This page was not yet optimized for use on mobile devices.

Fortanix SDKMS Appliance (FX2200, Version 3.10.16)

Certificate #4075

Webpage information

Status	historical
Historical reason	SP 800-56Arev3 transition
Validation dates	18.11.2021
Standard	FIPS 140-2
Security level	3
Type	Hardware
Embodiment	Multi-Chip Stand Alone
Caveat	None
Exceptions	Mitigation of Other Attacks: N/A
Description	Fortanix SDKMS appliance is the building block for running Fortanix Self-Defending Key Management Service (SDKMS), a unified HSM and Key Management solution. With SDKMS, you can securely generate, store, and use cryptographic keys and certificates, as well as secrets, such as passwords, API keys, tokens, or any blob of data.
Version (Hardware)	FX2200
Version (Firmware)	3.10.16
Vendor	Fortanix, Inc.
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Certificate

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, AES-256, TDEA, HMAC, HMAC-SHA-512, HMAC-SHA-256, CMAC

Asymmetric Algorithms

ECDSA, ECC, DH

Hash functions

SHA-1, SHA1, SHA-256, SHA-512, SHA-384, SHA256, SHA512, SHA-3, SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHA3, PBKDF

Protocols

TLS 1.2, TLS, TLS v1.2

Randomness

DRBG, RNG, RBG

Elliptic Curves

P-224, P-384, P-521, P-192, P-256

Block cipher modes

ECB, CBC, CTR, CFB, OFB, GCM, CCM

Security level

Level 3

Side-channel analysis

physical probing

Standards

FIPS 140-2, FIPS 197, FIPS 186-4, FIPS 198-1, FIPS 186-25, FIPS186-2, FIPS 180-4, FIPS 202, SP 800-38F, SP 800-38G, SP 800-38B, SP 800-135, SP 800-90A, SP 800-108, SP 800-56A, SP 800-133, SP 800-52, NIST SP 800-63B, NIST SP 800-108, SP 800-38D, PKCS1, PKCS#1, PKCS#5, PKCS#12, RFC 5288

File metadata

Title	Microsoft Word - Fortanix_SDKMS_Appliance_security_policy_10_10_2021.docx
Author	Admin
Creation date	D:20211010230419-07'00'
Modification date	D:20211010230419-07'00'
Pages	42
Creator	PScript5.dll Version 5.2.2
Producer	GPL Ghostscript 9.06

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state was updated.

The following values were inserted: {'policy_json_hash': None}.

The following properties were deleted: ['policy_convert_garbage'].
08.09.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated.
09.02.2023

The certificate data changed.
Certificate changed

The cert_id was updated.

The new value is 4075.

The web extraction data was updated.

The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2021-11-18', 'validation_type': 'Initial', 'lab': 'ADVANCED DATA SECURITY LLC'}], 'vendor_url': 'http://www.fortanix.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2021_011221_0923_signed.pdf', 'hw_versions': 'FX2200', 'fw_versions': '3.10.16'}.

The standard property was set to FIPS 140-2.

The status property was set to historical.

The level property was set to 3.

The embodiment property was set to Multi-Chip Stand Alone.

The tested_conf property was set to None.

The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].

The PDF extraction data was updated.

The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 1731158, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 42, '/Producer': 'GPL Ghostscript 9.06', '/CreationDate': "D:20211010230419-07'00'", '/ModDate': "D:20211010230419-07'00'", '/Title': 'Microsoft Word - Fortanix_SDKMS_Appliance_security_policy_10_10_2021.docx', '/Creator': 'PScript5.dll Version 5.2.2', '/Author': 'Admin', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}}.

The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].

The computed heuristics were updated.

The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}.

The algorithms property was set to {'_type': 'Set', 'elements': ['DRBG#2115', 'CVL#1874', 'AES#5282', 'SHA-3#C1461', 'HMAC#3489', 'SHS#4241', 'ECDSA#1441', 'RSA#2904', 'KTS#5282', 'KBKDF#203', 'CVL#1873', 'CVL#1875', 'KTS#3489']}.

The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].

The state was updated.

The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': 'c1744a2e0538923846dd2c9ef2526654e505c6e184d49b3bf237543cbbdee694', 'policy_txt_hash': 'eaa4656edd1ab529ecbfcc910799470c46fe7ffd52935b0b061a1a5a5206d689'}.

The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
07.12.2022

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The clean_cert_ids property was set to {'# 1441': 1}.

