Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Cisco ASR 1000 Series Routers with MACSEC
Cisco ASR 1000 Series Routers with MACSEC
cert_id 3775 4644
dgst a4f5499a612299fe fcc687ca8d076689
heuristics/algorithms SHS#C462, ECDSA#1241, RSA#C462, KTS#C462, HMAC#C462, CVL#1258, RSA#2500, CVL#C462, HMAC#137, DRBG#1529, AES#4583, ECDSA#C462, SHS#3760, SHS#2023, KBKDF#C462, Triple-DES#C462, AES#C462, KBKDF#139, SHS#408, Triple-DES#1469, Triple-DES#2436, HMAC#1455, AES#333, CVL#1257, AES#3505, AES#2346, Triple-DES#397, DRBG#C462, KTS#4583, AES#3160, HMAC#3034 HMAC#137, SHS#A1462, HMAC#A1462, AES#A1462, SHS#2023, ECDSA#A1462, DRBG#A1462, SHS#408, KAS-SSC#A1462, HMAC#1455, AES#333, KAS#A1462, AES#3505, AES#2346, KBKDF#A1462, CVL#A1462, AES#3160, KTS#A1462, RSA#A1462
pdf_data/keywords/fips_cert_id
  • Cert:
    • #1: 1
    • #3: 1
    • #4583: 1
  • Cert:
    • #1: 1
    • #3: 1
pdf_data/keywords/fips_security_level
  • Level:
    • Level 1: 3
    • Level 3: 1
    • level 1: 3
  • Level:
    • Level 1: 3
    • level 1: 3
pdf_data/keywords/fips_certlike
  • Certlike:
    • AES -128, 192: 2
    • AES 4583: 1
    • AES CBC (128: 1
    • AES GCM (128: 2
    • AES- 256: 4
    • AES-256: 1
    • DES 9: 1
    • DRBG (256: 1
    • HMAC SHA-1: 12
    • HMAC SHA-256: 1
    • HMAC SHA-384: 1
    • HMAC SHA-512: 1
    • HMAC-SHA1: 3
    • HMAC-SHA1 139: 1
    • PKCS#1: 2
    • RSA 2048: 1
    • SHA-1: 16
    • SHA-1 Byte Oriented 137: 1
    • SHA-1 Byte Oriented 1455: 2
    • SHA-256: 4
    • SHA-384: 2
    • SHA-512: 2
    • cert # AES: 1
  • Certlike:
    • AES -128, 192: 2
    • AES CBC (128: 1
    • AES GCM (128: 2
    • AES- 256: 4
    • AES-256: 1
    • DES 9: 1
    • DRBG (256: 1
    • HMAC SHA-1: 12
    • HMAC SHA-256: 1
    • HMAC SHA-384: 1
    • HMAC SHA-512: 1
    • HMAC-SHA1: 4
    • PKCS#1: 2
    • RSA 2048: 1
    • SHA-1: 15
    • SHA-1 Byte Oriented 137: 1
    • SHA-1 Byte Oriented 1455: 2
    • SHA-256: 3
    • SHA-384: 2
    • SHA-512: 2
    • cert # AES: 1
pdf_data/keywords/vendor
  • Cisco:
    • Cisco: 28
    • Cisco Systems: 2
    • Cisco Systems, Inc: 43
  • Cisco:
    • Cisco: 28
    • Cisco Systems: 2
    • Cisco Systems, Inc: 45
pdf_data/keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 23
      • AES-: 4
      • AES-256: 1
    • RC:
      • RC4: 3
  • DES:
    • 3DES:
      • TDES: 1
      • Triple-DES: 12
    • DES:
      • DES: 6
  • constructions:
    • MAC:
      • CMAC: 1
      • HMAC: 25
  • AES_competition:
    • AES:
      • AES: 22
      • AES-: 4
      • AES-256: 1
    • RC:
      • RC4: 3
  • DES:
    • 3DES:
      • Triple-DES: 3
    • DES:
      • DES: 5
