This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	IBM Java JCE FIPS 140-2 Cryptographic Module	IBM Java JCE FIPS 140-2 Cryptographic Module
cert_id	1081	2715
dgst	e18037f42fd038fa	fda3f9dbfd08f12e
heuristics/algorithms	DSA#297, HMAC#445, AES#805, Triple-DES#687, RNG#463, RSA#387, SHS#803	ECDSA#848, HMAC#2534, Triple-DES#2141, ECDSA#847, CVL#758, HMAC#2535, DRBG#1122, Triple-DES#2142, CVL#762, RSA#1991, CVL#764, RSA#1988, DRBG#1121, AES#3908, DSA#1064, AES#3905, Triple-DES#2144, CVL#765, RSA#1992, CVL#760, DRBG#1119, DSA#1062, AES#3907, SHS#3219, DSA#1065, DSA#1066, DRBG#1120, SHS#3220, AES#3906, Triple-DES#2140, SHS#3218, ECDSA#850, RSA#1989, Triple-DES#2143, CVL#759, AES#3904, SHS#3216, HMAC#2536, SHS#3217, CVL#766, HMAC#2537, HMAC#2533, ECDSA#849, ECDSA#851, CVL#763, DRBG#1123, RSA#1990, DSA#1063, CVL#767, CVL#761
heuristics/cpe_matches	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	140, 2	140, 2
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	1777	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	1777	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	1777	{}
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	1777	{}
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #1: 1 #3: 2 #8: 3	Cert: #1062: 1 #1063: 1 #1064: 1 #1065: 1 #1066: 1 #1119: 2 #1120: 2 #1121: 2 #1122: 2 #1123: 2 #1988: 1 #1989: 1 #1990: 1 #1991: 1 #1992: 1 #2140: 1 #2141: 1 #2142: 1 #2143: 1 #2144: 1 #2533: 1 #2534: 1 #2535: 1 #2536: 1 #2537: 1 #3216: 1 #3217: 1 #3218: 1 #3219: 1 #3220: 1 #3904: 1 #3905: 1 #3906: 1 #3907: 1 #3908: 1 #758: 1 #759: 1 #760: 1 #761: 1 #762: 1 #763: 1 #764: 1 #765: 1 #766: 1 #767: 1 #847: 1 #848: 1 #849: 1 #850: 1 #851: 1
pdf_data/keywords/fips_security_level	Level: Level 1: 13 level 1: 3	Level: Level 1: 6
pdf_data/keywords/fips_certlike	Certlike: HMAC SHA-256: 1 HMAC SHA-384: 1 HMAC SHA-512: 1 HMAC SHA1: 1 HMAC SHA256: 1 HMAC SHA384: 1 HMAC SHA512: 1 HMAC- SHA1: 2 HMAC- SHA256: 1 HMAC- SHA384: 1 HMAC- SHA512: 1 HMAC-SHA 256: 2 HMAC-SHA 384: 2 HMAC-SHA 512: 2 HMAC-SHA1: 12 HMAC-SHA256: 8 HMAC-SHA384: 8 HMAC-SHA512: 8 HMAC–SHA-1: 1 HMAC–SHA-256: 1 HMAC–SHA-512: 1 PKCS #1: 1 PKCS #3: 4 PKCS #8: 6 PKCS#1: 2 PKCS#8: 6 RSA PKCS #1: 1 SHA- 512: 1 SHA-1: 1 SHA-256: 5 SHA-3: 1 SHA-384: 5 SHA-5: 1 SHA-512: 4 SHA1: 7 SHA2: 24 SHA256: 4 SHA3: 23 SHA384: 3 SHA5: 23 SHA512: 4	Certlike: #1992 RSA: 1 #767 Diffie-Hellman: 1 CVL #758: 1 CVL #759: 1 HMAC- SHA-512: 1 HMAC-SHA-1: 4 HMAC-SHA-256: 2 HMAC-SHA-384: 2 PKCS#1: 4 SHA 64: 1 SHA- 1: 3 SHA- 224: 1 SHA- 256: 5 SHA- 384: 2 SHA-1: 7 SHA-224: 7 SHA-256: 9 SHA-384: 8 SHA-512: 8 SHA-512 #1119: 1 SHA-512 #2533: 1 SHA-512 #3216: 1
pdf_data/keywords/vendor	Microsoft: Microsoft: 9 Microsoft Corporation: 1	Microsoft: Microsoft: 5 Microsoft Corporation: 1
pdf_data/keywords/eval_facility		atsec: atsec: 27
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 24 DES: 3DES: Triple-DES: 10 DES: DES: 3 constructions: MAC: HMAC: 66	AES_competition: AES: AES: 18 DES: 3DES: TDEA: 1 Triple-DES: 14 DES: DES: 2 constructions: MAC: HMAC: 11 HMAC-SHA-256: 1 HMAC-SHA-384: 1
pdf_data/keywords/asymmetric_crypto	FF: DH: DH: 10 Diffie-Hellman: 10 DSA: DSA: 20	ECC: ECC: ECC: 3 ECDSA: ECDSA: 22 FF: DH: Diffie-Hellman: 15 DSA: DSA: 27
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	MD: MD5: MD5: 3 SHA: SHA1: SHA-1: 1 SHA1: 7 SHA2: SHA-256: 6 SHA-384: 4 SHA-512: 5 SHA2: 24 SHA256: 4 SHA384: 3 SHA512: 4 SHA3: SHA-3: 1 SHA3: 23	MD: MD5: MD5: 1 SHA: SHA1: SHA-1: 7 SHA2: SHA-224: 7 SHA-256: 9 SHA-384: 8 SHA-512: 11
pdf_data/keywords/crypto_scheme	KA: Key Agreement: 1 MAC: MAC: 1	KA: Key Agreement: 1 MAC: MAC: 1
pdf_data/keywords/crypto_protocol	TLS: TLS: TLS: 5	TLS: TLS: TLS: 7 TLS 1.0: 1
