This page was not yet optimized for use on mobile devices.
CCA-685 Secure Router
Certificate #2324
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, DES, Triple-DES, HMAC, CMAC, CBC-MACAsymmetric Algorithms
DH, Diffie-Hellman, DSAHash functions
SHA-1, SHA-224, SHA-256, SHA-512, SHA-384, SHA-2, MD5Schemes
MAC, Key ExchangeProtocols
SSH, SSL, SSL3.0, TLS, IKE, IPsec, VPNRandomness
PRNG, DRBG, RNGBlock cipher modes
ECB, CBC, CTR, CFB, OFB, CCMSecurity level
Level 2, Level 1Standards
FIPS 140-2, NIST SP 800-135, PKCS#1File metadata
| Title | Security Policy |
|---|---|
| Subject | VPX3-685 Secure Routers |
| Author | Shaunak Shah |
| Creation date | D:20150108102217-05'00' |
| Modification date | D:20150206073005-05'00' |
| Pages | 28 |
| Creator | Microsoft® Word 2010 |
| Producer | Microsoft® Word 2010 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
09.02.2023 The certificate data changed.
Certificate changed
The cert_id was updated.
- The new value is
2324.
The web extraction data was updated.
- The following values were inserted:
{'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2015-02-06', 'validation_type': 'Initial', 'lab': 'DXC Technology'}, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2015-12-21', 'validation_type': 'Update', 'lab': ''}], 'vendor_url': 'http://www.curtisswrightds.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertList0050.pdf', 'hw_versions': 'CCA-685-C2820', 'fw_versions': '2.1'}. - The standard property was set to
FIPS 140-2. - The status property was set to
historical. - The level property was set to
2. - The embodiment property was set to
Multi-Chip Embedded. - The description property was set to
The CCA-685 Secure Router is used for strong security in the embedded defense and aerospace industries. It supports industry standard encryption algorithms used in IPSec/VPN/IKE/PKI and other networking standards. Including H/W accelerated AES bulk encryption.. - The following properties were deleted:
['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].
The PDF extraction data was updated.
- The following values were inserted:
{'policy_metadata': {'pdf_file_size_bytes': 898851, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 28, '/Author': 'Shaunak Shah', '/CreationDate': "D:20150108102217-05'00'", '/Creator': 'Microsoft® Word 2010', '/ModDate': "D:20150206073005-05'00'", '/Producer': 'Microsoft® Word 2010', '/Subject': 'VPX3-685 Secure Routers', '/Title': 'Security Policy', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.corsec.com/', 'http://www.cwcdefense.com/', 'http://csrc.nist.gov/groups/STM/cmvp', 'mailto:[email protected]', 'http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm']}}}. - The following properties were deleted:
['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].
The computed heuristics were updated.
- The following values were inserted:
{'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}. - The algorithms property was set to
{'_type': 'Set', 'elements': ['RNG#1111', 'DSA#713', 'SHS#1907', 'Triple-DES#758', 'SHS#934', 'CVL#405', 'HMAC#538', 'AES#963', 'RSA#1135']}. - The following properties were deleted:
['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].
The state was updated.
- The following values were inserted:
{'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': 'd465a7562394ab6b886085bd55b179f1f10fb0e1e78222ecc2822f579a7a6a27', 'policy_txt_hash': 'aba96a84e91c1379f0335ed0d2c72efc017972155227d1d56f22b564de766eb4'}. - The following properties were deleted:
['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
- The new value is
-
05.11.2022 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The algorithms property was set to
{'_type': 'Set', 'elements': []}.
The computed heuristics were updated.
- The algorithms property was set to
{'_type': 'Set', 'elements': []}.
