| cert_id |
2960 |
3261 |
| dgst |
b519d4ef719504d4 |
b98f7dad337a57c1 |
| heuristics/algorithms |
Triple-DES#2307, RSA#2297, SHS#3512, CVL#1008, HMAC#2811, ECDSA#995, AES#4266, DRBG#1337 |
Triple-DES#2307, RSA#2297, SHS#3512, CVL#1008, HMAC#2811, AES#4266, DRBG#1337 |
| heuristics/cpe_matches |
{} |
cpe:2.3:a:cisco:firepower:6.2.2.1:*:*:*:*:*:*:*, cpe:2.3:a:cisco:firepower:6.2.3.7:*:*:*:*:*:*:*, cpe:2.3:a:cisco:firepower:6.2.1:*:*:*:*:*:*:*, cpe:2.3:a:cisco:firepower:6.2.3.1:*:*:*:*:*:*:* |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/extracted_versions |
6.1 |
6.2 |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/module_processed_references/directly_referenced_by |
2979 |
3286 |
| heuristics/module_processed_references/directly_referencing |
{} |
{} |
| heuristics/module_processed_references/indirectly_referenced_by |
2979 |
3286 |
| heuristics/module_processed_references/indirectly_referencing |
{} |
{} |
| heuristics/module_prunned_references |
{} |
{} |
| heuristics/policy_processed_references/directly_referenced_by |
2979 |
3286 |
| heuristics/policy_processed_references/directly_referencing |
{} |
{} |
| heuristics/policy_processed_references/indirectly_referenced_by |
2979 |
3286 |
| heuristics/policy_processed_references/indirectly_referencing |
{} |
{} |
| heuristics/policy_prunned_references |
{} |
{} |
| heuristics/related_cves |
{} |
CVE-2018-0272 |
| heuristics/verified_cpe_matches |
{} |
{} |
| pdf_data/keywords/fips_cert_id |
|
|
| pdf_data/keywords/fips_security_level |
|
|
| pdf_data/keywords/fips_certlike |
- Certlike:
- AES256: 1
- DRBG (Cert. #1337: 1
- HMAC-SHA1: 4
- HMAC-SHA256: 2
- HMAC-SHA384: 2
- HMAC-SHA512: 4
- RSA 2048: 4
- SHA-1: 1
|
- Certlike:
- AES 128/192/256: 2
- AES-256: 1
- Diffie-Hellman (CVL Cert. #1008: 2
- HMAC-SHA- 256/384: 2
- HMAC-SHA- 512 512: 2
- HMAC-SHA1: 4
- HMAC-SHA256: 2
- HMAC-SHA384: 2
- HMAC-SHA512: 4
- RSA 2048: 4
- SHA-1: 1
|
| pdf_data/keywords/vendor |
- Cisco:
- Cisco: 21
- Cisco Systems: 4
- Cisco Systems, Inc: 13
|
- Cisco:
- Cisco: 15
- Cisco Systems: 4
- Cisco Systems, Inc: 12
|
| pdf_data/keywords/eval_facility |
|
|
| pdf_data/keywords/symmetric_crypto |
- AES_competition:
- DES:
- constructions:
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/keywords/asymmetric_crypto |
- ECC:
- FF:
- DH:
- DH: 17
- Diffie-Hellman: 13
- RSA:
|
- ECC:
- FF:
- DH:
- DH: 17
- Diffie-Hellman: 14
- RSA:
|
| pdf_data/keywords/pq_crypto |
|
|
| pdf_data/keywords/hash_function |
|
|
| pdf_data/keywords/crypto_scheme |
|
|
| pdf_data/keywords/crypto_protocol |
- SSH:
- TLS:
- SSL:
- TLS:
- TLS: 32
- TLS v1.2: 2
- TLSv1.2: 1
|
- SSH:
- TLS:
- SSL:
- TLS:
- TLS: 45
- TLS v1.2: 2
- TLSv1.2: 2
|
| pdf_data/keywords/randomness |
|
|
| pdf_data/keywords/cipher_mode |
|
|
| pdf_data/keywords/ecc_curve |
- NIST:
- P-256: 12
- P-384: 2
- P-521: 12
|
|
| pdf_data/keywords/crypto_engine |
|
|
| pdf_data/keywords/tls_cipher_suite |
|
|
| pdf_data/keywords/crypto_library |
|
|
| pdf_data/keywords/vulnerability |
|
|
| pdf_data/keywords/side_channel_analysis |
|
|
| pdf_data/keywords/device_model |
|
|
| pdf_data/keywords/tee_name |
|
|
| pdf_data/keywords/os_name |
|
|
| pdf_data/keywords/cplc_data |
|
|
| pdf_data/keywords/ic_data_group |
|
|
| pdf_data/keywords/standard_id |
- FIPS:
- FIPS 140: 2
- FIPS 140-2: 15
- FIPS 186-4: 2
- FIPS PUB 140-2: 1
- NIST:
- NIST SP 800-90A: 1
- SP 800-90A: 4
- RFC:
|
- FIPS:
- FIPS 140: 2
- FIPS 140-2: 14
- FIPS 186-4: 2
- FIPS PUB 140-2: 1
- NIST:
- NIST SP 800-90A: 1
- SP 800-52: 1
- SP 800-90A: 2
- RFC:
- RFC 4253: 1
- RFC 5246: 1
- RFC 5288: 1
|
| pdf_data/keywords/javacard_version |
|
|
