cert_id |
3472 |
4364 |
dgst |
8b75ec30ea0d0fed |
bdf67436ad540597 |
heuristics/algorithms |
CVL#1994, SHS#4465, ECDSA#1499, HMAC#3708, CVL#1998, AES#C661, AES#5562, DRBG#2216 |
HMAC#A1403, ECDSA#A1403, DRBG#A1403, KAS-SSC#A1403, KAS#A1403, KAS#A1405, KTS#A1403, SHS#A1403, AES#A1403, CVL#A1405 |
heuristics/cpe_matches |
{} |
{} |
heuristics/direct_transitive_cves |
{} |
{} |
heuristics/extracted_versions |
- |
- |
heuristics/indirect_transitive_cves |
{} |
{} |
heuristics/module_processed_references/directly_referenced_by |
{} |
{} |
heuristics/module_processed_references/directly_referencing |
3460 |
4249 |
heuristics/module_processed_references/indirectly_referenced_by |
{} |
{} |
heuristics/module_processed_references/indirectly_referencing |
3460 |
4249 |
heuristics/module_prunned_references |
3460 |
4249 |
heuristics/policy_processed_references/directly_referenced_by |
{} |
{} |
heuristics/policy_processed_references/directly_referencing |
3460 |
4249 |
heuristics/policy_processed_references/indirectly_referenced_by |
{} |
{} |
heuristics/policy_processed_references/indirectly_referencing |
3460 |
4249 |
heuristics/policy_prunned_references |
3460 |
4249 |
heuristics/related_cves |
{} |
{} |
heuristics/verified_cpe_matches |
{} |
{} |
pdf_data/keywords/fips_cert_id |
|
|
pdf_data/keywords/fips_security_level |
|
|
pdf_data/keywords/fips_certlike |
- Certlike:
- AES [197: 1
- AES-128: 2
- AES-192: 1
- AES-256: 3
- HMAC [198: 1
- HMAC-SHA-1: 2
- HMAC-SHA-256: 6
- HMAC-SHA-512: 2
- SHA-1: 2
- SHA-2: 1
- SHA-224: 1
- SHA-256: 2
- SHA-384: 2
- SHA-512: 1
- SHS [180: 1
|
- Certlike:
- AES [197: 1
- AES-128: 4
- AES-192: 3
- AES-256: 4
- HMAC [198: 1
- HMAC-SHA-1: 4
- HMAC-SHA-256: 6
- HMAC-SHA-512: 2
- SHA-1: 4
- SHA-2: 1
- SHA-224: 1
- SHA-256: 1
- SHA-384: 1
- SHA-512: 1
- SHA2-256: 2
- SHA2-384: 2
- SHA2-512: 3
- SHS [180: 1
|
pdf_data/keywords/vendor |
|
|
pdf_data/keywords/eval_facility |
|
|
pdf_data/keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 4
- AES-128: 2
- AES-192: 1
- AES-256: 3
- constructions:
- MAC:
- HMAC: 6
- HMAC-SHA-256: 3
- HMAC-SHA-512: 1
|
- AES_competition:
- AES:
- AES: 4
- AES-128: 4
- AES-192: 3
- AES-256: 4
- constructions:
- MAC:
- HMAC: 7
- HMAC-SHA-256: 3
- HMAC-SHA-512: 1
|
pdf_data/keywords/asymmetric_crypto |
|
|
pdf_data/keywords/pq_crypto |
|
|
pdf_data/keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-2: 1
- SHA-224: 1
- SHA-256: 2
- SHA-384: 2
- SHA-512: 1
|
- SHA:
- SHA1:
- SHA2:
- SHA-2: 1
- SHA-224: 1
- SHA-256: 1
- SHA-384: 1
- SHA-512: 1
|
pdf_data/keywords/crypto_scheme |
|
|
pdf_data/keywords/crypto_protocol |
|
|
pdf_data/keywords/randomness |
|
|
pdf_data/keywords/cipher_mode |
|
|
pdf_data/keywords/ecc_curve |
- NIST:
- P-256: 8
- P-384: 8
- P-521: 6
|
- NIST:
- P-256: 10
- P-384: 10
- P-521: 6
|
pdf_data/keywords/crypto_engine |
|
|
pdf_data/keywords/tls_cipher_suite |
|
|
pdf_data/keywords/crypto_library |
|
|
pdf_data/keywords/vulnerability |
|
|
pdf_data/keywords/side_channel_analysis |
|
|
pdf_data/keywords/device_model |
|
|
pdf_data/keywords/tee_name |
|
|
pdf_data/keywords/os_name |
|
|
pdf_data/keywords/cplc_data |
|
|
pdf_data/keywords/ic_data_group |
|
|
pdf_data/keywords/standard_id |
- FIPS:
- FIPS 140-2: 17
- FIPS 180-4: 1
- FIPS 186-4: 1
- FIPS 197: 1
- FIPS 198-1: 1
- NIST:
- NIST SP 800-135: 1
- NIST SP 800-38A: 1
- NIST SP 800-38C: 1
- NIST SP 800-38D: 1
- NIST SP 800-56A: 1
- NIST SP 800-57: 1
- NIST SP 800-90A: 1
