This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	X4i Hardware Security Module (HSM)	X4i Hardware Security Module (HSM)
cert_id	4225	3830
dgst	36a02b1565e32306	c096d44ca5d254a4
heuristics/algorithms	KTS#5954, KAS#A1869, RSA#C477, HMAC#C464, DRBG#C472, AES#5954, SHS#C295, ECDSA#C476, KAS-SSC#A1869, KDA#A1869, KTS#C464	KTS#5954, HMAC#C464, DSA#C475, RSA#C477, DRBG#C472, AES#5954, SHS#C295, ECDSA#C476, KTS#C464
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	21.04.0008, 01.02.002, 00.00.0016	00.00.0016, 01.02.0024, 01.02.0018, 21.03.0001, 21.02.000
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	2900	2900
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	2900	2900
heuristics/policy_prunned_references	2900	2900
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #2900: 1 #5954: 8	Cert: #2900: 1 #475: 1 #5954: 8
pdf_data/keywords/fips_security_level	Level: Level 1: 1 Level 3: 6 Level 4: 1	Level: Level 1: 1 Level 3: 6 Level 4: 1
pdf_data/keywords/fips_certlike	Certlike: AES (Cert. #5954: 1 AES 128/192/256: 15 AES 256: 2 AES CBC 128, 192: 1 AES CBC 256: 2 AES Cert. #5954: 2 AES-256: 4 HMAC-SHA- 2568: 2 HMAC-SHA-1: 4 HMAC-SHA-256: 62 HMAC-SHA-256 256: 2 PKCS 1: 10 RSA 2048: 20 SHA-1: 16 SHA-224: 1 SHA-256: 12	Certlike: AES (Cert. #5954: 1 AES 128/192/256: 14 AES 256: 3 AES CBC 128, 192: 1 AES CBC 256: 2 AES Cert. #5954: 2 AES-256: 4 DRBG 7: 1 DSA 2048: 7 DSA Cert. #475: 1 HMAC-SHA-1: 4 HMAC-SHA-256: 66 HMAC-SHA-256 256: 2 HMAC-SHA-2569: 2 PKCS 1: 10 RSA 2048: 20 SHA-1: 17 SHA-224: 3 SHA-256: 13
pdf_data/keywords/vendor
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 50 AES-256: 4 DES: 3DES: TDES: 1 Triple-DES: 2 DES: DES: 2 constructions: MAC: HMAC: 15 HMAC-SHA-256: 32	AES_competition: AES: AES: 49 AES-256: 4 DES: 3DES: TDES: 1 Triple-DES: 2 DES: DES: 2 constructions: MAC: HMAC: 11 HMAC-SHA-256: 34
pdf_data/keywords/asymmetric_crypto	ECC: ECC: ECC: 6 ECDH: ECDH: 2 ECDSA: ECDSA: 32 FF: DH: DH: 5 Diffie-Hellman: 2 DSA: DSA: 4 RSA: RSA 2048: 20	ECC: ECC: ECC: 7 ECDH: ECDH: 2 ECDSA: ECDSA: 33 FF: DH: DH: 5 Diffie-Hellman: 2 DSA: DSA: 15 RSA: RSA 2048: 20
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	SHA: SHA1: SHA-1: 16 SHA2: SHA-224: 1 SHA-256: 12	SHA: SHA1: SHA-1: 17 SHA2: SHA-224: 3 SHA-256: 13
pdf_data/keywords/crypto_scheme	KA: Key Agreement: 3 MAC: MAC: 1	KA: Key Agreement: 3 MAC: MAC: 4
pdf_data/keywords/crypto_protocol
pdf_data/keywords/randomness	PRNG: DRBG: 49 TRNG: TRNG: 1	PRNG: DRBG: 47 TRNG: TRNG: 1
pdf_data/keywords/cipher_mode	CBC: CBC: 5 ECB: ECB: 4	CBC: CBC: 5 ECB: ECB: 4
pdf_data/keywords/ecc_curve	NIST: P-160: 3 P-192: 9 P-224: 8 P-256: 40	NIST: P-160: 3 P-192: 9 P-224: 8 P-256: 46
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/device_model
pdf_data/keywords/tee_name	AMD: PSP: 5 IBM: SSC: 1	AMD: PSP: 5 IBM: SSC: 2
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140-2: 9 FIPS 180-4: 1 FIPS 186-4: 2 FIPS 197: 1 FIPS 198-1: 1 FIPS PUB 140-2: 11 FIPS PUB 180-4: 1 FIPS PUB 186-4: 1 FIPS PUB 197: 1 FIPS PUB 198-1: 1 NIST: SP 800-38A: 1 SP 800-38F: 3 SP 800-63B: 1 SP 800-90A: 1 PKCS: PKCS 1: 5	FIPS: FIPS 140-2: 9 FIPS 180-4: 1 FIPS 186-4: 3 FIPS 197: 1 FIPS 198-1: 1 FIPS PUB 140-2: 11 FIPS PUB 180-4: 1 FIPS PUB 186-4: 1 FIPS PUB 197: 1 FIPS PUB 198-1: 1 NIST: SP 800-133: 1 SP 800-38A: 1 SP 800-38F: 3 SP 800-90A: 1 PKCS: PKCS 1: 5
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: Aryeh /Comments: /Company: /ContentTypeId: 0x010100F9FA04D8D4CFB14CB50F7594BF09F976 /CreationDate: D:20220428095848-07'00' /Creator: Acrobat PDFMaker 22 for Word /Keywords: /ModDate: D:20220428095915-07'00' /Producer: Adobe PDF Library 22.1.149 /SourceModified: D:20220428165405 /Subject: /Title: pdf_file_size_bytes: 799130 pdf_hyperlinks: https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10835, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10831, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10347, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10836, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10823, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10655 pdf_is_encrypted: False pdf_number_of_pages: 24	/Author: Aryeh /CreationDate: D:20201219013425Z /Creator: Nitro Pro /ModDate: D:20201218173520-08'00' /Producer: Nitro Pro (11. 0. 3. 134) pdf_file_size_bytes: 669606 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 25
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS Mode. No assurance of the minimum strength of generated keys.	When operated in FIPS Mode.