| pdf_data/keywords/javacard_api_const |
|
|
| pdf_data/keywords/javacard_packages |
|
|
| pdf_data/keywords/certification_process |
|
|
| pdf_data/policy_metadata |
- /Author: RichardWang
- /CreationDate: D:20170711105742-04'00'
- /ModDate: D:20170711105742-04'00'
- /Producer: Microsoft: Print To PDF
- /Title: Microsoft Word - Cisco Firepower CM ver 6.1 Security-Policy.doc
- pdf_file_size_bytes: 1161961
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 14
|
|
| state/module_download_ok |
True |
True |
| state/module_extract_ok |
True |
True |
| state/policy_convert_garbage |
False |
False |
| state/policy_convert_ok |
True |
True |
| state/policy_download_ok |
True |
True |
| state/policy_extract_ok |
True |
True |
| state/policy_pdf_hash |
Different |
Different |
| state/policy_txt_hash |
Different |
Different |
| web_data/caveat |
When operated in FIPS mode |
When operated in FIPS mode |
| web_data/certificate_pdf_url |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertJuly2017.pdf |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertAug2018.pdf |
| web_data/date_sunset |
|
|
| web_data/description |
The module is designed to help you handle network traffic in a way that complies with your organization's security policy for protecting your network. The system can affect the flow of traffic using access control, which allows you to specify, in a granular fashion, how to handle the traffic entering, exiting, and traversing your network. All the information gathered from it can be used to filter and control that traffic. |
The module is designed to help you handle network traffic in a way that complies with your organization's security policy for protecting your network. The system can affect the flow of traffic using access control, which allows you to specify, in a granular fashion, how to handle the traffic entering, exiting, and traversing your network. All the information gathered from it can be used to filter and control that traffic. |
| web_data/embodiment |
Multi-Chip Stand Alone |
Multi-Chip Stand Alone |
| web_data/exceptions |
Roles, Services, and Authentication: Level 3, Design Assurance: Level 2, Mitigation of Other Attacks: N/A |
Roles, Services, and Authentication: Level 3, Design Assurance: Level 2, Mitigation of Other Attacks: N/A |
| web_data/fw_versions |
6, ., 1 |
6, ., 2 |
| web_data/historical_reason |
SP 800-56Arev3 transition |
SP 800-56Arev3 transition |
| web_data/hw_versions |
[] |
[] |
| web_data/level |
1 |
1 |
| web_data/mentioned_certs |
|
|
| web_data/module_name |
Cisco Firepower Cryptographic Module |
Cisco Firepower Cryptographic Module |
| web_data/module_type |
Firmware |
Firmware |
| web_data/revoked_link |
None |
None |
| web_data/revoked_reason |
None |
None |
| web_data/standard |
FIPS 140-2 |
FIPS 140-2 |
| web_data/status |
historical |
historical |
| web_data/sw_versions |
None |
None |
| web_data/tested_conf |
[Cisco ASA 5506-X, Cisco ASA 5506H-X, Cisco ASA 5506W-X, Cisco ASA 5508-X, Cisco ASA 5516-X, Cisco ASA 5512-X, Cisco ASA 5515-X, Cisco ASA 5525-X, Cisco ASA 5545-X, Cisco ASA 5555-X] with Fire Linux OS 6.1 |
[Cisco ASA 5506-X, Cisco ASA 5506H-X, Cisco ASA 5506W-X, Cisco ASA 5508-X, Cisco ASA 5516-X, Cisco ASA 5525-X, Cisco ASA 5545-X, Cisco ASA 5555-X] with Fire Linux OS 6.2 |
| web_data/validation_history |
- date: 17.07.2017
- lab: GOSSAMER SECURITY SOLUTIONS INC
- validation_type: Initial
|
- date: 14.08.2018
- lab: GOSSAMER SECURITY SOLUTIONS INC
- validation_type: Initial
|
| web_data/vendor |
Cisco Systems, Inc. |
Cisco Systems, Inc. |
| web_data/vendor_url |
http://www.cisco.com |
http://www.cisco.com |