Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Kasten BoringCrypto
Kasten BoringCrypto
cert_id 4534 4353
dgst 1edbf99ceb74ae07 f8feb05f30d18136
heuristics/algorithms DRBG#A1657, CVL#A1657, KAS#A1657, HMAC#A1657, KTS#A1657, RSA#A1657, AES#A1657, SHS#A1657, Triple-DES#A1657, KAS-SSC#A1657, ECDSA#A1657 CVL#C1063, Triple-DES#C1063, SHS#C1063, DRBG#C1063, RSA#C1063, ECDSA#C1063, KTS#C1063, HMAC#C1063, AES#C1063
pdf_data/keywords/fips_certlike
  • Certlike:
    • AES-256: 1
    • AES-GCM 22: 1
    • HMAC-SHA- 256: 2
    • HMAC-SHA-1: 4
    • HMAC-SHA-256: 4
    • HMAC-SHA-384: 2
    • HMAC-SHA-512: 4
    • HMACSHA- 224: 1
    • PAA 2: 1
    • PAA 4: 1
    • PAA 5: 2
    • PAA 6: 1
    • SHA- 256: 1
    • SHA-1: 4
    • SHA-224: 1
    • SHA-256: 2
    • SHA-384: 1
    • SHA-512: 2
  • Certlike:
    • AES-256: 1
    • HMAC-SHA-1: 4
    • HMAC-SHA-256: 2
    • HMAC-SHA-384: 2
    • HMAC-SHA-512: 4
    • HMACSHA- 224: 1
    • HMACSHA-512: 1
    • SHA- 256: 1
    • SHA-1: 2
    • SHA-224: 1
    • SHA-256: 2
    • SHA-384: 1
    • SHA-512: 2
    • SHA2-224: 1
    • SHA2-256: 1
    • SHA2-384: 1
    • SHA2-512: 1
pdf_data/keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 18
      • AES-256: 1
  • DES:
    • 3DES:
      • TDEA: 4
      • Triple-DES: 16
      • TripleDES: 1
    • DES:
      • DES: 3
  • constructions:
    • MAC:
      • HMAC: 6
      • HMAC-SHA-256: 2
      • HMAC-SHA-384: 1
      • HMAC-SHA-512: 2
  • AES_competition:
    • AES:
      • AES: 17
      • AES-256: 1
  • DES:
    • 3DES:
      • TDEA: 1
      • Triple-DES: 15
    • DES:
      • DES: 3
  • constructions:
    • MAC:
      • CMAC: 1
      • HMAC: 6
      • HMAC-SHA-256: 1
      • HMAC-SHA-384: 1
      • HMAC-SHA-512: 2
pdf_data/keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 2
    • ECDSA:
      • ECDSA: 18
  • FF:
    • DH:
      • DH: 7
      • Diffie-Hellman: 6
  • ECC:
    • ECC:
      • ECC: 1
    • ECDSA:
      • ECDSA: 18
  • FF:
    • DH:
      • DH: 6
      • Diffie-Hellman: 3
pdf_data/keywords/hash_function
  • MD:
    • MD4:
      • MD4: 4
    • MD5:
      • MD5: 5
  • SHA:
    • SHA1:
      • SHA-1: 4
    • SHA2:
      • SHA-224: 1
      • SHA-256: 2
      • SHA-384: 1
      • SHA-512: 2
  • MD:
    • MD4:
      • MD4: 2
    • MD5:
      • MD5: 5
  • SHA:
    • SHA1:
      • SHA-1: 2
    • SHA2:
      • SHA-224: 1
      • SHA-256: 2
      • SHA-384: 1
      • SHA-512: 2
pdf_data/keywords/crypto_scheme
  • KA:
    • Key Agreement: 4
  • MAC:
    • MAC: 1
  • KA:
    • Key Agreement: 3
  • MAC:
    • MAC: 1
pdf_data/keywords/crypto_protocol
  • TLS:
    • SSL:
      • SSL: 1
    • TLS:
      • TLS: 10
      • TLS 1.0: 1
      • TLS v1.2: 1
  • TLS:
    • TLS:
      • TLS: 10
      • TLS 1.0: 1
pdf_data/keywords/randomness
  • PRNG:
    • DRBG: 6
  • PRNG:
    • DRBG: 8
pdf_data/keywords/cipher_mode
  • CBC:
    • CBC: 3
  • CCM:
    • CCM: 1
  • CFB:
    • CFB: 4
  • CTR:
    • CTR: 2
  • ECB:
    • ECB: 2
  • GCM:
    • GCM: 4
  • OFB:
    • OFB: 4
  • CBC:
    • CBC: 3
  • CFB:
    • CFB: 3
  • CTR:
    • CTR: 2
  • ECB:
    • ECB: 2
  • GCM:
    • GCM: 4
  • OFB:
    • OFB: 3
pdf_data/keywords/ecc_curve
