This page was not yet optimized for use on mobile devices.
i.MX8 DXL SECO HSM
Certificate #4837
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, AES-128, AES-256, CAST, HMAC, CMAC, CBC-MACAsymmetric Algorithms
ECDHE, ECDSA, ECC, DH, Diffie-HellmanSchemes
MAC, Key Agreement, Key agreement, AEADProtocols
TLS, TLS v1.2, TLSv1.2, TLS 1.2Randomness
TRNG, DRBGElliptic Curves
P-256, P-384, P-521, curve P-256Block cipher modes
ECB, CBC, CTR, GCM, CCMTLS cipher suites
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_CCM, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384Trusted Execution Environments
TrustZone, PSP, SSCVendor
NXP Semiconductors, NXPSecurity level
Level 3, Level 1Side-channel analysis
side channel, fault injection, Fault injectionStandards
FIPS 140-3, FIPS 180-4, FIPS 186-4, FIPS 197, FIPS 198-1, SP 800-107, SP 800-108, SP 800-131A, SP 800-133, SP 800-135, SP 800-38A, SP 800-38B, SP 800-38C, SP 800-38D, SP 800-38F, SP 800-56A, SP 800-56C, SP 800-57, SP 800-90A, SP 800-90B, SP 800-140, SP 800-140A, SP 800-140B, SP 800-140C, SP 800-140D, SP 800-140E, SP 800-140F, PKCS 1, RFC5246, RFC5289, RFC5639, RFC7627, ISO/IEC 24759, ISO/IEC 19790, ISO/IEC 24579, ISO/IEC 19790:2012, ISO/IEC 24759:2017File metadata
| Author | Steve Weymann |
|---|---|
| Creation date | D:20240328162716+05'30' |
| Modification date | D:20240328162716+05'30' |
| Pages | 32 |
| Creator | Microsoft® Word for Microsoft 365 |
| Producer | Microsoft® Word for Microsoft 365 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
21.10.2024 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4837,
"dgst": "cc7d8d370b5de69b",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"HMAC-SHA2-224A2961",
"HMAC-SHA2-256A2961",
"RSA SigVer (FIPS186-4)A2967",
"SHA2-224A2956",
"AES-CCMA2962",
"AES-ECBA2953",
"SHA2-512A2956",
"AES-GCMA2964",
"AES-CMACA2954",
"KDF SP800-108A2966",
"SHA2-384A2956",
"ECDSA SigGen (FIPS186-4)A2963",
"HMAC-SHA2-512A2961",
"AES-CBCA2953",
"ECDSA KeyGen (FIPS186-4)A2963",
"KDA OneStep Sp800-56Cr1A2965",
"KAS-ECC-SSC Sp800-56Ar3A2972",
"ECDSA SigVer (FIPS186-4)A2963",
"TLS v1.2 KDF RFC7627A2973",
"KDF TLSA2973",
"Hash DRBGA2955",
"HMAC-SHA2-384A2961",
"SHA2-256A2956"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"1.7",
"1.56",
"5.9.0"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 9
},
"ECDH": {
"ECDHE": 5
},
"ECDSA": {
"ECDSA": 35
}
},
"FF": {
"DH": {
"DH": 4,
"Diffie-Hellman": 1
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"CCM": {
"CCM": 11
},
"CTR": {
"CTR": 1
},
"ECB": {
"ECB": 4
},
"GCM": {
"GCM": 27
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"TLS": {
"TLS": 39,
"TLS 1.2": 1,
"TLS v1.2": 18,
"TLSv1.2": 2
}
}
},
"crypto_scheme": {
"AEAD": {
"AEAD": 1
},
"KA": {
"Key Agreement": 4,
"Key agreement": 8
},
"MAC": {
"MAC": 5
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 34,
"P-384": 48,
"P-521": 8,
"curve P-256": 2
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"# A2953": 2,
"# A2954": 1,
"# A2961": 1,
"# A2963": 3,
"# A2964": 4,
"# A2965": 1,
"# A2966": 1,
"# A2972": 6,
"AES CMAC 128": 1,
"AES GCM 128": 1,
"AES [197": 1,
"AES key (128": 2,
"AES-128": 5,
"AES-256": 3,
"HMAC 5": 2,
"HMAC [198": 1,
"PKCS 1": 2,
"SHA2- 512": 1,
"SHA2-224": 4,
"SHA2-256": 25,
"SHA2-384": 16,
"SHA2-512": 15,
"SHS [180": 2
}
},
"fips_security_level": {
"Level": {
"Level 1": 1,
"Level 3": 3
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 30
},
"TRNG": {
"TRNG": 2
}
},
"side_channel_analysis": {
"FI": {
"Fault injection": 1,
"fault injection": 2
},
"SCA": {
"side channel": 3
}
},
"standard_id": {
"FIPS": {
"FIPS 140-3": 63,
"FIPS 180-4": 1,
"FIPS 186-4": 2,
"FIPS 197": 1,
"FIPS 198-1": 1
},
"ISO": {
"ISO/IEC 19790": 4,
"ISO/IEC 19790:2012": 2,
"ISO/IEC 24579": 2,
"ISO/IEC 24759": 14,
"ISO/IEC 24759:2017": 1
},
"NIST": {
"SP 800-107": 1,
"SP 800-108": 1,
"SP 800-131A": 1,
"SP 800-133": 1,
"SP 800-135": 1,
"SP 800-140": 1,
"SP 800-140A": 1,
"SP 800-140B": 1,
"SP 800-140C": 1,
"SP 800-140D": 1,
"SP 800-140E": 1,
"SP 800-140F": 1,
"SP 800-38A": 1,
"SP 800-38B": 1,
"SP 800-38C": 1,
"SP 800-38D": 2,
"SP 800-38F": 2,
"SP 800-56A": 1,
"SP 800-56C": 1,
"SP 800-57": 1,