- The algorithms property was set to
-
25.10.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The keywords property was updated, with the
{'fips_cert_id': {}, 'fips_security_level': {'__update__': {'Level': {'__delete__': ['level 1']}}}, 'fips_certlike': {'__update__': {'Certlike': {'__update__': {'HMAC SHA-1': 5, 'SHA-1': 12}, '__delete__': ['HMAC SHA-1 128', 'SHA-1 128', 'RSA 2048', 'AES key 112', 'AES 112']}}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'__update__': {'DES': {'__update__': {'DES': {'__update__': {'DES': 5}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'CMAC': 2}}}}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__update__': {'Diffie-Hellman': 2}}}}}, '__delete__': ['RSA']}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 12}}, 'SHA2': {'__update__': {'SHA-2': 3}}}, '__delete__': ['SHA3']}}}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 1}}}, '__delete__': ['KA']}, 'crypto_protocol': {'__update__': {'SSH': {'__update__': {'SSH': 13}}, 'IKE': {'__update__': {'IKE': 18}}, 'IPsec': {'__update__': {'IPsec': 14}}, 'VPN': {'__update__': {'VPN': 8}}}}, 'randomness': {'__update__': {'PRNG': {'__update__': {'PRNG': 20}}, 'RNG': {'__update__': {'RNG': 1}, '__delete__': ['RBG']}}}, 'cipher_mode': {'__update__': {'ECB': {'__update__': {'ECB': 3}}, 'CBC': {'__update__': {'CBC': 5}}, 'CTR': {'__update__': {'CTR': 2}}, 'CFB': {'__update__': {'CFB': 1}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'FIPS': {'__delete__': ['FIPS 140']}, 'NIST': {'NIST SP 800-135': 1}}}}data.
The state was updated.
- The tables_done property was set to
True.
- The keywords property was updated, with the
-
08.10.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The keywords property was updated, with the
{'crypto_protocol': {'__insert__': {'VPN': {'VPN': 10}}}}data.
- The keywords property was updated, with the
-
17.07.2022 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.fips.FIPSCertificate.
The computed heuristics were updated.
- The following values were inserted:
{'clean_cert_ids': {}}. - The _type property was set to
sec_certs.sample.fips.FIPSCertificate.Heuristics. - The keywords property was set to
{}. - The algorithms property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#713', 'algorithm_type': 'DSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1907', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#934', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#405', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#963', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1135', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#538', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#758', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1111', 'algorithm_type': 'RNG', 'vendor': None, 'implementation': None, 'date': None}]}. - The st_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}data. - The web_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}data.
The state was updated.
- The _type property was set to
sec_certs.sample.fips.FIPSCertificate.InternalState. - The following properties were deleted:
['fragment_path'].
- The new value is
-
25.06.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
21.06.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
14.06.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The pdf_scan was updated.
- The keywords property was updated, with the
{'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 140-2': {'__update__': {'count': 1}}}}, 'PKCS[ #]*[1-9]+': {'__update__': {'PKCS#1': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__insert__': {'CCM': {'CCM': {'count': 1}}}, '__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'CTR': {'__update__': {'CTR': {'__update__': {'count': 1}}}}, 'OFB': {'__update__': {'OFB': {'__update__': {'count': 1}}}}}}}data.
The computed heuristics were updated.
- The keywords property was updated, with the
{'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 140-2': {'__update__': {'count': 1}}}}, 'PKCS[ #]*[1-9]+': {'__update__': {'PKCS#1': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__insert__': {'CCM': {'CCM': {'count': 1}}}, '__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'CTR': {'__update__': {'CTR': {'__update__': {'count': 1}}}}, 'OFB': {'__update__': {'OFB': {'__update__': {'count': 1}}}}}}}data. - The algorithms property was updated.
-
24.05.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
20.05.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
18.05.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
17.05.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
13.05.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
11.03.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
10.03.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
08.03.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
- The following properties were deleted:
['connections'].
The pdf_scan was updated.
- The following properties were deleted:
['connections'].
The computed heuristics were updated.
- The following values were inserted:
{'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}. - The algorithms property was updated.
- The following properties were deleted:
['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
-
18.02.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The extracted_versions property was set to
{'_type': 'Set', 'elements': ['2.1']}.