The st_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['1441']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['585', '673', '234', '101', '625', '451', '430', '293', '217', '121', '1194', '184', '1215', '478', '787', '1311', '205', '783', '373', '88', '679', '728', '1441', '784', '1305', '236', '875', '444']}} data.
05.11.2022

The certificate data changed.
Certificate changed

The web extraction data was updated.

The caveat property was set to None.

The algorithms property was set to {'_type': 'Set', 'elements': []}.

The PDF extraction data was updated.

The clean_cert_ids property was updated, with the {'# 1441': 1, '# 1874': 1} values inserted.

The computed heuristics were updated.

The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1873', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5282', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3489', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#C1461', 'algorithm_type': 'SHA-3', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#203', 'algorithm_type': 'KBKDF', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1874', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1441', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2904', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4241', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3489', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2115', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1875', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5282', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}]} values discarded.
25.10.2022

The certificate data changed.
Certificate changed

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_cert_id': {'__update__': {'Cert': {'__update__': {'#1': 1}, '__delete__': ['#5', '#12']}}}, 'fips_certlike': {'__update__': {'Certlike': {'__update__': {'HMAC-SHA-1': 4, 'HMAC-SHA- 256': 2, 'HMAC-SHA- 384': 6, 'HMAC-SHA-256': 4, 'SHA-256': 12, 'SHA-384': 4, 'SHA-1': 7, 'SHA-512': 3, 'SHA3-224': 1, 'SHA1': 1, 'SHA256': 1, 'SHA512': 1, 'SHA3': 1, 'AES-256': 1, 'AES 128': 1}, '__delete__': ['HMAC SHA1', 'HMAC-SHA-256 128', 'HMAC SHA256', 'HMAC-SHA-512 2048', 'HMAC SHA512', 'HMAC-SHA-256 256', 'HMAC-SHA-384', 'HMAC-SHA- 384 (384', 'SHA- 256', 'SHA- 384', 'SHA-512 112', 'SHA-512 2048', 'RSA 2048', 'AES GCM 128']}}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES': 35, 'AES-256': 1}, '__delete__': ['AES-']}}}, 'DES': {'__delete__': ['DES']}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 11, 'HMAC-SHA-512': 2, 'HMAC-SHA-256': 2, 'CMAC': 5}, '__delete__': ['HMAC-SHA-384']}}}}}, 'asymmetric_crypto': {'__update__': {'ECC': {'__update__': {'ECDSA': {'__update__': {'ECDSA': 9}}, 'ECC': {'__update__': {'ECC': 3}}}}, 'FF': {'__update__': {'DH': {'__update__': {'DH': 2}}}, '__delete__': ['DSA']}}, '__delete__': ['RSA']}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 7, 'SHA1': 1}}, 'SHA2': {'__update__': {'SHA-256': 13, 'SHA-384': 3, 'SHA-512': 5, 'SHA256': 1, 'SHA512': 1}, '__delete__': ['SHA-2', 'SHA2']}, 'SHA3': {'__update__': {'SHA-3': 2, 'SHA3-224': 1, 'SHA3': 1}}}}}}, 'crypto_scheme': {}, 'crypto_protocol': {'__update__': {'TLS': {'__update__': {'TLS': {'__update__': {'TLS 1.2': 2}}}}}}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 11}}, 'RNG': {'__update__': {'RNG': 7, 'RBG': 1}}}}, 'cipher_mode': {'__update__': {'ECB': {'__update__': {'ECB': 7}}, 'CTR': {'__update__': {'CTR': 5}}, 'CFB': {'__update__': {'CFB': 2}}, 'GCM': {'__update__': {'GCM': 15}}, 'CCM': {'__update__': {'CCM': 5}}}}, 'ecc_curve': {'__update__': {'NIST': {'__update__': {'P-192': 4}}}}, 'standard_id': {'__update__': {'FIPS': {'__delete__': ['FIPS 186-2']}, 'NIST': {'SP 800-38F': 1, 'SP 800-38G': 2, 'SP 800-38B': 1, 'SP 800-135': 5, 'SP 800-90A': 20, 'SP 800-108': 7, 'SP 800-56A': 2, 'SP 800-133': 1, 'SP 800-52': 1, 'NIST SP 800-63B': 1, 'NIST SP 800-108': 4, 'SP 800-38D': 1}, 'RFC': {'RFC 5288': 1}}}} data.

The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 112', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 256', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 201', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]}.

The clean_cert_ids property was updated, with the {'#1': 1} values inserted.

The computed heuristics were updated.

The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 112', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 256', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 201', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]} values added.

The state was updated.

