This page was not yet optimized for use on mobile devices.

wolfCrypt

Certificate #4718

Webpage information

Status	active
Validation dates	11.07.2024 , 16.05.2025 , 29.01.2026
Sunset date	10-07-2029
Standard	FIPS 140-3
Security level	1
Type	Software
Embodiment	Multi-Chip Stand Alone
Caveat	No assurance of the minimum strength of generated SSPs (e.g., keys)
Exceptions	Physical security: N/A Non-invasive security: N/A Mitigation of other attacks: N/A
Description	wolfCrypt module is a comprehensive suite of FIPS Approved algorithms. All key sizes and modes have been implemented to allow flexibility and efficiency.
Vendor	wolfSSL Inc.
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Certificate

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, AES-128, AES-192, AES-256, AES-, CAST, HMAC, CMAC

Asymmetric Algorithms

ECDSA, ECC, Diffie-Hellman, DHE, DH, DSA

Hash functions

SHA-1, SHA1, SHA-256, SHA-512, SHA256, SHA224, SHA384, SHA512, SHA-2, SHA-3, SHA3-224, SHA3-256, SHA3-512, SHA3-384

Schemes

MAC, Key Agreement, Key agreement, AEAD

Protocols

SSH, TLS v1.2, TLS, TLS v1.3, TLS 1.2, TLS 1.3, TLSv1.2, TLSv1.3

Randomness

DRBG, RNG, RBG

Libraries

wolfSSL

Elliptic Curves

P-224, P-256, P-384, P-521, P-192

Block cipher modes

ECB, CBC, CTR, OFB, GCM, CCM

Trusted Execution Environments

PSP, SSC

Vendor

NXP, Samsung, Broadcom

Security level

Level 1

Standards

FIPS 140-3, FIPS 186-4, FIPS186-4, FIPS 198-1, FIPS 180-4, FIPS 202, FIPS18, NIST SP 800-90A, NIST SP 800-56A, NIST SP 800-56C, NIST SP 800-135, NIST SP 800-140D, NIST SP 800-131A, NIST SP 800-56B, SP 800-38A, SP 800-38C, SP 800-38B, SP 800-38D, SP 800-90A, SP 800-56A, SP 800-135, PKCS 1, RFC7627, RFC762, ISO/IEC 24759, ISO/IEC 19790-2012, ISO/IEC 19790:2012

File metadata

Author	Hawes, David J. (Fed)
Creation date	D:20260128173215-05'00'
Modification date	D:20260128173417-05'00'
Pages	45
Creator	Acrobat PDFMaker 25 for Word
Producer	Adobe PDF Library 25.1.5

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates Feed

02.02.2026

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated, with the [[2, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2026-01-29', 'validation_type': 'Update', 'lab': 'AEGISOLVE, Inc.'}]] values inserted.

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_certlike': {'__update__': {'Certlike': {'__insert__': {'SHA2- 224': 1, '- PKCS 1': 2, 'AES-128': 1, 'AES-192': 1, 'AES-256': 1, 'PKCS 1': 2}, '__update__': {'SHA-1': 7, 'SHA2-224': 6, 'SHA2-256': 23, 'SHA2-384': 10, 'SHA2-512': 9, 'SHA3-224': 6, 'SHA3-256': 7, 'SHA3-384': 5, 'SHA3-512': 6, 'SHA2- 384': 2, 'SHA2- 512': 5, 'SHA3- 384': 4}}}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__insert__': {'AES-128': 1, 'AES-192': 1, 'AES-256': 1}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 6}}}}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__insert__': {'DHE': 1}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 7}}, 'SHA3': {'__update__': {'SHA3-224': 6, 'SHA3-256': 7, 'SHA3-384': 5, 'SHA3-512': 6}}}}}}, 'crypto_protocol': {'__update__': {'TLS': {'__update__': {'TLS': {'__update__': {'TLS': 11}}}}}}, 'ecc_curve': {'__update__': {'NIST': {'__insert__': {'P-224': 8, 'P-384': 10, 'P-521': 10, 'P-192': 4}, '__update__': {'P-256': 10}}}}, 'standard_id': {'__insert__': {'PKCS': {'PKCS 1': 2}}}} data.

