This page was not yet optimized for use on mobile devices.
Atalla Cryptographic Subsystem (ACS)
Certificate #4992
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, AES-, AES-256, DES, Triple-DES, CBC-MACAsymmetric Algorithms
RSA 4096, RSA 2048, ECDSA, ECCHash functions
SHA-1, SHA-256, SHA-512Schemes
MACRandomness
DRBG, RBGElliptic Curves
P-521, NIST P-521Block cipher modes
ECB, CBC, CCMTrusted Execution Environments
PSPSecurity level
Level 3, Level 1, Level 2Standards
FIPS 140-3, FIPS PUB 140-3, FIPS PUB 197, FIPS PUB 186-4, FIPS 186-4, FIPS 180-4, NIST SP 800-90C, SP 800-38C, SP 800-90B, SP 800-38A, SP 800-38F, SP 800-140F, PKCS#1, PKCS #1, ISO/IEC 24759File metadata
| Creation date | D:20250205175923-05'00' |
|---|---|
| Modification date | D:20250205175923-05'00' |
| Pages | 34 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
04.04.2025 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name Atalla Cryptographic Subsystem (ACS) was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4992,
"dgst": "da2adacc2e9310db",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"RSA SigVer (FIPS186-4)A2606",
"Counter DRBGA2606",
"SHA2-512SHS 3776",
"Conditioning Component Block Cipher Derivation Function SP800-90BA2606",
"AES-CCMA2606",
"ECDSA SigVer (FIPS186-4)A2606",
"AES-CBCAES 4600"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"1.0.3",
"1.24",
"1.20",
"1.23",
"1.0.0",
"1.0.1",
"1.10"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDSA": {
"ECDSA": 21
}
},
"RSA": {
"RSA 2048": 1,
"RSA 4096": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 5
},
"CCM": {
"CCM": 18
},
"ECB": {
"ECB": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"NIST P-521": 1,
"P-521": 17
}
},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1": 1
}
},
"fips_certlike": {
"Certlike": {
"AES 4600": 1,
"AES-256": 2,
"Cert #AES": 2,
"PKCS #1": 2,
"PKCS#1": 2,
"RSA 2048": 1,
"RSA 4096": 1,
"SHA- 512": 1,
"SHA-1": 1,
"SHA-256": 1,
"SHA-512": 7,
"SHA2- 512": 1,
"SHA2-512": 8,
"SHS 3776": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 1,
"Level 2": 1,
"Level 3": 5
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 1
},
"SHA2": {
"SHA-256": 1,
"SHA-512": 7
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 29
},
"RNG": {
"RBG": 7
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-3": 9,
"FIPS 180-4": 1,
"FIPS 186-4": 6,
"FIPS PUB 140-3": 1,
"FIPS PUB 186-4": 1,
"FIPS PUB 197": 1
},
"ISO": {
"ISO/IEC 24759": 2
},
"NIST": {
"NIST SP 800-90C": 1,
"SP 800-140F": 1,
"SP 800-38A": 1,
"SP 800-38C": 1,
"SP 800-38F": 1,
"SP 800-90B": 3
},
"PKCS": {
"PKCS #1": 1,
"PKCS#1": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 12,
"AES-": 10,
"AES-256": 2
}
},
"DES": {
"3DES": {
"Triple-DES": 2
},
"DES": {
"DES": 4
}
},
"constructions": {
"MAC": {
"CBC-MAC": 1
}
}
},
"tee_name": {
"AMD": {
"PSP": 4
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/CreationDate": "D:20250205175923-05\u002700\u0027",
"/ModDate": "D:20250205175923-05\u002700\u0027",
"pdf_file_size_bytes": 681752,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf",
"http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf",
"http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.197.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf",
"http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf",
"https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90C.3pd.pdf",
"http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 34
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "cc4c45bed3fca485d744b6da31b75ea38424a172ac2903dd61bba762cfd33521",
"policy_txt_hash": "ef251ccf52215699a5f000363dc876ca116af73b13eb177b54e49000d9210f26"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "Interim validation. When installed, initialized and configured as specified in Section 2.11 of the Security Policy",
"certificate_pdf_url": null,
"date_sunset": "2027-03-24",
"description": "The ACS is a multi-chip embedded cryptographic module. It consists of a secure hardware platform, a firmware secure loader, and three separate microcontrollers, collectively called the Physical Security Monitor Central Unit or PSMCU). The purpose of the cryptographic module is to load Approved (RSA and ECDSA signed) application programs, called \"personalities\", in a secure manner.",
"embodiment": "Multi-Chip Embedded",
"exceptions": [
"Operational environment: N/A",
"Non-invasive security: N/A",
"Mitigation of other attacks: N/A"
],
"fw_versions": "Loader 1.24[1][2][3], PSMCU 1.0.1[1][2][3] and 1.0.3[3], CMS-OCT 1.0.0[1][2][3] and 1.0.3[3], CMS-NTX 1.0.0[1], Loader Stage 1 1.10[1][2][3], Loader Stage 2 1.20[1][2][3], Boot 1.23[1][2][3]",
"historical_reason": null,
"hw_versions": "C9B60-2108A[1], C9B60-2108B[2], and C9B60-2108C[3]",
"level": 3,
"mentioned_certs": {},
"module_name": "Atalla Cryptographic Subsystem (ACS)",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2025-03-25",
"lab": "LEIDOS CSTL",
"validation_type": "Initial"
}
],
"vendor": "Utimaco Inc.",
"vendor_url": "http://hsm.utimaco.com"
}
}