"SP 800-90A": 1,
"SP 800-90B": 1
},
"PKCS": {
"PKCS 1": 1
},
"RFC": {
"RFC5246": 3,
"RFC5289": 1,
"RFC5639": 1,
"RFC7627": 10
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 52,
"AES-128": 5,
"AES-256": 3
},
"CAST": {
"CAST": 15
}
},
"constructions": {
"MAC": {
"CBC-MAC": 1,
"CMAC": 10,
"HMAC": 11
}
}
},
"tee_name": {
"AMD": {
"PSP": 6
},
"ARM": {
"TrustZone": 1
},
"IBM": {
"SSC": 1
}
},
"tls_cipher_suite": {
"TLS": {
"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256": 1,
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 1,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384": 1,
"TLS_ECDHE_ECDSA_WITH_AES_256_CCM": 1,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 1
}
},
"vendor": {
"NXP": {
"NXP": 10,
"NXP Semiconductors": 65
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Steve Weymann",
"/CreationDate": "D:20240328162716+05\u002730\u0027",
"/Creator": "Microsoft\u00ae Word for Microsoft 365",
"/ModDate": "D:20240328162716+05\u002730\u0027",
"/Producer": "Microsoft\u00ae Word for Microsoft 365",
"pdf_file_size_bytes": 826059,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://tools.ietf.org/html/rfc5246",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2.pdf",
"https://csrc.nist.gov/CSRC/media/Projects/cryptographic-module-validation-program/documents/fips%20140-3/FIPS%20140-3%20IG.pdf",
"https://csrc.nist.gov/publications/detail/fips/198/1/final",
"https://csrc.nist.gov/publications/detail/sp/800-38d/final",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
"https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-107r1.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf",
"https://tools.ietf.org/html/rfc5639",
"https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140F.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-108r1.pdf",
"https://datatracker.ietf.org/doc/html/rfc5289",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140Cr1.pdf",
"https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Ar3.pdf",
"https://www.nxp.com/",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf",
"https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf",
"https://tools.ietf.org/html/rfc7627",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140A.pdfhttps:/nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140A.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
"https://keypair.us/",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140B.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38b.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140Dr1.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.197.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-140E.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 32
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "ba90bc36d43d1f206fcaeeb2dbda43dd0fc32eec103528c774021c70097733aa",
"policy_txt_hash": "ced86f012b40348beadd7210edd300f65f16a6e9acdae9aa43c4a58c501623ea"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When utilizing a Trusted Channel as specified in the Security Policy.",
"certificate_pdf_url": null,
"date_sunset": "2029-10-14",
"description": "The i.MX8 DXL SECO HSM hardware is a sub-chip subsystem of a single-chip embodiment that provides cryptographic engine and secure storage functions, intended for use in automotive or IoT applications.",
"embodiment": "Single Chip",
"exceptions": [
"Operational environment: N/A",
"Documentation requirements: N/A",
"Cryptographic module security policy: N/A"
],
"fw_versions": "SECO ROM mem_I.MX8_s28roml_w24576x032m32B2_1Tlms_m0_1.7; SECO FW 5.9.0",
"historical_reason": null,
"hw_versions": "P/N: version tag DA_SSL_iMX8DXL_SCU_SUBSYS_LN28FDSOI_1.56",
"level": 3,
"mentioned_certs": {},
"module_name": "i.MX8 DXL SECO HSM",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": null,
"tested_conf": [
"[SOC_iMX8DualXL_28FDSOI_1.75 (P/Ns MIMX8SL3AVNFZAB, PIMX8SL3AVNFZAB, MIMX8DL3AVNFZAB, PIMX8DL3AVNFZAB)]"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-10-15",
"lab": "ACUMEN SECURITY, LLC",
"validation_type": "Initial"
}
],
"vendor": "NXP Semiconductors, Inc.",
"vendor_url": "http://www.nxp.com"
}
}