This page was not yet optimized for use on mobile
devices.
Red Hat Enterprise Linux NSS Cryptographic Module v4.0
Known vulnerabilities detected
Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.Certificate #2711
Webpage information
Security policy
Symmetric Algorithms
AES, RC2, RC5, RC4, DES, Triple-DES, TDEA, Camellia, SEED, HMAC, HMAC-SHA-256, HMAC-SHA-512Asymmetric Algorithms
RSA 2048, RSA 1024, RSA 3072, ECDSA, Diffie-Hellman, DSAHash functions
SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, MD5Schemes
MACProtocols
TLS, TLS v1.0, TLS v1.1, TLS v1.2Randomness
DRBGLibraries
NSSElliptic Curves
P-384, P-521, P-256Block cipher modes
ECB, CBC, CTR, GCMSecurity level
Level 1Side-channel analysis
Timing attacks, Timing attack, timing attacks, Timing AttacksStandards
FIPS 140-2, FIPS 197, FIPS 180-4, FIPS 198-1, FIPS 186-4, NIST SP 800-56B, NIST SP 800-38A, NIST SP 800-38D, NIST SP 800-38F, NIST SP 800-56A, NIST SP 800-67, NIST SP 800-90A, PKCS #11, PKCS#1File metadata
| Title | FIPS 140-2 Non-Proprietary Security Policy |
|---|---|
| Subject | Red Hat Enterprise Linux NSS Cryptographic Module v4.0 |
| Author | Alejandro Fabio Masino |
| Creation date | D:20180125124907-06'00' |
| Pages | 35 |
| Creator | Writer |
| Producer | LibreOffice 5.3 |
References
Incoming- 2742 - historical - Red Hat Enterprise Linux Kernel Crypto API Cryptographic Module v4.0
- 2721 - historical - Red Hat Enterprise Linux Libreswan Cryptographic Module v4.0
- 2798 - historical - Red Hat Enterprise Linux Kernel Crypto API Cryptographic Module v4.0 with CPACF
- 2238 - historical - McAfee Firewall Enterprise Virtual Appliance for VMware
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
Related CVEs
| ID | Links | Severity | CVSS Score | Published on | ||
|---|---|---|---|---|---|---|
| Base | Exploitability | Impact | ||||
| CVE-1999-0002 | HIGH | 10.0 | 10.0 | 12.10.1998 | ||
| CVE-1999-0009 | HIGH | 10.0 | 10.0 | 08.04.1998 | ||
| CVE-1999-0034 | HIGH | 7.2 | 10.0 | 29.05.1997 | ||
| CVE-1999-0037 | HIGH | 7.5 | 6.4 | 21.05.1997 | ||
| CVE-1999-0041 | HIGH | 7.5 | 6.4 | 13.02.1997 | ||
| CVE-1999-0042 | HIGH | 10.0 | 10.0 | 07.04.1997 | ||
| CVE-1999-0043 | HIGH | 10.0 | 10.0 | 04.12.1996 | ||
| CVE-1999-0130 | HIGH | 7.2 | 10.0 | 16.11.1996 | ||
| CVE-1999-0192 | HIGH | 10.0 | 10.0 | 18.10.1997 | ||
| CVE-1999-0297 | HIGH | 7.2 | 10.0 | 12.12.1996 | ||
| CVE-1999-0390 | HIGH | 7.2 | 10.0 | 04.01.1999 | ||
| CVE-1999-0769 | HIGH | 7.2 | 10.0 | 25.08.1999 | ||
| CVE-1999-0798 | HIGH | 10.0 | 10.0 | 04.12.1998 | ||
| CVE-1999-0868 | HIGH | 7.2 | 10.0 | 20.02.1997 | ||
| CVE-1999-0872 | HIGH | 7.2 | 10.0 | 25.08.1999 | ||
