This page was not yet optimized for use on mobile devices.

Oracle Linux 6 Libreswan Cryptographic Module

Known vulnerabilities detected

Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.

Certificate #3170

Webpage information

Status	historical
Historical reason	SP 800-56Arev3 transition
Validation dates	12.04.2018 , 12.10.2018
Standard	FIPS 140-2
Security level	1
Type	Software
Embodiment	Multi-Chip Stand Alone
Caveat	When operated in FIPS mode with Oracle Linux 6 NSS Cryptographic Module validated to FIPS 140-2 under Cert. #3111 operating in FIPS mode and Oracle Linux OpenSSL Cryptographic Module validated to FIPS 140-2 under Cert. #3017 operating in FIPS mode
Exceptions	Physical Security: N/A Design Assurance: Level 3 Mitigation of Other Attacks: N/A
Description	The Oracle Linux 6 Libreswan Cryptographic Module is a framework for providing cryptographic services to other network entities implementing the IKEv1 and IKEv2 protocols.
Tested configurations	Oracle Linux 6.9 64 bit running on Oracle Server X6-2 with PAA Oracle Linux 6.9 64 bit running on Oracle Server X6-2 without PAA Oracle Linux 6.9 64 bit running on Oracle Server X7-2 with PAAÂ€ Oracle Linux 6.9 64 bit running on Oracle Server X7-2 without PAA (single-user mode)
Vendor	Oracle Corporation
References	This certificate's webpage directly references 2 certificates, transitively this expands into 2 certificates.

Certificate

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, DES, Triple-DES, TDEA, HMAC, HMAC-SHA-256

Asymmetric Algorithms

ECDH, ECDSA, Diffie-Hellman, DH, DHE, DSA

Hash functions

SHA-1, SHA-256, SHA-384, SHA-512, MD5, PBKDF

Schemes

Key Exchange

Protocols

IKEv1, IKEv2, IKE, IPsec

Randomness

DRBG

Libraries

OpenSSL, NSS

Elliptic Curves

P-256, P-384, P-521

Block cipher modes

CBC, CTR, GCM

Vendor

Huawei, Cisco

Security level

Level 1, level 1

Side-channel analysis

Timing Attacks

Standards

FIPS 140-2, FIPS 140, FIPS PUB 140-2, FIPS 197, FIPS 180-4, FIPS 198-1, FIPS 186-4, NIST SP 800-135, SP 800-135, NIST SP 800-38A, NIST SP 800-38D, NIST SP 800-38F, NIST SP 800-56A, NIST SP 800-67, NIST SP 800-90A

File metadata

Author	chris brych
Creation date	D:20180924125023-05'00'
Modification date	D:20180924125023-05'00'
Pages	25
Creator	Microsoft® Office Word 2007
Producer	Microsoft® Office Word 2007

References

Outgoing

3017 - historical - Oracle Linux OpenSSL Cryptographic Module
3111 - historical - Oracle Linux 6 NSS Cryptographic Module

