This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Vormetric Data Security Manager Virtual Appliance Module	Vormetric Data Security Manager Virtual Appliance Module
cert_id	3443	2735
dgst	3504a42dccf2276b	93f606bd517c88c2
heuristics/algorithms	HMAC#3688, CVL#1482, HMAC#3246, SHS#3987, SHS#4443, ECDSA#1240, AES#5536, DRBG#1703, AES#4846, RSA#2970, RSA#2664, CVL#1979, KTS#5536	CVL#612, HMAC#2375, SHS#3041, KTS#3621, AES#3588, HMAC#2287, SHS#2950, RSA#1866, AES#3621, KTS#2375, ECDSA#751, DRBG#951, HMAC#2288, SHS#2949, CVL#643
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	-	-
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1703: 1 #4846: 1	Cert: #1866: 1 #2375: 1 #3588: 1 #3621: 1 #951: 1
pdf_data/keywords/fips_security_level	Level: Level 1: 4 Level 3: 1 level 1: 1	Level: Level 1: 4 Level 3: 1 level 1: 1
pdf_data/keywords/fips_certlike	Certlike: AES 128: 1 AES 128 and 256: 1 AES 256: 5 AES cert #4846: 1 AES-128: 2 AES-256: 3 DRBG cert #1703: 1 HMAC SHA-384: 1 HMAC-SHA-256: 10 HMAC-SHA-384: 4 HMAC-SHA-384 256: 2 HMAC-SHA-3842: 2 PKCS1: 6 RSA 1024: 1 RSA 2048: 4 RSA 4096: 1 SHA-256: 9 SHA-384: 9 SHA-512: 3	Certlike: AES #3621: 1 AES 128: 1 AES 256: 4 AES cert #3588: 1 AES-128: 1 AES-256: 2 DRBG cert #951: 1 HMAC #2375: 2 HMAC SHA-256: 1 HMAC-SHA- 256: 2 HMAC-SHA-1: 4 HMAC-SHA-256: 10 HMAC-SHA-384: 8 HMAC-SHA1: 2 PKCS#1: 2 RSA 1024: 1 RSA 2048: 4 RSA 4096: 1 SHA-1: 2 SHA-256: 7 SHA-384: 3
pdf_data/keywords/vendor	Thales: Thales: 28
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 19 AES-128: 2 AES-256: 3 DES: 3DES: Triple-DES: 4 constructions: MAC: HMAC: 6 HMAC-SHA-256: 5 HMAC-SHA-384: 3 miscellaneous: ARIA: ARIA: 4	AES_competition: AES: AES: 14 AES-128: 1 AES-256: 2 DES: 3DES: 3DES: 1 Triple-DES: 3 DES: DES: 1 constructions: MAC: HMAC: 4 HMAC-SHA-256: 5 HMAC-SHA-384: 4 miscellaneous: ARIA: ARIA: 4
pdf_data/keywords/asymmetric_crypto	ECC: ECDH: ECDH: 1 ECDSA: ECDSA: 15 FF: DH: DH: 9 Diffie-Hellman: 1 RSA: RSA 1024: 1 RSA 2048: 4 RSA 4096: 1 RSA-1024: 1 RSA-4096: 1	ECC: ECDH: ECDHE: 1 ECDSA: ECDSA: 16 FF: DH: DH: 8 RSA: RSA 1024: 1 RSA 2048: 4 RSA 4096: 1 RSA-1024: 1 RSA-4096: 1
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	SHA: SHA2: SHA-256: 9 SHA-384: 9 SHA-512: 3	MD: MD5: MD5: 1 SHA: SHA1: SHA-1: 2 SHA2: SHA-256: 7 SHA-384: 3
pdf_data/keywords/crypto_scheme	KA: Key agreement: 1 KEX: Key Exchange: 1	KEX: Key Exchange: 1
pdf_data/keywords/crypto_protocol	SSH: SSH: 3 TLS: TLS: TLS: 56 TLS 1.2: 3 TLS v1.2: 2	SSH: SSH: 3 TLS: TLS: TLS: 39 TLS 1.2: 1
pdf_data/keywords/randomness	PRNG: DRBG: 34 RNG: RNG: 3	PRNG: DRBG: 28 RNG: RNG: 3
pdf_data/keywords/cipher_mode	CBC: CBC: 2 GCM: GCM: 8	CBC: CBC: 6
pdf_data/keywords/ecc_curve	NIST: P-256: 4 P-384: 22	NIST: P-256: 4 P-384: 18
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite	TLS: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 1 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 1 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1 TLS_RSA_WITH_AES_256_CBC_SHA256: 1	TLS: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 1 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 1 TLS_RSA_WITH_3DES_EDE_CBC_SHA: 1 TLS_RSA_WITH_AES_128_CBC_SHA: 1 TLS_RSA_WITH_AES_256_CBC_SHA: 1
pdf_data/keywords/crypto_library	OpenSSL: OpenSSL: 10	OpenSSL: OpenSSL: 8
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140-2: 11 FIPS 180-4: 2 FIPS 186-4: 9 FIPS 197: 2 FIPS 198-1: 2 NIST: NIST SP 800-90A: 20 SP 800-133: 1 SP 800-135: 2 SP 800-38A: 2 SP 800-52: 1 PKCS: PKCS1: 3 RFC: RFC 5246: 1	FIPS: FIPS 140-2: 10 FIPS 186-4: 8 NIST: NIST SP 800-90A: 23 SP 800-90A: 1 PKCS: PKCS#1: 1
