Encryption Card ADVA 10TCE-PCN-16GU+AES100G-F

Certificate #4500

Webpage information ?

Status active
Validation dates 02.05.2023
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Multi-Chip Embedded
Caveat The tamper evident seals installed as indicated in the security policy; This module contains the embedded module StarSign Crypto-USB Token S powered by Sm@rtCafé Expert 7.0 Secure Element validated to FIPS 140-2 under Cert. #2628 operating in FIPS mode.
Exceptions
  • Design Assurance: Level 3
Description The ADVA 10TCE-PCN-16GU+AES100G-F encryption module is used for encryption and decryption of data transmitted over Optical Transportation Network (OTN) links. It is used in ADVA's FSP 3000 Optical Network Encryption solutions.
Version (Hardware) HW B-1.01; shelves: SH9HU (Version HW 2.01, Part Number 1078700121 F7/SH9HU), SH1HU-R/PF (Version HW 1.01, Part Number 1078700060-01 F7/SH1HU-R/PF), SH1HU-HP/2DC (Version HW 2.11, Part Number 1078700144 F7/SH1HU-HP/2DC), SH1HU-HP/E-TEMP/2DC (Version HW 1.01, Part Number 1078700145-01 F7/SH1HU-HP/E-TEMP/2DC); labels and label kits: SEAL/FIPS-GENERAL (Part Number 1013700030-01), SEAL/FIPS-CFP (Part Number 1013700031-01), SEAL/FIPS-WIRE (Part Number 1013700032-01), SEAL/FIPS-GENERAL/5 (Part Number BC00000738)
Version (Firmware) 172.21.1, 191.4.1
Vendor ADVA Optical Networking SE
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-, HMAC, HMAC-SHA-256
Asymmetric Algorithms
RSA-3072, RSA 4096, DH, Diffie-Hellman, DSA
Hash functions
SHA-256, SHA-512, SHA512
Schemes
Key agreement
Protocols
SSH
Randomness
DRBG, RBG
Block cipher modes
ECB, CTR

Trusted Execution Environments
PSP, SE
Vendor
Giesecke+Devrient

Security level
Level 2, level 3, level 2
Side-channel analysis
side-channel

Standards
FIPS 140-2, FIPS 140, FIPS140-2, FIPS 197, FIPS 198-1, FIPS 180-4, FIPS 186-4, FIPS186-4, SP 800-38A, SP 800-90A, SP 800-90B

File metadata

Title Empfängeradresse eingeben
Author [email protected]
Creation date D:20230413140346+02'00'
Modification date D:20230413140346+02'00'
Pages 34
Creator Microsoft® Word 2016
Producer Microsoft® Word 2016

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 26.06.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf.
  • 18.05.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4500,
  "dgst": "c746ee2edf45fa00",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#C665",
        "SHS#A884",
        "DRBG#455",
        "HMAC#C664",
        "HMAC#A884",
        "DRBG#C664",
        "AES#C664",
        "RSA#C664",
        "AES#A884",
        "AES#A885",
        "RSA#A884",
        "SHS#C664",
        "DRBG#A884"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "172.21.1",
        "1.01",
        "191.4.1",
        "2.11",
        "2.01"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "FF": {
          "DH": {
            "DH": 36,
            "Diffie-Hellman": 1
          },
          "DSA": {
            "DSA": 1
          }
        },
        "RSA": {
          "RSA 4096": 1,
          "RSA-3072": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CTR": {
          "CTR": 4
        },
        "ECB": {
          "ECB": 5
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "SSH": {
          "SSH": 1
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key agreement": 4
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#2628": 12,
          "#455": 6
        }
      },
      "fips_certlike": {
        "Certlike": {
          "#455 DRBG": 1,
          "AES 128": 1,
          "AES key (96": 1,
          "DRBG 256": 1,
          "DRBG cert #2628": 1,
          "DRBG cert. #455": 3,
          "HMAC-SHA-256": 2,
          "RSA 4096": 1,
          "SHA 256": 1,
          "SHA-256": 8,
          "SHA-512": 3,
          "SHA512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 1,
          "level 2": 1,
          "level 3": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 8,
            "SHA-512": 3,
            "SHA512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 19
        },
        "RNG": {
          "RBG": 2
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "side-channel": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140": 1,
          "FIPS 140-2": 18,
          "FIPS 180-4": 1,
          "FIPS 186-4": 1,
          "FIPS 197": 2,
          "FIPS 198-1": 1,
          "FIPS140-2": 1,
          "FIPS186-4": 1
        },
        "NIST": {
          "SP 800-38A": 2,
          "SP 800-90A": 1,
          "SP 800-90B": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 15,
            "AES-": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 4,
            "HMAC-SHA-256": 1
          }
        }
      },
      "tee_name": {
        "AMD": {
          "PSP": 3
        },
        "IBM": {
          "SE": 2
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "GD": {
          "Giesecke+Devrient": 3
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "[email protected]",
      "/CreationDate": "D:20230413140346+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2016",
      "/ModDate": "D:20230413140346+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2016",
      "/Title": "Empf\u00e4ngeradresse eingeben",
      "pdf_file_size_bytes": 2456458,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.adva.com/",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 34
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "3f12d480b7a18f80c6a75a3faa4f8fdb3d7ea6cf4d02447702c0004791f3fb6a",
    "policy_txt_hash": "59abc43c961d531886196fd799d12b4459b6fb6bc147d9f14fe6444b6fc1ea65"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "The tamper evident seals installed as indicated in the security policy; This module contains the embedded module StarSign Crypto-USB Token S powered by Sm@rtCaf\u00e9 Expert 7.0 Secure Element validated to FIPS 140-2 under Cert. #2628 operating in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf",
    "date_sunset": "2026-09-21",
    "description": "The ADVA 10TCE-PCN-16GU+AES100G-F encryption module is used for encryption and decryption of data transmitted over Optical Transportation Network (OTN) links. It is used in ADVA\u0027s FSP 3000 Optical Network Encryption solutions.",
    "embodiment": "Multi-Chip Embedded",
    "exceptions": [
      "Design Assurance: Level 3"
    ],
    "fw_versions": "172.21.1, 191.4.1",
    "historical_reason": null,
    "hw_versions": "HW B-1.01; shelves: SH9HU (Version HW 2.01, Part Number 1078700121 F7/SH9HU), SH1HU-R/PF (Version HW 1.01, Part Number 1078700060-01 F7/SH1HU-R/PF), SH1HU-HP/2DC (Version HW 2.11, Part Number 1078700144 F7/SH1HU-HP/2DC), SH1HU-HP/E-TEMP/2DC (Version HW 1.01, Part Number 1078700145-01 F7/SH1HU-HP/E-TEMP/2DC); labels and label kits: SEAL/FIPS-GENERAL (Part Number 1013700030-01), SEAL/FIPS-CFP (Part Number 1013700031-01), SEAL/FIPS-WIRE (Part Number 1013700032-01), SEAL/FIPS-GENERAL/5 (Part Number BC00000738)",
    "level": 2,
    "mentioned_certs": {
      "2628": 1
    },
    "module_name": "Encryption Card ADVA 10TCE-PCN-16GU+AES100G-F",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-05-02",
        "lab": "T\u00dcV INFORMATIONSTECHNIK GMBH",
        "validation_type": "Initial"
      }
    ],
    "vendor": "ADVA Optical Networking SE",
    "vendor_url": "http://www.advaoptical.com"
  }
}