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

CPE matches

Related CVEs

ID	Links	Severity	CVSS Score			Published on
ID	Links	Severity	Base	Exploitability	Impact	Published on
CVE-2004-2771	C N	HIGH	7.5		6.4	24.12.2014
CVE-2010-5325	C N	CRITICAL	9.8		5.9	15.04.2016
CVE-2013-4312	C N	MEDIUM	6.2		3.6	08.02.2016
CVE-2013-5211	C N	MEDIUM	5.0		2.9	02.01.2014
CVE-2013-5704	C N	MEDIUM	5.0		2.9	15.04.2014
CVE-2013-7421	C N	LOW	2.1		2.9	02.03.2015
CVE-2014-0196	C N	MEDIUM	6.9		10.0	07.05.2014
CVE-2014-0203	C N	MEDIUM	5.5		3.6	23.06.2014
CVE-2014-1737	C N	HIGH	7.2		10.0	11.05.2014
CVE-2014-1738	C N	LOW	2.1		2.9	11.05.2014
CVE-2014-2706	C N	HIGH	7.1		6.9	14.04.2014
CVE-2014-3144	C N	MEDIUM	4.9		6.9	11.05.2014
CVE-2014-3145	C N	MEDIUM	4.9		6.9	11.05.2014
CVE-2014-3153	C N	HIGH	7.8		5.9	07.06.2014
CVE-2014-3581	C N	MEDIUM	5.0		2.9	10.10.2014
CVE-2014-3673	C N	HIGH	7.5		3.6	10.11.2014
CVE-2014-3687	C N	HIGH	7.5		3.6	10.11.2014
CVE-2014-6271	C N	CRITICAL	9.8		5.9	24.09.2014
CVE-2014-7169	C N	CRITICAL	9.8		5.9	25.09.2014
CVE-2014-8134	C N	LOW	3.3		1.4	12.12.2014
CVE-2014-8566	C N	MEDIUM	6.4		4.9	15.11.2014
CVE-2014-9644	C N	LOW	2.1		2.9	02.03.2015
CVE-2015-1351	C N	HIGH	7.5		6.4	30.03.2015
CVE-2015-3195	C N	MEDIUM	5.3		1.4	06.12.2015
CVE-2015-3329	C N	HIGH	7.5		6.4	09.06.2015
CVE-2015-3330	C N	MEDIUM	6.8		6.4	09.06.2015
CVE-2015-4024	C N	MEDIUM	5.0		2.9	09.06.2015
CVE-2015-4643	C N	CRITICAL	9.8		5.9	16.05.2016
CVE-2015-5219	C N	HIGH	7.5		3.6	21.07.2017
CVE-2015-7512	C N	CRITICAL	9.0		6.0	08.01.2016
CVE-2015-7691	C N	HIGH	7.5		3.6	07.08.2017
CVE-2015-7692	C N	HIGH	7.5		3.6	07.08.2017
CVE-2015-7701	C N	HIGH	7.5		3.6	07.08.2017
CVE-2015-7702	C N	MEDIUM	6.5		3.6	07.08.2017
CVE-2015-7703	C N	HIGH	7.5		3.6	24.07.2017
CVE-2015-7852	C N	MEDIUM	5.9		3.6	07.08.2017
CVE-2015-7977	C N	MEDIUM	5.9		3.6	30.01.2017
CVE-2015-8000	C N	MEDIUM	5.0		2.9	16.12.2015
CVE-2015-8126	C N	HIGH	7.5		6.4	13.11.2015
CVE-2015-8629	C N	MEDIUM	5.3		3.6	13.02.2016
CVE-2015-8631	C N	MEDIUM	6.5		3.6	13.02.2016
CVE-2015-8668	C N	CRITICAL	9.8		5.9	08.01.2016
CVE-2015-8896	C N	MEDIUM	6.5		3.6	15.03.2017
CVE-2016-0695	C N	MEDIUM	5.9		3.6	21.04.2016
CVE-2016-1714	C N	HIGH	8.1		6.0	07.04.2016
CVE-2016-1908	C N	CRITICAL	9.8		5.9	11.04.2017
CVE-2016-1930	C N	CRITICAL	9.8		5.9	31.01.2016
CVE-2016-1935	C N	HIGH	8.8		5.9	31.01.2016
CVE-2016-1950	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1952	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1954	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1957	C N	MEDIUM	4.3		1.4	13.03.2016
CVE-2016-1958	C N	MEDIUM	4.3		1.4	13.03.2016
CVE-2016-1960	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1961	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1962	C N	CRITICAL	9.8		5.9	13.03.2016
CVE-2016-1964	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1965	C N	MEDIUM	4.3		1.4	13.03.2016
CVE-2016-1966	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1973	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1974	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-1977	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2177	C N	CRITICAL	9.8		5.9	20.06.2016
CVE-2016-2178	C N	MEDIUM	5.5		3.6	20.06.2016
CVE-2016-2179	C N	HIGH	7.5		3.6	16.09.2016
CVE-2016-2180	C N	HIGH	7.5		3.6	01.08.2016
CVE-2016-2181	C N	HIGH	7.5		3.6	16.09.2016
CVE-2016-2182	C N	CRITICAL	9.8		5.9	16.09.2016
CVE-2016-2518	C N	MEDIUM	5.3		1.4	30.01.2017
CVE-2016-2776	C N	HIGH	7.5		3.6	28.09.2016
CVE-2016-2790	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2791	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2792	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2793	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2794	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2795	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2796	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2797	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2798	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2799	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2800	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2801	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2802	C N	HIGH	8.8		5.9	13.03.2016
CVE-2016-2837	C N	MEDIUM	6.3		3.4	05.08.2016
CVE-2016-3427	C N	CRITICAL	9.8		5.9	21.04.2016
CVE-2016-3458	C N	MEDIUM	4.3		1.4	21.07.2016
CVE-2016-3500	C N	MEDIUM	5.3		1.4	21.07.2016
CVE-2016-3508	C N	MEDIUM	5.3		1.4	21.07.2016
CVE-2016-3550	C N	MEDIUM	4.3		1.4	21.07.2016
CVE-2016-3587	C N	CRITICAL	9.6		6.0	21.07.2016
CVE-2016-3598	C N	CRITICAL	9.6		6.0	21.07.2016
CVE-2016-3610	C N	CRITICAL	9.6		6.0	21.07.2016
CVE-2016-3710	C N	HIGH	8.8		6.0	11.05.2016
CVE-2016-3715	C N	MEDIUM	5.5		3.6	05.05.2016
CVE-2016-3718	C N	MEDIUM	5.5		3.6	05.05.2016
CVE-2016-4051	C N	HIGH	8.8		5.9	25.04.2016
CVE-2016-4053	C N	LOW	3.7		1.4	25.04.2016
CVE-2016-4054	C N	HIGH	8.1		5.9	25.04.2016
CVE-2016-4448	C N	CRITICAL	9.8		5.9	09.06.2016
CVE-2016-4470	C N	MEDIUM	5.5		3.6	27.06.2016
CVE-2016-4554	C N	HIGH	8.6		4.0	10.05.2016
CVE-2016-4555	C N	HIGH	7.5		3.6	10.05.2016
CVE-2016-4556	C N	HIGH	7.5		3.6	10.05.2016
CVE-2016-4581	C N	MEDIUM	5.5		3.6	23.05.2016
CVE-2016-4805	C N	HIGH	7.8		5.9	23.05.2016
CVE-2016-4809	C N	HIGH	7.5		3.6	21.09.2016
CVE-2016-4913	C N	HIGH	7.8		5.9	23.05.2016
CVE-2016-4951	C N	HIGH	7.8		5.9	23.05.2016
CVE-2016-5118	C N	CRITICAL	9.8		5.9	10.06.2016
CVE-2016-5252	C N	HIGH	8.8		5.9	05.08.2016
CVE-2016-5254	C N	CRITICAL	9.8		5.9	05.08.2016
CVE-2016-5258	C N	HIGH	8.8		5.9	05.08.2016
CVE-2016-5259	C N	HIGH	8.8		5.9	05.08.2016
CVE-2016-5262	C N	MEDIUM	6.1		2.7	05.08.2016
CVE-2016-5263	C N	HIGH	8.8		5.9	05.08.2016
CVE-2016-5264	C N	HIGH	8.8		5.9	05.08.2016
CVE-2016-5265	C N	MEDIUM	5.5		4.0	05.08.2016
CVE-2016-5385	C N	HIGH	8.1		5.9	19.07.2016
CVE-2016-5387	C N	HIGH	8.1		5.9	19.07.2016
CVE-2016-5388	C N	HIGH	8.1		5.9	19.07.2016
CVE-2016-5403	C N	MEDIUM	5.5		3.6	02.08.2016
CVE-2016-5404	C N	MEDIUM	6.5		3.6	07.09.2016
CVE-2016-5408	C N	CRITICAL	9.8		5.9	10.08.2016
CVE-2016-5418	C N	HIGH	7.5		3.6	21.09.2016
CVE-2016-5844	C N	MEDIUM	6.5		3.6	21.09.2016
CVE-2016-6197	C N	MEDIUM	5.5		3.6	06.08.2016
CVE-2016-6198	C N	MEDIUM	5.5		3.6	06.08.2016
CVE-2016-6302	C N	HIGH	7.5		3.6	16.09.2016
CVE-2016-7039	C N	HIGH	7.5		3.6	16.10.2016
CVE-2016-7166	C N	MEDIUM	5.5		3.6	21.09.2016
CVE-2022-21499	C N	MEDIUM	4.6		6.4	09.06.2022
CVE-2023-22024	C N	MEDIUM	5.5		3.6	20.09.2023