- SP 800-131A: 1
|
- FIPS:
- FIPS 140-2: 19
- FIPS 180-4: 1
- FIPS 186-4: 1
- FIPS 197: 1
- FIPS 198-1: 1
- NIST:
- NIST SP 800-131A: 1
- NIST SP 800-135: 1
- NIST SP 800-38A: 1
- NIST SP 800-38C: 1
- NIST SP 800-38D: 1
- NIST SP 800-38F: 1
- NIST SP 800-56A: 1
- NIST SP 800-57: 1
- NIST SP 800-90A: 1
|
pdf_data/keywords/javacard_version |
|
|
pdf_data/keywords/javacard_api_const |
|
|
pdf_data/keywords/javacard_packages |
|
|
pdf_data/keywords/certification_process |
|
|
pdf_data/policy_metadata |
- /Author: Luis Garcia
- /Company:
- /CreationDate: D:20200727122258-07'00'
- /Creator: Acrobat PDFMaker 17 for Word
- /ModDate: D:20200727122303-07'00'
- /Producer: Adobe PDF Library 15.0
- /SourceModified: D:20200727192221
- pdf_file_size_bytes: 362330
- pdf_hyperlinks: https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3708, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-2.pdf, https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Module-Validation-Program/documents/fips140-2/FIPS1402IG.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.197.pdf, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#4465, https://www.nutanix.com/, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component#1994, http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.198-1.pdf, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5562, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf, https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Module-Validation-Program/documents/fips140-2/FIPS1402DTR.pdf, https://keypair.us/, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-56ar.pdf, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/details?source=DRBG&number=2216, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/ECDSA#1499, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf, http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf, http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf, https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Certificate/3460, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component#1998, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf
- pdf_is_encrypted: False
- pdf_number_of_pages: 9
|
- /Author: Luis Garcia
- /Company:
- /CreationDate: D:20221108140318-05'00'
- /Creator: Acrobat PDFMaker 11 for Word
- /ModDate: D:20221108140329-05'00'
- /Producer: Adobe PDF Library 11.0
- /SourceModified: D:20221108185008
- /Title:
- pdf_file_size_bytes: 404077
- pdf_hyperlinks: https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=34014, https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/4249, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-2.pdf, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf, https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Module-Validation-Program/documents/fips140-2/FIPS1402IG.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.197.pdf, https://www.nutanix.com/, http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.198-1.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf, https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Module-Validation-Program/documents/fips140-2/FIPS1402DTR.pdf, https://keypair.us/, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf, http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf, http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf, http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=34012, https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Ar3.pdf, https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf
