This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Veeam Cryptographic Module	Veeam Cryptographic Module
cert_id	2872	4872
dgst	7f59051d004a7ac4	929aa622b6a06994
heuristics/algorithms	DRBG#281, SHS#1954, Triple-DES#1420, AES#2273, RSA#1166, DSA#709, HMAC#1391, ECDSA#368	ECDSA#A4086, DSA#A4086, KTS-RSA#A4086, DRBG#A4086, KMAC#A4086, HMAC#A4086, PBKDF#A4086, CVL#A4086, SHA-3#A4086, SHS#A4086, KTS#A4086, KAS-RSA-SSC#A4086, RSA#A4086, KAS-SSC#A4086, Triple-DES#A4086, AES#A4086, KDA#A4086, KBKDF#A4086
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	-	-
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	2038	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	2038	{}
heuristics/module_prunned_references	2038	{}
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1: 2
pdf_data/keywords/fips_security_level	Level: Level 1: 2	Level: Level 1: 4
pdf_data/keywords/fips_certlike	Certlike: Certificate AES: 1 Certificate RSA: 1 HMAC SHA- 224: 1 HMAC SHA- 256: 1 HMAC SHA-1: 1 HMAC SHA-384: 1 HMAC SHA-512: 1 HMAC- SHA-384: 1 HMAC-SHA-1: 2 HMAC-SHA-224: 2 HMAC-SHA-256: 2 HMAC-SHA-512 1391: 2 HMAC-SHA1: 10 HMAC-SHA224: 2 HMAC-SHA256: 2 HMAC-SHA384: 2 HMAC-SHA512: 2 PKCS #1: 4 PKCS#1: 2 PKCS1: 6 SHA- 224: 1 SHA- 256: 1 SHA- 512: 1 SHA-1: 21 SHA-1 2: 1 SHA-2: 10 SHA-224: 2 SHA-256: 3 SHA-384: 5 SHA-512: 1 SHA-512 1954: 1 SHA512: 1	Certlike: AES 128/192/256: 1 AES-128: 1 AES-192: 1 AES-256: 1 AES128: 1 AES192: 1 AES256: 1 HMAC-SHA-1: 4 PKCS 1: 4 PKCS#1: 4 SHA-1: 14 SHA-1, 256: 2 SHA-2: 2 SHA-3: 6 SHA-3-224: 1 SHA-3-256: 1 SHA2-224: 14 SHA2-256: 5 SHA2-512: 1 SHA3-224: 4
pdf_data/keywords/vendor		Microsoft: Microsoft: 1 Microsoft Corporation: 1
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 13 DES: 3DES: Triple-DES: 8 DES: DES: 3 constructions: MAC: CMAC: 6 HMAC: 13 HMAC-SHA-224: 1 HMAC-SHA-256: 1 HMAC-SHA-512: 1	AES_competition: AES: AES: 29 AES-128: 1 AES-192: 1 AES-256: 1 AES128: 1 AES192: 1 AES256: 1 DES: 3DES: TDEA: 1 TDES: 5 Triple-DES: 7 constructions: MAC: CMAC: 12 HMAC: 12 KMAC: 5
pdf_data/keywords/asymmetric_crypto	ECC: ECC: ECC: 1 ECDSA: ECDSA: 10 FF: DH: DH: 1 Diffie-Hellman: 1 DSA: DSA: 16	ECC: ECC: ECC: 1 ECDH: ECDH: 4 ECDSA: ECDSA: 17 FF: DH: DH: 16 Diffie-Hellman: 3 DSA: DSA: 17 RSA: RSA-OAEP: 1
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	SHA: SHA1: SHA-1: 22 SHA2: SHA-2: 10 SHA-224: 2 SHA-256: 3 SHA-384: 5 SHA-512: 2 SHA512: 1	Keccak: Keccak: 1 PBKDF: PBKDF: 1 PBKDF2: 4 SHA: SHA1: SHA-1: 16 SHA2: SHA-2: 4 SHA3: SHA-3: 6 SHA-3-224: 1 SHA-3-256: 1 SHA3-224: 4
pdf_data/keywords/crypto_scheme	MAC: MAC: 1	KA: Key Agreement: 6
pdf_data/keywords/crypto_protocol	TLS: SSL: SSL: 1 TLS: TLS: 3	TLS: TLS: TLS: 4 TLS 1.2: 3 TLS 1.3: 3 TLS v1.2: 1 TLS v1.3: 3
pdf_data/keywords/randomness	DUAL_EC: DUAL_EC_DRBG: 1 PRNG: DRBG: 15 PRNG: 1 RNG: RNG: 3	PRNG: DRBG: 19
pdf_data/keywords/cipher_mode	CBC: CBC: 3 CCM: CCM: 2 CTR: CTR: 2 ECB: ECB: 3 GCM: GCM: 5 OFB: OFB: 1 XTS: XTS: 1	CBC: CBC: 4 CCM: CCM: 3 CFB: CFB: 3 CTR: CTR: 3 ECB: ECB: 4 GCM: GCM: 9 OFB: OFB: 1 XTS: XTS: 3
pdf_data/keywords/ecc_curve	NIST: B-163: 5 B-233: 7 B-283: 9 B-409: 5 B-571: 9 K-163: 5 K-233: 8 K-283: 9 K-409: 7 K-571: 5 P-192: 8 P-224: 16 P-256: 18 P-384: 14 P-521: 18	Edwards: Ed25519: 2 Ed448: 2 NIST: B-163: 2 B-233: 4 K-163: 2 K-233: 5 P-192: 4 P-224: 12 P-256: 2
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library		OpenSSL: OpenSSL: 8
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis		SCA: side-channel: 1 timing attacks: 2
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140: 6 FIPS 140-2: 18 FIPS 186-2: 6 FIPS 186-4: 7 NIST: NIST SP 800-131A: 2 SP 800-90A: 2 PKCS: PKCS #1: 2 PKCS#1: 1 PKCS1: 3 RFC: RFC 5246: 1 RFC5288: 2 RFC5289: 2	FIPS: FIPS 140: 1 FIPS 140-2: 20 FIPS 180-4: 2 FIPS 186-4: 6 FIPS 197: 2 FIPS 198-1: 2 FIPS 202: 2 NIST: NIST SP 800-133: 1 NIST SP 800-38D: 2 SP 800-108: 2 SP 800-132: 3 SP 800-135: 4 SP 800-185: 1 SP 800-38A: 2 SP 800-38B: 2 SP 800-38C: 2 SP 800-38D: 2 SP 800-38E: 1 SP 800-38F: 2 SP 800-90: 2 PKCS: PKCS 1: 2 PKCS#1: 2 RFC: RFC 5246: 1 RFC 5288: 2 RFC 8446: 4
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const		curves: X25519: 10 X448: 10