| CVE-1999-0894 | HIGH | 10.0 | 10.0 | 04.01.2000 | ||
| CVE-1999-1182 | HIGH | 7.2 | 10.0 | 17.07.1997 | ||
| CVE-1999-1288 | MEDIUM | 4.6 | 6.4 | 19.11.1998 | ||
| CVE-1999-1299 | HIGH | 10.0 | 10.0 | 03.02.1997 | ||
| CVE-1999-1329 | HIGH | 7.2 | 10.0 | 31.12.1999 | ||
| CVE-1999-1332 | LOW | 2.1 | 2.9 | 31.12.1999 | ||
| CVE-1999-1333 | HIGH | 7.5 | 6.4 | 31.12.1999 | ||
| CVE-1999-1335 | MEDIUM | 6.4 | 4.9 | 31.12.1999 | ||
| CVE-1999-1346 | HIGH | 7.5 | 6.4 | 07.10.1999 | ||
| CVE-1999-1347 | MEDIUM | 4.6 | 6.4 | 07.10.1999 | ||
| CVE-1999-1348 | LOW | 2.1 | 2.9 | 30.06.1999 | ||
| CVE-2000-0017 | HIGH | 10.0 | 10.0 | 21.12.1999 | ||
| CVE-2000-0118 | HIGH | 7.2 | 10.0 | 09.06.1999 | ||
| CVE-2000-0170 | HIGH | 7.2 | 10.0 | 26.02.2000 | ||
| CVE-2000-0701 | MEDIUM | 4.6 | 6.4 | 20.10.2000 | ||
| CVE-2000-1207 | HIGH | 7.2 | 10.0 | 30.09.2000 | ||
| CVE-2000-1220 | HIGH | 10.0 | 10.0 | 08.01.2000 | ||
| CVE-2001-0690 | HIGH | 7.5 | 6.4 | 20.09.2001 | ||
| CVE-2001-0886 | MEDIUM | 4.6 | 6.4 | 21.12.2001 | ||
| CVE-2001-0889 | HIGH | 7.5 | 6.4 | 19.12.2001 | ||
| CVE-2005-0087 | MEDIUM | 4.6 | 6.4 | 27.04.2005 | ||
| CVE-2005-2492 | LOW | 3.6 | 4.9 | 14.09.2005 | ||
| CVE-2006-5170 | HIGH | 7.5 | 6.4 | 10.10.2006 | ||
| CVE-2007-2030 | MEDIUM | 4.9 | 6.9 | 16.04.2007 | ||
| CVE-2007-3103 | MEDIUM | 6.2 | 10.0 | 15.07.2007 | ||
| CVE-2007-5079 | MEDIUM | 6.0 | 6.4 | 25.09.2007 | ||
| CVE-2007-5494 | MEDIUM | 4.9 | 6.9 | 30.11.2007 | ||
| CVE-2007-6285 | MEDIUM | 6.2 | 10.0 | 20.12.2007 | ||
| CVE-2009-0846 | HIGH | 10.0 | 10.0 | 09.04.2009 | ||
| CVE-2009-1837 | HIGH | 7.5 | 5.9 | 12.06.2009 | ||
| CVE-2009-2416 | MEDIUM | 6.5 | 3.6 | 11.08.2009 | ||
| CVE-2009-4067 | MEDIUM | 6.8 | 5.9 | 11.02.2020 | ||
| CVE-2010-0013 | HIGH | 7.5 | 3.6 | 09.01.2010 | ||
| CVE-2010-4251 | HIGH | 7.5 | 3.6 | 26.05.2011 | ||
| CVE-2010-4805 | HIGH | 7.5 | 3.6 | 26.05.2011 | ||
| CVE-2011-1145 | HIGH | 7.8 | 5.9 | 14.11.2019 | ||
| CVE-2011-2525 | HIGH | 7.8 | 5.9 | 02.02.2012 | ||
| CVE-2011-2699 | HIGH | 7.5 | 3.6 | 24.05.2012 | ||
| CVE-2011-2717 | CRITICAL | 9.8 | 5.9 | 27.11.2019 | ||
| CVE-2011-2897 | CRITICAL | 9.8 | 5.9 | 12.11.2019 | ||
| CVE-2011-3188 | CRITICAL | 9.1 | 5.2 | 24.05.2012 | ||
| CVE-2011-3191 | HIGH | 8.8 | 5.9 | 24.05.2012 | ||
| CVE-2011-3363 | MEDIUM | 6.5 | 3.6 | 24.05.2012 | ||
| CVE-2011-3585 | MEDIUM | 4.7 | 3.6 | 31.12.2019 | ||
| CVE-2011-4967 | HIGH | 7.5 | 3.6 | 19.11.2019 | ||
| CVE-2012-1097 | HIGH | 7.8 | 5.9 | 17.05.2012 | ||
| CVE-2014-6271 | CRITICAL | 9.8 | 5.9 | 24.09.2014 | ||
| CVE-2014-7169 | CRITICAL | 9.8 | 5.9 | 25.09.2014 | ||
| CVE-2015-1819 | MEDIUM | 5.0 | 2.9 | 14.08.2015 | ||
