This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	DocuSign HSM Appliance	DocuSign HSM Appliance
cert_id	3960	2860
dgst	04db56ea3df5beb6	ed16d272044ed81f
heuristics/algorithms	HMAC#C1160, ECDSA#C1161, SHS#C1160, SHS#1465, AES#C1160, HMAC#C1161, AES#C1161, KTS#C1161, RSA#C1161, CVL#C1160, SHS#C1161, Triple-DES#C1161, DRBG#98, DRBG#C1161	CVL#1746, CVL#857, Triple-DES#2469, Triple-DES MAC#2469, SHS#1465, CVL#1296, HMAC#2630, AES#4029, SHS#4243, Triple-DES MAC#2669, KTS#2630, RSA#2533, HMAC#3073, HMAC#3074, DRBG#1205, DRBG#1565, AES#5284, DRBG#2030, KTS#4029, SHS#3804, AES#5283, RSA#2069, CVL#1039, KTS#3074, AES#4641, ECDSA#900, SHS#3805, HMAC#2632, CVL#1745, HMAC#3491, HMAC#3490, SHS#4242, CVL#1297, KTS#5284, SHS#3325, Triple-DES#2207, Triple-DES#2669, ECDSA#1378, Triple-DES MAC#2207, KTS#4641, KTS#3491, AES#4640, ECDSA#1143, SHS#3326, AES#4031, RSA#2822, DRBG#98
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	5.0.4, 5.0	5.0.0, 5.0, 5.0.3, 5.0.2
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	1883	1883
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	1883	1883
heuristics/module_prunned_references	1883	1883
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	1883	1883
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	1883	1883
heuristics/policy_prunned_references	1883	1883
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1883: 3 #98: 4	Cert: #1883: 2 #98: 2
pdf_data/keywords/fips_security_level	Level: Level 3: 3 level 3: 2	Level: Level 3: 3 level 3: 2
pdf_data/keywords/fips_certlike	Certlike: AES 128: 5 AES 128, 192 and 256: 1 AES 256: 2 AES CMAC 128: 1 AES-128: 2 AES128: 2 AES192: 2 AES256: 2 DRBG (Cert. #98: 1 DRBG 28: 1 DRBG 4: 1 DRBG Cert. #98: 1 DRBG2: 1 Diffie-Hellman 2048: 1 HMAC 256: 2 HMAC-SHA-1: 2 HMAC-SHA-256: 2 HMAC-SHA-256 256: 2 HMAC-SHA-384: 2 PKCS#1: 8 RSA 2048: 6 RSA PKCS#1: 4 SHA-1: 7 SHA-256: 11 SHA-384: 6 SHA-512: 3 SHA-512 1024: 1 SHA-512 2048: 2 SHS 5: 1	Certlike: AES 128: 5 AES 128, 192 and 256: 1 AES 256: 2 AES-128: 2 AES128: 2 AES192: 2 AES256: 2 CVL 1039: 1 CVL 1745: 1 DRBG (Cert. #98: 1 DRBG 17: 1 DRBG 857: 1 DRBG Cert. #98: 1 Diffie-Hellman 2048: 1 HMAC-SHA-1: 2 HMAC-SHA-256: 2 HMAC-SHA-256 256: 2 HMAC-SHA-384: 2 PKCS#1: 8 RSA 2048: 6 RSA PKCS#1: 4 SHA-1: 8 SHA-256: 12 SHA-384: 7 SHA-512: 4 SHA-512 1024: 1 SHA-512 2048: 2
pdf_data/keywords/vendor
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 21 AES-128: 2 AES128: 2 AES192: 2 AES256: 2 DES: 3DES: Triple-DES: 6 DES: DES: 8 constructions: MAC: CMAC: 3 HMAC: 9 HMAC-SHA-256: 3 HMAC-SHA-512: 1	AES_competition: AES: AES: 20 AES-128: 2 AES128: 2 AES192: 2 AES256: 2 DES: 3DES: Triple-DES: 5 DES: DES: 8 constructions: MAC: CMAC: 3 HMAC: 10 HMAC-SHA-256: 3 HMAC-SHA-512: 1
pdf_data/keywords/asymmetric_crypto	ECC: ECDSA: ECDSA: 12 FF: DH: Diffie-Hellman: 7 RSA: RSA 2048: 6	ECC: ECDSA: ECDSA: 12 FF: DH: Diffie-Hellman: 6 RSA: RSA 2048: 6
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	MD: MD5: MD5: 2 SHA: SHA1: SHA-1: 7 SHA2: SHA-256: 16 SHA-384: 2 SHA-512: 9	MD: MD5: MD5: 2 SHA: SHA1: SHA-1: 8 SHA2: SHA-256: 17 SHA-384: 3 SHA-512: 10
pdf_data/keywords/crypto_scheme	KA: Key agreement: 1 KEX: Key Exchange: 1 Key exchange: 1 MAC: MAC: 7	KEX: Key Exchange: 1 Key exchange: 1 MAC: MAC: 7
pdf_data/keywords/crypto_protocol	TLS: TLS: TLS: 9 TLS 1.2: 6	TLS: TLS: TLS: 6 TLS 1.2: 6
pdf_data/keywords/randomness	PRNG: DRBG: 20 RNG: RNG: 5	PRNG: DRBG: 16 RNG: RNG: 4
pdf_data/keywords/cipher_mode	CBC: CBC: 11 CCM: CCM: 1 CTR: CTR: 2 ECB: ECB: 7 GCM: GCM: 1	CBC: CBC: 10 CCM: CCM: 1 CTR: CTR: 2 ECB: ECB: 7 GCM: GCM: 1
pdf_data/keywords/ecc_curve	NIST: P-256: 14 P-384: 14 P-521: 14	NIST: P-256: 10 P-384: 10 P-521: 10
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite	TLS: TLS_RSA_WITH_AES_256_CBC_SHA256: 2	TLS: TLS_RSA_WITH_AES_256_CBC_SHA256: 2
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis	FI: physical tampering: 2	FI: physical tampering: 1
