This page was not yet optimized for use on mobile
devices.
Ideem ZSM Cryptographic Module
Certificate #4982
Webpage information
Security policy
Symmetric Algorithms
AES, AES-128, AES-192, AES-256, AES-, CAST, DES, TDES, HMAC, CMACAsymmetric Algorithms
ECDH, ECDSA, ECC, DH, Diffie-HellmanHash functions
SHA-1, SHA3-224, SHA3-384, SHA3-512, SHA3-256, SHA3, PBKDF, PBKDF2Schemes
MAC, Key Agreement, Key agreementProtocols
TLS, TLS v1.2Randomness
DRBG, RNG, RBGElliptic Curves
P-256, P-224, P-384, P-521Block cipher modes
ECB, CBC, CTR, CFB, OFB, GCM, CCM, XTSTrusted Execution Environments
PSPSecurity level
Level 1Standards
FIPS 140-3, FIPS186-4, FIPS 186-4, FIPS186-5, FIPS 186-5, FIPS 198-1, FIPS 180-4, FIPS 202, FIPS PUB 140-3, FIPS PUB 186-4, SP 800-38A, SP 800-38C, SP 800-38B, SP 800-38D, SP 800-38F, SP 800-38E, SP 800-90A, SP 800-56A, SP 800-56C, SP 800-135, SP 800-132, SP 800-133, NIST SP 800-38D, NIST SP 800-132, NIST SP 800-38E, PKCS#1, RFC7627, RFC 5288, RFC 5246, ISO/IEC 19790File metadata
| Title | FIPS 140-3 Non-Proprietary Security Policy |
|---|---|
| Author | Corsec Security, Inc. |
| Creation date | D:20250514084314-04'00' |
| Modification date | D:20250514084527-04'00' |
| Pages | 58 |
| Creator | Acrobat PDFMaker 25 for Word |
| Producer | Adobe PDF Library 25.1.208 |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4982,
"dgst": "59e1e59850940550",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": []
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"-"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 27
},
"ECDSA": {
"ECDSA": 85
}
},
"FF": {
"DH": {
"DH": 1,
"Diffie-Hellman": 2
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"CCM": {
"CCM": 8
},
"CFB": {
"CFB": 1
},
"CTR": {
"CTR": 2
},
"ECB": {
"ECB": 2
},
"GCM": {
"GCM": 28
},
"OFB": {
"OFB": 1
},
"XTS": {
"XTS": 8
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"TLS": {
"TLS": 46,
"TLS v1.2": 34
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 9,
"Key agreement": 1
},
"MAC": {
"MAC": 5
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-224": 16,
"P-256": 16,
"P-384": 10,
"P-521": 10
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES GCM 96": 1,
"AES-128": 1,
"AES-192": 1,
"AES-256": 1,
"DRBG 128": 1,
"HMAC-SHA-1": 12,
"PKCS#1": 6,
"SHA-1": 11,
"SHA2- 256": 4,
"SHA2-224": 12,
"SHA2-256": 27,
"SHA2-384": 13,
"SHA2-512": 18,
"SHA3": 3,
"SHA3- 256": 1,
"SHA3-224": 9,
"SHA3-256": 5,
"SHA3-384": 9,
"SHA3-512": 4
}
},
"fips_security_level": {
"Level": {
"Level 1": 3
}
},
"hash_function": {
"PBKDF": {
"PBKDF": 16,
"PBKDF2": 3
},
"SHA": {
"SHA1": {
"SHA-1": 11
},
"SHA3": {
"SHA3": 3,
"SHA3-224": 10,
"SHA3-256": 4,
"SHA3-384": 10,
"SHA3-512": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 43
},
"RNG": {
"RBG": 2,
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-3": 11,
"FIPS 180-4": 7,
"FIPS 186-4": 3,
"FIPS 186-5": 13,
"FIPS 198-1": 11,
"FIPS 202": 6,
"FIPS PUB 140-3": 1,
"FIPS PUB 186-4": 1,
"FIPS186-4": 6,
"FIPS186-5": 32
},
"ISO": {
"ISO/IEC 19790": 8
},
"NIST": {
"NIST SP 800-132": 1,
"NIST SP 800-38D": 1,
"NIST SP 800-38E": 1,
"SP 800-132": 2,
"SP 800-133": 1,
"SP 800-135": 2,
"SP 800-38A": 9,
"SP 800-38B": 1,
"SP 800-38C": 1,
"SP 800-38D": 3,
"SP 800-38E": 1,
"SP 800-38F": 2,
"SP 800-56A": 1,
"SP 800-56C": 1,
"SP 800-90A": 2
},
"PKCS": {
"PKCS#1": 3
},
"RFC": {
