This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	CryptoComply for NSS	CryptoComply for NSS
cert_id	2997	4135
dgst	3b05cf67849835e3	956ed71cc6e09d5b
heuristics/algorithms	SHS#2966, AES#3609, ECDSA#739, DSA#1003, AES#3607, Triple-DES#2008, DRBG#936, RSA#2034, ECDSA#740, HMAC#2300, CVL#626, RSA#2035, Triple-DES#2007, DSA#1002, CVL#627, AES#3606, RSA#1854, SHS#2967, AES#3605, HMAC#2301, RSA#1855, DRBG#937	CVL#C786, ECDSA#C786, KTS#C786, DRBG#C786, HMAC#C786, RSA#C786, AES#C794, AES#C786, SHS#C786, KTS#C794, DSA#C786, Triple-DES#C786
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	-	-
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	3613	{}
heuristics/module_processed_references/directly_referencing	2711	3616
heuristics/module_processed_references/indirectly_referenced_by	3613	{}
heuristics/module_processed_references/indirectly_referencing	2711	3616
heuristics/module_prunned_references	2711	3616
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1: 1 #11: 6	Cert: #1: 3 #11: 5
pdf_data/keywords/fips_security_level	Level: Level 1: 2	Level: Level 1: 2
pdf_data/keywords/fips_certlike	Certlike: AES 123: 1 AES 128, 192: 1 DRBG 256: 1 DSA 2048: 1 DSA1: 1 HMAC- SHA-224: 1 HMAC-SHA- 256: 2 HMAC-SHA-1: 2 HMAC-SHA-384: 2 HMAC-SHA-512: 2 PKCS #1: 2 PKCS #11: 10 PKCS#1: 2 PKCS#11: 2 PKCS#5: 2 RSA 2048: 1 SHA- 256: 1 SHA- 512: 1 SHA-1: 4 SHA-224: 4 SHA-256: 4 SHA-384: 3 SHA-512: 2	Certlike: # C786: 1 HMAC-SHA-1: 4 HMAC-SHA-224: 2 HMAC-SHA-256: 4 HMAC-SHA-384: 2 HMAC-SHA-512: 4 PKCS #1: 6 PKCS #11: 6 PKCS 11: 2 PKCS#1: 2 PKCS#11: 2 PKCS#5: 2 SHA- 384: 1 SHA-1: 5 SHA-224: 9 SHA-256: 20 SHA-384: 13 SHA-512: 15
pdf_data/keywords/vendor
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 23 AES-: 1 RC: RC2: 7 RC4: 7 RC5: 7 DES: 3DES: TDEA: 6 TDES: 1 Triple-DES: 16 DES: DES: 9 constructions: MAC: CBC-MAC: 1 HMAC: 7 HMAC-SHA-384: 1 HMAC-SHA-512: 1 miscellaneous: Camellia: Camellia: 7 SEED: SEED: 6	AES_competition: AES: AES: 27 RC: RC2: 6 RC4: 6 RC5: 6 DES: 3DES: TDEA: 5 TDES: 1 Triple-DES: 22 DES: DES: 7 constructions: MAC: CBC-MAC: 1 HMAC: 15 HMAC-SHA-224: 2 HMAC-SHA-256: 1 HMAC-SHA-384: 2 HMAC-SHA-512: 1 miscellaneous: Camellia: Camellia: 6 SEED: SEED: 6
pdf_data/keywords/asymmetric_crypto	ECC: ECC: ECC: 1 ECDSA: ECDSA: 10 FF: DH: Diffie-Hellman: 17 DSA: DSA: 23 RSA: RSA 2048: 1	ECC: ECC: ECC: 1 ECDSA: ECDSA: 8 FF: DH: Diffie-Hellman: 11 DSA: DSA: 20
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	MD: MD5: MD5: 7 SHA: SHA1: SHA-1: 4 SHA2: SHA-224: 4 SHA-256: 4 SHA-384: 3 SHA-512: 2	MD: MD5: MD5: 7 SHA: SHA1: SHA-1: 5 SHA2: SHA-224: 10 SHA-256: 19 SHA-384: 14 SHA-512: 14
pdf_data/keywords/crypto_scheme	KA: Key Agreement: 4 MAC: MAC: 1	KA: Key Agreement: 4 Key agreement: 2 MAC: MAC: 1
pdf_data/keywords/crypto_protocol	TLS: TLS: TLS: 21 TLS 1.2: 1	TLS: TLS: TLS: 19 TLS v1.2: 1
pdf_data/keywords/randomness	PRNG: DRBG: 22	PRNG: DRBG: 28 RNG: RNG: 1
pdf_data/keywords/cipher_mode	CBC: CBC: 4 CCM: CCM: 1 CTR: CTR: 3 ECB: ECB: 4 GCM: GCM: 6 OFB: OFB: 1	CBC: CBC: 7 CCM: CCM: 1 CTR: CTR: 3 ECB: ECB: 6 GCM: GCM: 7 OFB: OFB: 1
pdf_data/keywords/ecc_curve	NIST: P-256: 8 P-384: 4 P-521: 6	NIST: P-256: 12 P-384: 14 P-521: 14
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library	NSS: NSS: 54	NSS: NSS: 54
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis	SCA: Timing Attacks: 1 Timing attack: 1 Timing attacks: 1 timing attacks: 2	SCA: Timing Attacks: 1 Timing attack: 1 Timing attacks: 1 timing attacks: 1
