This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	CyberArk Cryptographic Module	CyberArk Cryptographic Module
cert_id	4949	4377
dgst	30ca4f2a75646c34	6d472e1b4030a07e
heuristics/algorithms	HMAC#A4873, RSA#A4873, SHS#A4873, DSA#A4873, Triple-DES#A4873, DRBG#A4873, AES#A4873, ECDSA#A4873	DSA#A2305, Triple-DES#A2305, SHS#A2305, HMAC#A2305, DRBG#A2305, ECDSA#A2305, RSA#A2305, AES#A2305
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	-	-
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1: 1	Cert: #1: 1
pdf_data/keywords/fips_security_level	Level: Level 1: 2	Level: Level 1: 2
pdf_data/keywords/fips_certlike	Certlike: AES GCM 256: 2 HMAC SHA- 224: 1 HMAC SHA- 256: 1 HMAC SHA-1: 1 HMAC SHA-384: 1 HMAC SHA-512: 1 HMAC-SHA-1: 12 HMAC-SHA-224: 2 HMAC-SHA-256: 4 HMAC-SHA-384: 2 HMAC-SHA-512: 4 PKCS #1: 2 PKCS#1: 4 PKCS1: 6 RSA 2048: 2 SHA- 224: 1 SHA- 256: 2 SHA- 512: 1 SHA-1: 23 SHA-1 2: 1 SHA-2: 11 SHA-224: 2 SHA-256: 3 SHA-384: 4 SHA-512: 4 SHS3: 1	Certlike: AES GCM 256: 2 HMAC SHA- 224: 1 HMAC SHA- 256: 1 HMAC SHA-1: 1 HMAC SHA-384: 1 HMAC SHA-512: 1 HMAC-SHA-1: 12 HMAC-SHA-224: 2 HMAC-SHA-256: 4 HMAC-SHA-384: 2 HMAC-SHA-512: 4 PKCS #1: 2 PKCS#1: 4 PKCS1: 6 RSA 2048: 2 SHA- 224: 1 SHA- 256: 1 SHA- 512: 1 SHA-1: 23 SHA-1 2: 1 SHA-2: 11 SHA-224: 2 SHA-256: 4 SHA-384: 4 SHA-512: 4 SHS3: 1
pdf_data/keywords/vendor
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 20 DES: 3DES: TDEA: 1 Triple-DES: 11 DES: DES: 2 constructions: MAC: CMAC: 9 HMAC: 17 HMAC-SHA-224: 2 HMAC-SHA-256: 1 HMAC-SHA-384: 2 HMAC-SHA-512: 1	AES_competition: AES: AES: 20 DES: 3DES: TDEA: 1 Triple-DES: 10 DES: DES: 4 constructions: MAC: CMAC: 9 HMAC: 17 HMAC-SHA-224: 2 HMAC-SHA-256: 1 HMAC-SHA-384: 2 HMAC-SHA-512: 1
pdf_data/keywords/asymmetric_crypto	ECC: ECC: ECC: 1 ECDSA: ECDSA: 13 FF: DH: DH: 1 Diffie-Hellman: 1 DSA: DSA: 13 RSA: RSA 2048: 2	ECC: ECC: ECC: 1 ECDSA: ECDSA: 13 FF: DH: DH: 1 Diffie-Hellman: 1 DSA: DSA: 13 RSA: RSA 2048: 2
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	SHA: SHA1: SHA-1: 24 SHA2: SHA-2: 11 SHA-224: 2 SHA-256: 3 SHA-384: 4 SHA-512: 4	SHA: SHA1: SHA-1: 24 SHA2: SHA-2: 11 SHA-224: 2 SHA-256: 4 SHA-384: 4 SHA-512: 4
pdf_data/keywords/crypto_scheme	MAC: MAC: 1	MAC: MAC: 1
pdf_data/keywords/crypto_protocol	TLS: TLS: TLS: 3	TLS: SSL: SSL: 1 TLS: TLS: 3
pdf_data/keywords/randomness	DUAL_EC: DUAL_EC_DRBG: 1 PRNG: DRBG: 15 RNG: RNG: 3	DUAL_EC: DUAL_EC_DRBG: 1 PRNG: DRBG: 15 PRNG: 1 RNG: RNG: 3
pdf_data/keywords/cipher_mode	CBC: CBC: 1 CCM: CCM: 4 CTR: CTR: 2 ECB: ECB: 5 GCM: GCM: 7 OFB: OFB: 1 XTS: XTS: 1	CBC: CBC: 1 CCM: CCM: 4 CTR: CTR: 2 ECB: ECB: 5 GCM: GCM: 7 OFB: OFB: 1 XTS: XTS: 1
pdf_data/keywords/ecc_curve	NIST: B-163: 3 B-233: 3 B-283: 7 B-409: 7 B-571: 7 K-163: 3 K-233: 4 K-283: 7 K-409: 7 K-571: 7 P-192: 10 P-224: 12 P-256: 14 P-384: 14 P-521: 14	NIST: B-163: 3 B-233: 5 B-283: 7 B-409: 7 B-571: 7 K-163: 3 K-233: 6 K-283: 7 K-409: 7 K-571: 7 P-192: 10 P-224: 12 P-256: 14 P-384: 14 P-521: 14
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140: 6 FIPS 140-2: 21 FIPS 180-4: 2 FIPS 186-2: 6 FIPS 186-4: 7 FIPS 197: 2 FIPS 198-1: 2 FIPS PUB 140-2: 1 NIST: NIST SP 800-131A: 2 SP 800-133: 1 SP 800-38: 1 SP 800-38B: 1 SP 800-38C: 1 SP 800-38D: 1 SP 800-67: 2 SP 800-90A: 3 PKCS: PKCS #1: 1 PKCS#1: 2 PKCS1: 3 RFC: RFC 5246: 1 RFC5288: 2 RFC5289: 2	FIPS: FIPS 140: 6 FIPS 140-2: 20 FIPS 180-4: 2 FIPS 186-2: 6 FIPS 186-4: 7 FIPS 197: 2 FIPS 198-1: 2 FIPS PUB 140-2: 1 NIST: NIST SP 800-131A: 2 SP 800-133: 1 SP 800-38: 1 SP 800-38B: 1 SP 800-38C: 1 SP 800-38D: 1 SP 800-67: 2 SP 800-90A: 3 PKCS: PKCS #1: 1 PKCS#1: 2 PKCS1: 3 RFC: RFC 5246: 1 RFC5288: 2 RFC5289: 2