  • constructions:
    • MAC:
      • CMAC: 1
      • HMAC: 25
pdf_data/keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 1
    • ECDH:
      • ECDH: 3
    • ECDSA:
      • ECDSA: 2
  • FF:
    • DH:
      • DH: 6
      • Diffie-Hellman: 25
  • RSA:
    • RSA 2048: 1
  • ECC:
    • ECC:
      • ECC: 2
    • ECDH:
      • ECDH: 4
    • ECDSA:
      • ECDSA: 3
  • FF:
    • DH:
      • DH: 7
      • Diffie-Hellman: 20
  • RSA:
    • RSA 2048: 1
pdf_data/keywords/hash_function
  • MD:
    • MD5:
      • MD5: 8
  • SHA:
    • SHA1:
      • SHA-1: 19
    • SHA2:
      • SHA-256: 4
      • SHA-384: 2
      • SHA-512: 2
  • MD:
    • MD5:
      • MD5: 8
  • SHA:
    • SHA1:
      • SHA-1: 18
    • SHA2:
      • SHA-256: 3
      • SHA-384: 2
      • SHA-512: 2
pdf_data/keywords/crypto_protocol
  • IKE:
    • IKE: 27
    • IKEv2: 1
  • IPsec:
    • IPsec: 14
  • SSH:
    • SSH: 39
  • TLS:
    • TLS:
      • TLS: 45
      • TLSv1.2: 1
  • VPN:
    • VPN: 4
  • IKE:
    • IKE: 27
    • IKEv2: 4
  • IPsec:
    • IPsec: 14
  • SSH:
    • SSH: 39
  • TLS:
    • TLS:
      • TLS: 4
  • VPN:
    • VPN: 4
pdf_data/keywords/randomness
  • PRNG:
    • DRBG: 51
  • RNG:
    • RNG: 3
  • PRNG:
    • DRBG: 47
  • RNG:
    • RNG: 3
pdf_data/keywords/cipher_mode
  • CBC:
    • CBC: 7
  • CTR:
    • CTR: 6
  • ECB:
    • ECB: 3
  • GCM:
    • GCM: 8
  • CBC:
    • CBC: 4
  • CTR:
    • CTR: 5
  • ECB:
    • ECB: 3
  • GCM:
    • GCM: 6
pdf_data/keywords/standard_id
  • FIPS:
    • FIPS 140: 4
    • FIPS 140-2: 20
    • FIPS PUB 140-2: 1
  • NIST:
    • SP 800-38D: 1
    • SP 800-52: 1
    • SP 800-90: 5
  • PKCS:
    • PKCS#1: 1
  • RFC:
    • RFC 4253: 1
    • RFC 5246: 1
    • RFC 5288: 1
    • RFC 6071: 1
    • RFC 7296: 2
  • FIPS:
    • FIPS 140: 4
    • FIPS 140-2: 20
    • FIPS PUB 140-2: 1
  • NIST:
    • SP 800-38D: 1
    • SP 800-90: 5
  • PKCS:
    • PKCS#1: 1
  • RFC:
    • RFC 7296: 2
pdf_data/policy_metadata
state/policy_pdf_hash Different Different
state/policy_txt_hash Different Different
web_data/certificate_pdf_url https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/December 2020_040121_1006_signed.pdf https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/October 2023_011123_0711.pdf
web_data/date_sunset 17.12.2025
web_data/historical_reason SP 800-56Arev3 transition - replaced by certificate #4644
web_data/status historical active
web_data/validation_history
  • date: 18.12.2020
  • lab: ACUMEN SECURITY, LLC
  • validation_type: Initial
  • date: 25.10.2023
  • lab: ACUMEN SECURITY, LLC
  • validation_type: Initial
web_data/vendor_url https://www.cisco.com http://www.cisco.com