The tables_done property was set to True.
17.07.2022

The certificate data changed.
Certificate changed

The _type was updated.

The new value is sec_certs.sample.fips.FIPSCertificate.

The computed heuristics were updated.

The following values were inserted: {'clean_cert_ids': {}}.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.Heuristics.

The keywords property was set to {}.

The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1873', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5282', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3489', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#C1461', 'algorithm_type': 'SHA-3', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1874', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#203', 'algorithm_type': 'KBKDF', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1441', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2904', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4241', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2115', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1875', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5282', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3489', 'algorithm_type': 'KTS', 'vendor': None, 'implementation': None, 'date': None}]}.

The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

The web_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

The state was updated.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.InternalState.

The following properties were deleted: ['fragment_path'].
02.07.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The status property was set to Historical.

The date_sunset property was set to None.

The historical_reason property was set to SP 800-56Arev3 transition.
29.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
25.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
23.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
21.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
14.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The pdf_scan was updated.

The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 198-1': {'__update__': {'count': 1}}}, '__delete__': ['FIPS 140-2', 'FIPS 186-4', 'FIPS186-2', 'FIPS 180-4']}, 'FIPS ?(?:PUB )?[0-9]+?': {'__update__': {'FIPS 202': {'__update__': {'count': 1}}}, '__delete__': ['FIPS 197']}, 'PKCS[ #]*[1-9]+': {'__delete__': ['PKCS1', 'PKCS#1', 'PKCS#5']}, 'TLS[ ]*v[0-9\\.]+': {'__update__': {'TLS v1.2': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__insert__': {'CCM': {'CCM': {'count': 1}}}, '__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'CTR': {'__update__': {'CTR': {'__update__': {'count': 1}}}}, 'OFB': {'__update__': {'OFB': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-224', 'P-384', 'P-192', 'P-256']}}}} data.

The computed heuristics were updated.

The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 198-1': {'__update__': {'count': 1}}}, '__delete__': ['FIPS 140-2', 'FIPS 186-4', 'FIPS186-2', 'FIPS 180-4']}, 'FIPS ?(?:PUB )?[0-9]+?': {'__update__': {'FIPS 202': {'__update__': {'count': 1}}}, '__delete__': ['FIPS 197']}, 'PKCS[ #]*[1-9]+': {'__delete__': ['PKCS1', 'PKCS#1', 'PKCS#5']}, 'TLS[ ]*v[0-9\\.]+': {'__update__': {'TLS v1.2': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__insert__': {'CCM': {'CCM': {'count': 1}}}, '__update__': {'ECB': {'__update__': {'ECB': {'__update__': {'count': 1}}}}, 'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'CTR': {'__update__': {'CTR': {'__update__': {'count': 1}}}}, 'OFB': {'__update__': {'OFB': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-224', 'P-384', 'P-192', 'P-256']}}}} data.

The algorithms property was updated.
07.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
24.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
22.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
20.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
19.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
17.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
13.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
11.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
10.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
08.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The following properties were deleted: ['connections'].

The pdf_scan was updated.

The following properties were deleted: ['connections'].

The computed heuristics were updated.

The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}.

The algorithms property was updated.

The following properties were deleted: ['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
18.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The extracted_versions property was set to {'_type': 'Set', 'elements': ['3.10.16']}.
17.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The date_sunset property was set to 2026-09-21.
12.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
11.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
03.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
02.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The module_type property was set to Hardware.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
31.01.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
30.01.2022