| CVE-2015-2877 | LOW | 3.3 | 1.4 | 03.03.2017 | ||
| CVE-2016-4983 | LOW | 3.3 | 1.4 | 05.11.2019 | ||
| CVE-2016-7091 | MEDIUM | 4.4 | 3.6 | 22.12.2016 | ||
Showing 5 out of 67.
References
Loading...
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2711,
"dgst": "9ca7b8be590113b8",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"AES#3608",
"RSA#2033",
"RSA#1857",
"AES#3605",
"HMAC#2300",
"ECDSA#739",
"SHS#2965",
"AES#3609",
"Triple-DES#2010",
"HMAC#2299",
"AES#3607",
"RSA#1855",
"AES#3606",
"ECDSA#742",
"DSA#1003",
"SHS#2967",
"ECDSA#741",
"DRBG#935",
"CVL#625",
"HMAC#2303",
"AES#3604",
"RSA#1853",
"RSA#2032",
"RSA#2035",
"RSA#1856",
"DSA#1005",
"RSA#2034",
"HMAC#2301",
"CVL#629",
"SHS#2971",
"DSA#1001",
"DRBG#936",
"CVL#628",
"Triple-DES#2006",
"AES#3610",
"Triple-DES#2008",
"SHS#2966",
"CVL#626",
"DSA#1002",
"Triple-DES#2007",
"DRBG#940",
"ECDSA#738",
"RSA#1854",
"SHS#2969",
"DRBG#937",
"CVL#627",
"DSA#1004",
"Triple-DES#2009",
"RSA#2031",
"DRBG#938",
"ECDSA#740",
"HMAC#2305"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:o:redhat:enterprise_linux:4.0:*:*:*:*:*:*:*",
"cpe:2.3:o:redhat:linux:4.0:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": {
"_type": "Set",
"elements": [
"CVE-2007-6285",
"CVE-1999-0894",
"CVE-2000-1207",
"CVE-2010-4805",
"CVE-2001-0690",
"CVE-1999-1333",
"CVE-2014-7169",
"CVE-2009-0846",
"CVE-1999-0043",
"CVE-2009-4067",
"CVE-1999-0002",
"CVE-1999-1332",
"CVE-1999-0130",
"CVE-2011-2897",
"CVE-2011-4967",
"CVE-1999-0037",
"CVE-1999-0192",
"CVE-2007-5494",
"CVE-2001-0889",
"CVE-2007-5079",
"CVE-1999-0868",
"CVE-1999-1346",
"CVE-1999-0769",
"CVE-2011-3585",
"CVE-2006-5170",
"CVE-1999-0297",
"CVE-1999-1347",
"CVE-1999-0042",
"CVE-2000-0017",
"CVE-2015-1819",
"CVE-2000-0170",
"CVE-1999-0798",
"CVE-1999-0041",
"CVE-2009-2416",
"CVE-2015-2877",
"CVE-1999-1348",
"CVE-1999-1182",
"CVE-2011-2525",
"CVE-2011-2717",
"CVE-2016-4983",
"CVE-2005-2492",
"CVE-1999-1288",
"CVE-2009-1837",
"CVE-2011-3363",
"CVE-2010-4251",
"CVE-2007-3103",
"CVE-1999-1299",
"CVE-2016-7091",
"CVE-2000-0118",
"CVE-1999-1329",
"CVE-1999-1335",
"CVE-2011-3188",
"CVE-1999-0872",
"CVE-1999-0009",
"CVE-2001-0886",
"CVE-2011-3191",
"CVE-1999-0390",
"CVE-2011-2699",
"CVE-2000-0701",
"CVE-2011-1145",
"CVE-2012-1097",
"CVE-2005-0087",
"CVE-2014-6271",
"CVE-2000-1220",
"CVE-1999-0034",
"CVE-2010-0013",
"CVE-2007-2030"
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"4.0"
]
},
"indirect_transitive_cves": {
"_type": "Set",
"elements": [
"CVE-2007-6285",
"CVE-1999-0894",
"CVE-2000-1207",
"CVE-2010-4805",
"CVE-2001-0690",
"CVE-1999-1333",
"CVE-2014-7169",
"CVE-2009-0846",
"CVE-1999-0043",