Showing 5 out of 132.

References

Updates Feed

08.09.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated.
23.06.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:6:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*']} values discarded.
14.10.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2015-5219', 'CVE-2016-4556', 'CVE-2016-4053', 'CVE-2015-7692', 'CVE-2016-4470', 'CVE-2016-4555', 'CVE-2016-4051', 'CVE-2016-3500', 'CVE-2016-4448', 'CVE-2016-5385', 'CVE-2015-7701', 'CVE-2016-4805', 'CVE-2010-5325', 'CVE-2016-3458', 'CVE-2015-4643', 'CVE-2016-2178', 'CVE-2016-3508', 'CVE-2016-4913', 'CVE-2016-2177', 'CVE-2016-4581', 'CVE-2016-5388', 'CVE-2016-4951', 'CVE-2015-7691', 'CVE-2015-7703', 'CVE-2016-3715', 'CVE-2016-3427', 'CVE-2016-5118', 'CVE-2016-5387', 'CVE-2016-3718', 'CVE-2016-3710', 'CVE-2016-4554', 'CVE-2016-0695', 'CVE-2015-7702', 'CVE-2016-4054', 'CVE-2015-7852']} values added.
01.10.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2023-22024', 'CVE-2014-6271', 'CVE-2014-7169', 'CVE-2015-8668', 'CVE-2013-5211', 'CVE-2014-3153']} values added.
18.05.2023

