Proventia GX Series Security Appliances

Certificate #1460

Webpage information

Status historical
Historical reason RNG SP800-131A Revision 1 Transition
Validation dates 29.11.2010 , 07.12.2011 , 02.04.2012 , 24.04.2012 , 14.02.2013
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat With Firmware Version 3.1, 4.1 or 4.3 and with the tamper evidence seals installed as indicated in the Security Policy
Description The IBM Proventia Network Intrusion Prevention System (IPS) stops Internet threats before they impact your business and delivers protection to all three layers of the network: core, perimeter and remote segments. Preemptive protection, or protection that works ahead of the threat, is available from IBM Internet Security Systems through its proprietary combination of line-speed performance, security intelligence and a modular protection engine that enables security convergence.
Version (Hardware) GX4004, GX5008, GX5108, GX5208 and GX6116
Version (Firmware) 3.1, 4.1 or 4.3
Vendor IBM Internet Security Systems, Inc.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, TDES, HMAC
Hash functions
SHA1
Protocols
SSH, TLS v1.0, TLS
Randomness
PRNG, RNG
Block cipher modes
CBC

Security level
Level 2

Standards
FIPS 140, FIPS 198, FIPS 197, PKCS1, RFC2246

File metadata

Title Microsoft Word - ISS GX 4-3 Series FIPS 140 Security Policy v1-6-LegacyGX.doc
Author brian
Creation date D:20130206115446-05'00'
Modification date D:20130206115446-05'00'
Pages 34
Creator PScript5.dll Version 5.2.2
Producer Acrobat Distiller 9.5.2 (Windows)

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 1460,
  "dgst": "63d942da157a1ee4",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "RSA#564",
        "RSA#565",
        "RNG#654",
        "AES#1184",
        "RNG#655",
        "SHS#1092",
        "RNG#653",
        "RSA#563",
        "AES#1182",
        "SHS#1093",
        "HMAC#683",
        "AES#1183",
        "HMAC#682",
        "SHS#1091",
        "HMAC#684"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "4.1",
        "4.3",
        "3.1"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {},
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "SSH": {
          "SSH": 1
        },
        "TLS": {
          "TLS": {
            "TLS": 9,
            "TLS v1.0": 1
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 3,
          "#2": 3,
          "#3": 2,
          "#4": 2,
          "#5": 2,
          "#6": 2,
          "#7": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES 256": 1,
          "PKCS1": 2,
          "SHA1": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA1": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "PRNG": 12
        },
        "RNG": {
          "RNG": 4
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140": 6,
          "FIPS 197": 1,
          "FIPS 198": 1
        },
        "PKCS": {
          "PKCS1": 1
        },
        "RFC": {
          "RFC2246": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 11
          }
        },
        "DES": {
          "3DES": {
            "TDES": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 3
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "brian",
      "/CreationDate": "D:20130206115446-05\u002700\u0027",
      "/Creator": "PScript5.dll Version 5.2.2",
      "/ModDate": "D:20130206115446-05\u002700\u0027",
      "/Producer": "Acrobat Distiller 9.5.2 (Windows)",
      "/Title": "Microsoft Word - ISS GX 4-3 Series FIPS 140 Security Policy v1-6-LegacyGX.doc",
      "pdf_file_size_bytes": 530054,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 34
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "eb7b1836dd6935f7f7869f62f084d359c446db4e811513814fd2d58230d6ef3b",
    "policy_txt_hash": "589a9b605cea70dcbeedfb87b383a6456bfa5c69ae1177f62d389cd6df4c9bb9"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "With Firmware Version 3.1, 4.1 or 4.3 and with the tamper evidence seals installed as indicated in the Security Policy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt1460.pdf",
    "date_sunset": null,
    "description": "The IBM Proventia Network Intrusion Prevention System (IPS) stops Internet threats before they impact your business and delivers protection to all three layers of the network: core, perimeter and remote segments. Preemptive protection, or protection that works ahead of the threat, is available from IBM Internet Security Systems through its proprietary combination of line-speed performance, security intelligence and a modular protection engine that enables security convergence.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": null,
    "fw_versions": "3.1, 4.1 or 4.3",
    "historical_reason": "RNG SP800-131A Revision 1 Transition",
    "hw_versions": "GX4004, GX5008, GX5108, GX5208 and GX6116",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "Proventia GX Series Security Appliances",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2010-11-29",
        "lab": "COACT INC CAFE LAB",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2011-12-07",
        "lab": "",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2012-04-02",
        "lab": "COACT INC CAFE LAB",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2012-04-24",
        "lab": "COACT INC CAFE LAB",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2013-02-14",
        "lab": "COACT INC CAFE LAB",
        "validation_type": "Update"
      }
    ],
    "vendor": "IBM Internet Security Systems, Inc.",
    "vendor_url": "http://www.iss.net"
  }
}