This page was not yet optimized for use on mobile devices.
Comparing certificates Experimental feature
You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.
Red Hat Enterprise Linux OpenSSH Client Cryptographic Module |
Red Hat Enterprise Linux OpenSSH Client Cryptographic Module |
|
---|---|---|
cert_id | 2633 | 3067 |
dgst | 05798b5867fa0524 | 77ac7d024218f4f3 |
heuristics/algorithms | CVL#700, CVL#702, CVL#701 | AES#5212, DRBG#1579, SHS#3843, RSA#2544, CVL#1298, DRBG#1981, HMAC#3445, ECDSA#1151, ECDSA#1148, DRBG#1593, DRBG#1567, HMAC#3109, AES#4664, AES#4699, SHS#4194, HMAC#3451, SHS#3821, CVL#1687, HMAC#3091, DRBG#1596, HMAC#3453, SHS#4202, CVL#1320, RSA#2789, ECDSA#1150, AES#4698, AES#5203, CVL#1689, CVL#1318, DRBG#1975, AES#5209, CVL#1718, AES#4666, SHS#3807, Triple-DES#2641, DRBG#1979, Triple-DES#2471, ECDSA#1350, SHS#3844, DRBG#1984, SHS#4199, HMAC#3446, CVL#1693, AES#5205, SHS#3842, RSA#2787, DRBG#1578, RSA#2792, SHS#4198, Triple-DES#2483, SHS#3845, HMAC#3090, AES#4644, HMAC#3449, SHS#4195, SHS#3824, AES#4667, AES#4697, SHS#3823, CVL#1312, AES#5207, RSA#2547, SHS#4207, DRBG#1595, HMAC#3112, DRBG#1976, HMAC#3447, HMAC#3107, HMAC#3452, SHS#4200, AES#4700, ECDSA#1144, DRBG#1980, HMAC#3110, Triple-DES#2639, SHS#3847, DRBG#1982, DRBG#1993, DRBG#1977, DRBG#1598, HMAC#3454, DRBG#1983, DRBG#1576, RSA#2786, HMAC#3459, HMAC#3450, AES#4695, HMAC#3108, AES#5208, SHS#4197, SHS#4193, ECDSA#1348, Triple-DES#2638, SHS#3846, AES#4696, Triple-DES#2642, Triple-DES#2481, DRBG#1594, Triple-DES#2484, SHS#4201, ECDSA#1353, DRBG#1597, CVL#1700, HMAC#3088, AES#5227, AES#5211, ECDSA#1347, RSA#2546, CVL#1361, HMAC#3111, AES#5204, AES#5210, HMAC#3076, RSA#2535 |
heuristics/module_processed_references/directly_referencing | 2441 | 3016 |
heuristics/module_processed_references/indirectly_referencing | 2441 | 3016 |
heuristics/module_prunned_references | 2441 | 3016 |
heuristics/policy_processed_references/directly_referencing | 2441 | 3016 |
heuristics/policy_processed_references/indirectly_referencing | 1401, 1398, 1402, 1397, 1399, 1403, 1409, 1405, 1404, 2441, 1406, 1400 | 3016 |
heuristics/policy_prunned_references | 2441 | 3016 |
pdf_data/keywords/fips_cert_id |
|
|
pdf_data/keywords/fips_certlike |
|
|
pdf_data/keywords/eval_facility |
|
|
pdf_data/keywords/symmetric_crypto |
|
|
pdf_data/keywords/asymmetric_crypto |
|
|
pdf_data/keywords/crypto_protocol |
|
|
pdf_data/keywords/randomness |
|
|
pdf_data/keywords/cipher_mode |
|
|
pdf_data/keywords/ecc_curve |
|
|
pdf_data/keywords/crypto_library |
|
|
pdf_data/keywords/standard_id |
|
|
pdf_data/policy_metadata |
|
|
state/policy_pdf_hash | Different | Different |
state/policy_txt_hash | Different | Different |
web_data/caveat | When operated in FIPS mode with module Red Hat Enterprise Linux 7.1 OpenSSL Module validated to FIPS 140-2 under Cert. #2441 operating in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy | When operated in FIPS Mode with module Red Hat Enterprise Linux OpenSSL Module validated to FIPS 140-2 under Cert. #3016 operating in FIPS mode |
web_data/certificate_pdf_url | https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertMay2016.pdf | https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertNov2017.pdf |
web_data/description | The OpenSSH Client cryptographic module provides the client-side component for an SSH protocol version 2 protected communication channel. OpenSSH is the standard SSH implementation and shipped with RHEL 7.1. Its cryptographic mechanisms use the OpenSSL library in FIPS 140-2 mode. | The OpenSSH Server cryptographic module provides the server-side component for an SSH protocol version 2 protected communication channel. OpenSSH is the standard SSH implementation and shipped with RHEL 7. Its cryptographic mechanisms use the OpenSSL library in FIPS 140-2 mode. |
web_data/historical_reason | Moved to historical list due to sunsetting | SP 800-56Arev3 transition |
web_data/mentioned_certs |
|
|
web_data/sw_versions | 4.0 | 5.0 [1], 6.0 [2] |
web_data/tested_conf | Red Hat Enterprise Linux 7.1 running on IBM Power8 Little Endian 8286-41A, Red Hat Enterprise Linux 7.1 running on IBM z13 with CP Assist for Cryptographic Functions (single-user mode), Red Hat Enterprise Linux 7.1 running on ProLiant DL380p Gen8 with PAA, Red Hat Enterprise Linux 7.1 running on ProLiant DL380p Gen8 without PAA | Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 with PAA[1], Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 without PAA [1] (single-user mode), Red Hat Enterprise Linux 7.5 running on Dell PowerEdge R630 with PAA [2], Red Hat Enterprise Linux 7.5 running on Dell PowerEdge R630 without PAA [2] (single-user mode) |
web_data/validation_history |
|
|