This page was not yet optimized for use on mobile
devices.
Apple Secure Key Store Cryptographic Module, v9.0
Certificate #3523
Webpage information
Security policy
Symmetric Algorithms
AES, AES-256, AES-128, Triple-DES, HMAC, HMAC-SHA-384, HMAC-SHA-512, HMAC-SHA-256Asymmetric Algorithms
ECDH, ECDSA, ECC, Diffie-Hellman, DSAHash functions
SHA-1, SHA-384, SHA-512, SHA-256, PBKDF, PBKDF2Schemes
Key AgreementRandomness
DRBG, RNGElliptic Curves
P-224, P-256, P-384, P-521, Curve25519, Ed25519Block cipher modes
ECB, CBC, CTR, OFB, GCM, CCM, XTSSecurity level
level 2, Level 2Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 180-4, FIPS 186-4, FIPS 197, FIPS 198, SP 800-90A, SP 800-38A, SP 800-38D, SP 800-38F, SP 800-132, NIST SP 800-90A, SP 800-56A, RFC5869, RFC 5869File metadata
| Title | Microsoft Word - Apple_Inc_Security_Policy_SKS_v1.1.docx |
|---|---|
| Creation date | D:20190909200717Z00'00' |
| Modification date | D:20190909200717Z00'00' |
| Pages | 30 |
| Creator | Word |
| Producer | macOS Version 10.14.6 (Build 18G95) Quartz PDFContext |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 3523,
"dgst": "c6fab63609e8a0b0",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"ECDSA#C163",
"KTS#C167",
"AES#C318",
"AES#C274",
"AES#C264",
"ECDSA#C166",
"AES#C87",
"KTS#C92",
"AES#C363",
"AES#C166",
"AES#C90",
"CVL#C162",
"AES#C192",
"SHS#C169",
"HMAC#C165",
"SHS#C278",
"SHS#C369",
"HMAC#C300",
"HMAC#C258",
"AES#C152",
"SHS#C280",
"SHS#C277",
"AES#C292",
"AES#C163",
"AES#C277",
"SHS#C363",
"AES#C266",
"KTS#C260",
"AES#C91",
"SHS#C282",
"SHS#C301",
"HMAC#C163",
"KTS#C162",
"AES#C92",
"SHS#C271",
"AES#C298",
"CVL#C310",
"HMAC#C301",
"SHS#C168",
"SHS#C279",
"AES#C279",
"CVL#C166",
"AES#5270",
"SHS#C284",
"AES#C323",
"AES#C320",
"DRBG#2025",
"HMAC#C166",
"HMAC#C169",
"DRBG#2013",
"ECDSA#C165",
"AES#C289",
"AES#C319",
"KTS#C87",
"HMAC#C290",
"KTS#C362",
"HMAC#C363",
"SHS#C165",
"AES#C308",
"AES#C208",
"DRBG#2023",
"SHS#C164",
"AES#C93",
"AES#C282",
"ECDSA#C169",
"DRBG#2024",
"HMAC#C369",
"AES#C275",
"HMAC#C168",
"AES#5276",
"KTS#C89",
"SHS#C296",
"ECDSA#C310",
"ECDSA#C258",
"AES#C155",
"CVL#C164",
"HMAC#C364",
"KTS#C288",
"ECDSA#C164",
"SHS#C309",
"AES#C362",
"AES#C307",
"AES#C268",
"KTS#C90",
"AES#C151",
"AES#C153",
"DRBG#C324",
"SHS#C258",
"SHS#C167",
"AES#C313",
"SHS#C166",
"AES#C207",
"AES#C156",
"HMAC#C167",
"ECDSA#C363",
"AES#5260",
"CVL#C363",
"AES#C301",
"AES#C261",
"HMAC#C282",
"KTS#C192",
"HMAC#C292",
"DRBG#C331",
"SHS#C290",
"DRBG#2021",
"AES#C365",
"AES#C322",
"AES#C360",
"HMAC#C270",
"AES#C305",
"AES#C358",
"HMAC#C309",
"KTS#C306",
"AES#5279",
"KTS#C88",
"SHS#C162",
"AES#C368",
"AES#C367",
"HMAC#C296",
"AES#C263",
"AES#C271",
"AES#C314",
"CVL#C167",
"AES#C331",
"KTS#C290",
"SHS#C270",
"AES#C164",
"AES#C284",
"AES#C267",
"AES#C204",
"AES#C312",
"AES#C168",
"CVL#C364",
"CVL#C260",
"ECDSA#C167",
"AES#C199",
"KTS#C165",
"AES#C270",
"HMAC#C164",
"AES#C206",
