HID Global ActivID Applet Suite v2.7.4 on Oberthur Technologies Cosmo V8

Certificate #2545

Webpage information

Status active
Validation dates 26.01.2016 , 11.08.2017 , 17.08.2017 , 02.11.2017 , 24.04.2018 , 23.11.2018 , 13.04.2021
Sunset date 12-04-2026
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Single Chip
Caveat When operated and configured in FIPS mode as specified in Section 10 of the Security Policy
Exceptions
  • Roles, Services, and Authentication: Level 3
  • Physical Security: Level 4
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Description HID Global ActivID Applet v2.7.4 is a Java Card applet suite that uses the Oberthur Technologies Cosmo v8 operating system. The product can be used over contact and contactless interface and can be configured for support of GSC-IS v2.1 and PIV standards (NIST SP 800-73-4 and SP 800-78-4).
Version (Hardware) Oberthur Technologies 0F
Version (Firmware) Oberthur Technologies '5601' and HID Global ActivID Applet Suite 2.7.4
Vendor HID Global and Oberthur Technologies
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, AES-128, TDEA, Triple-DES, CMAC
Asymmetric Algorithms
RSA 2048, ECDSA, ECC, Diffie-Hellman
Hash functions
SHA-256
Schemes
MAC, Key Agreement
Randomness
DRBG, RNG
Elliptic Curves
P-224, P-256, P-384, P-521
Block cipher modes
ECB, CBC

JavaCard versions
Java Card 3.0.1
Vendor
Oberthur Technologies, Oberthur

Security level
Level 2, Level 1
Side-channel analysis
Side-channel, side-channel, DPA, DFA

Standards
FIPS 140-2, FIPS140-2, FIPS 180-4, FIPS 186-4, FIPS 197, FIPS PUB 140-2, FIPS 201, SP 800-108, SP 800-67, SP 800-90A, SP 800-56A, PKCS#1, PKCS #1, AIS 31

File metadata

Subject FIPS 140-2 Security Policy Template
Author Vendor
Creation date D:20210208155803-08'00'
Modification date D:20210208155817-08'00'
Pages 18
Creator Acrobat PDFMaker 17 for Word
Producer Adobe PDF Library 15.0

References

Outgoing
  • 41 - historical - DS1954B Cryptographic iButton™
  • 48 - historical - FORTEZZA Crypto Card
  • 526 - historical - nShield F3 SCSI, nShield F3 Ultrasign 32 SCSI, nShield F3 Ultrasign SCSI, payShield SCSI, and payShield Ultra SCSI
  • 91 - historical - SafeNet CGX (Crypto Graphic eXtensions) Library
  • 2303 - historical - ID-One PIV-C on Cosmo V8

Heuristics

No heuristics are available for this certificate.

