This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	VMware's IKE Crypto Module	VMware's IKE Crypto Module
cert_id	3435	4595
dgst	d80d4a47ee832a47	ec98fb8da41fa834
heuristics/algorithms	Triple-DES#C460, DSA#C460, HMAC#C460, CVL#C460, ECDSA#C460, SHS#C460, AES#C460, DRBG#C461, RSA#C460, DRBG#C460	Triple-DES#C460, DSA#C460, HMAC#C460, CVL#C460, ECDSA#C460, SHS#C460, AES#C460, DRBG#C461, RSA#C460, DRBG#C460
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	-	-
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	{}	2472, 2484, 2471
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	2472, 2471, 3099, 2549, 2484
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1: 16	Cert: #1: 14
pdf_data/keywords/fips_security_level	Level: Level 1: 4	Level: Level 1: 4
pdf_data/keywords/fips_certlike	Certlike: AES 128, 192: 3 AES GCM 128: 1 AES-128: 2 AES-256: 2 HMAC SHA-256: 1 PKCS #1: 32 SHA- 256: 1 SHA- 384: 1 SHA- 512: 2 SHA-1: 7 SHA-224: 10 SHA-256: 11 SHA-384: 9 SHA-512: 9 SHS 112-512: 2	Certlike: AES 128, 192: 3 AES GCM 128: 1 AES-128: 2 AES-256: 2 HMAC SHA-256: 1 PKCS #1: 28 SHA- 224: 1 SHA- 256: 1 SHA- 384: 1 SHA- 512: 2 SHA-1: 7 SHA-224: 10 SHA-256: 12 SHA-384: 10 SHA-512: 10 SHS 112-512: 2
pdf_data/keywords/vendor	Cisco: Cisco: 2	Cisco: Cisco: 2
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 50 AES-: 2 AES-128: 2 AES-256: 2 DES: 3DES: Triple-DES: 15 DES: DES: 1 constructions: MAC: CMAC: 17 HMAC: 17	AES_competition: AES: AES: 46 AES-: 2 AES-128: 2 AES-256: 2 DES: 3DES: Triple-DES: 14 DES: DES: 1 constructions: MAC: CMAC: 15 HMAC: 15
pdf_data/keywords/asymmetric_crypto	ECC: ECC: ECC: 2 ECDSA: ECDSA: 21 FF: DH: Diffie-Hellman: 19 DSA: DSA: 18 RSA: RSA-2048: 1 RSA-3072: 1 RSA-OAEP: 3	ECC: ECC: ECC: 2 ECDSA: ECDSA: 19 FF: DH: Diffie-Hellman: 8 DSA: DSA: 19 RSA: RSA-2048: 1 RSA-3072: 1 RSA-OAEP: 3
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	MD: MD5: MD5: 1 PBKDF: PBKDF: 2 PBKDF2: 2 SHA: SHA1: SHA-1: 7 SHA2: SHA-224: 10 SHA-256: 11 SHA-384: 9 SHA-512: 9	MD: MD5: MD5: 1 PBKDF: PBKDF: 2 PBKDF2: 2 SHA: SHA1: SHA-1: 7 SHA2: SHA-224: 10 SHA-256: 12 SHA-384: 10 SHA-512: 10
pdf_data/keywords/crypto_scheme	KA: Key Agreement: 8 KEM: KEM: 11 KEX: Key Exchange: 1 MAC: MAC: 2	KA: Key Agreement: 9 KEM: KEM: 9 KEX: Key Exchange: 1 MAC: MAC: 2
pdf_data/keywords/crypto_protocol	IKE: IKE: 91 IKEv1: 3 IKEv2: 3 TLS: TLS: TLS: 4 TLS 1.0: 1 TLS 1.1: 1 TLS 1.2: 1 VPN: VPN: 2	IKE: IKE: 86 IKEv1: 3 IKEv2: 3 TLS: TLS: TLS: 4 TLS 1.0: 1 TLS 1.1: 1 TLS 1.2: 1 VPN: VPN: 2
pdf_data/keywords/randomness	PRNG: DRBG: 29 RNG: RBG: 2	PRNG: DRBG: 26 RNG: RBG: 2
pdf_data/keywords/cipher_mode	CBC: CBC: 7 CCM: CCM: 9 CTR: CTR: 2 ECB: ECB: 3 GCM: GCM: 10 XTS: XTS: 2	CBC: CBC: 7 CCM: CCM: 8 CTR: CTR: 2 ECB: ECB: 3 GCM: GCM: 9 XTS: XTS: 2
pdf_data/keywords/ecc_curve	NIST: NIST P-192: 3 NIST P-224: 6 P-192: 5 P-224: 16 P-256: 16 P-384: 16 P-521: 16	NIST: NIST P-192: 3 NIST P-224: 6 P-192: 5 P-224: 14 P-256: 14 P-384: 14 P-521: 14
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis	SCA: timing attacks: 1	SCA: timing attacks: 1
