1,
"SHA-256": 7
}
},
"fips_security_level": {
"Level": {
"Level 3": 12
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 7
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 19
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 13,
"FIPS 180-4": 2,
"FIPS 186-4": 1,
"FIPS 197": 1,
"FIPS PUB 140-2": 2
},
"NIST": {
"SP 800-133": 1,
"SP 800-38A": 2,
"SP 800-38E": 1,
"SP 800-90A": 7,
"SP 800-90B": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 12,
"AES-256": 3
}
}
},
"tee_name": {
"IBM": {
"SSC": 1
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Robert Davidosn",
"/Comments": "",
"/Company": "Apricorn",
"/CreationDate": "D:20241022221225-04\u002700\u0027",
"/Creator": "Acrobat PDFMaker 24 for Word",
"/Keywords": "Apricorn Security Policy",
"/ModDate": "D:20241022221238-04\u002700\u0027",
"/Producer": "Adobe PDF Library 24.3.144",
"/SourceModified": "",
"/Subject": "",
"/Title": "Date",
"pdf_file_size_bytes": 850926,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 23
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "9621c4fb998966a8ab31e35b1c067c04ac17d3de9f89520690765e7139458d85",
"policy_txt_hash": "73078285c9b65822bb1de37b216eacb22bcd9bd717af4f84b84c97d6babcdba2"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "The module generates cryptographic keys whose strengths are modified by available entropy.",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/January 2023_010223_0657_signed.pdf",
"date_sunset": "2026-09-21",
"description": "The Apricorn Aegis Secure Key 3z and Apricorn Aegis Secure Key 3NX are hardware encrypted USB 3.1 memory keys.The software free design allows interface to any host that supports USB and mass storage.Authentication is performed via the embedded keypad and all critical security parameters (PINs, encryption keys, etc) never leave the device boundary for improved security. The device supports 1 administrator and 1 user and offers a variety of features including programmable brute force, recovery PINs, 7-16 digit PINs, auto lock, read only modes, and is compatible with our Aegis Configurator.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "2.0 and 2.1",
"historical_reason": null,
"hw_versions": "P/Ns ASK3Z-16GB [2.0], ASK3Z-32GB [2.0], ASK3Z-64GB [2.0], ASK3Z-128GB [2.0], ASK3-NX-2GB [2.0], ASK3-NX-4GB [2.0], ASK3-NX-8GB [2.0], ASK3-NX-16GB [2.0], ASK3-NX-32GB [2.0], ASK3-NX-64GB [2.0], ASK3-NX-128GB [2.0], ASK3-NX-256GB [2.0], ASK3-NXC-4GB [2.0], ASK3-NXC-8GB [2.0], ASK3-NXC-16GB [2.0], ASK3-NXC-32GB [2.0], ASK3-NXC-64GB [2.0], ASK3-NXC-128GB [2.0] ASK3-NXC-256GB [2.0]; Hardware Version: Rev A; P/Ns ASK3-NXC-4GB [2.1], ASK3-NXC-8GB [2.1], ASK3-NXC-16GB [2.1], ASK3-NXC-32GB [2.1], ASK3-NXC-64GB [2.1], ASK3-NXC-128GB [2.1], ASK3-NXC-256GB [2.1], ASK3-NXC-512GB [2.1]; Hardware Version: Rev B; P/Ns ASK3Z-16GB [2.1], ASK3Z-32GB [2.1], ASK3Z-64GB [2.1], ASK3Z-128GB [2.1], ASK3-NX-2GB [2.1], ASK3-NX-4GB [2.1], ASK3-NX-8GB [2.1], ASK3-NX-16GB [2.1], ASK3-NX-32GB [2.1], ASK3-NX-64GB [2.1], ASK3-NX-128GB [2.1], ASK3-NX-256GB [2.1], ASK3-NX-512GB [2.1]; Hardware Version: Rev C",
"level": 3,
"mentioned_certs": {},
"module_name": "Aegis Secure Key 3Z and Aegis Secure Key 3NX Cryptographic Module",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2023-01-20",
"lab": "\u00c6GISOLVE",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2023-02-14",
"lab": "\u00c6GISOLVE",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-11-27",
"lab": "\u00c6GISOLVE",
"validation_type": "Update"
}
],
"vendor": "Apricorn",
"vendor_url": "http://apricorn.com"
}
}