FunOS Crypto Module

Certificate #4406

Webpage information ?

Status active
Validation dates 04.01.2023
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 1
Type Software-Hybrid
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode.
Exceptions
  • Mitigation of Other Attacks: N/A
Description The FunOS Crypto Library implements the APIs for invoking the Fungible DPU hardware crypto engines. These APIs are used by other Fungible operating system modules, including the security, storage and networking stacks.
Version (Hardware) F1 rev A0 and S1 rev A0
Tested configurations
  • FunOS 3.2.1 running on a FC-200 with Fungible S1 rev A0 with MIPS64 DPU with PAI
  • FunOS 3.2.1 running on a FS-1600 with Fungible F1 rev A0 with MIPS64 DPU with PAI
Vendor Fungible, Inc.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-256, Poly1305, HMAC, HMAC-SHA-256, HMAC-SHA-512, KMAC
Hash functions
SHA-1, SHA3, SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHA-3
Schemes
Key Agreement
Protocols
TLS
Randomness
TRNG, DRBG
Block cipher modes
ECB, CBC, CTR, GCM, CCM, XTS

Security level
Level 1

Standards
FIPS 140-2, FIPS 140, FIPS 197, FIPS 180-4, FIPS 202, FIPS 198-1, FIPS PUB 140-2, SP 800-38A, SP 800-38C, SP 800-38D, SP 800-38E, SP 800-185, SP 800-90B, SP 800-135, SP 800-90A, NIST SP 800-90B, NIST SP 800-38D

File metadata

Author Scott Ehrlich
Creation date D:20221205204616-08'00'
Modification date D:20221205204616-08'00'
Pages 20
Creator Microsoft® Word for Microsoft 365
Producer Microsoft® Word for Microsoft 365

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 09.02.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4406,
  "dgst": "b09e885265e03ddb",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "SHA-3#A2328",
        "CVL#A2326",
        "SHS#A2328",
        "HMAC#A2328",
        "AES#A2327",
        "HMAC#A2326",
        "DRBG#A2325",
        "SHS#A2326",
        "SHA-3#A2326",
        "DRBG#A2327",
        "AES#A2325",
        "CVL#A2328"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {},
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CCM": {
          "CCM": 2
        },
        "CTR": {
          "CTR": 3
        },
        "ECB": {
          "ECB": 4
        },
        "GCM": {
          "GCM": 5
        },
        "XTS": {
          "XTS": 3
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS": 12
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "Acumen": {
          "Acumen Security": 1
        }
      },
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "AES GCM 128": 1,
          "AES-256": 1,
          "AES-GCM 18": 1,
          "AES1": 1,
          "HMAC-SHA-1": 4,
          "HMAC-SHA-256": 4,
          "HMAC-SHA-512": 2,
          "SHA-1": 1,
          "SHA-3": 2,
          "SHA2-224": 1,
          "SHA2-256": 1,
          "SHA2-384": 1,
          "SHA2-512": 1,
          "SHA3": 1,
          "SHA3-224": 1,
          "SHA3-256": 1,
          "SHA3-384": 1,
          "SHA3-512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 5
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 1
          },
          "SHA3": {
            "SHA-3": 2,
            "SHA3": 1,
            "SHA3-224": 1,
            "SHA3-256": 1,
            "SHA3-384": 1,
            "SHA3-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 22
        },
        "TRNG": {
          "TRNG": 4
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140": 4,
          "FIPS 140-2": 21,
          "FIPS 180-4": 2,
          "FIPS 197": 2,
          "FIPS 198-1": 2,
          "FIPS 202": 2,
          "FIPS PUB 140-2": 1
        },
        "NIST": {
          "NIST SP 800-38D": 1,
          "NIST SP 800-90B": 1,
          "SP 800-135": 1,
          "SP 800-185": 2,
          "SP 800-38A": 2,
          "SP 800-38C": 2,
          "SP 800-38D": 2,
          "SP 800-38E": 2,
          "SP 800-90A": 3,
          "SP 800-90B": 4
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 22,
            "AES-256": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 11,
            "HMAC-SHA-256": 2,
            "HMAC-SHA-512": 1,
            "KMAC": 1
          }
        },
        "djb": {
          "Poly": {
            "Poly1305": 3
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Scott Ehrlich",
      "/CreationDate": "D:20221205204616-08\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20221205204616-08\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "pdf_file_size_bytes": 547980,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://csrc.nist.gov/publications/detail/sp/800-38d/final",
          "https://csrc.nist.gov/publications/detail/fips/180/4/final",
          "https://csrc.nist.gov/publications/detail/fips/140/2/final",
          "http://www.acumensecurity.net/",
          "https://csrc.nist.gov/publications/detail/fips/197/final",
          "https://csrc.nist.gov/publications/detail/fips/202/final",
          "https://csrc.nist.gov/publications/detail/sp/800-38e/final",
          "https://csrc.nist.gov/publications/detail/sp/800-133/rev-2/final",
          "http://www.fungible.com/",
          "https://csrc.nist.gov/publications/detail/sp/800-38a/final",
          "https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/fips140-2/fips1402ig.pdf",
          "https://csrc.nist.gov/publications/detail/sp/800-90b/final",
          "https://csrc.nist.gov/publications/detail/sp/800-90a/rev-1/final",
          "https://csrc.nist.gov/publications/detail/sp/800-135/rev-1/final",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program",
          "https://csrc.nist.gov/publications/detail/sp/800-185/final",
          "https://csrc.nist.gov/publications/detail/fips/198/1/final",
          "https://csrc.nist.gov/publications/detail/sp/800-38c/final"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 20
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "9a601d43d15e018ed2c79ccb93b8dc84c56bc6b94c57bd45f0d0d305b479c806",
    "policy_txt_hash": "cfe52071cce20873be4f47f8021f6f021da325258d73b8ea72295a60e5498099"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/January 2023_010223_0657_signed.pdf",
    "date_sunset": "2026-09-21",
    "description": "The FunOS Crypto Library implements the APIs for invoking the Fungible DPU hardware crypto engines. These APIs are used by other Fungible operating system modules, including the security, storage and networking stacks.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": "F1 rev A0 and S1 rev A0",
    "level": 1,
    "mentioned_certs": {},
    "module_name": "FunOS Crypto Module",
    "module_type": "Software-Hybrid",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": "1.0.0",
    "tested_conf": [
      "FunOS 3.2.1 running on a FC-200 with Fungible S1 rev A0 with MIPS64 DPU with PAI",
      "FunOS 3.2.1 running on a FS-1600 with Fungible F1 rev A0 with MIPS64 DPU with PAI"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-01-04",
        "lab": "ACUMEN SECURITY, LLC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Fungible, Inc.",
    "vendor_url": "http://www.fungible.com"
  }
}