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*']} values discarded.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-4556', 'CVE-2016-5844', 'CVE-2016-4053', 'CVE-2004-2771', 'CVE-2016-3587', 'CVE-2016-4555', 'CVE-2015-3330', 'CVE-2015-1351', 'CVE-2016-4051', 'CVE-2014-8566', 'CVE-2016-5408', 'CVE-2016-2181', 'CVE-2016-7166', 'CVE-2016-7039', 'CVE-2016-4805', 'CVE-2016-6197', 'CVE-2010-5325', 'CVE-2016-6198', 'CVE-2016-2178', 'CVE-2016-4913', 'CVE-2016-2177', 'CVE-2016-4581', 'CVE-2016-5388', 'CVE-2016-1714', 'CVE-2016-2179', 'CVE-2016-4951', 'CVE-2016-5118', 'CVE-2016-2182', 'CVE-2016-2180', 'CVE-2016-6302', 'CVE-2015-4024', 'CVE-2016-4554', 'CVE-2016-4809', 'CVE-2015-3329', 'CVE-2016-5404', 'CVE-2016-4054', 'CVE-2016-5418']} values added.
19.03.2023

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-4556', 'CVE-2016-5844', 'CVE-2016-4053', 'CVE-2004-2771', 'CVE-2016-3587', 'CVE-2016-4555', 'CVE-2015-1351', 'CVE-2016-4051', 'CVE-2015-3330', 'CVE-2014-8566', 'CVE-2016-5408', 'CVE-2016-2181', 'CVE-2016-7166', 'CVE-2016-7039', 'CVE-2016-4805', 'CVE-2016-6197', 'CVE-2010-5325', 'CVE-2016-6198', 'CVE-2016-2178', 'CVE-2016-4913', 'CVE-2016-2177', 'CVE-2016-4581', 'CVE-2016-5388', 'CVE-2016-1714', 'CVE-2016-2179', 'CVE-2016-4951', 'CVE-2016-5118', 'CVE-2016-2182', 'CVE-2016-2180', 'CVE-2016-6302', 'CVE-2015-4024', 'CVE-2016-4554', 'CVE-2015-3329', 'CVE-2016-4809', 'CVE-2016-5404', 'CVE-2016-4054', 'CVE-2016-5418']} values discarded.
09.02.2023

The certificate data changed.
Certificate changed

The cert_id was updated.

The new value is 3170.

The web extraction data was updated.

The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2018-04-12', 'validation_type': 'Initial', 'lab': 'ATSEC INFORMATION SECURITY CORP'}, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2018-10-12', 'validation_type': 'Update', 'lab': 'ATSEC INFORMATION SECURITY CORP'}], 'vendor_url': 'http://www.oracle.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated2018.pdf', 'hw_versions': None, 'fw_versions': None}.

The standard property was set to FIPS 140-2.

The status property was set to historical.

The level property was set to 1.

The embodiment property was set to Multi-Chip Stand Alone.

The mentioned_certs property was updated, with the {'3111': 1, '3017': 1} data.

The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].

The PDF extraction data was updated.

The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 871597, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 25, '/Author': 'chris brych', '/Creator': 'Microsoft® Office Word 2007', '/CreationDate': "D:20180924125023-05'00'", '/ModDate': "D:20180924125023-05'00'", '/Producer': 'Microsoft® Office Word 2007', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2993', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4774', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1285', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1652', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1427', 'https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3017', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5472', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#2151', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1417', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3549', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component#1924', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#2081', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2536', 'http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/fipscheck-1.2.0-7.el6.x86_64.rpm', 'https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3111', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2995', 'http://csrc.nist.gov/groups/STM/cmvp/index.html', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/ECDSA#1464', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4773', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1199', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1407', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3918', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3550', 'http://www.oracle.com/', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3628', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5469', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2640', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2615', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#4391', 'http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/libreswan-3.15-7.5.0.1.el6_9.x86_64.rpm', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2939', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3184', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2755']}}}.

The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].

The computed heuristics were updated.

The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': ['3017', '3111']}, 'module_prunned_references': {'_type': 'Set', 'elements': ['3017', '3111']}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}.

The algorithms property was set to {'_type': 'Set', 'elements': ['HMAC#2995', 'Triple-DES#2755', 'AES#4774', 'CVL#1924', 'HMAC#3549', 'DRBG#2151', 'HMAC#2993', 'SHS#4391', 'HMAC#3628', 'CVL#1417', 'AES#5472', 'RSA#2615', 'DSA#1285', 'HMAC#3184', 'HMAC#3550', 'ECDSA#1464', 'CVL#2081', 'RSA#2939', 'DRBG#1652', 'AES#4773', 'RSA#2640', 'Triple-DES#2536', 'ECDSA#1199', 'AES#5469', 'CVL#1427', 'DSA#1407', 'SHS#3918']}.

The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].