"RFC 5246": 1,
"RFC 5288": 1,
"RFC7627": 5
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 90,
"AES-": 2,
"AES-128": 1,
"AES-192": 1,
"AES-256": 1
},
"CAST": {
"CAST": 64
}
},
"DES": {
"3DES": {
"TDES": 1
},
"DES": {
"DES": 1
}
},
"constructions": {
"MAC": {
"CMAC": 7,
"HMAC": 25
}
}
},
"tee_name": {
"AMD": {
"PSP": 6
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Corsec Security, Inc.",
"/Comments": "",
"/Company": "Corsec Security, Inc.",
"/ContentTypeId": "0x0101008CEA64F1FB1D5A4F93ABC4EA3F4AF0B8",
"/CreationDate": "D:20250514084314-04\u002700\u0027",
"/Creator": "Acrobat PDFMaker 25 for Word",
"/Keywords": "",
"/MediaServiceImageTags": "",
"/ModDate": "D:20250514084527-04\u002700\u0027",
"/Producer": "Adobe PDF Library 25.1.208",
"/SourceModified": "",
"/Subject": "",
"/Title": "FIPS 140-3 Non-Proprietary Security Policy",
"/_Algorithm Implementation 1": "Ideem ZSM Multi-party Cryptographic Library",
"/_Algorithm Implementation 2": "Ideem ZSM Single-party Cryptographic Library",
"/_Copyright": "2024",
"/_Document Date": "February 19, 2025",
"/_Document Version": "1.0",
"/_FIPS Security Level": "1",
"/_Module Embodiment": "MultiChipStand",
"/_Module Name (long)": "Ideem ZSM Cryptographic Module",
"/_Module Name (short)": "Ideem Cryptographic Module",
"/_Module Type": "software",
"/_Module Version Number": "1.0",
"/_Vendor Name (long)": "Ideem, Inc.",
"/_Vendor Name (short)": "Ideem",
"pdf_file_size_bytes": 831258,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.useideem.com/",
"http://www.corsec.com/",
"http://csrc.nist.gov/groups/STM/cmvp",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=17571",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=17572",
"https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Validated-Modules/Search",
"mailto:[email protected]"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 58
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "63bf017deded73e7d519344c9c577f5336dcacfef69748eff20f3a24abcbe4ea",
"policy_txt_hash": "7c68bb3eda3c2cdcdcd69207a7a45b4917f32e8328f92a6ccdcdcb195db9f925"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "No assurance of the minimum strength of generated SSPs (e.g., keys)",
"certificate_pdf_url": null,
"date_sunset": "2030-03-02",
"description": "Ideem ZSM Cryptographic Module randomly splits keys across servers so that they are never in any single place to be stolen. The advanced protocols used in Ideem ZSM ensure that even if servers are breached and completely controlled by an attacker, the secrets and credentials cannot be stolen. The result is that digital assets remain safe, even if all else fails and attackers get inside the network. Ideem ZSM is able to protect all types of standard cryptographic keys for all purposes, including encryption/decryption, digital signing, and authentication. Ideem\u2019s technology for securing keys using two-party computation (TPC) is fully transparent to the calling application.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Ideem ZSM Cryptographic Module",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2025-03-03",
"lab": "Teron Labs",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2025-05-19",
"lab": "Teron Labs",
"validation_type": "Update"
}
],
"vendor": "Ideem, Inc.",
"vendor_url": "https://www.useideem.com"
}
}