The policy_metadata property was updated, with the {'pdf_file_size_bytes': 574265, '/CreationDate': "D:20260128173215-05'00'", '/Creator': 'Acrobat PDFMaker 25 for Word', '/ModDate': "D:20260128173417-05'00'", '/Producer': 'Adobe PDF Library 25.1.5'} data.

The state was updated.

The policy_pdf_hash property was set to 25faef2f904ac4ee0359e9a06b34dce4f7cb4b62d8d5953590d48f5c620dc6de.

The policy_txt_hash property was set to e89cf598d65616c60acf577b2f512f9d01bb573527d4b928d87057d99636129f.
15.12.2025

The certificate data changed.
Certificate changed

The state was updated.

The following values were inserted: {'policy_json_hash': None}.

The following properties were deleted: ['policy_convert_garbage'].
08.09.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated.
02.06.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated, with the [[1, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2025-05-16', 'validation_type': 'Update', 'lab': 'ÆGISOLVE'}]] values inserted.
19.05.2025

The certificate data changed.
Certificate changed

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_security_level': {'__update__': {'Level': {'__update__': {'Level 1': 3}}}}, 'fips_certlike': {'__update__': {'Certlike': {'__insert__': {'SHA- 256': 1}, '__update__': {'HMAC- SHA1': 3, 'HMAC-SHA1': 2, 'SHA-256': 2, 'SHA2-224': 4, 'SHA2-256': 16, 'SHA2-384': 5, 'SHA2-512': 6, 'SHA3-224': 4, 'SHA3-256': 5, 'SHA3-384': 4, 'SHA-1': 5, 'SHA3- 384': 3, 'SHA3-512': 4, 'SHA3- 256': 5, 'SHA3- 224': 3, 'SHA2- 512': 3, 'SHA2- 256': 6, 'SHA1': 5}, '__delete__': ['SHA2- 224', '- PKCS 1', 'AES-128', 'AES-192', 'AES-256', 'PKCS 1']}}}, 'vendor': {'NXP': {'NXP': 4}, 'Samsung': {'Samsung': 1}, 'Broadcom': {'Broadcom': 1}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES-': 34}, '__delete__': ['AES-128', 'AES-192', 'AES-256']}, 'CAST': {'__update__': {'CAST': 53}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 5}}}}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__delete__': ['DHE']}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 5, 'SHA1': 5}}, 'SHA2': {'__update__': {'SHA-256': 2}}, 'SHA3': {'__update__': {'SHA3-224': 4, 'SHA3-256': 5, 'SHA3-384': 4, 'SHA3-512': 4}}}}}}, 'crypto_protocol': {'__update__': {'TLS': {'__update__': {'TLS': {'__update__': {'TLS': 10, 'TLSv1.2': 3, 'TLSv1.3': 3}}}}}}, 'cipher_mode': {'__update__': {'ECB': {'__update__': {'ECB': 4}}, 'CBC': {'__update__': {'CBC': 7}}, 'CTR': {'__update__': {'CTR': 4}}, 'OFB': {'__update__': {'OFB': 4}}, 'GCM': {'__update__': {'GCM': 10}}, 'CCM': {'__update__': {'CCM': 5}}}}, 'ecc_curve': {'__update__': {'NIST': {'__update__': {'P-256': 2}, '__delete__': ['P-224', 'P-384', 'P-521', 'P-192']}}}, 'crypto_library': {'__update__': {'wolfSSL': {'__update__': {'wolfSSL': 100}}}}, 'tee_name': {'__update__': {'IBM': {'__update__': {'SSC': 10}}}}, 'standard_id': {'__update__': {'FIPS': {'__insert__': {'FIPS18': 8}, '__update__': {'FIPS 140-3': 15, 'FIPS186-4': 18}, '__delete__': ['FIPS186']}, 'RFC': {'__insert__': {'RFC762': 1}, '__update__': {'RFC7627': 2}}}, '__delete__': ['PKCS']}} data.