"DRBG#2022",
"CVL#C168",
"AES#C88",
"AES#5271",
"HMAC#C310",
"AES#5261",
"AES#C326",
"AES#C162",
"KTS#C91",
"AES#C294",
"AES#C94",
"AES#C306",
"AES#C203",
"AES#C205",
"CVL#C169",
"KTS#C94",
"DRBG#2029",
"AES#C202",
"AES#C330",
"AES#C290",
"HMAC#C277",
"AES#C158",
"KTS#C258",
"AES#C280",
"HMAC#C271",
"ECDSA#C260",
"AES#5272",
"DRBG#2014",
"ECDSA#C162",
"HMAC#C268",
"KTS#C168",
"AES#C366",
"SHS#C268",
"AES#C200",
"AES#C161",
"HMAC#C279",
"SHS#C292",
"KTS#C166",
"ECDSA#C168",
"AES#C291",
"AES#C325",
"AES#5278",
"AES#5273",
"KTS#C296",
"HMAC#C162",
"AES#C265",
"AES#C361",
"AES#C311",
"AES#C283",
"HMAC#C284",
"ECDSA#C290",
"AES#C278",
"SHS#C283",
"AES#C260",
"AES#C293",
"AES#C309",
"AES#C288",
"AES#5274",
"AES#C359",
"AES#C324",
"SHS#C300",
"AES#C165",
"AES#C364",
"HMAC#C283",
"KTS#C164",
"SHS#C163",
"KTS#C93",
"ECDSA#C296",
"KTS#C363",
"KTS#C163",
"DRBG#2028",
"AES#C159",
"SHS#C260",
"DRBG#2026",
"CVL#C290",
"AES#C296",
"AES#C317",
"AES#C299",
"CVL#C258",
"HMAC#C260",
"DRBG#C323",
"KTS#C360",
"AES#C315",
"AES#C262",
"ECDSA#C364",
"AES#C89",
"HMAC#C280",
"AES#C286",
"AES#5275",
"HMAC#C278",
"KTS#C161",
"AES#C160",
"AES#C167",
"AES#C201",
"AES#C157",
"CVL#C165",
"CVL#C163",
"DRBG#2020",
"KTS#C310",
"AES#C369",
"KTS#C169",
"AES#C310",
"AES#C154",
"CVL#C296",
"AES#C273",
"SHS#C364",
"AES#C258",
"KTS#C293",
"AES#C300",
"KTS#C364",
"SHS#C310",
"AES#C169"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"2.0",
"9.0",
"1.2"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 6
},
"ECDH": {
"ECDH": 2
},
"ECDSA": {
"ECDSA": 8
}
},
"FF": {
"DH": {
"Diffie-Hellman": 7
},
"DSA": {
"DSA": 1
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 8
},
"CCM": {
"CCM": 4
},
"CTR": {
"CTR": 4
},
"ECB": {
"ECB": 10
},
"GCM": {
"GCM": 2
},
"OFB": {
"OFB": 3
},
"XTS": {
"XTS": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"KA": {
"Key Agreement": 5
}
},
"device_model": {},
"ecc_curve": {
"Curve": {
"Curve25519": 2
},
"Edwards": {
"Ed25519": 1
},
"NIST": {
"P-224": 8,
"P-256": 12,
"P-384": 10,
"P-521": 8
}
},
"eval_facility": {
"atsec": {
"atsec": 2
}
},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES-128": 2,
"AES-256": 13,
"HMAC- SHA-512": 1,
"HMAC-SHA-1": 6,
"HMAC-SHA-224": 4,
"HMAC-SHA-256": 8,
"PAA1": 1,
"SHA-1": 3,
"SHA-224": 2,
"SHA-256": 3,
"SHA-512": 1
}
},
"fips_security_level": {
"Level": {
"Level 2": 2,
"level 2": 3
}
},
"hash_function": {
"PBKDF": {
"PBKDF": 16,
"PBKDF2": 3
},
"SHA": {
"SHA1": {
"SHA-1": 3
},
"SHA2": {
"SHA-256": 1,
"SHA-384": 2,
"SHA-512": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 27
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 22,
"FIPS 180-4": 2,
"FIPS 186-4": 5,
"FIPS 197": 3,
"FIPS 198": 2,
"FIPS PUB 140-2": 1
},
"NIST": {
"NIST SP 800-90A": 1,
"SP 800-132": 2,
"SP 800-38A": 1,
"SP 800-38D": 1,
"SP 800-38F": 2,
"SP 800-56A": 1,
"SP 800-90A": 5
},
"RFC": {
"RFC 5869": 1,
"RFC5869": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 23,
