This page was not yet optimized for use on mobile devices.
Aegis Fortress L3 Cryptographic Module
Certificate #4529
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, AES-256Asymmetric Algorithms
ECDH, ECDSA, ECC, DH, Diffie-HellmanHash functions
SHA-256Schemes
Key AgreementRandomness
DRBG, RNGElliptic Curves
P-256Block cipher modes
ECB, CBC, XEX, XTSTrusted Execution Environments
SSCSecurity level
Level 3Certification process
out of scope, module only supports a FIPS Approved mode of operation; therefore, a non-compliant configuration is out of scope for this validation. Aegis Fortress L3 Cryptographic Module Cryptographic Module Security Policy ©Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 197, FIPS 180-4, FIPS 186-4, NIST SP 800-90A, NIST SP 800-38E, NIST SP 800-133, SP 800-38E, SP 800-38A, SP 800-133, SP 800-90A, SP 800-56AFile metadata
| Title | Date |
|---|---|
| Keywords | Apricorn Security Policy |
| Author | Robert Davidosn |
| Creation date | D:20230509074752-07'00' |
| Modification date | D:20230509074758-07'00' |
| Pages | 17 |
| Creator | Acrobat PDFMaker 23 for Word |
| Producer | Adobe PDF Library 23.1.175 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
31.07.2023 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The certificate_pdf_url property was set to
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf.
- The certificate_pdf_url property was set to
-
26.06.2023 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4529,
"dgst": "9d9ceff673eaf9a7",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"AES#C555",
"DRBG#C656",
"AES#C1597",
"SHS#C568",
"KAS#A2429",
"ECDSA#C570",
"KAS-SSC#A2429",
"KDA#A2429"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"3.3"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 10
},
"ECDSA": {
"ECDSA": 1
}
},
"FF": {
"DH": {
"DH": 2,
"Diffie-Hellman": 6
}
}
},
"certification_process": {
"OutOfScope": {
"module only supports a FIPS Approved mode of operation; therefore, a non-compliant configuration is out of scope for this validation. Aegis Fortress L3 Cryptographic Module Cryptographic Module Security Policy \u00a9": 1,
"out of scope": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
},
"ECB": {
"ECB": 1
},
"XEX": {
"XEX": 1
},
"XTS": {
"XTS": 4
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 14
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES-256": 1,
"SHA-256": 3
}
},
"fips_security_level": {
"Level": {
"Level 3": 13
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 10
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 11,
"FIPS 180-4": 2,
"FIPS 186-4": 1,
"FIPS 197": 1,
"FIPS PUB 140-2": 2
},
"NIST": {
"NIST SP 800-133": 1,
"NIST SP 800-38E": 1,
"NIST SP 800-90A": 1,
"SP 800-133": 1,
"SP 800-38A": 1,
"SP 800-38E": 1,
"SP 800-56A": 5,
"SP 800-90A": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 15,
"AES-256": 1
}
}
},
"tee_name": {
"IBM": {
"SSC": 1
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Robert Davidosn",
"/Company": "Apricorn",
"/CreationDate": "D:20230509074752-07\u002700\u0027",
"/Creator": "Acrobat PDFMaker 23 for Word",
"/Keywords": "Apricorn Security Policy",
"/ModDate": "D:20230509074758-07\u002700\u0027",
"/Producer": "Adobe PDF Library 23.1.175",
"/SourceModified": "D:20230509144725",
"/Subject": "",
"/Title": "Date",
"pdf_file_size_bytes": 489125,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 17
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "24d1bf63b47ee6696fceee499524c2c9de4681ceae13031e449e9b55705c796e",
"policy_txt_hash": "0e150800a97c8b375563b75676308e99523a3071c83cf2e97118775eda2c23b3"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When configured as specified in Section 11.1 of the Security Policy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf",
"date_sunset": "2026-07-28",
"description": "The Aegis Fortress L3 is a FIPS 140-2 Level 3 validated hardware encrypted USB 3.1 external storage drive. Its software free design allows interface to any host that supports USB and mass storage. Authentication is performed via the embedded keypad and all CSPs (PINs, encryption keys, etc) never leave the device boundary for improved security. The device supports 1 administrator and 1 user and offers a variety of features including forced enrollment, programmable brute force, recovery PINs, 7-16 digit PINs, auto lock, read only modes, and is compatible with Apricorn\u2019s Aegis Configurator.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "3.3",
"historical_reason": null,
"hw_versions": "P/Ns AFL3-500, AFL3-1TB, AFL3-2TB, AFL3-3TB, AFL3-4TB, AFL3-5TB, AFL3-S500, AFL3-S1TB, AFL3-S2TB, AFL3-S4TB, AFL3-S8TB, AFL3-S16TB and AFL3-S20TB; Hardware Version: Rev B1",
"level": 3,
"mentioned_certs": {},
"module_name": "Aegis Fortress L3 Cryptographic Module",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2023-06-05",
"lab": "UL VERIFICATION SERVICES INC",
"validation_type": "Initial"
}
],
"vendor": "Apricorn",
"vendor_url": "http://www.apricorn.com"
}
}