pdf_data/keywords/randomness	PRNG: PRNG: 5 RNG: RNG: 10 TRNG: TRNG: 1	PRNG: DRBG: 7 RNG: RNG: 1
pdf_data/keywords/cipher_mode	CBC: CBC: 7 CFB: CFB: 5 ECB: ECB: 6 OFB: OFB: 4	CBC: CBC: 5 CFB: CFB: 1 ECB: ECB: 7 GCM: GCM: 5 OFB: OFB: 5
pdf_data/keywords/ecc_curve		NIST: NIST P-256: 1 P-192: 10 P-224: 10 P-256: 13 P-384: 10 P-521: 8
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis	SCA: timing attacks: 1	SCA: timing attacks: 1
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140-2: 25 FIPS 180-2: 1 FIPS 186-2: 8 FIPS 197: 1 FIPS 46-3: 1 PKCS: PKCS #1: 1 PKCS #3: 2 PKCS #8: 3 PKCS#1: 1 PKCS#8: 3 X509: X.509: 10	FIPS: FIPS 140-2: 62 FIPS 186-4: 1 FIPS PUB 140-2: 2 FIPS140-2: 1 FIPS180-4: 1 FIPS186-4: 4 FIPS197: 1 FIPS198-1: 1 PKCS: PKCS#1: 2
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages	com: com.ibm.crypto.fips.provider: 855 java: java.security: 1	java: java.security: 1
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: amurad /CreationDate: D:20090306135324 /Creator: PScript5.dll Version 5.2.2 /ModDate: D:20090306135324 /Producer: AFPL Ghostscript 8.14 /Title: Microsoft Word - JCE SecurityPolicy.doc pdf_file_size_bytes: 199715 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 75	/Author: /CreationDate: D:20170406175536-05'00' /Creator: /Keywords: /ModDate: D:20170406175536-05'00' /Producer: Foxit PhantomPDF Printer Version 7.3.9.0803 /Subject: /Title: pdf_file_size_bytes: 379146 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 25
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode	When operated in FIPS mode
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt1081.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertAug2016.pdf
web_data/date_sunset
web_data/description	The IBM Java JCE (Java Cryptographic Extension) FIPS provider (IBMJCEFIPS) for Multi-platforms is a scalable, multipurpose cryptographic module that supports many FIPS approved cryptographic operations. This gives Java applications access to the FIPS algorithms via the standard JCE framework that is part of all JVM's at the 1.6 level and higher.	The IBM Java JCE (Java Cryptographic Extension) FIPS provider (IBMJCEFIPS) for multi-platforms is a scalable, multipurpose cryptographic module that supports many FIPS approved cryptographic operations. This gives Java applications access to the FIPS algorithms via the standard JCE framework.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	[]	Physical Security: N/A
web_data/fw_versions	[]	[]
web_data/historical_reason	RNG SP800-131A Revision 1 Transition	Moved to historical list due to sunsetting
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	IBM Java JCE FIPS 140-2 Cryptographic Module	IBM Java JCE FIPS 140-2 Cryptographic Module
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	historical	historical
web_data/sw_versions	1.3.1	1.8
web_data/tested_conf	Windows XP Professional SP2 using IBM JVM 1.6 (single-user mode), , , ,	AIX 7 running on IBM 9119-MHE with PAA, Red Hat Enterprise Linux Server release 7.1 running on IBM 9119-MHE with PAA, Red Hat Enterprise Linux Server release 7.1 running on ThinkCentre M93P with PAA, Windows 7 64-bit running on ThinkCentre M93P without PAA (single-user mode), Windows Server 2012 release 2 running on ThinkCentre M92P Tower Desktop with PAA
web_data/validation_history	date: 22.01.2009 lab: SAIC-VA validation_type: Initial date: 13.03.2009 lab: validation_type: Update	date: 22.08.2016 lab: ATSEC INFORMATION SECURITY CORP validation_type: Initial date: 10.04.2017 lab: ATSEC INFORMATION SECURITY CORP validation_type: Update
web_data/vendor	IBM® Corporation	IBM® Corporation
web_data/vendor_url	http://www.ibm.com	http://www.ibm.com