| cert_id |
3687 |
4311 |
| dgst |
2fbf317387d52ebc |
94acb90928ab3cde |
| heuristics/algorithms |
Triple-DES#2494, CVL#1344, SHS#3849, SHA-3#24, KTS#2494, DRBG#1600, CVL#1345, AES#4702, CVL#1343, ECDSA#1160, RSA#2562, DSA#1244, CVL#1342, HMAC#3114, KBKDF#145 |
SHA-3-Customized#A2720, SHA3#A2720, AES#A2720, SHS#A2720, HMAC#A2720, KBKDF#A2720, CVL#A2720, ECDSA#A2720, Triple-DES#A2720, RSA#A2720, DSA#A2720, KTS#A2720, DRBG#A2720 |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/extracted_versions |
- |
- |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/module_processed_references/directly_referenced_by |
{} |
{} |
| heuristics/module_processed_references/directly_referencing |
3080 |
{} |
| heuristics/module_processed_references/indirectly_referenced_by |
{} |
{} |
| heuristics/module_processed_references/indirectly_referencing |
3080 |
{} |
| heuristics/module_prunned_references |
3080 |
{} |
| heuristics/policy_processed_references/directly_referenced_by |
{} |
{} |
| heuristics/policy_processed_references/directly_referencing |
{} |
{} |
| heuristics/policy_processed_references/indirectly_referenced_by |
{} |
{} |
| heuristics/policy_processed_references/indirectly_referencing |
{} |
{} |
| heuristics/policy_prunned_references |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| pdf_data/keywords/fips_cert_id |
- Cert:
- #1: 1
- #1342: 1
- #1344: 1
- #1600: 1
- #3114: 1
|
|
| pdf_data/keywords/fips_security_level |
|
|
| pdf_data/keywords/fips_certlike |
- Certlike:
- AES 128, 192: 2
- AES-128: 1
- AES-192: 1
- AES-256: 1
- CVL #1342: 1
- CVL #1344: 1
- DRBG #1600: 1
- DRBG 112: 1
- DSA3: 1
- HMAC #3114: 2
- HMAC SHA-512/224: 1
- HMAC-SHA-256: 2
- HMAC-SHA256: 2
- PKCS #1: 2
- PKCS#1: 4
- PKCS#12: 4
- PKCS#5: 4
- PKCS1: 2
- SHA- 1: 1
- SHA- 224: 1
- SHA-1: 8
- SHA-2: 2
- SHA-224: 5
- SHA-256: 6
- SHA-3: 3
- SHA-384: 6
- SHA-512: 6
- SHA3-224: 2
- SHA3-256: 2
- SHA3-384: 2
- SHA3-512: 2
|
- Certlike:
- AES (128: 1
- AES9: 1
- DRBG 112: 1
- DRBG 15: 1
- DRBG14: 1
- DSA3: 1
- Diffie-Hellman (160: 1
- Diffie-Hellman (2048: 1
- HMAC-SHA-1: 2
- HMAC-SHA-224: 2
- HMAC-SHA-256: 8
- HMAC-SHA-384: 2
- HMAC-SHA-512: 2
- HMAC-SHA-512/224: 2
- HMAC-SHA-512/256: 2
- PKCS 1: 6
- PKCS#1: 4
- PKCS#12: 4
- PKCS#5: 4
- SHA- 224: 1
- SHA- 256: 1
- SHA-1: 9
- SHA-2: 3
- SHA-224: 3
- SHA-256: 5
- SHA-3: 5
- SHA-384: 4
- SHA-512: 6
- SHA-5128: 1
- SHA3: 1
- SHA3-224: 1
- SHA3-256: 2
- SHA3-384: 1
- SHA3-512: 1
|
| pdf_data/keywords/vendor |
|
|
| pdf_data/keywords/eval_facility |
|
|
| pdf_data/keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 28
- AES-: 1
- AES-128: 1
- AES-192: 1
- AES-256: 1
- CAST:
- RC:
- Serpent:
- Twofish:
- DES:
- 3DES:
- TDEA: 6
- TDES: 1
- Triple-DES: 24
- TripleDES: 1
- DES:
- constructions:
- MAC:
- CBC-MAC: 1
- CMAC: 5
- HMAC: 12
- HMAC-SHA-256: 1
- miscellaneous:
- Blowfish:
- Camellia:
- IDEA:
- SEED:
|
- AES_competition:
- AES:
- CAST:
- RC:
- Serpent:
- Twofish:
- DES:
- 3DES:
- TDEA: 6
- TDES: 2
- Triple-DES: 31
- DES:
- constructions:
- MAC:
- CBC-MAC: 1
- CMAC: 9
- HMAC: 16
- HMAC-SHA-224: 1
- HMAC-SHA-256: 4
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
- KMAC: 1
- miscellaneous:
- Blowfish:
- Camellia:
- IDEA:
- SEED:
|