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: [email protected] /CreationDate: D:20190411143108+02'00' /Creator: Microsoft® Word 2016 /ModDate: D:20190411143108+02'00' /Producer: Microsoft® Word 2016 /Title: Virtual DSM Security Policy pdf_file_size_bytes: 1341114 pdf_hyperlinks: https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/DRBG, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS, http://csrc.nist.gov/groups/STM/cmvp/index.html, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSAhttp:/csrc.nist.gov/groups/STM/cavp/documents/dss/rsanewval.html, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/ECDSA pdf_is_encrypted: False pdf_number_of_pages: 24	/Author: [email protected] /CreationDate: D:20160824230223-07'00' /Creator: Microsoft® Word 2016 /ModDate: D:20160824230223-07'00' /Producer: Microsoft® Word 2016 /Title: Virtual DSM Security Policy pdf_file_size_bytes: 537880 pdf_hyperlinks: http://csrc.nist.gov/groups/STM/cmvp/index.html, http://www.vormetric.com/ pdf_is_encrypted: False pdf_number_of_pages: 19
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode. The protocol SSH shall not be used when operated in FIPS mode.	When operated in FIPS mode. The protocol SSH shall not be used when operated in FIPS mode
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertSept2016.pdf
web_data/date_sunset
web_data/description	The Vormetric Data Security Virtual Appliance Module is a multi-chip standalone cryptographic module. The Vormetric Data Security Virtual Appliance Module is the central point of management for the Vormetric Data Security product. It manages keys and policies, and controls Vormetric Transparent Encryption Agents. These agents contain the Vormetric Encryption Expert Cryptographic Module, which has been validated separately from this module.	The Vormetric Data Security Virtual Appliance Module is a multi-chip standalone cryptographic module. The Vormetric Data Security Virtual Appliance Module is the central point of management for the Vormetric Data Security product. It manages keys and policies, and controls Vormetric Transparent Encryption Agents. These agents contain the Vormetric Encryption Expert Cryptographic Module, which has been validated separately from this module.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Roles, Services, and Authentication: Level 3, Physical Security: N/A, Cryptographic Key Management: Level 3, Design Assurance: Level 3, Mitigation of Other Attacks: N/A	Roles, Services, and Authentication: Level 3, Physical Security: N/A, Cryptographic Key Management: Level 3, Design Assurance: Level 3, Mitigation of Other Attacks: N/A
web_data/fw_versions	[]	[]
web_data/historical_reason	SP 800-56Arev3 transition	Moved to historical list due to sunsetting
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	Vormetric Data Security Manager Virtual Appliance Module	Vormetric Data Security Manager Virtual Appliance Module
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	historical	historical
web_data/sw_versions	6.0.2	5.3.0
web_data/tested_conf	Centos 7.2 (64 bits) on VMware ESXi 6.5 running on a Supermicro SSG-2028R-E1CR24N with an Intel Xeon (single-user mode)	Centos 5.11 (64-bit) on VMware ESXi 5.5.0 running on a Supermicro X9DAX (single-user mode)
web_data/validation_history	date: 26.04.2019 lab: CYGNACOM SOLUTIONS INC validation_type: Initial	date: 02.09.2016 lab: CYGNACOM SOLUTIONS INC validation_type: Initial
web_data/vendor	Thales eSecurity	Vormetric, Inc.
web_data/vendor_url	http://www.thalesesecurity.com	http://www.vormetric.com