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: SafeLogic /CreationDate: D:20231003181935-07'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20231003181935-07'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: VEEAM Cryptographic Module /Title: Security Policy pdf_file_size_bytes: 754916 pdf_hyperlinks: https://www.veeam.com/, http://www.safelogic.com/, http://www.veeam.com/, http://csrc.nist.gov/groups/STM/cmvp/index.html pdf_is_encrypted: False pdf_number_of_pages: 24	/Author: Aniket Ingle /CreationDate: D:20241105093922-05'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20241105093922-05'00' /Producer: Microsoft® Word for Microsoft 365 pdf_file_size_bytes: 738520 pdf_hyperlinks: https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-38b.pdf, https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Br2.pdf, https://csrc.nist.gov/csrc/media/publications/fips/198/1/final/documents/fips-198-1_final.pdf, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Ar3.pdf, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-132.pdf, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf, https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.202.pdf, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2.pdf, https://datatracker.ietf.org/doc/html/rfc5288, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf, https://www.rfc-editor.org/info/rfc3447, https://csrc.nist.gov/csrc/media/publications/fips/197/final/documents/fips-197.pdf, https://datatracker.ietf.org/doc/html/rfc8446, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-67r2.pdf, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf, http://csrc.nist.gov/groups/STM/cmvp/index.html, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf, https://www.openssl.org/docs/manmaster/man1/openssl-fipsinstall.html, https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402.pdf, https://www.openssl.org/source/openssl-3.0.9.tar.gz, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf, https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf pdf_is_encrypted: False pdf_number_of_pages: 41
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode. The module makes no assurance of the minimum strength of random strings and generated keys. This validation entry is a non-security relevant modification to Cert. #2038	When operated in FIPS mode. No assurance of the minimum strength of generated keys.
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertMar2017.pdf	None
web_data/date_sunset	08.03.2026	21.09.2026
web_data/description	The Veeam Cryptographic Module provides cryptographic functions for the Veeam Availability Suite and Veeam Agent for Mac. These functions are used for protecting data in transit and at rest using standards based and trusted algorithms.	Veeam Cryptographic Module provides FIPS-Approved cryptographic functions and services to various Veeam products, including, but not limited to, Veeam Data Platform (VDP), Veeam Availability Suite (VAS), Veeam Backup & Replication, Veeam ONE, Veeam Agents, and other Veeam Components.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Physical Security: N/A, Mitigation of Other Attacks: N/A	Physical Security: N/A, Design Assurance: Level 3
web_data/fw_versions	[]	[]
web_data/historical_reason	None	None
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs	2038: 1
web_data/module_name	Veeam Cryptographic Module	Veeam Cryptographic Module
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	active	active
web_data/sw_versions	2.1	3.0.9
web_data/tested_conf	CentOS 6.3 on a Dell OptiPlex 755 with an Intel i7, Windows Server 2008 R2 on a Dell OptiPlex 755 with an Intel i7 (single-user mode), None, None, None, None, None, None, None, None, None, None	Debian 11.5 running on Dell Inspiron 7591 with Intel i7 (x64) with PAA, Debian 11.5 running on Dell Inspiron 7591 with Intel i7 (x64) without PAA, FreeBSD 13.1 running on Dell Inspiron 7591 with Intel i7 (x64) with PAA, FreeBSD 13.1 running on Dell Inspiron 7591 with Intel i7 (x64) without PAA, macOS 11.5.2 running on Apple i7 Mac Mini with Intel i7 (x64) with PAA, macOS 11.5.2 running on Apple i7 Mac Mini with Intel i7 (x64) without PAA, macOS 11.5.2 running on Apple M1 Mac Mini with M1 with PAA, macOS 11.5.2 running on Apple M1 Mac Mini with M1 without PAA, Ubuntu Linux 22.04.1 LTS running on Dell Inspiron 7591 with Intel i7 (x64) with PAA, Ubuntu Linux 22.04.1 LTS running on Dell Inspiron 7591 with Intel i7 (x64) without PAA, Windows 10 running on Dell Inspiron 7591 with Intel i7 (x64) with PAA, Windows 10 running on Dell Inspiron 7591 with Intel i7 (x64) without PAA (single-user mode)
web_data/validation_history	date: 30.03.2017 lab: ACUMEN SECURITY, LLC validation_type: Initial	date: 08.11.2024 lab: ACUMEN SECURITY, LLC validation_type: Initial
web_data/vendor	Veeam Software Corporation	Veeam Software Corporation
web_data/vendor_url	http://www.veeam.com	http://www.veeam.com