The policy_metadata property was updated, with the {'pdf_file_size_bytes': 557664, 'pdf_number_of_pages': 45, '/CreationDate': "D:20250211170041-05'00'", '/ModDate': "D:20250211170052-05'00'", '/Producer': 'Adobe PDF Library 24.5.175'} data.

The state was updated.

The policy_pdf_hash property was set to 3ab8c2dcf01e6cfa1668624c4fb1682819e295c775c1294b04491849dfaf475b.

The policy_txt_hash property was set to 9df19872510437d46a6124849b3b92676bd29415b1b53285dc6af1b3b1301185.
24.02.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The exceptions property was updated.
12.08.2024

The certificate data changed.
Certificate changed

The web extraction data was updated.

The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2024_010824_1146.pdf.
15.07.2024

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4718,
  "dgst": "5c9c124097bc0e8b",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": []
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 15
          },
          "ECDSA": {
            "ECDSA": 20
          }
        },
        "FF": {
          "DH": {
            "DH": 2,
            "DHE": 1,
            "Diffie-Hellman": 1
          },
          "DSA": {
            "DSA": 9
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 7
        },
        "CCM": {
          "CCM": 5
        },
        "CTR": {
          "CTR": 4
        },
        "ECB": {
          "ECB": 4
        },
        "GCM": {
          "GCM": 10
        },
        "OFB": {
          "OFB": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "wolfSSL": {
          "wolfSSL": 100
        }
      },
      "crypto_protocol": {
        "SSH": {
          "SSH": 12
        },
        "TLS": {
          "TLS": {
            "TLS": 11,
            "TLS 1.2": 1,
            "TLS 1.3": 3,
            "TLS v1.2": 4,
            "TLS v1.3": 3,
            "TLSv1.2": 3,
            "TLSv1.3": 3
          }
        }
      },
      "crypto_scheme": {
        "AEAD": {
          "AEAD": 1
        },
        "KA": {
          "Key Agreement": 14,
          "Key agreement": 1
        },
        "MAC": {
          "MAC": 6
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-192": 4,
          "P-224": 8,
          "P-256": 10,
          "P-384": 10,
          "P-521": 10
        }
      },
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "- PKCS 1": 2,
          "AES-128": 1,
          "AES-192": 1,
          "AES-256": 1,
          "HMAC- SHA-1": 1,
          "HMAC- SHA1": 3,
          "HMAC- SHA224": 1,
          "HMAC- SHA256": 1,
          "HMAC- SHA384": 1,
          "HMAC- SHA512": 1,
          "HMAC-SHA-1": 6,
          "HMAC-SHA1": 2,
          "HMAC-SHA256": 2,
          "PKCS 1": 2,
          "SHA- 256": 1,
          "SHA-1": 7,
          "SHA-2": 1,
          "SHA-256": 2,
          "SHA-3": 2,
          "SHA-512": 2,
          "SHA1": 5,
          "SHA2- 224": 1,
          "SHA2- 256": 6,
          "SHA2- 384": 2,
          "SHA2- 512": 5,
          "SHA2-224": 6,
          "SHA2-256": 23,
          "SHA2-384": 10,
          "SHA2-512": 9,
          "SHA224": 2,
          "SHA256": 6,
          "SHA3- 224": 3,
          "SHA3- 256": 5,
          "SHA3- 384": 4,
          "SHA3- 512": 3,
          "SHA3-224": 6,
          "SHA3-256": 7,
          "SHA3-384": 5,
          "SHA3-512": 6,
          "SHA384": 2,
          "SHA512": 2
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 7,
            "SHA1": 5
          },
          "SHA2": {
            "SHA-2": 1,
            "SHA-256": 2,
            "SHA-512": 2,
            "SHA224": 2,
            "SHA256": 6,
            "SHA384": 2,
            "SHA512": 2
          },
          "SHA3": {
            "SHA-3": 2,
            "SHA3-224": 6,
            "SHA3-256": 7,
            "SHA3-384": 5,
            "SHA3-512": 6
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 35
        },
        "RNG": {
          "RBG": 3,
          "RNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-3": 15,
          "FIPS 180-4": 5,
          "FIPS 186-4": 9,
          "FIPS 198-1": 9,
          "FIPS 202": 4,
          "FIPS18": 8,
          "FIPS186-4": 18
        },
        "ISO": {
          "ISO/IEC 19790-2012": 1,
          "ISO/IEC 19790:2012": 4,
          "ISO/IEC 24759": 2
        },
        "NIST": {
          "NIST SP 800-131A": 1,
          "NIST SP 800-135": 1,