"CVE-2009-4067",
"CVE-1999-0002",
"CVE-1999-1332",
"CVE-1999-0130",
"CVE-2011-2897",
"CVE-2011-4967",
"CVE-1999-0037",
"CVE-1999-0192",
"CVE-2007-5494",
"CVE-2001-0889",
"CVE-2007-5079",
"CVE-1999-0868",
"CVE-1999-1346",
"CVE-1999-0769",
"CVE-2011-3585",
"CVE-2006-5170",
"CVE-1999-0297",
"CVE-1999-1347",
"CVE-1999-0042",
"CVE-2000-0017",
"CVE-2015-1819",
"CVE-2000-0170",
"CVE-1999-0798",
"CVE-1999-0041",
"CVE-2009-2416",
"CVE-2015-2877",
"CVE-1999-1348",
"CVE-1999-1182",
"CVE-2011-2525",
"CVE-2011-2717",
"CVE-2016-4983",
"CVE-2005-2492",
"CVE-1999-1288",
"CVE-2009-1837",
"CVE-2011-3363",
"CVE-2010-4251",
"CVE-2007-3103",
"CVE-1999-1299",
"CVE-2016-7091",
"CVE-2000-0118",
"CVE-1999-1329",
"CVE-1999-1335",
"CVE-2011-3188",
"CVE-1999-0872",
"CVE-1999-0009",
"CVE-2001-0886",
"CVE-2011-3191",
"CVE-1999-0390",
"CVE-2011-2699",
"CVE-2000-0701",
"CVE-2011-1145",
"CVE-2012-1097",
"CVE-2005-0087",
"CVE-2014-6271",
"CVE-2000-1220",
"CVE-1999-0034",
"CVE-2010-0013",
"CVE-2007-2030"
]
},
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": {
"_type": "Set",
"elements": [
"2997",
"2798",
"2908",
"2742",
"2721"
]
},
"directly_referencing": null,
"indirectly_referenced_by": {
"_type": "Set",
"elements": [
"2997",
"2798",
"2908",
"2742",
"3613",
"2721"
]
},
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": {
"_type": "Set",
"elements": [
"2798",
"2238",
"2742",
"2721"
]
},
"directly_referencing": null,
"indirectly_referenced_by": {
"_type": "Set",
"elements": [
"2798",
"2238",
"2742",
"2721"
]
},
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": {
"_type": "Set",
"elements": [
"CVE-2007-6285",
"CVE-1999-0894",
"CVE-2000-1207",
"CVE-2010-4805",
"CVE-2001-0690",
"CVE-1999-1333",
"CVE-2014-7169",
"CVE-2009-0846",
"CVE-1999-0043",
"CVE-2009-4067",
"CVE-1999-0002",
"CVE-1999-1332",
"CVE-1999-0130",
"CVE-2011-2897",
"CVE-2011-4967",
"CVE-1999-0037",
"CVE-1999-0192",
"CVE-2007-5494",
"CVE-2001-0889",
"CVE-2007-5079",
"CVE-1999-0868",
"CVE-1999-1346",
"CVE-1999-0769",
"CVE-2011-3585",
"CVE-2006-5170",
"CVE-1999-0297",
"CVE-1999-1347",
"CVE-1999-0042",
"CVE-2000-0017",
"CVE-2015-1819",
"CVE-2000-0170",
"CVE-1999-0798",
"CVE-1999-0041",
"CVE-2009-2416",
"CVE-2015-2877",
"CVE-1999-1348",
"CVE-1999-1182",
"CVE-2011-2525",
"CVE-2011-2717",
"CVE-2016-4983",
"CVE-2005-2492",
"CVE-1999-1288",
"CVE-2009-1837",
"CVE-2011-3363",
"CVE-2010-4251",
"CVE-2007-3103",
"CVE-1999-1299",
"CVE-2016-7091",
"CVE-2000-0118",
"CVE-1999-1329",
"CVE-1999-1335",
"CVE-2011-3188",
"CVE-1999-0872",
"CVE-1999-0009",
"CVE-2001-0886",
"CVE-2011-3191",
"CVE-1999-0390",
"CVE-2011-2699",
"CVE-2000-0701",
"CVE-2011-1145",
"CVE-2012-1097",
