cert_id |
3435 |
4595 |
dgst |
d80d4a47ee832a47 |
ec98fb8da41fa834 |
heuristics/algorithms |
SHS#C460, DRBG#C461, CVL#C460, RSA#C460, DSA#C460, ECDSA#C460, Triple-DES#C460, DRBG#C460, HMAC#C460, AES#C460 |
SHS#C460, DRBG#C461, CVL#C460, RSA#C460, DSA#C460, ECDSA#C460, Triple-DES#C460, DRBG#C460, HMAC#C460, AES#C460 |
heuristics/cpe_matches |
{} |
{} |
heuristics/direct_transitive_cves |
{} |
{} |
heuristics/extracted_versions |
- |
- |
heuristics/indirect_transitive_cves |
{} |
{} |
heuristics/module_processed_references/directly_referenced_by |
{} |
{} |
heuristics/module_processed_references/directly_referencing |
{} |
{} |
heuristics/module_processed_references/indirectly_referenced_by |
{} |
{} |
heuristics/module_processed_references/indirectly_referencing |
{} |
{} |
heuristics/module_prunned_references |
{} |
{} |
heuristics/policy_processed_references/directly_referenced_by |
{} |
2471, 2484, 2472 |
heuristics/policy_processed_references/directly_referencing |
{} |
{} |
heuristics/policy_processed_references/indirectly_referenced_by |
{} |
2471, 2549, 2484, 3099, 2472 |
heuristics/policy_processed_references/indirectly_referencing |
{} |
{} |
heuristics/policy_prunned_references |
{} |
{} |
heuristics/related_cves |
{} |
{} |
heuristics/verified_cpe_matches |
{} |
{} |
pdf_data/keywords/fips_cert_id |
|
|
pdf_data/keywords/fips_security_level |
|
|
pdf_data/keywords/fips_certlike |
- Certlike:
- AES 128, 192: 3
- AES GCM 128: 1
- AES-128: 2
- AES-256: 2
- HMAC SHA-256: 1
- PKCS #1: 32
- SHA- 256: 1
- SHA- 384: 1
- SHA- 512: 2
- SHA-1: 7
- SHA-224: 10
- SHA-256: 11
- SHA-384: 9
- SHA-512: 9
- SHS 112-512: 2
|
- Certlike:
- AES 128, 192: 3
- AES GCM 128: 1
- AES-128: 2
- AES-256: 2
- HMAC SHA-256: 1
- PKCS #1: 28
- SHA- 224: 1
- SHA- 256: 1
- SHA- 384: 1
- SHA- 512: 2
- SHA-1: 7
- SHA-224: 10
- SHA-256: 12
- SHA-384: 10
- SHA-512: 10
- SHS 112-512: 2
|
pdf_data/keywords/vendor |
|
|
pdf_data/keywords/eval_facility |
|
|
pdf_data/keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 50
- AES-: 2
- AES-128: 2
- AES-256: 2
- DES:
- constructions:
|
- AES_competition:
- AES:
- AES: 46
- AES-: 2
- AES-128: 2
- AES-256: 2
- DES:
- constructions:
|
pdf_data/keywords/asymmetric_crypto |
- ECC:
- FF:
- RSA:
- RSA-2048: 1
- RSA-3072: 1
- RSA-OAEP: 3
|
- ECC:
- FF:
- RSA:
- RSA-2048: 1
- RSA-3072: 1
- RSA-OAEP: 3
|
pdf_data/keywords/pq_crypto |
|
|
pdf_data/keywords/hash_function |
- MD:
- PBKDF:
- SHA:
- SHA1:
- SHA2:
- SHA-224: 10
- SHA-256: 11
- SHA-384: 9
- SHA-512: 9
|
- MD:
- PBKDF:
- SHA:
- SHA1:
- SHA2:
- SHA-224: 10
- SHA-256: 12
- SHA-384: 10
- SHA-512: 10
|
pdf_data/keywords/crypto_scheme |
|
|
pdf_data/keywords/crypto_protocol |
- IKE:
- IKE: 91
- IKEv1: 3
- IKEv2: 3
- TLS:
- TLS:
- TLS: 4
- TLS 1.0: 1
- TLS 1.1: 1
- TLS 1.2: 1
- VPN:
|
- IKE:
- IKE: 86
- IKEv1: 3
- IKEv2: 3
- TLS:
- TLS:
- TLS: 4
- TLS 1.0: 1
- TLS 1.1: 1
- TLS 1.2: 1
- VPN:
|
pdf_data/keywords/randomness |
|
|
pdf_data/keywords/cipher_mode |
- CBC:
- CCM:
- CTR:
- ECB:
- GCM:
- XTS:
|
- CBC:
- CCM:
- CTR:
- ECB:
- GCM:
- XTS:
|
pdf_data/keywords/ecc_curve |
- NIST:
- NIST P-192: 3
- NIST P-224: 6
- P-192: 5
- P-224: 16
- P-256: 16
- P-384: 16
- P-521: 16
|
- NIST:
- NIST P-192: 3
- NIST P-224: 6
- P-192: 5
- P-224: 14
- P-256: 14
- P-384: 14
- P-521: 14
|
pdf_data/keywords/crypto_engine |
|
|
pdf_data/keywords/tls_cipher_suite |
|
|
pdf_data/keywords/crypto_library |
|
|
pdf_data/keywords/vulnerability |
|
|
pdf_data/keywords/side_channel_analysis |
|
|
pdf_data/keywords/device_model |
|
|
pdf_data/keywords/tee_name |
|
|
pdf_data/keywords/os_name |
|
|
pdf_data/keywords/cplc_data |
|
|
pdf_data/keywords/ic_data_group |
|
|
pdf_data/keywords/standard_id |
- FIPS:
- FIPS 140: 2
- FIPS 140-2: 19
- FIPS 180-4: 1
- FIPS 186-2: 4
- FIPS 186-4: 10
- FIPS 197: 1
- FIPS 198-1: 2
- FIPS140-2: 1
- NIST:
- NIST SP 800-108: 2
- NIST SP 800-131A: 3
- NIST SP 800-132: 5
- NIST SP 800-133: 1
- NIST SP 800-38A: 1
- NIST SP 800-38B: 1
- NIST SP 800-38E: 1
- NIST SP 800-38F: 2
- NIST SP 800-56A: 1
- NIST SP 800-56B: 3
- NIST SP 800-67: 3
- NIST SP 800-90A: 3
- PKCS:
|
- FIPS:
- FIPS 140: 2
- FIPS 140-2: 24
- FIPS 180-4: 1
- FIPS 186-2: 4
- FIPS 186-4: 10
- FIPS 197: 1
- FIPS 198-1: 2
- FIPS140-2: 1
- NIST:
- NIST SP 800-108: 2
- NIST SP 800-131A: 2
- NIST SP 800-132: 5
- NIST SP 800-133: 1
- NIST SP 800-38A: 1
- NIST SP 800-38B: 1
- NIST SP 800-38E: 1
- NIST SP 800-38F: 2
- NIST SP 800-56A: 3