- pdf_is_encrypted: False
- pdf_number_of_pages: 11
|
state/module_download_ok |
True |
True |
state/module_extract_ok |
True |
True |
state/policy_convert_garbage |
False |
False |
state/policy_convert_ok |
True |
True |
state/policy_download_ok |
True |
True |
state/policy_extract_ok |
True |
True |
state/policy_pdf_hash |
Different |
Different |
state/policy_txt_hash |
Different |
Different |
web_data/caveat |
When operated in FIPS mode with Nutanix Cryptographic Module for OpenSSL validated to FIPS 140-2 under Cert. #3460 operating in FIPS mode |
When operated in FIPS mode and configured as specified in Section 3 of the Security Policy with the Nutanix Cryptographic Module for OpenSSL validated to FIPS 140-2 under Cert. #4249 operating in FIPS mode. No assurance of the minimum strength of generated keys |
web_data/certificate_pdf_url |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/JuneConsolidated.pdf |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2022_051222_0640_signed.pdf |
web_data/date_sunset |
|
21.09.2026 |
web_data/description |
The Nutanix Cryptographic Module for OpenSSH Client provides client-side support for SSH version 2. This cryptographic module functions together with the Nutanix Cryptographic Module for OpenSSL to provide FIPS validated cryptography for SSH connections. |
The Nutanix Cryptographic Module for OpenSSH Client is a cryptographic software module, designated as a multi-chip standalone embodiment, and used in Nutanix solutions to provide FIPS 140-2 Approved SSH client-side secure communication. |
web_data/embodiment |
Multi-Chip Stand Alone |
Multi-Chip Stand Alone |
web_data/exceptions |
Physical Security: N/A, Mitigation of Other Attacks: N/A |
Physical Security: N/A, Mitigation of Other Attacks: N/A |
web_data/fw_versions |
[] |
[] |
web_data/historical_reason |
SP 800-56Arev3 transition |
|
web_data/hw_versions |
[] |
[] |
web_data/level |
1 |
1 |
web_data/mentioned_certs |
|
|
web_data/module_name |
Nutanix Cryptographic Module for OpenSSH Client |
Nutanix Cryptographic Module for OpenSSH Client |
web_data/module_type |
Software |
Software |
web_data/revoked_link |
None |
None |
web_data/revoked_reason |
None |
None |
web_data/standard |
FIPS 140-2 |
FIPS 140-2 |
web_data/status |
historical |
active |
web_data/sw_versions |
OpenSSH client RPM package 7.4p1-16.el7 and fipscheck RPM package 1.4.1-6.el7 |
6.0 |
web_data/tested_conf |
CentOS 7.5 running on Nutanix NX-3360-G6 with Intel Xeon Silver-4116 with PAA, CentOS 7.5 running on Nutanix NX-3360-G6 with Intel Xeon Silver-4116 without PAA (single-user mode), , |
CentOS 7.9 on Nutanix Acropolis Hypervisor (AHV) 7.1.1 running on a Nutanix NX-3360-G7 with an Intel® Xeon® Gold 6234 with PAA, CentOS 7.9 on Nutanix Acropolis Hypervisor (AHV) 7.1.1 running on a Nutanix NX-3360-G7 with an Intel® Xeon® Gold 6234 without PAA, CentOS 7.9 running on a Nutanix NX-3360-G7 with an Intel® Xeon® Gold 6234 with PAA, CentOS 7.9 running on a Nutanix NX-3360-G7 with an Intel® Xeon® Gold 6234 without PAA (single-user mode) |
web_data/validation_history |
- date: 12.06.2019
- lab: UL VERIFICATION SERVICES INC
- validation_type: Initial
|
- date: 14.11.2022
- lab: Lightship Security, Inc.
- validation_type: Initial
|
web_data/vendor |
Nutanix, Inc. |
Nutanix, Inc. |
web_data/vendor_url |
http://www.nutanix.com |
http://www.nutanix.com |