Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Cisco Catalyst 9800-CL Wireless Controller
Cisco Catalyst 9800-CL Wireless Controller
cert_id 3874 4554
dgst 5cd53812071ab9bb c59ba22287efed2c
heuristics/algorithms AES#5474, CVL#C1280, SHS#4392, HMAC#C1452, KTS#2754, RSA#C1280, RSA#2940, Triple-DES#C1280, DRBG#2153, DRBG#C1280, AES#C1452, CVL#C1452, Triple-DES#2754, ECDSA#C1280, ECDSA#1465, SHS#C1452, KTS#C1452, HMAC#3629, AES#C1280, CVL#1926, SHS#C1280, HMAC#C1280 HMAC#A1874, SHS#A3244, KAS#A3244, HMAC#A3244, ECDSA#A3244, KAS#A1874, AES#A1874, KAS-SSC#A3244, DRBG#A1874, CVL#A3244, CVL#A1874, RSA#A3244, Triple-DES#A3244, AES#A3244, KAS-SSC#A1874, KTS#A3244, RSA#A1874, ECDSA#A1874, SHS#A1874, DRBG#A3244
pdf_data/keywords/fips_cert_id
  • Cert:
    • #1: 2
    • #1280: 1
    • #1926: 2
    • #2754: 1
  • Cert:
    • #1: 2
pdf_data/keywords/fips_certlike
  • Certlike:
    • AES CBC (128: 4
    • AES GCM (256: 2
    • AES-256: 2
    • Cert. # DRBG: 1
    • Diffie-Hellman (CVL Cert. #1280: 1
    • Diffie-Hellman (CVL Cert. #1926: 2
    • HMAC SHA-1: 4
    • HMAC-SHA1: 2
    • PKCS 1: 2
    • PKCS#1: 6
    • RSA 2048: 3
    • RSA PKCS#1: 2
    • RSA1: 1
    • SHA-1: 7
    • SHA-512: 1
    • SHA1: 4
    • SHA2-256: 15
    • SHA2-384: 10
    • SHA2-512: 9
    • SHA2-512 3629: 1
    • SHA2-512 4392: 1
  • Certlike:
    • AES-256: 2
    • Cert. # CVL: 1
    • HMAC SHA-1: 3
    • HMAC-SHA1: 2
    • PKCS 1: 2
    • PKCS#1: 6
    • RSA 2048: 3
    • RSA PKCS#1: 2
    • RSA1: 1
    • SHA-1: 8
    • SHA-512: 1
    • SHA1: 3
    • SHA2-256: 11
    • SHA2-384: 9
    • SHA2-512: 9
    • SHA2-521: 2
pdf_data/keywords/vendor
  • Cisco:
    • Cisco: 80
    • Cisco Systems: 7
    • Cisco Systems, Inc: 31
  • Cisco:
    • Cisco: 80
    • Cisco Systems: 7
    • Cisco Systems, Inc: 33
pdf_data/keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 26
      • AES-: 2
      • AES-256: 2
    • RC:
      • RC4: 4
  • DES:
    • 3DES:
      • TDES: 1
      • Triple-DES: 7
    • DES:
      • DES: 4
  • constructions:
    • MAC:
      • CMAC: 2
      • HMAC: 26
  • AES_competition:
    • AES:
      • AES: 22
      • AES-: 2
      • AES-256: 2
    • RC:
      • RC4: 4
  • DES:
    • 3DES:
      • TDES: 1
      • Triple-DES: 9
    • DES:
      • DES: 4
  • constructions:
    • MAC:
      • CMAC: 1
      • HMAC: 25
pdf_data/keywords/asymmetric_crypto
  • ECC:
    • ECDSA:
      • ECDSA: 9
  • FF:
    • DH:
      • DH: 3
      • Diffie-Hellman: 45
  • RSA:
    • RSA 2048: 3
  • ECC:
    • ECC:
      • ECC: 4
    • ECDSA:
      • ECDSA: 9
  • FF:
    • DH:
      • DH: 3
      • Diffie-Hellman: 40
  • RSA:
    • RSA 2048: 3
pdf_data/keywords/hash_function
  • MD:
    • MD5:
      • MD5: 7
  • SHA:
    • SHA1:
      • SHA-1: 7
      • SHA1: 4
    • SHA2:
      • SHA-512: 1
