Harmony Endpoint FDE and MEPP CryptoCore

Certificate #2788

Webpage information

Status active
Validation dates 07.11.2016 , 16.07.2019 , 17.05.2022 , 22.07.2022 , 14.10.2022
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode. No assurance of the minimum strength of generated keys
Exceptions
  • Physical Security: N/A
  • EMI/EMC: Level 3
  • Mitigation of Other Attacks: N/A
Description Check Point CryptoCore is a 140-2 Level 1 cryptographic module for Windows 10 and macOS Sierra. The module provides cryptographic services accessible in kernel mode and user mode on the respective platforms through implementation of platform specific binaries.
Tested configurations
  • macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M with PAA (Kernel Space)
  • macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M with PAA (User Space)
  • macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M without PAA (Kernel Space) (single-user mode)
  • macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M without PAA (User Space)
  • Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M with PAA (Kernel Space, VS2008)
  • Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M with PAA (User Space, VS2008)
  • Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M without PAA (Kernel Space, VS2008)
  • Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M without PAA (User Space, VS2008)
  • Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo X1 Carbon with an Intel Core-i7-7500U with PAA (User Space, VS2017)
  • Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo X1 Carbon with an Intel Core-i7-7500U without PAA (User Space, VS2017)
Vendor Check Point Software Technologies Ltd.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, CAST-128, CAST, DES, Triple-DES, Blowfish, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512
Asymmetric Algorithms
RSA 2048
Hash functions
SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, SHA-2, SHA-3, SHA3-224, SHA3-256, SHA3-384, SHA3-512, MD5, PBKDF
Schemes
MAC
Randomness
PRNG, DRBG
Block cipher modes
ECB, CBC, CTR, XTS

Vendor
Microsoft

Security level
Level 1, level 1

Standards
FIPS 140-2, FIPS 186-4, SP 800-132, PKCS#1, PKCS#5

File metadata

Title Microsoft Word - CryptoCore Security Policy.docx
Author huntzh
Creation date D:20221011152324-04'00'
Modification date D:20221011152324-04'00'
Pages 16
Producer Microsoft: Print To PDF

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 2788,
  "dgst": "6db12d3deff9081b",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#4112",
        "SHS#3385",
        "DRBG#1238",
        "Triple-DES#2247",
        "RSA#2225",
        "Triple-DES MAC#2247",
        "HMAC#2687",
        "KTS#4112",
        "SHA-3#7"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "RSA": {
          "RSA 2048": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 4
        },
        "CTR": {
          "CTR": 4
        },
        "ECB": {
          "ECB": 4
        },
        "XTS": {
          "XTS": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "MAC": {
          "MAC": 4
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#4112": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES (Cert. #4112": 1,
          "HMAC-SHA-1": 3,
          "HMAC-SHA-1 (160": 1,
          "HMAC-SHA-2": 2,
          "HMAC-SHA-256": 2,
          "HMAC-SHA-3": 2,
          "HMAC-SHA-384": 2,
          "HMAC-SHA-512": 2,
          "HMAC-SHA1": 2,
          "HMAC-SHA224": 2,
          "HMAC-SHA256": 2,
          "HMAC-SHA384": 2,
          "HMAC-SHA512": 2,
          "PKCS#1": 8,
          "PKCS#5": 4,
          "RSA 2048": 1,
          "SHA- 1": 1,
          "SHA-1": 2,
          "SHA-1 (160": 1,
          "SHA-2": 2,
          "SHA-2 (224": 1,
          "SHA-2 256": 1,
          "SHA-224": 1,
          "SHA-256": 1,
          "SHA-3": 2,
          "SHA-3 (224": 1,
          "SHA-384": 1,
          "SHA-512": 1,
          "SHA3-224": 1,
          "SHA3-256": 1,
          "SHA3-384": 1,
          "SHA3-512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 2,
          "level 1": 1
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 4
          }
        },
        "PBKDF": {
          "PBKDF": 1
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 3
          },
          "SHA2": {
            "SHA-2": 4,
            "SHA-224": 1,
            "SHA-256": 1,
            "SHA-384": 1,
            "SHA-512": 1
          },
          "SHA3": {
            "SHA-3": 3,
            "SHA3-224": 1,
            "SHA3-256": 1,
            "SHA3-384": 1,
            "SHA3-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 11,
          "PRNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 16,
          "FIPS 186-4": 3
        },
        "NIST": {
          "SP 800-132": 1
        },
        "PKCS": {
          "PKCS#1": 4,
          "PKCS#5": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 12
          },
          "CAST": {
            "CAST": 1,
            "CAST-128": 1
          }
        },
        "DES": {
          "3DES": {
            "Triple-DES": 7
          },
          "DES": {
            "DES": 3
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 11,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        },
        "miscellaneous": {
          "Blowfish": {
            "Blowfish": 3
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Microsoft": {
          "Microsoft": 8
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "huntzh",
      "/CreationDate": "D:20221011152324-04\u002700\u0027",
      "/ModDate": "D:20221011152324-04\u002700\u0027",
      "/Producer": "Microsoft: Print To PDF",
      "/Title": "Microsoft Word - CryptoCore Security Policy.docx",
      "pdf_file_size_bytes": 791311,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 16
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "3d2ccfadd04f1c741c6dd87ea7dadd49c72728418dc9d7eddb78550566d409d4",
    "policy_txt_hash": "ecfed26c38fea00c78634aa5fe2114d15b177988cac0d435211f4b832a87187b"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode. No assurance of the minimum strength of generated keys",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertNov2016.pdf",
    "date_sunset": "2026-09-21",
    "description": "Check Point CryptoCore is a 140-2 Level 1 cryptographic module for Windows 10 and macOS Sierra. The module provides cryptographic services accessible in kernel mode and user mode on the respective platforms through implementation of platform specific binaries.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical Security: N/A",
      "EMI/EMC: Level 3",
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "Harmony Endpoint FDE and MEPP CryptoCore",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": "4.0",
    "tested_conf": [
      "macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M with PAA (Kernel Space)",
      "macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M with PAA (User Space)",
      "macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M without PAA (Kernel Space) (single-user mode)",
      "macOS Sierra 10.12 (64-bit) running on an Apple MacBook Pro with an Intel Core i7-3540M without PAA (User Space)",
      "Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M with PAA (Kernel Space, VS2008)",
      "Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M with PAA (User Space, VS2008)",
      "Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M without PAA (Kernel Space, VS2008)",
      "Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo Thinkpad with an Intel Core i5-3210M without PAA (User Space, VS2008)",
      "Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo X1 Carbon with an Intel Core-i7-7500U with PAA (User Space, VS2017)",
      "Microsoft Windows 10 Anniversary Update (64-bit) running on a Lenovo X1 Carbon with an Intel Core-i7-7500U without PAA (User Space, VS2017)"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2016-11-07",
        "lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2019-07-16",
        "lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-05-17",
        "lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-07-22",
        "lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-10-14",
        "lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
        "validation_type": "Update"
      }
    ],
    "vendor": "Check Point Software Technologies Ltd.",
    "vendor_url": "http://www.checkpoint.com"
  }
}