"CVE-2005-0087",
"CVE-2014-6271",
"CVE-2000-1220",
"CVE-1999-0034",
"CVE-2010-0013",
"CVE-2007-2030"
]
},
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 10
}
},
"FF": {
"DH": {
"Diffie-Hellman": 14
},
"DSA": {
"DSA": 32
}
},
"RSA": {
"RSA 1024": 1,
"RSA 2048": 3,
"RSA 3072": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 6
},
"CTR": {
"CTR": 4
},
"ECB": {
"ECB": 6
},
"GCM": {
"GCM": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"NSS": {
"NSS": 46
}
},
"crypto_protocol": {
"TLS": {
"TLS": {
"TLS": 17,
"TLS v1.0": 1,
"TLS v1.1": 1,
"TLS v1.2": 1
}
}
},
"crypto_scheme": {
"MAC": {
"MAC": 2
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 6,
"P-384": 6,
"P-521": 10
}
},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1001": 2,
"#1002": 2,
"#1003": 2,
"#1004": 2,
"#1005": 2,
"#11": 9,
"#1853": 2,
"#1854": 2,
"#1855": 2,
"#1856": 2,
"#1857": 2,
"#2006": 1,
"#2007": 1,
"#2008": 1,
"#2009": 1,
"#2010": 1,
"#2031": 1,
"#2032": 1,
"#2033": 1,
"#2034": 1,
"#2035": 1,
"#2299": 1,
"#2300": 1,
"#2301": 1,
"#2303": 1,
"#2305": 1,
"#2965": 1,
"#2966": 1,
"#2967": 1,
"#2969": 1,
"#2971": 1,
"#3604": 1,
"#3605": 1,
"#3606": 1,
"#3607": 1,
"#3608": 1,
"#3609": 1,
"#3610": 1,
"#625": 1,
"#626": 1,
"#627": 1,
"#628": 1,
"#629": 1,
"#738": 2,
"#739": 2,
"#740": 2,
"#741": 2,
"#742": 2,
"#935": 2,
"#936": 2,
"#937": 2,
"#938": 2,
"#940": 2
}
},
"fips_certlike": {
"Certlike": {
"#1857 RSA": 2,
"#2971 HMAC": 1,
"#742 RSA": 1,
"AES 128, 192 and 256": 3,
"DSA 1024": 2,
"DSA 2048": 3,
"HMAC-SHA- 384": 2,
"HMAC-SHA-1": 2,
"HMAC-SHA-244": 2,
"HMAC-SHA-256": 2,
"HMAC-SHA-512": 2,
"PKCS #11": 16,
"PKCS#1": 2,
"RSA 1024": 1,
"RSA 2048": 3,
"RSA 3072": 1,
"RSA PKCS#1": 2,
"SHA- 512": 1,
"SHA-1": 3,
"SHA-224": 3,
"SHA-256": 8,
"SHA-384": 3,
"SHA-512": 2
}
},
"fips_security_level": {
"Level": {
"Level 1": 2
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 4
}
},
"SHA": {
"SHA1": {
"SHA-1": 3
},
"SHA2": {
"SHA-224": 3,
"SHA-256": 8,
"SHA-384": 3,
"SHA-512": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 17
}
},
"side_channel_analysis": {
"SCA": {
"Timing Attacks": 2,
"Timing attack": 1,
"Timing attacks": 1,
"timing attacks": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140-2": 49,
"FIPS 180-4": 1,
"FIPS 186-4": 1,
"FIPS 197": 1,
"FIPS 198-1": 1
},
"NIST": {
"NIST SP 800-38A": 1,
"NIST SP 800-38D": 1,
"NIST SP 800-38F": 1,
"NIST SP 800-56A": 1,
"NIST SP 800-56B": 1,
"NIST SP 800-67": 1,
"NIST SP 800-90A": 1
},
"PKCS": {
"PKCS #11": 8,
"PKCS#1": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 23
},
"RC": {
"RC2": 7,
"RC4": 6,
"RC5": 7
}
},
"DES": {
"3DES": {
"TDEA": 2,
"Triple-DES": 19
},