  • NIST:
    • Curve P-256: 1
    • P-224: 6
    • P-256: 9
    • P-384: 6
    • P-521: 4
  • NIST:
    • P-224: 4
    • P-256: 6
    • P-384: 4
    • P-521: 2
pdf_data/keywords/crypto_library
  • BoringSSL:
    • BoringSSL: 2
  • BoringSSL:
    • BoringSSL: 3
pdf_data/keywords/standard_id
  • FIPS:
    • FIPS 140: 4
    • FIPS 140-2: 22
    • FIPS 180-4: 2
    • FIPS 186-4: 3
    • FIPS 197: 2
    • FIPS 198-1: 2
    • FIPS PUB 140-2: 1
  • NIST:
    • NIST SP 800-131A: 1
    • NIST SP 800-133: 1
    • NIST SP 800-38D: 1
    • NIST SP 800-52: 1
    • NIST SP 800-90A: 1
    • SP 800-133: 1
    • SP 800-135: 3
    • SP 800-38A: 2
    • SP 800-38C: 1
    • SP 800-38D: 2
    • SP 800-38F: 2
    • SP 800-67: 2
    • SP 800-90A: 2
  • RFC:
    • RFC 2313: 1
    • RFC 5246: 2
    • RFC 5288: 1
  • FIPS:
    • FIPS 140: 4
    • FIPS 140-2: 20
    • FIPS 180-4: 2
    • FIPS 186-4: 3
    • FIPS 197: 2
    • FIPS 198-1: 2
    • FIPS PUB 140-2: 1
  • NIST:
    • NIST SP 800-131A: 1
    • NIST SP 800-133: 1
    • NIST SP 800-38D: 1
    • NIST SP 800-52: 1
    • NIST SP 800-90A: 1
    • SP 800-133: 2
    • SP 800-135: 2
    • SP 800-38A: 2
    • SP 800-38D: 2
    • SP 800-38F: 3
    • SP 800-52: 1
    • SP 800-56A: 1
    • SP 800-67: 2
    • SP 800-90A: 2
  • RFC:
    • RFC 5246: 2
    • RFC 5288: 1
pdf_data/policy_metadata
state/policy_pdf_hash Different Different
state/policy_txt_hash Different Different
web_data/caveat When operated in FIPS mode. No assurance of the minimum strength of generated keys When installed, initialized and configured as specified in Section 12.1 of the Security Policy and operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
web_data/certificate_pdf_url https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2022_051222_0640_signed.pdf
web_data/date_sunset 21.09.2026 12.07.2025
web_data/sw_versions 853ca1ea1168dff08011e5d42d94609cc0ca2e27 ae223d6138807a13006342edfeef32e813246b39
web_data/tested_conf Debian Linux 5.10.40 (Rodete) running on HPE Z620 with Intel Xeon E5-2680 with PAA, Debian Linux 5.10.40 (Rodete) running on HPE Z620 with Intel Xeon E5-2680 without PAA, Google prodimage with Linux 4.15.0 running on Ampere Altra SoC with ARM Neoverse N1 with PAA, Google prodimage with Linux 4.15.0 running on Ampere Altra SoC with ARM Neoverse N1 without PAA (single-user mode), Google prodimage with Linux 4.15.0 running on Google Arcadia-Rome with AMD Rome with PAA, Google prodimage with Linux 4.15.0 running on Google Arcadia-Rome with AMD Rome without PAA Debian Linux 4.19.37 (Rodete) running on an HPE Z620 with Intel Xeon E5-2680 without PAA, Debian Linux 4.19.37 (Rodete) running on HPE Z620 with Intel Xeon E5-2680 with PAA, Ubuntu Linux 18.04 running on a Google Arcadia-Rome with AMD Rome with PAA, Ubuntu Linux 18.04 running on a Google Arcadia-Rome with AMD Rome without PAA, Ubuntu Linux 18.04 running on a Zaius P9 with POWER9 with PAA, Ubuntu Linux 18.04 running on a Zaius P9 with POWER9 without PAA (single-user mode)
web_data/validation_history
  • date: 13.06.2023
  • lab: LEIDOS CSTL
  • validation_type: Initial
  • date: 03.11.2022
  • lab: LEIDOS CSTL
  • validation_type: Initial