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140-2: 33 FIPS 180-4: 3 FIPS 186-4: 5 FIPS 197: 5 FIPS 198-1: 2 FIPS 46-3: 2 NIST: SP 800-133: 1 SP 800-38A: 1 SP 800-38B: 2 SP 800-38C: 1 SP 800-38D: 2 SP 800-38F: 2 SP 800-38G: 1 SP 800-67: 1 SP 800-90A: 2 PKCS: PKCS#1: 6 RFC: RFC 1321: 1 X509: X.509: 1	FIPS: FIPS 140-2: 32 FIPS 180-4: 3 FIPS 186-4: 3 FIPS 197: 4 FIPS 198-1: 2 FIPS 46-3: 2 NIST: SP 800-38A: 1 SP 800-38B: 2 SP 800-38C: 1 SP 800-38D: 2 SP 800-38F: 1 SP 800-38G: 1 SP 800-67: 1 PKCS: PKCS#1: 6 RFC: RFC 1321: 1 X509: X.509: 1
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: Andrew Donofrio /CreationDate: D:20210527095432+03'00' /Creator: Microsoft® Word for Microsoft 365 /Keywords: FIPS 140-1 Security Policy Documentation Submission Template /ModDate: D:20210527095432+03'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: FIPS 140-1 Security Policy /Title: Non-Proprietary FIPS 140-1 Security Policy pdf_file_size_bytes: 886908 pdf_hyperlinks: http://www.docusign.com/, https://support.docusign.com/en/contactSupport, https://csrc.nist.gov/projects/cryptographic-module-validation-program pdf_is_encrypted: False pdf_number_of_pages: 34	/Author: Andrew Donofrio /CreationDate: D:20180404192115+03'00' /Creator: Microsoft® Word 2016 /Keywords: FIPS 140-1 Security Policy Documentation Submission Template /ModDate: D:20180404192115+03'00' /Producer: Microsoft® Word 2016 /Subject: FIPS 140-1 Security Policy /Title: Non-Proprietary FIPS 140-1 Security Policy pdf_file_size_bytes: 1368175 pdf_hyperlinks: http://www.docusign.com/, https://csrc.nist.gov/projects/cryptographic-module-validation-program pdf_is_encrypted: False pdf_number_of_pages: 31
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode. This module contains the embedded module eToken 5105 validated to FIPS 140-2 under Cert. #1883 operating in FIPS mode. No assurance of the minimum strength of generated keys	When operated in FIPS mode. This module contains the embedded module eToken 5105 validated to FIPS 140-2 under Cert. #1883 operating in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2021_010721_0718.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertMar2017.pdf
web_data/date_sunset
web_data/description	DocuSign HSM Appliance is a high-performance cryptographic service provider. It performs high-speed cryptographic operations while protecting sensitive data. Its features include Triple-DES, AES, CCM, HMAC, RSA, ECDSA, SHA-1, SHA-256, SHA-384, SHA-512, public key database and certificate support, authenticated and encrypted communication with the module, secure storage of secret/private keys, software key medium and smartcard support, tamper-responsive enclosure, high level API requiring no cryptographic expertise, in-depth logging and auditing, and secure backup capabilities.	DocuSign HSM Appliance is a high-performance cryptographic service provider. It performs high-speed cryptographic operations while protecting sensitive data. Its features include Triple-DES, AES, Triple-DES MAC, CCM, HMAC, RSA, ECDSA, SHA-1, SHA-256, SHA-384, SHA-512, public key database and certificate support, authenticated and encrypted communication with the module, secure storage of secret/private keys, software key medium and smartcard support, tamper-responsive enclosure, high level API requiring no cryptographic expertise, in-depth logging and auditing, and secure backup capabilities.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Mitigation of Other Attacks: N/A	Mitigation of Other Attacks: N/A
web_data/fw_versions	5, ., 0, ., 4, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None	5, ., 0, ., 0, ,, , 5, ., 0, ., 2, , a, n, d, , 5, ., 0, ., 3
web_data/historical_reason	SP 800-56Arev3 transition	Moved to historical list due to dependency on certificate #1883
web_data/hw_versions	5, ., 0	5, ., 0
web_data/level	3	3
web_data/mentioned_certs	1883: 1	1883: 1
web_data/module_name	DocuSign HSM Appliance	DocuSign HSM Appliance
web_data/module_type	Hardware	Hardware
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	historical	historical
web_data/sw_versions	None	None
web_data/tested_conf	[]	[]
web_data/validation_history	date: 27.06.2021 lab: CYGNACOM SOLUTIONS INC validation_type: Initial	date: 08.03.2017 lab: CYGNACOM SOLUTIONS INC validation_type: Initial
web_data/vendor	DocuSign, Inc.	DocuSign, Inc.
web_data/vendor_url	http://www.docusign.com	http://www.docusign.com