The state was updated.

The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': '5ed8d53e909a6d44852656fdf695785f3f66f9ea2a3e0c20627c69111c90ba65', 'policy_txt_hash': 'af8e5636edc2cb0bb7b6b6efaf020bdaf30fae9a1450d384351fbbb146b19dce'}.

The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
07.12.2022

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The clean_cert_ids property was updated, with the {'#1924': 2, '#2081': 2} values inserted.

The st_references property was updated, with the {'directly_referencing': {'__add__': {'_type': 'Set', 'elements': ['2081', '1924']}}, 'indirectly_referencing': {'__add__': {'_type': 'Set', 'elements': ['1925', '1418', '2081', '1924']}}} data.
05.11.2022

The certificate data changed.
Certificate changed

The web extraction data was updated.

The algorithms property was set to {'_type': 'Set', 'elements': []}.

The PDF extraction data was updated.

The clean_cert_ids property was updated, with the {'#1924': 2, '#1427': 2, '#2081': 2} values inserted.

The computed heuristics were updated.

The algorithms property was set to {'_type': 'Set', 'elements': []}.
25.10.2022

The certificate data changed.
Certificate changed

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_certlike': {'__update__': {'Certlike': {'__update__': {'SHA-256': 8}, '__delete__': ['SHA- 256', 'PKCS #11', 'AES, 3', 'DES CBC 2536', 'CVL 2081']}}}, 'vendor': {'__delete__': ['STMicroelectronics']}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__delete__': ['E2']}, 'DES': {'__update__': {'DES': {'__update__': {'DES': 1}, '__delete__': ['DEA']}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 15}}}}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__update__': {'Diffie-Hellman': 8, 'DH': 2}}, 'DSA': {'__update__': {'DSA': 2}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA2': {'__update__': {'SHA-256': 8}, '__delete__': ['SHA-2']}}, '__delete__': ['SHA3']}}}, 'crypto_scheme': {'__delete__': ['MAC', 'KA']}, 'crypto_protocol': {'__update__': {'IKE': {'__update__': {'IKEv1': 1}}}, '__delete__': ['TLS']}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 2}}}, '__delete__': ['RNG']}, 'crypto_library': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': 12}}, 'NSS': {'__update__': {'NSS': 23}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'NIST': {'NIST SP 800-135': 1, 'SP 800-135': 2, 'NIST SP 800-38A': 1, 'NIST SP 800-38D': 1, 'NIST SP 800-38F': 1, 'NIST SP 800-56A': 1, 'NIST SP 800-67': 1, 'NIST SP 800-90A': 1}}, '__delete__': ['PKCS']}} data.

The clean_cert_ids property was updated, with the {'#11': 1} values inserted.

The computed heuristics were updated.

The st_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}} data.

The web_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}} data.

The state was updated.

The tables_done property was set to True.
10.10.2022

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*']} values added.
08.10.2022

The certificate data changed.
Certificate changed

The PDF extraction data was updated.

The keywords property was updated, with the {'vendor': {'__insert__': {'Cisco': {'Cisco': 17}}}} data.

The computed heuristics were updated.

The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*']} values discarded.

The st_references property was updated, with the {'directly_referencing': None, 'indirectly_referencing': None} data.

The web_references property was updated, with the {'directly_referencing': None, 'indirectly_referencing': None} data.
17.09.2022

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2014-3581']} values added.
03.09.2022

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-1908']} values added.
17.07.2022

The certificate data changed.
Certificate changed

The _type was updated.

The new value is sec_certs.sample.fips.FIPSCertificate.

The computed heuristics were updated.

The following values were inserted: {'clean_cert_ids': {'#3111': 1, '#3017': 1}}.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.Heuristics.

The keywords property was set to {}.

The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2993', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3549', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3550', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1407', 'algorithm_type': 'DSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2995', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1417', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4773', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5472', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4774', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2939', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2640', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1924', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1285', 'algorithm_type': 'DSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1427', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1652', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1199', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1464', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2151', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2615', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2081', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2536', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3628', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4391', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2755', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3918', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5469', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3184', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}]}.

The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References', 'directly_referencing': {'__add__': {'_type': 'Set', 'elements': ['3111']}}, 'indirectly_referencing': {'__add__': {'_type': 'Set', 'elements': ['3111']}}} data.

The web_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

The state was updated.

The _type property was set to sec_certs.sample.fips.FIPSCertificate.InternalState.

The following properties were deleted: ['fragment_path'].
02.07.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The status property was set to Historical.

The date_sunset property was set to None.

The historical_reason property was set to SP 800-56Arev3 transition.
29.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
25.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
23.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
21.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
19.06.2022

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-21499']} values added.
14.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The pdf_scan was updated.