- The extracted_versions property was set to
-
12.02.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
-
02.02.2022 The certificate data changed.
Certificate changed
The web_scan was updated.
- The module_type property was set to
Hardware.
- The module_type property was set to
-
30.01.2022 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2324,
"dgst": "8b01315e403fc649",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"HMAC#538",
"DSA#713",
"SHS#1907",
"AES#963",
"RNG#1111",
"CVL#405",
"Triple-DES#758",
"RSA#1135",
"SHS#934"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"2.1"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"FF": {
"DH": {
"DH": 4,
"Diffie-Hellman": 2
},
"DSA": {
"DSA": 10
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 5
},
"CCM": {
"CCM": 1
},
"CFB": {
"CFB": 1
},
"CTR": {
"CTR": 2
},
"ECB": {
"ECB": 3
},
"OFB": {
"OFB": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 18
},
"IPsec": {
"IPsec": 14
},
"SSH": {
"SSH": 13
},
"TLS": {
"SSL": {
"SSL": 3,
"SSL3.0": 1
},
"TLS": {
"TLS": 14
}
},
"VPN": {
"VPN": 8
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 2
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES KAT32": 1,
"HMAC SHA-1": 5,
"HMAC SHA-2": 2,
"PKCS#1": 4,
"RSA PKCS#1": 4,
"RSA19": 1,
"SHA- 1": 1,
"SHA- 384": 1,
"SHA-1": 12,
"SHA-2": 3,
"SHA-224": 3,
"SHA-233": 1,
"SHA-256": 4,
"SHA-384": 2,
"SHA-512": 1,
"SHA-512 34": 1,
"SHA-512 538": 1,
"SHA-512 934": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 1,
"Level 2": 2
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 4
}
},
"SHA": {
"SHA1": {
"SHA-1": 12
},
"SHA2": {
"SHA-2": 3,
"SHA-224": 3,
"SHA-256": 4,
"SHA-384": 2,
"SHA-512": 4
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 1,
"PRNG": 20
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 18
},
"NIST": {
"NIST SP 800-135": 1
},
"PKCS": {
"PKCS#1": 4
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 7
}
},
"DES": {
"3DES": {
"Triple-DES": 8
},
"DES": {
"DES": 5
}
},
"constructions": {
"MAC": {
"CBC-MAC": 1,
"CMAC": 2,
"HMAC": 9
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Shaunak Shah",
"/CreationDate": "D:20150108102217-05\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2010",
"/ModDate": "D:20150206073005-05\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2010",
"/Subject": "VPX3-685 Secure Routers",
"/Title": "Security Policy",
"pdf_file_size_bytes": 898851,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm",
"http://www.cwcdefense.com/",
"http://www.corsec.com/",
"http://csrc.nist.gov/groups/STM/cmvp",
"mailto:[email protected]"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 28
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "d465a7562394ab6b886085bd55b179f1f10fb0e1e78222ecc2822f579a7a6a27",
"policy_txt_hash": "aba96a84e91c1379f0335ed0d2c72efc017972155227d1d56f22b564de766eb4"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertList0050.pdf",
"date_sunset": null,
"description": "The CCA-685 Secure Router is used for strong security in the embedded defense and aerospace industries. It supports industry standard encryption algorithms used in IPSec/VPN/IKE/PKI and other networking standards. Including H/W accelerated AES bulk encryption.",
"embodiment": "Multi-Chip Embedded",
"exceptions": [
"Cryptographic Module Specification: Level 3",
"Roles, Services, and Authentication: Level 3",
"Design Assurance: Level 3",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "2.1",
"historical_reason": "RNG SP800-131A Revision 1 Transition",
"hw_versions": "CCA-685-C2820",
"level": 2,
"mentioned_certs": {},
"module_name": "CCA-685 Secure Router",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2015-02-06",
"lab": "DXC Technology",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2015-12-21",
"lab": "",
"validation_type": "Update"
}
],
"vendor": "Curtiss-Wright",
"vendor_url": "http://www.curtisswrightds.com"
}
}