"AES-128": 2,
"AES-256": 13
}
},
"DES": {
"3DES": {
"Triple-DES": 1
}
},
"constructions": {
"MAC": {
"HMAC": 8,
"HMAC-SHA-256": 2,
"HMAC-SHA-384": 2,
"HMAC-SHA-512": 2
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/AAPL:Keywords": "[]",
"/CreationDate": "D:20190909200717Z00\u002700\u0027",
"/Creator": "Word",
"/Keywords": "",
"/ModDate": "D:20190909200717Z00\u002700\u0027",
"/Producer": "macOS Version 10.14.6 (Build 18G95) Quartz PDFContext",
"/Title": "Microsoft Word - Apple_Inc_Security_Policy_SKS_v1.1.docx",
"pdf_file_size_bytes": 417768,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 30
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "d2f48bd45e2db9673c6386876513ffede888d99ec39993c71334c6d9b08ba92e",
"policy_txt_hash": "0ecac3738bc236bbe99f902fc251226bbdaf9eb4541a0f70dbb3fb3c95db9152"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/SeptConsolidated.pdf",
"date_sunset": null,
"description": "The Apple Secure Key Store Cryptographic Module, v9.0 is a single-chip standalone hardware cryptographic module running on a multi-chip device and provides services intended to protect data in transit and at rest.",
"embodiment": "Single Chip",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "SEPOS",
"historical_reason": "SP 800-56Arev3 transition",
"hw_versions": "1.2[1], 2.0[2]",
"level": 2,
"mentioned_certs": {},
"module_name": "Apple Secure Key Store Cryptographic Module, v9.0",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": [
"SEPOS running on Apple iMac Pro 2017 with Apple T2 CPU[2]",
"SEPOS running on Apple MacBook Pro with Apple T2 CPU[2]",
"SEPOS running on Apple TV 4K with Apple A10X Fusion CPU[2]",
"SEPOS running on Apple Watch Series 1 with Apple S1P CPU[2]",
"SEPOS running on Apple Watch Series 3 with Apple S3 CPU[2]",
"SEPOS running on Apple Watch Series 4 with Apple S4 CPU[2]",
"SEPOS running on iPad Air 2 with Apple A8X CPU[1]",
"SEPOS running on iPad Pro with Apple A12X Bionic CPU[2]",
"SEPOS running on iPad Pro with Apple A9X CPU[2], SEPOS running on iPad Pro with Apple A10X Fusion CPU[2]",
"SEPOS running on iPhone 5S with Apple A7 CPU[1]",
"SEPOS running on iPhone 6 (iPhone 6 and iPhone 6 Plus) with Apple A8 CPU[1]",
"SEPOS running on iPhone 6S (iPhone 6S and iPhone 6S Plus) with Apple A9 CPU[2]",
"SEPOS running on iPhone 7 (iPhone 7 and iPhone 7 Plus) with Apple A10 Fusion CPU[2]",
"SEPOS running on iPhone 8 and iPhone X (iPhone 8, iPhone 8 Plus, iPhone X) with Apple A11 Bionic CPU[2]",
"SEPOS running on iPhone XS (iPhone XS, iPhone XS Max, iPhone XR) with Apple A12 Bionic CPU[2]"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2019-09-10",
"lab": "atsec information security corporation",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2021-03-11",
"lab": "atsec information security corporation",
"validation_type": "Update"
}
],
"vendor": "Apple Inc.",
"vendor_url": "http://www.apple.com"
}
}