- NIST SP 800-56B: 3
- NIST SP 800-67: 3
- NIST SP 800-90A: 3
- SP 800-131A: 1
- SP 800-56A: 4
- PKCS:
|
pdf_data/keywords/javacard_version |
|
|
pdf_data/keywords/javacard_api_const |
|
|
pdf_data/keywords/javacard_packages |
|
|
pdf_data/keywords/certification_process |
|
|
pdf_data/policy_metadata |
- /Author: Manoj Maskara
- /CreationDate: D:20200520141803-07'00'
- /Creator: Microsoft® Word for Microsoft 365
- /ModDate: D:20200520141803-07'00'
- /Producer: Microsoft® Word for Microsoft 365
- /Subject: FIPS 140-2 Security Policy Template
- /Title: Security Policy
- pdf_file_size_bytes: 902794
- pdf_hyperlinks: mailto:[email protected]
- pdf_is_encrypted: False
- pdf_number_of_pages: 35
|
- /Author: huntzh
- /CreationDate: D:20220728132652-04'00'
- /ModDate: D:20220728132652-04'00'
- /Producer: Microsoft: Print To PDF
- /Title: Microsoft Word - VMware's IKE Crypto Module FIPS Security Policy.docx
- pdf_file_size_bytes: 2081949
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 33
|
state/module_download_ok |
True |
True |
state/module_extract_ok |
True |
True |
state/policy_convert_garbage |
False |
False |
state/policy_convert_ok |
True |
True |
state/policy_download_ok |
True |
True |
state/policy_extract_ok |
True |
True |
state/policy_pdf_hash |
Different |
Different |
state/policy_txt_hash |
Different |
Different |
web_data/caveat |
When operated in FIPS mode. When entropy is externally loaded, no assurance of the minimum strength of generated keys |
When operated in FIPS mode. When entropy is externally loaded, no assurance of the minimum strength of generated keys |
web_data/certificate_pdf_url |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated.pdf |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2023_101023_1100 signed (2).pdf |
web_data/date_sunset |
20.02.2025 |
20.02.2025 |
web_data/description |
The VMware's IKE Crypto Module v1.1.0 is a general-purpose cryptographic module that provides FIPS-Approved cryptographic functions and services to various VMware's products and components. |
The VMware's IKE Crypto Module v1.1.0 is a general-purpose cryptographic module that provides FIPS-Approved cryptographic functions and services to various VMware's products and components. |
web_data/embodiment |
Multi-Chip Stand Alone |
Multi-Chip Stand Alone |
web_data/exceptions |
Physical Security: N/A, Mitigation of Other Attacks: N/A |
Physical Security: N/A, Mitigation of Other Attacks: N/A |
web_data/fw_versions |
[] |
[] |
web_data/historical_reason |
None |
None |
web_data/hw_versions |
[] |
[] |
web_data/level |
1 |
1 |
web_data/mentioned_certs |
|
|
web_data/module_name |
VMware's IKE Crypto Module |
VMware's IKE Crypto Module |
web_data/module_type |
Software |
Software |
web_data/revoked_link |
None |
None |
web_data/revoked_reason |
None |
None |
web_data/standard |
FIPS 140-2 |
FIPS 140-2 |
web_data/status |
active |
active |
web_data/sw_versions |
1.1.0 |
1.1.0 |
web_data/tested_conf |
PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA (single-user mode), VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 without PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 with PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 without PAA |
PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 16.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA, Ubuntu 18.04 on ESXi 7.0 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA (single-user mode), VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 with PAA, VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon 6126 without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 3800 with an Intel Xeon D-2187NT without PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 with PAA, VMware SD-WAN OS 3.3 running on a VMware SD-WAN Edge 610 with an Intel Atom C3308 without PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 with PAA, VMware SD-WAN OS 4.0 on ESXi 7.0 running on a Dell PowerEdge R640 with an Intel Xeon Gold 5218 without PAA |
web_data/validation_history |
- date: 19.04.2019
- lab: LEIDOS CSTL
- validation_type: Initial
- date: 21.02.2020
- lab: LEIDOS CSTL
- validation_type: Update
|
- date: 12.09.2023
- lab: LEIDOS CSTL
- validation_type: Initial
- date: 03.05.2024
- lab: LEIDOS CSTL
- validation_type: Update
|
web_data/vendor |
VMware, Inc. |
VMware, Inc. |
web_data/vendor_url |
http://www.vmware.com |
http://www.vmware.com |