          "NIST SP 800-140D": 1,
          "NIST SP 800-56A": 1,
          "NIST SP 800-56B": 1,
          "NIST SP 800-56C": 1,
          "NIST SP 800-90A": 1,
          "SP 800-135": 4,
          "SP 800-38A": 4,
          "SP 800-38B": 1,
          "SP 800-38C": 1,
          "SP 800-38D": 3,
          "SP 800-56A": 2,
          "SP 800-90A": 1
        },
        "PKCS": {
          "PKCS 1": 2
        },
        "RFC": {
          "RFC762": 1,
          "RFC7627": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 6,
            "AES-": 34,
            "AES-128": 1,
            "AES-192": 1,
            "AES-256": 1
          },
          "CAST": {
            "CAST": 53
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 4,
            "HMAC": 6
          }
        }
      },
      "tee_name": {
        "AMD": {
          "PSP": 3
        },
        "IBM": {
          "SSC": 10
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "Broadcom": {
          "Broadcom": 1
        },
        "NXP": {
          "NXP": 4
        },
        "Samsung": {
          "Samsung": 1
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Hawes, David J. (Fed)",
      "/Comments": "",
      "/Company": "",
      "/CreationDate": "D:20260128173215-05\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 25 for Word",
      "/Keywords": "",
      "/ModDate": "D:20260128173417-05\u002700\u0027",
      "/Producer": "Adobe PDF Library 25.1.5",
      "/SourceModified": "",
      "/Subject": "",
      "/Title": "",
      "pdf_file_size_bytes": 574265,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
          "https://www.wolfssl.com/",
          "https://csrc.nist.gov/CSRC/media/Projects/cryptographic-module-validation-program/documents/fips%20140-3/FIPS%20140-3%20IG.pdf",
          "http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
          "http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2.pdf",
          "https://csrc.nist.gov/publications/detail/sp/800-135/rev-1/final",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140Dr2.pdf",
          "http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Ar2.pdf",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf",
          "https://csrc.nist.gov/publications/detail/sp/800-56b/rev-2/final"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 45
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "25faef2f904ac4ee0359e9a06b34dce4f7cb4b62d8d5953590d48f5c620dc6de",
    "policy_txt_hash": "e89cf598d65616c60acf577b2f512f9d01bb573527d4b928d87057d99636129f"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "No assurance of the minimum strength of generated SSPs (e.g., keys)",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2024_010824_1146.pdf",
    "date_sunset": "2029-07-10",
    "description": "wolfCrypt module is a comprehensive suite of FIPS Approved algorithms. All key sizes and modes have been implemented to allow flexibility and efficiency.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical security: N/A",
      "Non-invasive security: N/A",
      "Mitigation of other attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "wolfCrypt",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-3",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2024-07-11",
        "lab": "AEGISOLVE, Inc.",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2025-05-16",
        "lab": "AEGISOLVE, Inc.",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2026-01-29",
        "lab": "AEGISOLVE, Inc.",
        "validation_type": "Update"
      }
    ],
    "vendor": "wolfSSL Inc.",
    "vendor_url": "http://www.wolfssl.com"
  }
}

Sections

wolfCrypt

Certificate #4718

Webpage information

Security policy

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Libraries

Elliptic Curves

Block cipher modes

Trusted Execution Environments

Vendor

Security level

Standards

File metadata

Heuristics

References

Updates Feed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

New certificate

Raw data

Sections

wolfCrypt

Certificate #4718

Webpage information

Security policy

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Libraries

Elliptic Curves

Block cipher modes

Device

Trusted Execution Environments

Vendor

Security

Security level

Other

Standards

File metadata

Heuristics

References

Updates Feed

Raw data

Toggle raw data