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140: 2 FIPS 140-2: 19 FIPS 180-4: 1 FIPS 186-2: 4 FIPS 186-4: 10 FIPS 197: 1 FIPS 198-1: 2 FIPS140-2: 1 NIST: NIST SP 800-108: 2 NIST SP 800-131A: 3 NIST SP 800-132: 5 NIST SP 800-133: 1 NIST SP 800-38A: 1 NIST SP 800-38B: 1 NIST SP 800-38E: 1 NIST SP 800-38F: 2 NIST SP 800-56A: 1 NIST SP 800-56B: 3 NIST SP 800-67: 3 NIST SP 800-90A: 3 PKCS: PKCS #1: 16	FIPS: FIPS 140: 2 FIPS 140-2: 24 FIPS 180-4: 1 FIPS 186-2: 4 FIPS 186-4: 10 FIPS 197: 1 FIPS 198-1: 2 FIPS140-2: 1 NIST: NIST SP 800-108: 2 NIST SP 800-131A: 2 NIST SP 800-132: 5 NIST SP 800-133: 1 NIST SP 800-38A: 1 NIST SP 800-38B: 1 NIST SP 800-38E: 1 NIST SP 800-38F: 2 NIST SP 800-56A: 3 NIST SP 800-56B: 3 NIST SP 800-67: 3 NIST SP 800-90A: 3 SP 800-131A: 1 SP 800-56A: 4 PKCS: PKCS #1: 14
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: Manoj Maskara /CreationDate: D:20200520141803-07'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20200520141803-07'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: FIPS 140-2 Security Policy Template /Title: Security Policy pdf_file_size_bytes: 902794 pdf_hyperlinks: mailto:[email protected] pdf_is_encrypted: False pdf_number_of_pages: 35	/Author: huntzh /CreationDate: D:20220728132652-04'00' /ModDate: D:20220728132652-04'00' /Producer: Microsoft: Print To PDF /Title: Microsoft Word - VMware's IKE Crypto Module FIPS Security Policy.docx pdf_file_size_bytes: 2081949 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 33
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode. When entropy is externally loaded, no assurance of the minimum strength of generated keys	When operated in FIPS mode. When entropy is externally loaded, no assurance of the minimum strength of generated keys
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2023_101023_1100 signed (2).pdf
web_data/date_sunset	20.02.2025	20.02.2025
web_data/description	The VMware's IKE Crypto Module v1.1.0 is a general-purpose cryptographic module that provides FIPS-Approved cryptographic functions and services to various VMware's products and components.	The VMware's IKE Crypto Module v1.1.0 is a general-purpose cryptographic module that provides FIPS-Approved cryptographic functions and services to various VMware's products and components.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Physical Security: N/A, Mitigation of Other Attacks: N/A	Physical Security: N/A, Mitigation of Other Attacks: N/A
web_data/fw_versions	[]	[]
web_data/historical_reason	None	None
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	VMware's IKE Crypto Module	VMware's IKE Crypto Module
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	active	active
web_data/sw_versions	1.1.0	1.1.0
web_data/tested_conf	PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA (single-user mode), VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 without PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 with PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 without PAA	PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA (single-user mode), VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 without PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 with PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 without PAA
web_data/validation_history	date: 19.04.2019 lab: LEIDOS CSTL validation_type: Initial date: 21.02.2020 lab: LEIDOS CSTL validation_type: Update	date: 12.09.2023 lab: LEIDOS CSTL validation_type: Initial date: 03.05.2024 lab: LEIDOS CSTL validation_type: Update
web_data/vendor	VMware, Inc.	VMware, Inc.
web_data/vendor_url	http://www.vmware.com	http://www.vmware.com