  • MD:
    • MD5:
      • MD5: 7
  • SHA:
    • SHA1:
      • SHA-1: 8
      • SHA1: 3
    • SHA2:
      • SHA-512: 1
pdf_data/keywords/crypto_protocol
  • IKE:
    • IKE: 16
    • IKEv1: 1
    • IKEv2: 16
  • IPsec:
    • IPsec: 5
  • PGP:
    • PGP: 3
  • SSH:
    • SSH: 31
  • TLS:
    • DTLS:
      • DTLS: 17
      • DTLS v1.2: 1
    • TLS:
      • TLS: 14
      • TLS v1.2: 1
      • TLSv1.2: 1
  • VPN:
    • VPN: 1
  • IKE:
    • IKE: 16
    • IKEv1: 1
    • IKEv2: 20
  • IPsec:
    • IPsec: 5
  • PGP:
    • PGP: 3
  • SSH:
    • SSH: 35
  • TLS:
    • DTLS:
      • DTLS: 17
      • DTLS v1.2: 1
    • TLS:
      • TLS: 13
      • TLS 1.2: 1
      • TLS v1.2: 1
      • TLSv1.2: 1
  • VPN:
    • VPN: 1
pdf_data/keywords/cipher_mode
  • CBC:
    • CBC: 8
  • CTR:
    • CTR: 5
  • ECB:
    • ECB: 3
  • GCM:
    • GCM: 18
  • CBC:
    • CBC: 6
  • CTR:
    • CTR: 3
  • ECB:
    • ECB: 4
  • GCM:
    • GCM: 17
pdf_data/keywords/ecc_curve
  • NIST:
    • P-256: 44
    • P-384: 38
    • P-521: 8
  • NIST:
    • P-224: 4
    • P-256: 48
    • P-384: 38
    • P-521: 14
pdf_data/keywords/standard_id
  • FIPS:
    • FIPS 140-2: 22
    • FIPS PUB 140-2: 1
    • FIPS186-4: 2
  • NIST:
    • SP 800-133: 2
    • SP 800-52: 1
    • SP 800-90A: 15
  • PKCS:
    • PKCS 1: 1
    • PKCS#1: 4
  • RFC:
    • RFC 4253: 1
    • RFC 5288: 1
    • RFC 7296: 3
    • RFC4106: 1
    • RFC5282: 1
  • FIPS:
    • FIPS 140-2: 22
    • FIPS PUB 140-2: 1
    • FIPS186-4: 1
  • NIST:
    • SP 800-133: 1
    • SP 800-52: 1
    • SP 800-90A: 15
  • PKCS:
    • PKCS 1: 1
    • PKCS#1: 4
  • RFC:
    • RFC 4253: 1
    • RFC 5288: 1
    • RFC 7296: 3
    • RFC4106: 1
    • RFC5282: 1
pdf_data/policy_metadata
state/policy_pdf_hash Different Different
state/policy_txt_hash Different Different
web_data/caveat When installed, initialized and configured as specified in Section 11 of the Security Policy and operated in FIPS mode. When operated in FIPS mode and installed as specified in Section 11 of the Security Policy.
web_data/certificate_pdf_url https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2021_010421_0724_signed.pdf https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2023_010823_0649 signed.pdf
web_data/date_sunset 21.09.2026
web_data/historical_reason SP 800-56Arev3 transition
web_data/status historical active
web_data/sw_versions IOS-XE 16.12 IOS-XE 17.3
web_data/tested_conf IOS-XE 16.12 on VMware ESXi v6 running on a UCS C220 M5 with Intel Xeon Platinum 8160M (single-user mode) IOS-XE 17.3 on VMware ESXi v6 running on a UCS C220 M5 with Intel Xeon Platinum 8160M
web_data/validation_history
  • date: 29.03.2021
  • lab: ACUMEN SECURITY, LLC
  • validation_type: Initial
  • date: 28.07.2023
  • lab: ACUMEN SECURITY, LLC
  • validation_type: Initial