This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Forcepoint NGFW Cryptographic Kernel Module	Forcepoint NGFW Cryptographic Kernel Module
cert_id	2276	4835
dgst	131127203c89e821	56dc6c2bd0f7cd6b
heuristics/algorithms	AES#4650, Triple-DES#1731, SHS#2456, Triple-DES#1732, HMAC#1847, HMAC#3078, AES#2914, AES#2919, AES#2918, HMAC#1843, SHS#3809, Triple-DES#2441, AES#2915, AES#2920, SHS#3763, HMAC#1845, HMAC#3036, Triple-DES#2440, HMAC#3037, SHS#2452, AES#4717, Triple-DES#1730, Triple-DES#1733, Triple-DES#1729, Triple-DES#2473, SHS#2454, AES#2921, SHS#2453, SHS#2455, AES#2916, HMAC#1844, SHS#2457, AES#4589, Triple-DES#1734, AES#4587, SHS#3762, AES#2917, HMAC#1846, HMAC#1848	SHA-1A2166, AES-CBCA2166, AES-GCMA2166, HMAC-SHA2-256A2166, HMAC-SHA2-384A2166, SHA2-384A2166, HMAC-SHA2-224A2166, HMAC-SHA2-512A2166, SHA2-256A2166, AES-CFB128A2166, SHA2-224A2166, AES-OFBA2166, HMAC-SHA-1A2166, SHA2-512A2166, AES-ECBA2166
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	-	-
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	1991	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	1991	{}
heuristics/policy_prunned_references	1991	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1729: 1 #1730: 1 #1731: 1 #1732: 1 #1733: 1 #1734: 1 #1843: 1 #1844: 1 #1845: 1 #1846: 1 #1847: 1 #1848: 1 #1991: 1 #2440: 1 #2441: 1 #2452: 1 #2453: 1 #2454: 1 #2455: 1 #2456: 1 #2457: 1 #2473: 1 #2914: 2 #2915: 2 #2916: 2 #2917: 2 #2918: 2 #2919: 2 #2920: 2 #2921: 2 #3036: 1 #3037: 1 #3078: 1 #3762: 1 #3763: 1 #3809: 1 #4587: 2 #4589: 2 #4650: 2 #4717: 2
pdf_data/keywords/fips_security_level	Level: Level 1: 3	Level: Level 1: 3 level 1: 1
pdf_data/keywords/fips_certlike	Certlike: HMAC- SHA-256: 1 HMAC-SHA- 256: 2 HMAC-SHA-1: 2 HMAC-SHA-256: 6 HMAC-SHA-512: 4 HMAC-SHA1: 2 SHA-1: 2 SHA-256: 4 SHA-512: 2	Certlike: # A2166: 1 AES-GCM 128: 2 HMAC- SHA-1: 2 HMAC-SHA-1: 7 HMAC-SHA-1 (96: 1 HMAC-SHA-256: 2 SHA-1: 8 SHA2- 224: 2 SHA2- 256: 4 SHA2- 384: 3 SHA2- 512: 3 SHA2-224: 3 SHA2-256: 6 SHA2-384: 2 SHA2-512: 7
pdf_data/keywords/vendor
pdf_data/keywords/eval_facility	atsec: atsec: 31
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 7 DES: 3DES: TDEA: 1 Triple-DES: 3 DES: DES: 1 constructions: MAC: HMAC: 6 HMAC-SHA-256: 3 HMAC-SHA-512: 2	AES_competition: AES: AES: 13 AES-: 10 constructions: MAC: HMAC: 11 HMAC-SHA-256: 1
pdf_data/keywords/asymmetric_crypto		ECC: ECDSA: ECDSA: 1
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	SHA: SHA1: SHA-1: 2 SHA2: SHA-224: 1 SHA-256: 3 SHA-384: 1 SHA-512: 1	SHA: SHA1: SHA-1: 8
pdf_data/keywords/crypto_scheme	MAC: MAC: 3	MAC: MAC: 8
pdf_data/keywords/crypto_protocol	SSH: SSH: 1	SSH: SSH: 1 VPN: VPN: 1
pdf_data/keywords/randomness
pdf_data/keywords/cipher_mode	CBC: CBC: 5 CFB: CFB: 1 CTR: CTR: 1 ECB: ECB: 5 GCM: GCM: 7 OFB: OFB: 5	CBC: CBC: 3 CFB: CFB: 1 ECB: ECB: 3 GCM: GCM: 5 OFB: OFB: 5
pdf_data/keywords/ecc_curve		NIST: P-521: 2
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140-2: 50 FIPS 180-4: 2 FIPS 197: 2 FIPS 198-1: 2 NIST: SP 800-38D: 2 SP 800-67: 2	FIPS: FIPS 140: 5 FIPS 140-3: 19 FIPS 180-4: 1 FIPS 197: 1 FIPS 198-1: 1 ISO: ISO/IEC 19790:2012: 1 ISO/IEC 24759: 4 ISO/IEC19790:2012: 1 NIST: SP 800-140F: 1 SP 800-38D: 1
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: JF /CreationDate: D:20171020164435-05'00' /Creator: Microsoft® Word 2016 /ModDate: D:20171020164435-05'00' /Producer: Microsoft® Word 2016 /Subject: Forcepoint NGFW Cryptographic Kernel Module /Title: FIPS 140-2 Non-Proprietary Security Policy pdf_file_size_bytes: 656882 pdf_hyperlinks: http://csrc.nist.gov/publications/PubsFIPS.html, http://csrc.nist.gov/groups/STM/cmvp/standards.html, http://csrc.nist.gov/groups/STM/cavp/documents/shs/shaval.html#3809, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/TDES#1732, http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#4589, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/TDES#1733, https://www.forcepoint.com/product/network-security/forcepoint-ngfw, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2919, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1848, https://support.forcepoint.com/Downloads, http://csrc.nist.gov/groups/STM/cavp/documents/mac/hmacval.html#3036, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2918, http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#4587, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/TDES#1734, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1847, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#2453, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#2454, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2915, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#2457, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1846, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1845, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#2455, http://csrc.nist.gov/groups/STM/cavp/documents/mac/hmacval.html#3078, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/TDES