References

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 2545,
  "dgst": "a812c832adb8c843",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "RSA#1531",
        "DRBG#537",
        "CVL#336",
        "KTS#2910",
        "AES#2910",
        "Triple-DES#1727",
        "KBKDF#33",
        "SHS#2449",
        "KTS#2911",
        "AES#2911",
        "CVL#1302",
        "RSA#1532"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "2.7.4"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "526",
          "41",
          "48",
          "2303",
          "91"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "526",
          "41",
          "48",
          "2303",
          "91"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "526",
        "41",
        "48",
        "2303",
        "91"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 8
          },
          "ECDSA": {
            "ECDSA": 3
          }
        },
        "FF": {
          "DH": {
            "Diffie-Hellman": 4
          }
        },
        "RSA": {
          "RSA 2048": 11
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "ECB": {
          "ECB": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 4
        },
        "MAC": {
          "MAC": 3
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-224": 4,
          "P-256": 4,
          "P-384": 2,
          "P-521": 4
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "# 2303": 1,
          "# 33": 1,
          "#1": 1,
          "#1532": 1,
          "#1727": 1,
          "#2303": 2,
          "#2449": 1,
          "#2910": 3,
          "#2911": 2,
          "#41": 1,
          "#48": 1,
          "#526": 1,
          "#537": 1,
          "#91": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES (Cert. #2910": 1,
          "AES CMAC (Cert.#2911": 1,
          "AES CMAC Cert. #2911": 1,
          "AES Cert. #2910": 1,
          "AES encrypt (Cert. #2910": 1,
          "AES-128": 9,
          "Cert # AES": 1,
          "DRBG (Cert. #537": 1,
          "PKCS #1": 2,
          "PKCS#1": 2,
          "RSA 2048": 11,
          "SHA- 1": 1,
          "SHA-256": 2
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 1,
          "Level 2": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {
        "JavaCard": {
          "Java Card 3.0.1": 3
        }
      },
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 6
        },
        "RNG": {
          "RNG": 2
        }
      },
      "side_channel_analysis": {
        "FI": {
          "DFA": 1
        },
        "SCA": {
          "DPA": 1,
          "Side-channel": 1,
          "side-channel": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 31": 1
        },
        "FIPS": {
          "FIPS 140-2": 29,
          "FIPS 180-4": 2,
          "FIPS 186-4": 4,
          "FIPS 197": 2,
          "FIPS 201": 1,
          "FIPS PUB 140-2": 1,
          "FIPS140-2": 1
        },
        "NIST": {
          "SP 800-108": 3,
          "SP 800-56A": 1,
          "SP 800-67": 1,
          "SP 800-90A": 1
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 12,
            "AES-128": 9
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 2,
            "Triple-DES": 5
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 4
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Oberthur": {
          "Oberthur": 4,
          "Oberthur Technologies": 22
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Vendor",
      "/Company": "Vendor",
      "/CreationDate": "D:20210208155803-08\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 17 for Word",
      "/ModDate": "D:20210208155817-08\u002700\u0027",
      "/Producer": "Adobe PDF Library 15.0",
      "/SourceModified": "D:20210208235545",
      "/Subject": "FIPS 140-2 Security Policy Template",
      "/Title": "",
      "pdf_file_size_bytes": 414965,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://csrc.nist.gov/groups/STM/cavp/documents/shs/shaval.htm#2449",
          "http://csrc.nist.gov/groups/STM/cavp/documents/components/componentnewval.html#336",
          "http://csrc.nist.gov/groups/STM/cavp/documents/drbg/drbgval.html#537",
          "http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#2910",
          "http://csrc.nist.gov/groups/STM/cavp/documents/dss/rsanewval.html#1532",
          "http://csrc.nist.gov/groups/STM/cavp/documents/KBKDF800-108/kbkdfval.htm#33",
          "http://csrc.nist.gov/groups/STM/cavp/documents/components/componentnewval.html#1302",
          "http://csrc.nist.gov/groups/STM/cavp/documents/des/tripledesval.html#1727",
          "http://csrc.nist.gov/groups/STM/cavp/documents/dss/ecdsanewval.html",
          "http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#2911",
          "http://csrc.nist.gov/groups/STM/cavp/documents/dss/rsanewval.html#1531",
          "http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2015.htm#2327"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 18
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "3e3a48bfe158d07af053da9cf39044d9baf37b9b7a3db83db4e338ef91d8cc64",
    "policy_txt_hash": "9fc1c8cb2919f58c494c2d23595a9a24090791c70d34231eb5c9cff86cf44e46"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated and configured in FIPS mode as specified in Section 10 of the Security Policy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertJan2016.pdf",
    "date_sunset": "2026-04-12",
    "description": "HID Global ActivID Applet v2.7.4 is a Java Card applet suite that uses the Oberthur Technologies Cosmo v8 operating system. The product can be used over contact and contactless interface and can be configured for support of GSC-IS v2.1 and PIV standards (NIST SP 800-73-4 and SP 800-78-4).",
    "embodiment": "Single Chip",
    "exceptions": [
      "Roles, Services, and Authentication: Level 3",
      "Physical Security: Level 4",
      "EMI/EMC: Level 3",
      "Design Assurance: Level 3"
    ],
    "fw_versions": "Oberthur Technologies \u00275601\u0027 and HID Global ActivID Applet Suite 2.7.4",
    "historical_reason": null,
    "hw_versions": "Oberthur Technologies 0F",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "HID Global ActivID Applet Suite v2.7.4 on Oberthur Technologies Cosmo V8",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2016-01-26",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2017-08-11",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2017-08-17",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2017-11-02",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-04-24",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-11-23",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2021-04-13",
        "lab": "UL Verification Services, Inc.",
        "validation_type": "Update"
      }
    ],
    "vendor": "HID Global and Oberthur Technologies",
    "vendor_url": "http://www.hidglobal.com"
  }
}