This page was not yet optimized for use on mobile
devices.
ASA 5510, ASA 5520 and ASA 5540
Certificate #655
Webpage information
Security policy
Symmetric Algorithms
AES, RC4, DES, HMACAsymmetric Algorithms
DH, Diffie-Hellman, DSAHash functions
SHA-1, MD5Schemes
MAC, Key agreementProtocols
SSH, SSHv2, SSL, TLS, IKE, IPsec, VPNRandomness
PRNG, RNGVendor
Cisco Systems, Inc, CiscoSecurity level
Level 2, Level 1Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 74, FIPS 81File metadata
| Title | 1C---ASA-FIPS-140-2-Security-Policy |
|---|---|
| Author | avora |
| Creation date | D:20060320160113Z |
| Modification date | D:20060418071928-04'00' |
| Pages | 17 |
| Creator | PDFCreator Version 0.8.0 |
| Producer | AFPL Ghostscript 8.14 |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 655,
"dgst": "9f6cb78c09b22a1a",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"SHS#393",
"RNG#144",
"RSA#106",
"RSA#105",
"SHS#196",
"AES#320",
"AES#105",
"DSA#150",
"HMAC#124",
"HMAC#125",
"RNG#143",
"Triple-DES#217",
"Triple-DES#384"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:cisco:asa_5510:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:asa_5540:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:asa-5540:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:asa_5520:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:asa-5520:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"7.0.4"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"FF": {
"DH": {
"DH": 4,
"Diffie-Hellman": 1
},
"DSA": {
"DSA": 10
}
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 11
},
"IPsec": {
"IPsec": 1
},
"SSH": {
"SSH": 9,
"SSHv2": 1
},
"TLS": {
"SSL": {
"SSL": 3
},
"TLS": {
"TLS": 9
}
},
"VPN": {
"VPN": 5
}
},
"crypto_scheme": {
"KA": {
"Key agreement": 1
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES 320": 1,
"DES 384 217": 1,
"DSA 150": 1,
"HMAC 124": 2,
"HMAC SHA-1": 2,
"HMAC-SHA1": 2,
"RSA 105": 1,
"SHA-1": 10,
"SHA-1 393": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 2,
"Level 2": 3
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 2
}
},
"SHA": {
"SHA1": {
"SHA-1": 11
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"PRNG": 4
},
"RNG": {
"RNG": 4
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 14,
"FIPS 74": 1,
"FIPS 81": 1,
"FIPS PUB 140-2": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 11
},
"RC": {
"RC4": 1
}
},
"DES": {
"DES": {
"DES": 17
}
},
"constructions": {
"MAC": {
"HMAC": 5
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Cisco": {
"Cisco": 5,
"Cisco Systems, Inc": 23
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "avora",
"/CreationDate": "D:20060320160113Z",
"/Creator": "PDFCreator Version 0.8.0",
"/Keywords": "",
"/ModDate": "D:20060418071928-04\u002700\u0027",
"/Producer": "AFPL Ghostscript 8.14",
"/Subject": "",
"/Title": "1C---ASA-FIPS-140-2-Security-Policy",
"pdf_file_size_bytes": 112417,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 17
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "34d0e95e2eff84c6ef5edd01fc2fe9af1b410bf3d5f0dc9daef2772c5fa62731",
"policy_txt_hash": "fe1b98e882045f765614072780620ee6ec3bf156086dbe42f71215a8a0a50218"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt655.pdf",
"date_sunset": null,
"description": "The market-leading Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environments of all sizes.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": null,
"fw_versions": "7.0.4",
"historical_reason": "RNG SP800-131A Revision 1 Transition",
"hw_versions": "5510, 5520, and 5540",
"level": 2,
"mentioned_certs": {},
"module_name": "ASA 5510, ASA 5520 and ASA 5540",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2006-04-14",
"lab": "SAIC-VA",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2010-05-28",
"lab": "",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2012-02-23",
"lab": "",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2014-01-01",
"lab": "",
"validation_type": "Update"
}
],
"vendor": "Cisco Systems, Inc.",
"vendor_url": "http://www.cisco.com"
}
}