This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	nShield 4000 [1], nShield 2000 [2], nShield 2000 for netHSM [3], nShield 800 [4], nShield 500 [5], nShield 500 for netHSM [6] and nShield Plus [7]	nShield 4000 [1], nShield 2000 [2], nShield 2000 for netHSM [3], nShield 800 [4], nShield 500 [5], nShield 500 for netHSM [6] and nShield Plus [7]
cert_id	670	669
dgst	172e1676eda470ed	bf31e6128301d31b
heuristics/algorithms	Triple-DES MAC#339, HMAC#68, RSA#68, ECDSA#2, DSA#136, RNG#91, AES#258, SHS#333, Triple-DES#339	Triple-DES MAC#339, HMAC#68, RSA#68, ECDSA#2, DSA#136, RNG#91, AES#258, SHS#333, Triple-DES#339
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	2.22.34, 2.22.6, 2.22.43	2.22.34, 2.22.6, 2.22.43
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #136: 1 #2: 1 #258: 1 #333: 1 #339: 2 #68: 2 #8: 1 #91: 1	Cert: #136: 1 #2: 1 #258: 1 #333: 1 #339: 2 #68: 2 #8: 1 #91: 1
pdf_data/keywords/fips_security_level	Level: Level 2: 6 Level 3: 2 level 2: 26 level 3: 21	Level: Level 2: 6 Level 3: 5 level 2: 23 level 3: 23
pdf_data/keywords/fips_certlike	Certlike: AES Certificate #258: 1 DES Certificate #339: 1 DSA Certificate #136: 1 HMAC SHA- 512 Certificate #68: 1 HMAC SHA-1: 1 HMAC SHA-224: 1 HMAC SHA-256: 1 HMAC SHA-384: 1 PKCS #8: 2 PKCS8: 4 SHA- 512 Certificate #68: 1 SHA-1: 25 SHA-224: 2 SHA-256: 3 SHA-384: 3 SHA-512: 1 SHA-512 Certificate #333: 1	Certlike: AES Certificate #258: 1 DES Certificate #339: 1 DSA Certificate #136: 1 HMAC SHA- 512 Certificate #68: 1 HMAC SHA-1: 1 HMAC SHA-224: 1 HMAC SHA-256: 1 HMAC SHA-384: 1 PKCS #8: 2 PKCS8: 4 SHA- 512 Certificate #68: 1 SHA-1: 25 SHA-224: 2 SHA-256: 3 SHA-384: 3 SHA-512: 1 SHA-512 Certificate #333: 1
pdf_data/keywords/vendor	Broadcom: Broadcom: 8	Broadcom: Broadcom: 7
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 36 CAST: CAST: 2 RC: RC4: 1 DES: 3DES: Triple-DES: 5 DES: DES: 43 constructions: MAC: HMAC: 13 miscellaneous: SEED: SEED: 1	AES_competition: AES: AES: 37 CAST: CAST: 2 RC: RC4: 1 DES: 3DES: Triple-DES: 6 DES: DES: 43 constructions: MAC: HMAC: 13 miscellaneous: SEED: SEED: 1
pdf_data/keywords/asymmetric_crypto	ECC: ECDH: ECDH: 3 ECDSA: ECDSA: 6 FF: DH: DH: 1 Diffie-Hellman: 5 DSA: DSA: 33	ECC: ECDH: ECDH: 3 ECDSA: ECDSA: 6 FF: DH: DH: 1 Diffie-Hellman: 5 DSA: DSA: 33
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	MD: MD5: MD5: 2 RIPEMD: RIPEMD: 2 RIPEMD160: 1 SHA: SHA1: SHA-1: 25 SHA2: SHA-224: 2 SHA-256: 3 SHA-384: 3 SHA-512: 2	MD: MD5: MD5: 2 RIPEMD: RIPEMD: 2 RIPEMD160: 1 SHA: SHA1: SHA-1: 25 SHA2: SHA-224: 2 SHA-256: 3 SHA-384: 3 SHA-512: 2
pdf_data/keywords/crypto_scheme	KEX: Key Exchange: 2 MAC: MAC: 11	KEX: Key Exchange: 2 MAC: MAC: 11
pdf_data/keywords/crypto_protocol	TLS: SSL: SSL: 1 TLS: TLS: 5	TLS: SSL: SSL: 1 TLS: TLS: 5
pdf_data/keywords/randomness	RNG: RNG: 3	RNG: RNG: 3
pdf_data/keywords/cipher_mode	CBC: CBC: 2 ECB: ECB: 1	CBC: CBC: 2 ECB: ECB: 1
pdf_data/keywords/ecc_curve
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/device_model
pdf_data/keywords/tee_name	IBM: Secure Execution: 1	IBM: Secure Execution: 1
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140: 1 FIPS 140-2: 17 FIPS 186-2: 2 FIPS PUB 140-2: 2 PKCS: PKCS #8: 1 PKCS8: 2 RFC: RFC2144: 1 RFC2612: 1	FIPS: FIPS 140: 2 FIPS 140-2: 20 FIPS 186-2: 2 FIPS PUB 140-2: 2 PKCS: PKCS #8: 1 PKCS8: 2 RFC: RFC2144: 1 RFC2612: 1
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: nCipher /CreationDate: D:20080619203340Z00'00' /Creator: FrameMaker 7.0 /ModDate: D:20080619203343Z00'00' /Producer: Acrobat Distiller 5.0.5 (Windows) /Title: nShield Security Policy pdf_file_size_bytes: 346711 pdf_hyperlinks: http://active.ncipher.com/documentation/, http://www.ncipher.com/support, http://www.ncipher.com pdf_is_encrypted: False pdf_number_of_pages: 55	/Author: nCipher /CreationDate: D:20080619203753Z00'00' /Creator: FrameMaker 7.0 /ModDate: D:20080619203756Z00'00' /Producer: Acrobat Distiller 5.0.5 (Windows) /Title: nShield Security Policy pdf_file_size_bytes: 347505 pdf_hyperlinks: http://active.ncipher.com/documentation/, http://www.ncipher.com/support, http://www.ncipher.com pdf_is_encrypted: False pdf_number_of_pages: 55
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode and initialized to Overall Level 2 per Security Policy	When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt670.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt669.pdf
web_data/date_sunset
web_data/description	The nCipher modules: nCipher 4000 PCI, nShield 800 PCI, and nShield Plus PCI family of secure e-commerce HSM's are multi-tasking hardware modules that is optimized for performing modular arithmetic on very large integers. The nCipher modules are FIPS 140-2 level 2 embedded devices. The units are identical in operation and only vary in the processing speed.	The nCipher modules: nCipher 4000 PCI, nShield 800 PCI, and nShield Plus PCI family of secure e-commerce HSM's are multi-tasking hardware modules that is optimized for performing modular arithmetic on very large integers. The nCipher modules are FIPS 140-2 level 3 embedded devices. The units are identical in operation and only vary in the processing speed.