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4075,
  "dgst": "9705cc6128a60cc2",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "ECDSA#1441",
        "SHA-3#C1461",
        "CVL#1873",
        "HMAC#3489",
        "KTS#5282",
        "RSA#2904",
        "KTS#3489",
        "KBKDF#203",
        "AES#5282",
        "CVL#1874",
        "CVL#1875",
        "DRBG#2115",
        "SHS#4241"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.10.16"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 3
          },
          "ECDSA": {
            "ECDSA": 9
          }
        },
        "FF": {
          "DH": {
            "DH": 2
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 10
        },
        "CCM": {
          "CCM": 5
        },
        "CFB": {
          "CFB": 2
        },
        "CTR": {
          "CTR": 5
        },
        "ECB": {
          "ECB": 7
        },
        "GCM": {
          "GCM": 15
        },
        "OFB": {
          "OFB": 3
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS": 19,
            "TLS 1.2": 2,
            "TLS v1.2": 1
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-192": 4,
          "P-224": 20,
          "P-256": 16,
          "P-384": 6,
          "P-521": 14
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "# 1441": 1,
          "# 1874": 1,
          "#1": 1,
          "#2": 1,
          "#3489": 2,
          "#5282": 2
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES 128": 1,
          "AES 256": 5,
          "AES Cert. #5282": 2,
          "AES \u2013 128,192": 1,
          "AES-256": 1,
          "CVL2": 1,
          "DRBG3": 1,
          "HMAC Cert. #3489": 4,
          "HMAC- SHA-256": 1,
          "HMAC-SHA- 256": 2,
          "HMAC-SHA- 384": 6,
          "HMAC-SHA-1": 4,
          "HMAC-SHA-256": 4,
          "HMAC-SHA-512": 2,
          "HMAC-SHA-512 112": 2,
          "PKCS#1": 2,
          "PKCS#12": 2,
          "PKCS#5": 2,
          "PKCS1": 4,
          "SHA-1": 7,
          "SHA-256": 12,
          "SHA-3": 2,
          "SHA-384": 4,
          "SHA-512": 3,
          "SHA-512 3072": 1,
          "SHA1": 1,
          "SHA256": 1,
          "SHA3": 1,
          "SHA3-224": 1,
          "SHA3-256": 2,
          "SHA3-384": 2,
          "SHA3-512": 2,
          "SHA512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 3": 3
        }
      },
      "hash_function": {
        "PBKDF": {
          "PBKDF": 1
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 7,
            "SHA1": 1
          },
          "SHA2": {
            "SHA-256": 13,
            "SHA-384": 3,
            "SHA-512": 5,
            "SHA256": 1,
            "SHA512": 1
          },
          "SHA3": {
            "SHA-3": 2,
            "SHA3": 1,
            "SHA3-224": 1,
            "SHA3-256": 2,
            "SHA3-384": 2,
            "SHA3-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 11
        },
        "RNG": {
          "RBG": 1,
          "RNG": 7
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "physical probing": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 8,
          "FIPS 180-4": 3,
          "FIPS 186-25": 1,
          "FIPS 186-4": 2,
          "FIPS 197": 2,
          "FIPS 198-1": 3,
          "FIPS 202": 3,
          "FIPS186-2": 1
        },
        "NIST": {
          "NIST SP 800-108": 4,
          "NIST SP 800-63B": 1,
          "SP 800-108": 7,
          "SP 800-133": 1,
          "SP 800-135": 5,
          "SP 800-38B": 1,
          "SP 800-38D": 1,
          "SP 800-38F": 1,
          "SP 800-38G": 2,
          "SP 800-52": 1,
          "SP 800-56A": 2,
          "SP 800-90A": 20
        },
        "PKCS": {
          "PKCS#1": 1,
          "PKCS#12": 1,
          "PKCS#5": 1,
          "PKCS1": 2
        },
        "RFC": {
          "RFC 5288": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 35,
            "AES-256": 1
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 5,
            "HMAC": 11,
            "HMAC-SHA-256": 2,
            "HMAC-SHA-512": 2
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Admin",
      "/CreationDate": "D:20211010230419-07\u002700\u0027",
      "/Creator": "PScript5.dll Version 5.2.2",
      "/ModDate": "D:20211010230419-07\u002700\u0027",
      "/Producer": "GPL Ghostscript 9.06",
      "/Title": "Microsoft Word - Fortanix_SDKMS_Appliance_security_policy_10_10_2021.docx",
      "pdf_file_size_bytes": 1731158,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 42
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "c1744a2e0538923846dd2c9ef2526654e505c6e184d49b3bf237543cbbdee694",
    "policy_txt_hash": "eaa4656edd1ab529ecbfcc910799470c46fe7ffd52935b0b061a1a5a5206d689"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "None",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2021_011221_0923_signed.pdf",
    "date_sunset": null,
    "description": "Fortanix SDKMS appliance is the building block for running Fortanix Self-Defending Key Management Service (SDKMS), a unified HSM and Key Management solution. With SDKMS, you can securely generate, store, and use cryptographic keys and certificates, as well as secrets, such as passwords, API keys, tokens, or any blob of data.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "3.10.16",
    "historical_reason": "SP 800-56Arev3 transition",
    "hw_versions": "FX2200",
    "level": 3,
    "mentioned_certs": {},
    "module_name": "Fortanix SDKMS Appliance (FX2200, Version 3.10.16)",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2021-11-18",
        "lab": "ADVANCED DATA SECURITY",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Fortanix, Inc.",
    "vendor_url": "http://www.fortanix.com"
  }
}

Sections