The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__delete__': ['FIPS 140-2', 'FIPS 180-4', 'FIPS 198-1']}, 'FIPS ?(?:PUB )?[0-9]+?': {'__delete__': ['FIPS 140']}, 'NIST SP [0-9]+-[0-9]+?[a-zA-Z]?': {'__delete__': ['NIST SP 800-135', 'NIST SP 800-38A', 'NIST SP 800-38D', 'NIST SP 800-38F', 'NIST SP 800-56A', 'NIST SP 800-67']}}}, 'rules_block_cipher_modes': {'__update__': {'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-256', 'P-384']}}}, 'rules_crypto_libs': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': {'__update__': {'count': 1}}}}, 'NSS': {'__update__': {'NSS': {'__update__': {'count': 1}}}}}}, 'rules_other': {'__update__': {'library': {'__update__': {'library': {'__update__': {'count': 1}}}}}}} data.

The computed heuristics were updated.

The keywords property was updated, with the {'rules_cert_id': {'__delete__': ['(?:#[^\\S\\r\\n]?|Cert\\.?(?!.\\s)[^\\S\\r\\n]?|Certificate[^\\S\\r\\n]?)(?P<id>\\d{4})(?!\\d)']}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__delete__': ['FIPS 140-2', 'FIPS 180-4', 'FIPS 198-1']}, 'FIPS ?(?:PUB )?[0-9]+?': {'__delete__': ['FIPS 140']}, 'NIST SP [0-9]+-[0-9]+?[a-zA-Z]?': {'__delete__': ['NIST SP 800-135', 'NIST SP 800-38A', 'NIST SP 800-38D', 'NIST SP 800-38F', 'NIST SP 800-56A', 'NIST SP 800-67']}}}, 'rules_block_cipher_modes': {'__update__': {'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-256', 'P-384']}}}, 'rules_crypto_libs': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': {'__update__': {'count': 1}}}}, 'NSS': {'__update__': {'NSS': {'__update__': {'count': 1}}}}}}, 'rules_other': {'__update__': {'library': {'__update__': {'library': {'__update__': {'count': 1}}}}}}} data.

The algorithms property was updated.
07.06.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
24.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
22.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*']} values added.
20.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
19.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
17.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
13.05.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.04.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2013-5704']} values added.
11.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
10.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
08.03.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The following properties were deleted: ['connections'].

The pdf_scan was updated.

The following properties were deleted: ['connections'].

The computed heuristics were updated.

The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3017']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017']}}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}}}.

The algorithms property was updated.

The following properties were deleted: ['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
23.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
18.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The extracted_versions property was set to {'_type': 'Set', 'elements': ['6']}.

The cpe_matches property was set to {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:6:*:*:*:*:*:*']}.
12.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The cpe_matches property was updated, with the [[1, 'cpe:2.3:o:oracle:linux:6:6:*:*:*:*:*:*']] values inserted.
11.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
03.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
02.02.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The module_type property was set to Software.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.
31.01.2022

The certificate data changed.
Certificate changed

The web_scan was updated.

The algorithms property was updated.

The computed heuristics were updated.

The algorithms property was updated.

The cpe_matches property was updated, with the [[1, 'cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*']] values inserted.
30.01.2022