web_data/embodiment	Multi-Chip Embedded	Multi-Chip Embedded
web_data/exceptions	Roles, Services, and Authentication: Level 3, Physical Security: Level 3 +EFP/EFT, Cryptographic Key Management: Level 3, EMI/EMC: Level 3, Design Assurance: Level 3	Physical Security: Level 3 +EFP/EFT, None, None, None, None
web_data/fw_versions	2, ., 2, 2, ., 6, -, 2, ,, , 2, ., 2, 2, ., 3, 4, -, 2, , a, n, d, , 2, ., 2, 2, ., 4, 3, -, 2	2, ., 2, 2, ., 6, -, 3, ,, , 2, ., 2, 2, ., 3, 4, -, 3, , a, n, d, , 2, ., 2, 2, ., 4, 3, -, 3
web_data/historical_reason	RNG SP800-131A Revision 1 Transition	RNG SP800-131A Revision 1 Transition
web_data/hw_versions	n, C, 4, 0, 3, 3, P, -, 4, K, 0, , [, 1, ], ,, , n, C, 4, 0, 3, 3, P, -, 2, K, 0, , [, 2, ], ,, , n, C, 4, 0, 3, 3, P, -, 2, K, 0, N, , [, 3, ], ,, , n, C, 4, 0, 3, 3, P, -, 8, 0, 0, , [, 4, ], ,, , n, C, 4, 1, 3, 3, P, -, 5, 0, 0, , [, 5, ], ,, , n, C, 4, 1, 3, 3, P, -, 5, 0, 0, N, , [, 6, ], , a, n, d, , n, C, 4, 0, 3, 3, P, -, 5, 0, , [, 7, ], ,, , B, u, i, l, d, , S, t, a, n, d, a, r, d, s, , L, , &, , N	n, C, 4, 0, 3, 3, P, -, 4, K, 0, , [, 1, ], ,, , n, C, 4, 0, 3, 3, P, -, 2, K, 0, , [, 2, ], ,, , n, C, 4, 0, 3, 3, P, -, 2, K, 0, N, , [, 3, ], ,, , n, C, 4, 0, 3, 3, P, -, 8, 0, 0, , [, 4, ], ,, , n, C, 4, 1, 3, 3, P, -, 5, 0, 0, , [, 5, ], ,, , n, C, 4, 1, 3, 3, P, -, 5, 0, 0, N, , [, 6, ], , a, n, d, , n, C, 4, 0, 3, 3, P, -, 5, 0, , [, 7, ], ,, , B, u, i, l, d, , S, t, a, n, d, a, r, d, s, , L, , &, , N
web_data/level	2	3
web_data/mentioned_certs
web_data/module_name	nShield 4000 [1], nShield 2000 [2], nShield 2000 for netHSM [3], nShield 800 [4], nShield 500 [5], nShield 500 for netHSM [6] and nShield Plus [7]	nShield 4000 [1], nShield 2000 [2], nShield 2000 for netHSM [3], nShield 800 [4], nShield 500 [5], nShield 500 for netHSM [6] and nShield Plus [7]
web_data/module_type	Hardware	Hardware
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	historical	historical
web_data/sw_versions	None	None
web_data/tested_conf	[]	[]
web_data/validation_history	date: 11.05.2006 lab: DOMUS validation_type: Initial date: 14.06.2006 lab: validation_type: Update date: 20.12.2006 lab: validation_type: Update date: 29.04.2008 lab: validation_type: Update	date: 11.05.2006 lab: DOMUS validation_type: Initial date: 14.06.2006 lab: validation_type: Update date: 20.12.2006 lab: validation_type: Update date: 24.06.2008 lab: validation_type: Update
web_data/vendor	nCipher Corporation Ltd.	nCipher Corporation Ltd.
web_data/vendor_url	http://www.ncipher.com/cryptographic_hardware/hard	http://www.ncipher.com/cryptographic_hardware/hard