"DES": {
"DES": 8
}
},
"constructions": {
"MAC": {
"HMAC": 17,
"HMAC-SHA-256": 1,
"HMAC-SHA-512": 1
}
},
"miscellaneous": {
"Camellia": {
"Camellia": 7
},
"SEED": {
"SEED": 7
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Alejandro Fabio Masino",
"/CreationDate": "D:20180125124907-06\u002700\u0027",
"/Creator": "Writer",
"/Producer": "LibreOffice 5.3",
"/Subject": "Red Hat Enterprise Linux NSS Cryptographic Module v4.0",
"/Title": "FIPS 140-2 Non-Proprietary Security Policy",
"pdf_file_size_bytes": 372700,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.daemonology.net/papers/htt.pdf",
"http://crypto.stanford.edu/~dabo/abstracts/ssl-timing.html",
"http://www.cryptography.com/timingattack/",
"http://csrc.nist.gov/groups/STM/cmvp/standards.html",
"http://csrc.nist.gov/publications/PubsFIPS.html"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 35
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "6d82b67546b3714a5e54b2385681679e63801727a128be27b08f916d66da702d",
"policy_txt_hash": "2aa26b31917696d4105e53a04f57e2105fdbcc0ebb2be34171e3b58c1e2bfcc8"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertAug2016.pdf",
"date_sunset": null,
"description": "Network Security Services (NSS) is a set of open source C libraries designed to support cross-platform development of security-enabled applications. NSS implements major Internet security standards. NSS is available free of charge under a variety of open source compatible licenses. See http://www.mozilla.org/projects/security/pki/nss/",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 2",
"Physical Security: N/A",
"Design Assurance: Level 2"
],
"fw_versions": null,
"historical_reason": "SP 800-56Arev3 transition",
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Red Hat Enterprise Linux NSS Cryptographic Module v4.0",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": "4.0",
"tested_conf": [
"Red Hat Enterprise Linux 7.1 running on HP ProLiant DL380p Gen8 with PAA",
"Red Hat Enterprise Linux 7.1 running on HP ProLiant DL380p Gen8 without PAA",
"Red Hat Enterprise Linux 7.1 running on IBM POWER8 Little Endian 8286-41A",
"Red Hat Enterprise Linux 7.1 running on IBM z13 (single-user mode)"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2016-08-15",
"lab": "atsec information security corporation",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2016-12-19",
"lab": "atsec information security corporation",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2018-01-30",
"lab": "atsec information security corporation",
"validation_type": "Update"
}
],
"vendor": "Red Hat\u00ae, Inc.",
"vendor_url": "http://www.redhat.com"
}
}