This page was not yet optimized for use on mobile
devices.
Kaseya FIPS Cryptographic Module
Certificate #5196
Webpage information
Security policy
Symmetric Algorithms
AES-128, AES-192, AES-256, AES, AES-, CAST, Triple-DES, TDES, HMAC, HMAC-SHA-256, KMAC, CMACAsymmetric Algorithms
ECDH, ECDSA, EdDSA, ECC, DHE, Diffie-Hellman, DH, DSAHash functions
SHA-1, SHA-512, SHA-256, SHA-224, SHA-2, SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHA-3, SHA3, SHAKE256, PBKDFSchemes
MAC, Key AgreementProtocols
SSH, SSHv2, TLS 1.2, TLS, TLS v1.2, TLS v1.3, TLS 1.3Randomness
DRBG, RNG, RBGLibraries
OpenSSLElliptic Curves
P-256, P-384, P-521, P-192, P-224, B-233, B-283, B-409, B-571, K-233, K-283, K-409, K-571, B-163, K-163, brainpoolP224r1, brainpoolP256r1, brainpoolP320r1, brainpoolP384r1, brainpoolP512r1, Ed25519, Ed448Block cipher modes
CBC, GCM, XTSTrusted Execution Environments
PSPSecurity level
Level 1Side-channel analysis
side-channel, timing attacks, timing attackStandards
FIPS 140-3, FIPS 140, FIPS186-4, FIPS 186-4, FIPS 186-5, FIPS 198-1, FIPS 180-4, FIPS 202, SP 800-38A, SP 800-38C, SP 800-38B, SP 800-38D, SP 800-38F, SP 800-38E, SP 800-90A, SP 800-56A, SP 800-56C, SP 800-135, SP 800-108, SP 800-185, SP 800-56B, SP 800-132, SP 800-67, SP 800-186, NIST SP 800-38D, PKCS 1, PKCS#1, RFC7627, RFC 5288, RFC 5246, RFC 8446, RFC 7627File metadata
| Title | Security Policy |
|---|---|
| Subject | CryptoComply 140-3 FIPS Provider |
| Author | SafeLogic Inc. |
| Creation date | D:20260312141001-04'00' |
| Modification date | D:20260312141319-04'00' |
| Pages | 117 |
| Creator | Acrobat PDFMaker 25 for Word |
| Producer | Adobe PDF Library 25.1.5 |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 5196,
"dgst": "a5bb4657a9b5316b",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": []
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"-"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 19
},
"ECDH": {
"ECDH": 6
},
"ECDSA": {
"ECDSA": 64
},
"EdDSA": {
"EdDSA": 22
}
},
"FF": {
"DH": {
"DH": 31,
"DHE": 2,
"Diffie-Hellman": 2
},
"DSA": {
"DSA": 40
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 2
},
"GCM": {
"GCM": 10
},
"XTS": {
"XTS": 10
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 8
}
},
"crypto_protocol": {
"SSH": {
"SSH": 7,
"SSHv2": 2
},
"TLS": {
"TLS": {
"TLS": 1,
"TLS 1.2": 10,
"TLS 1.3": 9,
"TLS v1.2": 7,
"TLS v1.3": 7
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 19
},
"MAC": {
"MAC": 6
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP224r1": 2,
"brainpoolP256r1": 4,
"brainpoolP320r1": 4,
"brainpoolP384r1": 4,
"brainpoolP512r1": 4
},
"Edwards": {
"Ed25519": 16,
"Ed448": 16
},
"NIST": {
"B-163": 6,
"B-233": 15,
"B-283": 13,
"B-409": 12,
"B-571": 13,
"K-163": 6,
"K-233": 19,
"K-283": 13,
"K-409": 11,
"K-571": 12,
"P-192": 12,
"P-224": 30,
"P-256": 30,
"P-384": 30,
"P-521": 30
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"- PKCS 1": 2,
"AES-128": 4,
"AES-192": 4,
"AES-256": 4,
"Diffie- Hellman 224": 1,
"HMAC 160": 1,
"HMAC 160, 224": 1,
"HMAC- SHA-256": 2,
"HMAC-SHA- 256": 4,
"HMAC-SHA-1": 12,
"HMAC-SHA-256": 28,
"PKCS 1": 6,
"PKCS#1": 8,
"SHA- 1 1024": 1,
"SHA- 3": 1,
"SHA-1": 32,
"SHA-2": 2,
"SHA-224": 2,
"SHA-256": 17,
"SHA-3": 1,
"SHA-512": 15,
"SHA2- 512": 12,
"SHA2-224": 20,
"SHA2-256": 28,
"SHA2-384": 24,
"SHA2-512": 18,
"SHA3": 4,
"SHA3- 384": 6,
"SHA3-224": 10,
"SHA3-256": 12,
"SHA3-384": 4,
"SHA3-512": 10
}
},
"fips_security_level": {
"Level": {
"Level 1": 3
}
},
"hash_function": {
"PBKDF": {
"PBKDF": 16
},
"SHA": {
"SHA1": {
"SHA-1": 32
},
"SHA2": {
"SHA-2": 2,
"SHA-224": 2,
"SHA-256": 17,
"SHA-512": 15
},
"SHA3": {
"SHA-3": 1,
"SHA3": 4,
"SHA3-224": 10,
"SHA3-256": 12,
"SHA3-384": 4,
"SHA3-512": 10
}
},
"SHAKE": {
"SHAKE256": 1
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 79
},
"RNG": {
"RBG": 21,
"RNG": 22
}
},
"side_channel_analysis": {
"SCA": {
"side-channel": 1,
"timing attack": 1,
"timing attacks": 2
}
},
"standard_id": {
"FIPS": {
"FIPS 140": 8,
"FIPS 140-3": 13,
"FIPS 180-4": 14,
"FIPS 186-4": 26,
"FIPS 186-5": 11,
"FIPS 198-1": 22,
"FIPS 202": 12,
"FIPS186-4": 41
},
"NIST": {
"NIST SP 800-38D": 1,
"SP 800-108": 4,
"SP 800-132": 7,