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 3170,
  "dgst": "d7827558d408d7af",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "RSA#2640",
        "HMAC#2995",
        "HMAC#3550",
        "HMAC#3184",
        "Triple-DES#2755",
        "CVL#2081",
        "AES#4773",
        "CVL#1417",
        "RSA#2615",
        "AES#5472",
        "HMAC#3628",
        "SHS#3918",
        "AES#5469",
        "DRBG#1652",
        "RSA#2939",
        "SHS#4391",
        "Triple-DES#2536",
        "DRBG#2151",
        "AES#4774",
        "HMAC#2993",
        "CVL#1427",
        "ECDSA#1199",
        "ECDSA#1464",
        "DSA#1407",
        "DSA#1285",
        "CVL#1924",
        "HMAC#3549"
      ]
    },
    "cpe_matches": {
      "_type": "Set",
      "elements": [
        "cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*",
        "cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*"
      ]
    },
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "6"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "3111",
          "3017"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "3111",
          "3017"
        ]
      }
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": [
        "3111",
        "3017"
      ]
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "3111",
          "3017"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "3111",
          "3017"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "3111",
        "3017"
      ]
    },
    "related_cves": {
      "_type": "Set",
      "elements": [
        "CVE-2016-7039",
        "CVE-2016-4913",
        "CVE-2014-8134",
        "CVE-2016-2793",
        "CVE-2016-6198",
        "CVE-2016-1714",
        "CVE-2016-1954",
        "CVE-2016-5418",
        "CVE-2014-3687",
        "CVE-2016-3500",
        "CVE-2016-1977",
        "CVE-2016-1962",
        "CVE-2016-2790",
        "CVE-2015-8631",
        "CVE-2016-2518",
        "CVE-2016-4470",
        "CVE-2016-4805",
        "CVE-2016-2182",
        "CVE-2016-5265",
        "CVE-2016-2181",
        "CVE-2016-1974",
        "CVE-2016-2799",
        "CVE-2016-1960",
        "CVE-2015-8000",
        "CVE-2016-1935",
        "CVE-2016-1966",
        "CVE-2016-4556",
        "CVE-2014-3673",
        "CVE-2014-3153",
        "CVE-2010-5325",
        "CVE-2016-2797",
        "CVE-2014-7169",
        "CVE-2016-5118",
        "CVE-2016-5252",
        "CVE-2016-5387",
        "CVE-2015-7852",
        "CVE-2016-2802",
        "CVE-2016-3718",
        "CVE-2016-2798",
        "CVE-2016-3598",
        "CVE-2014-1737",
        "CVE-2014-1738",
        "CVE-2016-2179",
        "CVE-2016-3710",
        "CVE-2015-7977",
        "CVE-2016-2795",
        "CVE-2016-4555",
        "CVE-2016-3715",
        "CVE-2016-1930",
        "CVE-2023-22024",
        "CVE-2015-4024",
        "CVE-2016-1952",
        "CVE-2016-1961",
        "CVE-2016-4581",
        "CVE-2016-4054",
        "CVE-2016-3550",
        "CVE-2016-3458",
        "CVE-2016-5263",
        "CVE-2014-6271",
        "CVE-2015-8668",
        "CVE-2016-3587",
        "CVE-2016-2800",
        "CVE-2016-4051",
        "CVE-2016-1965",
        "CVE-2013-4312",
        "CVE-2016-2796",
        "CVE-2022-21499",
        "CVE-2016-2180",
        "CVE-2016-6197",
        "CVE-2016-5258",
        "CVE-2016-1958",
        "CVE-2016-2792",
        "CVE-2016-5262",
        "CVE-2015-7703",
        "CVE-2016-2776",
        "CVE-2016-2791",
        "CVE-2016-7166",
        "CVE-2016-5385",
        "CVE-2016-2178",
        "CVE-2015-3329",
        "CVE-2016-2177",
        "CVE-2016-6302",
        "CVE-2016-1950",
        "CVE-2014-3145",
        "CVE-2014-0196",
        "CVE-2016-5403",
        "CVE-2016-3427",
        "CVE-2016-2801",
        "CVE-2015-3330",
        "CVE-2016-5844",
        "CVE-2015-5219",
        "CVE-2016-1973",
        "CVE-2016-2837",
        "CVE-2016-5388",
        "CVE-2016-3508",
        "CVE-2013-7421",
        "CVE-2016-1964",
        "CVE-2016-5259",
        "CVE-2015-8896",
        "CVE-2015-7691",
        "CVE-2016-4053",
        "CVE-2016-5264",
        "CVE-2016-1908",
        "CVE-2014-3581",
        "CVE-2015-7701",
        "CVE-2016-0695",
        "CVE-2013-5704",
        "CVE-2016-3610",
        "CVE-2015-7512",
        "CVE-2016-4951",
        "CVE-2016-2794",
        "CVE-2014-3144",
        "CVE-2016-1957",
        "CVE-2014-0203",
        "CVE-2016-4448",
        "CVE-2014-2706",
        "CVE-2014-8566",
        "CVE-2016-5404",
        "CVE-2015-7692",
        "CVE-2015-1351",
        "CVE-2016-4554",
        "CVE-2013-5211",
        "CVE-2016-5408",
        "CVE-2016-4809",
        "CVE-2016-5254",
        "CVE-2015-4643",
        "CVE-2014-9644",
        "CVE-2015-8629",
        "CVE-2015-3195",
        "CVE-2015-8126",
        "CVE-2004-2771",
        "CVE-2015-7702"
      ]
    },
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 1
          },
          "ECDSA": {
            "ECDSA": 2
          }
        },
        "FF": {
          "DH": {
            "DH": 2,
            "DHE": 1,
            "Diffie-Hellman": 8
          },
          "DSA": {
            "DSA": 2
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "CTR": {
          "CTR": 1
        },
        "GCM": {
          "GCM": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "NSS": {
          "NSS": 23
        },
        "OpenSSL": {
          "OpenSSL": 12
        }
      },
      "crypto_protocol": {
        "IKE": {
          "IKE": 47,
          "IKEv1": 1,
          "IKEv2": 2
        },
        "IPsec": {
          "IPsec": 5
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key Exchange": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 4,
          "P-384": 4,
          "P-521": 4
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#11": 1,
          "#1417": 2,
          "#1427": 2,
          "#1924": 2,
          "#2081": 2,
          "#3017": 1,
          "#3111": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "CVL 1417": 2,
          "CVL 1427": 1,
          "Diffie-Hellman (CVL Cert. #1417": 2,
          "HMAC SHA-256": 5,
          "HMAC-SHA- 256": 2,
          "HMAC-SHA-256": 8,
          "SHA 1 , 256": 1,
          "SHA 1, 256": 5,