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2022_010622_0641_signed.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/February 2021_010321_1145_signed.pdf
web_data/date_sunset	21.09.2026	25.02.2026
web_data/description	The X4i HSM is a single chip cryptographic module using the Maxim MAX32590 hardware. The central purpose of the module is as a physical computing device that safeguards and manages cryptographic keys and provides cryptographic services to connected host devices.	The X4i HSM is a single chip cryptographic module using the Maxim MAX32590 hardware. The central purpose of the module is as a physical computing device that safeguards and manages cryptographic keys and provides cryptographic services to connected host devices. The module uses a number of strong identity-based authentication mechanisms to provide authentication, integrity, and (when necessary) non-repudiation.
web_data/embodiment	Single Chip	Single Chip
web_data/exceptions	[]	[]
web_data/fw_versions	P, B, , B, o, o, t, l, o, a, d, e, r, , V, e, r, s, i, o, n, , 0, 0, ., 0, 0, ., 0, 0, 1, 6, ,, , H, S, M, , A, p, p, l, i, c, a, t, i, o, n, , V, e, r, s, i, o, n, , 2, 1, ., 0, 4, ., 0, 0, 0, 8, ,, , a, n, d, , D, e, v, i, c, e, , A, b, s, t, r, a, c, t, i, o, n, , L, a, y, e, r, , (, D, A, L, ), , V, e, r, s, i, o, n, , 0, 1, ., 0, 2, ., 0, 0, 2, F, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None	P, B, , B, o, o, t, l, o, a, d, e, r, , V, e, r, s, i, o, n, , 0, 0, ., 0, 0, ., 0, 0, 1, 6, ,, , H, S, M, , A, p, p, l, i, c, a, t, i, o, n, , V, e, r, s, i, o, n, , 2, 1, ., 0, 2, ., 0, 0, 0, F, , [, 1, ], , o, r, , 2, 1, ., 0, 3, ., 0, 0, 0, 1, , [, 2, ], ,, , a, n, d, , D, e, v, i, c, e, , A, b, s, t, r, a, c, t, i, o, n, , L, a, y, e, r, , (, D, A, L, ), , V, e, r, s, i, o, n, , 0, 1, ., 0, 2, ., 0, 0, 1, 8, , [, 1, ], , o, r, , 0, 1, ., 0, 2, ., 0, 0, 2, 4, , [, 2, ]
web_data/historical_reason	None	None
web_data/hw_versions	M, A, X, 3, 2, 5, 9, 0, , S, e, c, u, r, e, , M, i, c, r, o, c, o, n, t, r, o, l, l, e, r, , R, e, v, i, s, i, o, n, , B, 4	M, A, X, 3, 2, 5, 9, 0, , S, e, c, u, r, e, , M, i, c, r, o, c, o, n, t, r, o, l, l, e, r, , R, e, v, i, s, i, o, n, , B, 4
web_data/level	3	3
web_data/mentioned_certs
web_data/module_name	X4i Hardware Security Module (HSM)	X4i Hardware Security Module (HSM)
web_data/module_type	Hardware	Hardware
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	active	active
web_data/sw_versions	None	None
web_data/tested_conf	[]	[]
web_data/validation_history	date: 12.05.2022 lab: PENUMBRA SECURITY validation_type: Initial	date: 26.02.2021 lab: PENUMBRA SECURITY validation_type: Initial
web_data/vendor	Pitney Bowes, Inc.	Pitney Bowes, Inc.
web_data/vendor_url	http://www.pb.com	http://www.pb.com