| pdf_data/keywords/asymmetric_crypto |
|
|
| pdf_data/keywords/pq_crypto |
|
|
| pdf_data/keywords/hash_function |
- MD:
- PBKDF:
- RIPEMD:
- RIPEMD: 1
- RIPEMD-160: 1
- RIPEMD128: 1
- RIPEMD256: 1
- RIPEMD320: 1
- SHA:
- SHA1:
- SHA2:
- SHA-2: 2
- SHA-224: 5
- SHA-256: 6
- SHA-384: 6
- SHA-512: 6
- SHA3:
- SHA-3: 3
- SHA3-224: 2
- SHA3-256: 2
- SHA3-384: 2
- SHA3-512: 2
- SHAKE:
|
- MD:
- PBKDF:
- RIPEMD:
- RIPEMD: 1
- RIPEMD128: 1
- RIPEMD160: 1
- RIPEMD256: 1
- RIPEMD320: 1
- SHA:
- SHA1:
- SHA2:
- SHA-2: 3
- SHA-224: 3
- SHA-256: 5
- SHA-384: 4
- SHA-512: 6
- SHA3:
- SHA-3: 5
- SHA3: 1
- SHA3-224: 1
- SHA3-256: 2
- SHA3-384: 1
- SHA3-512: 1
- SHAKE:
- scrypt:
|
| pdf_data/keywords/crypto_scheme |
|
|
| pdf_data/keywords/crypto_protocol |
|
|
| pdf_data/keywords/randomness |
|
|
| pdf_data/keywords/cipher_mode |
- CBC:
- CCM:
- CFB:
- CTR:
- ECB:
- GCM:
- OFB:
|
- CBC:
- CCM:
- CFB:
- CTR:
- ECB:
- GCM:
- OFB:
|
| pdf_data/keywords/ecc_curve |
- NIST:
- B-283: 2
- B-409: 2
- B-571: 2
- K-233: 1
- K-283: 2
- K-409: 2
- K-571: 1
- P-224: 6
- P-256: 8
- P-384: 6
- P-521: 4
|
- Edwards:
- NIST:
- B-163: 1
- B-233: 5
- B-283: 5
- B-409: 4
- B-571: 5
- K-163: 1
- K-233: 5
- K-283: 5
- K-409: 5
- K-571: 4
- P-192: 2
- P-224: 10
- P-256: 12
- P-384: 10
- P-521: 8
|
| pdf_data/keywords/crypto_engine |
|
|
| pdf_data/keywords/tls_cipher_suite |
|
|
| pdf_data/keywords/crypto_library |
|
|
| pdf_data/keywords/vulnerability |
|
|
| pdf_data/keywords/side_channel_analysis |
- SCA:
- timing attack: 1
- timing attacks: 1
|
- SCA:
- timing attack: 1
- timing attacks: 1
|
| pdf_data/keywords/device_model |
|
|
| pdf_data/keywords/tee_name |
|
|
| pdf_data/keywords/os_name |
|
|
| pdf_data/keywords/cplc_data |
|
|
| pdf_data/keywords/ic_data_group |
|
|
| pdf_data/keywords/standard_id |
- FIPS:
- FIPS 140: 6
- FIPS 140-2: 13
- FIPS 180-4: 2
- FIPS 186-3: 1
- FIPS 186-4: 10
- FIPS 197: 2
- FIPS 198-1: 3
- FIPS 202: 2
- FIPS PUB 140-2: 1
- NIST:
- SP 800-108: 6
- SP 800-132: 5
- SP 800-133: 1
- SP 800-135: 7
- SP 800-20: 1
- SP 800-38A: 5
- SP 800-38B: 2
- SP 800-38C: 2
- SP 800-38D: 5
- SP 800-38F: 4
- SP 800-56A: 5
- SP 800-56B: 7
- SP 800-56C: 3
- SP 800-67: 5
- SP 800-89: 1
- SP 800-90A: 3
- PKCS:
- PKCS #1: 1
- PKCS#1: 2
- PKCS#12: 2
- PKCS#5: 2
- PKCS1: 1
|
- FIPS:
- FIPS 140: 8
- FIPS 140-2: 15
- FIPS 180-4: 2
- FIPS 186-2: 2
- FIPS 186-4: 10
- FIPS 197: 5
- FIPS 198-1: 3
- FIPS 202: 2
- FIPS PUB 140-2: 1
- NIST:
- NIST SP 800-90C: 1
- SP 800-108: 9
- SP 800-132: 5
- SP 800-133: 2
- SP 800-135: 7
- SP 800-185: 2
- SP 800-38A: 7
- SP 800-38B: 3
- SP 800-38C: 4
- SP 800-38D: 5
- SP 800-38F: 5
- SP 800-56A: 2
- SP 800-56B: 9
- SP 800-56C: 7
- SP 800-67: 5
- SP 800-89: 1
- SP 800-90A: 5
- PKCS:
- PKCS 1: 3
- PKCS#1: 2
- PKCS#12: 2
- PKCS#5: 2
- RFC:
|
| pdf_data/keywords/javacard_version |
|
|
| pdf_data/keywords/javacard_api_const |
|
|
| pdf_data/keywords/javacard_packages |
- com:
- com.safelogic.cryptocomply.fips: 1
|
- com:
- com.safelogic.cryptocomply.fips: 1
|
| pdf_data/keywords/certification_process |
|
|
| pdf_data/policy_metadata |
- /CreationDate: D:20200922222123Z00'00'
- /Creator: Word
- /ModDate: D:20200922222123Z00'00'
- /Producer: macOS Version 10.15.5 (Build 19F101) Quartz PDFContext