          "SHA-1": 2,
          "SHA-256": 8,
          "SHA-384": 2,
          "SHA-512": 1,
          "SHA-512 3918": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 4,
          "level 1": 2
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 1
          }
        },
        "PBKDF": {
          "PBKDF": 1
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 2
          },
          "SHA2": {
            "SHA-256": 8,
            "SHA-384": 2,
            "SHA-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 2
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "Timing Attacks": 2
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140": 5,
          "FIPS 140-2": 25,
          "FIPS 180-4": 1,
          "FIPS 186-4": 1,
          "FIPS 197": 1,
          "FIPS 198-1": 1,
          "FIPS PUB 140-2": 2
        },
        "NIST": {
          "NIST SP 800-135": 1,
          "NIST SP 800-38A": 1,
          "NIST SP 800-38D": 1,
          "NIST SP 800-38F": 1,
          "NIST SP 800-56A": 1,
          "NIST SP 800-67": 1,
          "NIST SP 800-90A": 1,
          "SP 800-135": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 5
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "Triple-DES": 2
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 15,
            "HMAC-SHA-256": 4
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Cisco": {
          "Cisco": 17
        },
        "Huawei": {
          "Huawei": 7
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "chris brych",
      "/CreationDate": "D:20180924125023-05\u002700\u0027",
      "/Creator": "Microsoft\u00ae Office Word 2007",
      "/ModDate": "D:20180924125023-05\u002700\u0027",
      "/Producer": "Microsoft\u00ae Office Word 2007",
      "pdf_file_size_bytes": 871597,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/libreswan-3.15-7.5.0.1.el6_9.x86_64.rpm",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2995",
          "http://www.oracle.com/",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3184",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2993",
          "http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/fipscheck-1.2.0-7.el6.x86_64.rpm",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#2081",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5472",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2536",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3111",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1417",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3549",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2939",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2615",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3017",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#4391",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/ECDSA#1464",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1407",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2755",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1652",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3550",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4773",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1199",
          "http://csrc.nist.gov/groups/STM/cmvp/index.html",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5469",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#2151",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component#1924",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2640",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1427",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3628",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1285",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3918",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4774"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 25
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "5ed8d53e909a6d44852656fdf695785f3f66f9ea2a3e0c20627c69111c90ba65",
    "policy_txt_hash": "af8e5636edc2cb0bb7b6b6efaf020bdaf30fae9a1450d384351fbbb146b19dce"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode with Oracle Linux 6 NSS Cryptographic Module validated to FIPS 140-2 under Cert. #3111 operating in FIPS mode and Oracle Linux OpenSSL Cryptographic Module validated to FIPS 140-2 under Cert. #3017 operating in FIPS mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated2018.pdf",
    "date_sunset": null,
    "description": "The Oracle Linux 6 Libreswan Cryptographic Module is a framework for providing cryptographic services to other network entities implementing the IKEv1 and IKEv2 protocols.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical Security: N/A",
      "Design Assurance: Level 3",
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": "SP 800-56Arev3 transition",
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {
      "3017": 1,
      "3111": 1
    },
    "module_name": "Oracle Linux 6 Libreswan Cryptographic Module",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": "R6-1.0.0",
    "tested_conf": [
      "Oracle Linux 6.9 64 bit running on Oracle Server X6-2 with PAA",
      "Oracle Linux 6.9 64 bit running on Oracle Server X6-2 without PAA",
      "Oracle Linux 6.9 64 bit running on Oracle Server X7-2 with PAA\u00c2\u20ac",
      "Oracle Linux 6.9 64 bit running on Oracle Server X7-2 without PAA (single-user mode)"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-04-12",
        "lab": "atsec information security corporation",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-10-12",
        "lab": "atsec information security corporation",
        "validation_type": "Update"
      }
    ],
    "vendor": "Oracle Corporation",
    "vendor_url": "http://www.oracle.com"
  }
}

Sections

Oracle Linux 6 Libreswan Cryptographic Module

Known vulnerabilities detected

Certificate #3170

Webpage information

Security policy

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Libraries

Elliptic Curves

Block cipher modes

Device

Vendor

Security

Security level

Side-channel analysis

Other

Standards

File metadata

References

Heuristics

Automated inference - use with caution

CPE matches

Related CVEs

References

Updates Feed

Raw data

Toggle raw data