Look-aside Cryptography and Compression Engine (LCE)

Certificate #4521

Webpage information ?

Status active
Validation dates 16.05.2023
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 1
Type Hardware
Embodiment Single Chip
Caveat When operated in FIPS mode with module [Google Integrated Management Complex (IMC) and B227 True Random Number Generator (TRNG) Firmware-Hybrid Cryptographic Module] validated to FIPS 140-2 under Cert. #4400 operating in FIPS mode.
Exceptions
  • Mitigation of Other Attacks: N/A
Description The Look-aside Cryptography and Compression Engine (LCE) module is comprised of a sub-chip cryptographic subsystem in the Google IN762 SoC. The module provides lookaside cryptography services including bulk encryption, cryptographic hashing, Integrity Checksum Value (ICV) verification, and compression services. The module also supports operation chaining including cryptographic and pipeline compressing/decompressing and verification as well as standalone or combined DMA data (payload) transfers between nodes.
Version (Hardware) 3.0
Version (Firmware) B1.4.1 FW 6023
Tested configurations
  • IN762 SoC B1
Vendor Google, LLC
References

This certificate's webpage directly references 1 certificates, transitively this expands into 2 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-, HMAC, CMAC
Hash functions
SHA-1, SHA-2, SHA-3, SHA3-224, SHA3-256, SHA3-384, SHA3-512
Randomness
TRNG
Block cipher modes
ECB, CTR, GCM, XTS

Security level
Level 1, level 1

Standards
FIPS 140-2, FIPS 140, FIPS 180-4, FIPS 202, FIPS 198-1, SP 800-38A, SP 800-38D, SP 800-38E, SP 800-38B, NIST SP 800-38D

File metadata

Creation date D:20230509161024-04'00'
Modification date D:20230509161024-04'00'
Pages 16
Creator Microsoft® Word for Microsoft 365
Producer Microsoft® Word for Microsoft 365

References

Outgoing
  • 4400 - active - Integrated Management Complex (IMC) and B227 True Random Number Generator (TRNG) Firmware-Hybrid Cryptographic Module

Heuristics ?

No heuristics are available for this certificate.

References ?

Updates ?

  • 26.06.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf.
  • 18.05.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4521,
  "dgst": "b1ded99722cf8de8",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "SHA-3#A683",
        "AES#A683",
        "HMAC#A683",
        "AES#A2469",
        "SHS#A683"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "1.4.1",
        "3.0"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "4400"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "4367",
          "4400"
        ]
      }
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": [
        "4400"
      ]
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "4400"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "4400"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "4400"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {},
      "certification_process": {},
      "cipher_mode": {
        "CTR": {
          "CTR": 6
        },
        "ECB": {
          "ECB": 1
        },
        "GCM": {
          "GCM": 8
        },
        "XTS": {
          "XTS": 9
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#4400": 4
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES-CTR (256": 1,
          "AES-CTR 128": 1,
          "AES-GCM (256": 1,
          "AES-GCM 128": 1,
          "HMAC 160": 1,
          "HMAC 160, 224": 1,
          "HMAC SHA-1": 1,
          "HMAC SHA-2": 1,
          "HMAC-SHA-1": 6,
          "HMAC-SHA-2": 2,
          "HMAC-SHA-3": 6,
          "HMAC-SHA1": 2,
          "SHA-1": 3,
          "SHA-14": 1,
          "SHA-2": 3,
          "SHA-3": 2,
          "SHA2-224": 1,
          "SHA2-256": 1,
          "SHA2-384": 1,
          "SHA2-512": 1,
          "SHA3-224": 1,
          "SHA3-256": 1,
          "SHA3-384": 1,
          "SHA3-512": 1,
          "SHS 160": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 3,
          "level 1": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 3
          },
          "SHA2": {
            "SHA-2": 3
          },
          "SHA3": {
            "SHA-3": 3,
            "SHA3-224": 1,
            "SHA3-256": 1,
            "SHA3-384": 1,
            "SHA3-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "TRNG": {
          "TRNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140": 1,
          "FIPS 140-2": 14,
          "FIPS 180-4": 1,
          "FIPS 198-1": 1,
          "FIPS 202": 2
        },
        "NIST": {
          "NIST SP 800-38D": 1,
          "SP 800-38A": 2,
          "SP 800-38B": 1,
          "SP 800-38D": 4,
          "SP 800-38E": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 5,
            "AES-": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 1,
            "HMAC": 7
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/CreationDate": "D:20230509161024-04\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20230509161024-04\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "pdf_file_size_bytes": 418090,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://csrc.nist.gov/groups/STM/cmvp/index.html"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 16
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "65a3f47e1c6aa7f1149148fbb71a1fd8baea8a17dd19a216baf3fa409d69effd",
    "policy_txt_hash": "638fd591942815ff434fb67b335dba334fabf92a9c5b1077375c013bee96fd50"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode with module [Google Integrated Management Complex (IMC) and B227 True Random Number Generator (TRNG) Firmware-Hybrid Cryptographic Module] validated to FIPS 140-2 under Cert. #4400 operating in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf",
    "date_sunset": "2026-09-21",
    "description": "The Look-aside Cryptography and Compression Engine (LCE) module is comprised of a sub-chip cryptographic subsystem in the Google IN762 SoC. The module provides lookaside cryptography services including bulk encryption, cryptographic hashing, Integrity Checksum Value (ICV) verification, and compression services. The module also supports operation chaining including cryptographic and pipeline compressing/decompressing and verification as well as standalone or combined DMA data (payload) transfers between nodes.",
    "embodiment": "Single Chip",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "B1.4.1 FW 6023",
    "historical_reason": null,
    "hw_versions": "3.0",
    "level": 1,
    "mentioned_certs": {
      "4400": 1
    },
    "module_name": "Look-aside Cryptography and Compression Engine (LCE)",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": [
      "IN762 SoC B1"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-05-16",
        "lab": "ACUMEN SECURITY, LLC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Google, LLC",
    "vendor_url": "http://www.google.com"
  }
}