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140: 6 FIPS 140-2: 17 FIPS 180-4: 2 FIPS 186-4: 4 FIPS 197: 2 FIPS 198-1: 2 FIPS PUB 140-2: 1 NIST: SP 800-135: 1 SP 800-38A: 2 SP 800-38D: 2 SP 800-38F: 1 SP 800-56A: 1 SP 800-56B: 1 SP 800-67: 2 SP 800-89: 1 SP 800-90A: 2 PKCS: PKCS #1: 1 PKCS #11: 5 PKCS#1: 1 PKCS#11: 1 PKCS#5: 1	FIPS: FIPS 140: 6 FIPS 140-2: 22 FIPS 180-4: 2 FIPS 186-4: 5 FIPS 197: 2 FIPS 198-1: 2 FIPS PUB 140-2: 1 NIST: NIST SP 800-131A: 1 NIST SP 800-90A: 13 SP 800-133: 2 SP 800-135: 1 SP 800-38A: 2 SP 800-38D: 1 SP 800-38F: 5 SP 800-56A: 3 SP 800-67: 2 SP 800-90A: 5 PKCS: PKCS #1: 3 PKCS #11: 3 PKCS 11: 1 PKCS#1: 1 PKCS#11: 1 PKCS#5: 1
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/CreationDate: D:20180316003353Z00'00' /Creator: Word /ModDate: D:20180316003353Z00'00' /Producer: Mac OS X 10.12.6 Quartz PDFContext /Title: Microsoft Word - Edit.N.4.0.SecurityPolicy.docx pdf_file_size_bytes: 878300 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 40	/Author: SafeLogic /CreationDate: D:20211130192912-08'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20211130192912-08'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: CryptoComply for NSS /Title: Security Policy pdf_file_size_bytes: 814926 pdf_hyperlinks: http://www.daemonology.net/papers/htt.pdf, http://www.safelogic.com/, https://csrc.nist.gov/projects/cryptographic-module-validation-program, http://www.cryptography.com/timingattack/, http://crypto.stanford.edu/~dabo/abstracts/ssl-timing.html, www.safelogic.com/software pdf_is_encrypted: False pdf_number_of_pages: 42
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. This validation entry is a non-security relevant modification to Cert. #2711	When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. This validation entry is a non-security relevant modification to Cert. #3616
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AugConsolidatedCert.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/January 2022_010222_0702_signed.pdf
web_data/date_sunset
web_data/description	SafeLogic's CryptoComply for NSS is designed to provide FIPS 140-2 validated cryptographic functionality and is available for licensing.	SafeLogic's CryptoComply for NSS is designed to provide FIPS 140 validated cryptographic functionality and is available for licensing.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Roles, Services, and Authentication: Level 2, Physical Security: N/A, Design Assurance: Level 2	Roles, Services, and Authentication: Level 2, Physical Security: N/A, Design Assurance: Level 3
web_data/fw_versions	[]	[]
web_data/historical_reason	Moved to historical list due to sunsetting	SP 800-56Arev3 transition
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs	2711: 1	3616: 1
web_data/module_name	CryptoComply for NSS	CryptoComply for NSS
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	historical	historical
web_data/sw_versions	4.0	5.0
web_data/tested_conf	Red Hat Enterprise Linux 7.1 running on HP ProLiant DL380p Gen8 with PAA Red Hat Enterprise Linux 7.1 running on HP ProLiant DL380p Gen8 without PAA (single-user mode), , ,	Oracle Linux 7.6 64 bit running on an Oracle Server X7-2 with an Intel(R) Xeon(R) Silver 4114 with PAA, Oracle Linux 7.6 64 bit running on an Oracle Server X7-2 with an Intel(R) Xeon(R) Silver 4114 without PAA, Oracle Linux 7.6 64 bit running on an Oracle X7-2 Server with an AMD(R) EPYC(R) 7551 with PAA, Oracle Linux 7.6 64 bit running on an Oracle X7-2 Server with an AMD(R) EPYC(R) 7551 without PAA (single user mode)
web_data/validation_history	date: 18.08.2017 lab: ACUMEN SECURITY, LLC validation_type: Initial	date: 13.01.2022 lab: LEIDOS CSTL validation_type: Initial
web_data/vendor	SafeLogic Inc.	SafeLogic Inc.
web_data/vendor_url	http://www.safelogic.com	http://www.safelogic.com/