This page was not yet optimized for use on mobile
devices.
PIX 525 and PIX 535
Certificate #872
Webpage information
Security policy
Symmetric Algorithms
AES, RC4, DES, TDES, HMACAsymmetric Algorithms
ECDH, Diffie-Hellman, DHHash functions
SHA-1, MD5Schemes
Key Exchange, Key agreementProtocols
SSH, SSHv2, SSL, TLS, IKE, VPN, PGPRandomness
PRNG, RNGElliptic Curves
K-163Vendor
Broadcom, Cisco Systems, Inc, Cisco, Cisco SystemsSecurity level
Level 1Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 74, FIPS 81, X.509File metadata
| Title | PIX 525-535 Security Policy 7_2 v1_7.fm |
|---|---|
| Author | Keith Symmers |
| Creation date | D:20071108131731-05'00' |
| Modification date | D:20071127164408-05'00' |
| Pages | 25 |
| Creator | FrameMaker 5.5.6p145 |
| Producer | Acrobat Distiller 6.0 (Windows) |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 872,
"dgst": "b543b2a3edcc48cc",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"HMAC#15",
"RSA#107",
"RNG#309",
"SHS#606",
"AES#536",
"RSA#242",
"AES#209",
"Triple-DES#298",
"SHS#285",
"HMAC#283",
"Triple-DES#538"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:cisco:pix-535:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:pix-525:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"7.2.2.18"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDH": {
"ECDH": 9
}
},
"FF": {
"DH": {
"DH": 8,
"Diffie-Hellman": 7
}
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 12
},
"PGP": {
"PGP": 4
},
"SSH": {
"SSH": 9,
"SSHv2": 1
},
"TLS": {
"SSL": {
"SSL": 2
},
"TLS": {
"TLS": 9
}
},
"VPN": {
"VPN": 8
}
},
"crypto_scheme": {
"KA": {
"Key agreement": 2
},
"KEX": {
"Key Exchange": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"K-163": 1
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES 536": 1,
"HMAC SHA-1": 2,
"HMAC SHA-1 283": 1,
"HMAC SHA-1 KAT 12": 1,
"HMAC-SHA-1": 8,
"HMAC-SHA1": 6,
"RSA 13": 1,
"RSA 242": 1,
"SHA-1": 8,
"SHA-1 283": 1,
"SHA-1 606": 1,
"SHA-1 KAT 12": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 4
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 2
}
},
"SHA": {
"SHA1": {
"SHA-1": 11
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"PRNG": 3
},
"RNG": {
"RNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 44,
"FIPS 74": 1,
"FIPS 81": 1,
"FIPS PUB 140-2": 1
},
"X509": {
"X.509": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 10
},
"RC": {
"RC4": 1
}
},
"DES": {
"3DES": {
"TDES": 11
},
"DES": {
"DES": 6
}
},
"constructions": {
"MAC": {
"HMAC": 5
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Broadcom": {
"Broadcom": 2
},
"Cisco": {
"Cisco": 126,
"Cisco Systems": 12,
"Cisco Systems, Inc": 11
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Keith Symmers",
"/CreationDate": "D:20071108131731-05\u002700\u0027",
"/Creator": "FrameMaker 5.5.6p145",
"/ModDate": "D:20071127164408-05\u002700\u0027",
"/Producer": "Acrobat Distiller 6.0 (Windows)",
"/Title": "PIX 525-535 Security Policy 7_2 v1_7.fm",
"pdf_file_size_bytes": 361177,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/tsd_products_support_series_home.html",
"http://www.cisco.com/go/guide",
"http://www.cisco.com/go/marketplace/",
"http://www.cisco.com/en/US/products/sw/secursw/ps2120/tsd_products_support_series_home.html",
"http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a00800b0d85.html",
"mailto:[email protected]",
"http://www.cisco.com/packet",
"http://www.cisco.com/go/psirt",
"http://www.cisco.com/en/US/products/index.html",
"http://www.cisco.com/en/US/products/products_psirt_rss_feed.html",
"mailto:[email protected]",
"http://www.cisco.com/ipj",
"http://www.cisco.com/techsupport/servicerequest",
"mailto:[email protected]",
"http://csrc.nist.gov/cryptval/",
"http://www.cisco.com/go/iqmagazine",
"http://www.ciscopress.com",
"http://www.cisco.com/techsupport/contacts",
"http://ciscoiq.texterity.com/ciscoiq/sample/",
"http://www.cisco.com",
"http://www.cisco.com/techsupport",
"http://csrc.ncsl.nist.gov/cryptval/",
"http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html",
"http://www.cisco.com/discuss/networking",
"http://www.cisco.com/public/countries_languages.shtml",
"http://www.cisco.com/en/US/learning/index.html",
"http://tools.cisco.com/RPF/register/register.do"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 25
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "574ae94b7aa642541d1a287b6da3daebbe75b8c05e4c320e93138b887064f8a1",
"policy_txt_hash": "977004c57823f2ba43bb5039898e129049ecd572287c7715dc6cd87976d726ef"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt872.pdf",
"date_sunset": null,
"description": "The market-leading Cisco PIX and ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. Cisco PIX Security Appliances and ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environments of all sizes.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 2",
"Design Assurance: Level 2"
],
"fw_versions": "7.2.2.18",
"historical_reason": "RNG SP800-131A Revision 1 Transition",
"hw_versions": "525 and 535",
"level": 1,
"mentioned_certs": {},
"module_name": "PIX 525 and PIX 535",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2007-11-27",
"lab": "SAIC-VA",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2010-05-28",
"lab": "",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2012-02-23",
"lab": "",
"validation_type": "Update"
}
],
"vendor": "Cisco Systems, Inc.",
"vendor_url": "http://www.cisco.com"
}
}