#1729, http://csrc.nist.gov/groups/STM/cavp/documents/mac/hmacval.html#3037, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/TDES#1731, http://csrc.nist.gov/groups/STM/cavp/documents/shs/shaval.html#3763, http://csrc.nist.gov/groups/STM/cavp/documents/des/tripledesnewval.html#2441, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#2452, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/TDES#1730, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1844, http://csrc.nist.gov/groups/STM/cavp/documents/des/tripledesnewval.html#2440, http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#4650, http://csrc.nist.gov/groups/STM/cavp/documents/shs/shaval.html#3762, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4717, http://csrc.nist.gov/groups/STM/cavp/documents/des/tripledesnewval.html#2473, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#2456, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2921, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2917, http://csrc.nist.gov/groups/STM/cavp/documents/aes/aesval.html#4717, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1843, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2916, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2920, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#2914 pdf_is_encrypted: False pdf_number_of_pages: 30	/CreationDate: D:20241007172535-05'00' /ModDate: D:20241007172535-05'00' pdf_file_size_bytes: 817153 pdf_hyperlinks: https://urldefense.us/v3/__https:/help.forcepoint.com/docs/ngfw/v610/mgmt/ngfw_6100_pg_a_en-us.pdf__;!!Az_Xe1LHMyBq19w!Kcf1tSD8mfZmkpyi2_nd1hruhBGLkAC0plVIlmneS-rqXnWlqhL6pJEP7jpizXEGIhZSWGfcYRXMwrvGt4G9mfui9yxU$, https://csrc.nist.gov/projects/cryptographic-module-validation-program, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=14674, https://urldefense.us/v3/__https:/help.forcepoint.com/docs/ngfw/v610/install/ngfw_6100_ig_a_en-us.pdf__;!!Az_Xe1LHMyBq19w!Kcf1tSD8mfZmkpyi2_nd1hruhBGLkAC0plVIlmneS-rqXnWlqhL6pJEP7jpizXEGIhZSWGfcYRXMwrvGt4G9mfMUpJGH$, https://support.forcepoint.com/, http://www.forcepoint.com/ pdf_is_encrypted: False pdf_number_of_pages: 33
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	None	When installed, initialized and configured as specified in Section 11 of the Security Policy
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertList0047.pdf
web_data/date_sunset		10.10.2029
web_data/description	The Forcepoint NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the Forcepoint NGFW product.	The Forcepoint NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the Forcepoint NGFW product.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Design Assurance: Level 3, Mitigation of Other Attacks: N/A, , ,	Physical security: N/A, Non-invasive security: N/A, Mitigation of other attacks: N/A, Documentation requirements: N/A, Cryptographic module security policy: N/A
web_data/fw_versions	[]	[]
web_data/historical_reason	Moved to historical list due to sunsetting
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	Forcepoint NGFW Cryptographic Kernel Module	Forcepoint NGFW Cryptographic Kernel Module
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-3
web_data/status	historical	active
web_data/sw_versions	2.0[1] and 2.0.1[2]	3.0
web_data/tested_conf	Debian GNU/Linux 6.0-based distribution running on Forcepoint 1035 with AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint 1065 with AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint 1402 with AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint 3202 with AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint 3202 without AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint 3206 with AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint 3206 without AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint 5206 with AES-NI[1], Debian GNU/Linux 6.0-based distribution running on Forcepoint MIL-320[1], Debian GNU/Linux 9.0-based distribution running on Forcepoint 2105 With AES-NI[2], Debian GNU/Linux 9.0-based distribution running on Forcepoint 325-C2 with AES-NI[2], Debian GNU/Linux 9.0-based distribution running on Forcepoint 3305 with AES-NI[2], Debian GNU/Linux 9.0-based distribution running on Forcepoint 3305 without AES-NI[2], Debian GNU/Linux 9.0-based distribution running on Forcepoint 6205 with AES-NI[2] (single-user mode)	NGFW OS 10 on Linux 4.19 on ESXi 7.0 running on Dell PowerEdge R440 with Intel Xeon Silver 4208 with PAA, NGFW OS 10 on Linux 4.19 running on NGFW 3410 with Intel Xeon Gold 6230N with PAA, NGFW OS 10 on Linux 4.19 running on NGFW N120W with Intel Atom C3338 with PAA, NGFW OS 10 on Linux 4.19 running on NGFW N120W with Intel Atom C3338 without PAA, , , , , , , , , ,
web_data/validation_history	date: 07.11.2014 lab: ATSEC INFORMATION SECURITY CORP validation_type: Initial	date: 11.10.2024 lab: LEIDOS CSTL validation_type: Initial
web_data/vendor	Forcepoint	Forcepoint
web_data/vendor_url	http://www.Forcepoint.com	http://www.forcepoint.com