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: SafeLogic /CreationDate: D:20241113143927-05'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20241113143927-05'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: MODULE NAME /Title: Security Policy pdf_file_size_bytes: 626729 pdf_hyperlinks: http://www.cyberark.com/, http://www.safelogic.com/, https://csrc.nist.gov/projects/cryptographic-module-validation-program pdf_is_encrypted: False pdf_number_of_pages: 25	/Author: SafeLogic /CreationDate: D:20221101115443-07'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20221101115443-07'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: CyberArk Cryptographic Module /Title: Security Policy pdf_file_size_bytes: 606414 pdf_hyperlinks: https://www.cyberark.com/, http://www.safelogic.com/, https://csrc.nist.gov/projects/cryptographic-module-validation-program pdf_is_encrypted: False pdf_number_of_pages: 25
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode. The module makes no assurance of the minimum strength of random strings and generated keys.	When operated in FIPS mode. No assurance of the minimum strength of generated keys
web_data/certificate_pdf_url		https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2022_051222_0640_signed.pdf
web_data/date_sunset	08.03.2026	15.10.2025
web_data/description	CyberArk Cryptographic Module is a standards-based cryptographic engine for servers and appliances. The module delivers core cryptographic functions to server platforms and features robust algorithm support, including Suite B algorithms. CyberArk Cryptographic Module offloads secure key management, data integrity, data at rest encryption, and secure communications to a trusted implementation.	CyberArk Cryptographic Module is a standards-based cryptographic engine for servers and appliances. The module delivers core cryptographic functions to server platforms and features robust algorithm support, including Suite B algorithms. CyberArk Cryptographic Module offloads secure key management, data integrity, data at rest encryption, and secure communications to a trusted implementation.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Physical Security: N/A, Mitigation of Other Attacks: N/A	Physical Security: N/A, Mitigation of Other Attacks: N/A
web_data/fw_versions	[]	[]
web_data/historical_reason	None	None
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	CyberArk Cryptographic Module	CyberArk Cryptographic Module
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	active	active
web_data/sw_versions	2.1.2	2.2.1
web_data/tested_conf	CentOS 7 running on a Dell PowerEdge R830 with an Intel Xeon E5-4667v4 with PAA, CentOS 7 running on a Dell PowerEdge R830 with an Intel Xeon E5-4667v4 without PAA, macOS 13 (Ventura) running on a Mac Mini M2 with an Apple M2, Windows Server 2022 running on a Dell PowerEdge R830 with an Intel Xeon E5-4667v4 with PAA, Windows Server 2022 running on a Dell PowerEdge R830 with an Intel Xeon E5-4667v4 without PAA, ,	CentOS 7.9 on a HPE ProLiant DL360 G7 with an Intel Xeon X5670 with PAA, CentOS 7.9 on a HPE ProLiant DL360 G7 with an Intel Xeon X5670 without PAA, Free BSD 13.1 on an XRI-400 with an Intel Atom E3940 with PAA, Free BSD 13.1 on an XRI-400 with an Intel Atom E3940 without PAA, macOS 12 (Monterey) on an Apple Mac Mini 9,1 with an Apple M1, Windows Server 2012 R2 on a Dell PowerEdge R420 with an Intel Xeon E5-2430 with PAA, Windows Server 2012 R2 on a Dell PowerEdge R420 with an Intel Xeon E5-2430 without PAA (single-user mode)
web_data/validation_history	date: 23.01.2025 lab: DEKRA Testing and Certification S.A.U validation_type: Initial	date: 21.11.2022 lab: LEIDOS CSTL validation_type: Initial
web_data/vendor	CyberArk Software Ltd.	CyberArk Software Ltd.
web_data/vendor_url	http://www.cyberark.com/	http://www.cyberark.com