"SP 800-135": 10,
"SP 800-185": 4,
"SP 800-186": 2,
"SP 800-38A": 20,
"SP 800-38B": 2,
"SP 800-38C": 2,
"SP 800-38D": 4,
"SP 800-38E": 3,
"SP 800-38F": 5,
"SP 800-56A": 10,
"SP 800-56B": 2,
"SP 800-56C": 6,
"SP 800-67": 4,
"SP 800-90A": 10
},
"PKCS": {
"PKCS 1": 4,
"PKCS#1": 4
},
"RFC": {
"RFC 5246": 1,
"RFC 5288": 1,
"RFC 7627": 1,
"RFC 8446": 2,
"RFC7627": 6
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 53,
"AES-": 1,
"AES-128": 4,
"AES-192": 4,
"AES-256": 4
},
"CAST": {
"CAST": 162
}
},
"DES": {
"3DES": {
"TDES": 4,
"Triple-DES": 6
}
},
"constructions": {
"MAC": {
"CMAC": 2,
"HMAC": 29,
"HMAC-SHA-256": 14,
"KMAC": 8
}
}
},
"tee_name": {
"AMD": {
"PSP": 10
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/ACVP Cert A": "A4593",
"/ACVP Cert B": "A5173",
"/ACVP Certs": "A4593, A5173",
"/Author": "SafeLogic Inc.",
"/Client": "SafeLogic Inc.",
"/Comments": "",
"/Company": "SafeLogic",
"/CreationDate": "D:20260312141001-04\u002700\u0027",
"/Creator": "Acrobat PDFMaker 25 for Word",
"/Doc Version": "1.3",
"/Keywords": "",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_ActionId": "4887e0e4-7009-40a6-bc60-76c09a102a1b",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_ContentBits": "0",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Enabled": "true",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Method": "Privileged",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Name": "Unrestricted",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_SetDate": "2024-11-11T19:34:29Z",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_SiteId": "b64da4ac-e800-4cfc-8931-e607f720a1b8",
"/ModDate": "D:20260312141319-04\u002700\u0027",
"/Producer": "Adobe PDF Library 25.1.5",
"/SW Version": "3.0.0-FIPS 140-3",
"/SW Version B": "3.0.1-FIPS 140-3",
"/SourceModified": "",
"/Subject": "CryptoComply 140-3 FIPS Provider",
"/Title": "Security Policy",
"pdf_file_size_bytes": 1547699,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.kaseya.com/",
"mailto:[email protected]",
"http://www.safelogic.com/",
"https://csrc.nist.gov/projects/cryptographic-module-validation-program"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 117
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "90ead1c8c9c245df09f7ad450f6c3f11c2c2e218275bd1d61c8520c24371f263",
"policy_txt_hash": "8d975999872bdfccdc03aa9f70788d7ad04e8f150883a55f53f8571620dfa04e"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "No assurance of the minimum strength of generated SSPs (e.g., keys) and random strings. No assurance of minimum security of SSPs (e.g., keys, bit strings) that are externally loaded, or of SSPs established with externally loaded SSPs",
"certificate_pdf_url": null,
"date_sunset": "2029-08-26",
"description": "The Kaseya Cryptographic Module is a software-based cryptographic module that provides validated, FIPS 140-3-compliant cryptographic services to the Kaseya product ecosystem. The module is implemented using SafeLogic\u0027s CryptoComply library and supports approved algorithms for encryption, hashing, key generation, random number generation, TLS operations, and secure data protection. Across Kaseya\u0027s platforms, the module serves as the central cryptographic provider, protecting data in transit and at rest, enforcing strong cryptographic controls, and supporting secure communications between clients, services, and APIs. The module is product-agnostic and integrated consistently across Kaseya\u0027s SaaS, on-premises, and hybrid solutions to ensure a unified, validated cryptographic foundation. Products that utilize this module inherit FIPS-validated cryptographic functionality while maintaining product-specific operations outside the cryptographic boundary.",
"embodiment": "MultiChipStand",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Kaseya FIPS Cryptographic Module",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2026-03-13",
"lab": "DEKRA Cybersecurity Certification Laboratory",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2026-03-26",
"lab": "DEKRA Cybersecurity Certification Laboratory",
"validation_type": "Update"
}
],
"vendor": "Kaseya US LLC",
"vendor_url": "https://www.kaseya.com/"
}
}