- /Title: Microsoft Word - CGI Java FIPS 140 Security Policy v1-1.docx
- pdf_file_size_bytes: 899833
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 33
|
|
| state/module_download_ok |
True |
True |
| state/module_extract_ok |
True |
True |
| state/policy_convert_garbage |
False |
False |
| state/policy_convert_ok |
True |
True |
| state/policy_download_ok |
True |
True |
| state/policy_extract_ok |
True |
True |
| state/policy_pdf_hash |
Different |
Different |
| state/policy_txt_hash |
Different |
Different |
| web_data/caveat |
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. No assurance of the minimum strength of generated keys. This validation entry is a non-security relevant modification to Cert. #3080 |
When installed, initialized and configured as specified in the Security Policy Section 3 and operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy |
| web_data/certificate_pdf_url |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2020_030820_0656_signed.pdf |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2022_031022_0652_signed.pdf |
| web_data/date_sunset |
|
22.02.2025 |
| web_data/description |
CGI Momentum™ Java Cryptographic Module implements a wide array of cryptographic algorithms including Suite B algorithms. CGI Momentum™ product suite uses this module as Java JCA/JCE provider thus providing data at rest encryption, transport level encryption, PKI key management, digital signature generation and other crypto operations through a trusted and verified implementation. |
CGI Momentum™ Java Cryptographic Module implements a wide array of cryptographic algorithms including Suite B algorithms. CGI Momentum™ product suite uses this module as Java JCA/JCE provider thus providing data at rest encryption, transport level encryption, PKI key management, digital signature generation and other crypto operations through a trusted and verified implementation. |
| web_data/embodiment |
Multi-Chip Stand Alone |
Multi-Chip Stand Alone |
| web_data/exceptions |
Physical Security: N/A |
Physical Security: N/A |
| web_data/fw_versions |
[] |
[] |
| web_data/historical_reason |
Moved to historical list due to sunsetting |
|
| web_data/hw_versions |
[] |
[] |
| web_data/level |
1 |
1 |
| web_data/mentioned_certs |
|
|
| web_data/module_name |
CGI Momentum™ Java Cryptographic Module |
CGI Momentum™ Java Cryptographic Module |
| web_data/module_type |
Software |
Software |
| web_data/revoked_link |
None |
None |
| web_data/revoked_reason |
None |
None |
| web_data/standard |
FIPS 140-2 |
FIPS 140-2 |
| web_data/status |
historical |
active |
| web_data/sw_versions |
3.0.1 |
3.0.2.1 |
| web_data/tested_conf |
CentOS 6 and OpenJDK 1.7 running on HP ProLiant DL360 G7 Server using an Intel Xeon X5670 (single-user mode) |
VMware Photon OS 2.0 with JDK 11 on VMware ESXi 6.7 running on Dell PowerEdge R830 with Intel Xeon E5 (single-user mode) |
| web_data/validation_history |
- date: 20.07.2020
- lab: CYGNACOM SOLUTIONS INC
- validation_type: Initial
|
- date: 26.09.2022
- lab: LEIDOS CSTL
- validation_type: Initial
|
| web_data/vendor |
CGI Federal Inc. |
CGI Federal Inc. |
| web_data/vendor_url |
http://www.cgifederal.com |
http://www.cgifederal.com |