eToken 5300 Mini and Micro MD 4.3.5

Certificate #4544

Webpage information ?

Status historical
Historical reason Moved to historical list due to sunsetting
Validation dates 29.06.2023
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode with IDPrime MD 830-revB
Exceptions
  • Roles, Services, and Authentication: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Description eToken 5300 is an ideal solution for enterprises looking to deploy the military-grade security of PKI, while maintaining a convenient solution for employees. The eToken 5300 is a compact, tamper-evident USB with presence detection, which creates a third factor of authentication. Something you have (physical token), something you know (PIN), something you do (touching the token). The eToken 5300 is a state-of-the-art new design, which offers multi-application dynamic smart card functionality.
Version (Hardware) 214-010381-001, [1] [2], 214-010382-001, [1] [2]: STM32F042K6U6TR [1] and SLE78CFX3000PH [2]
Version (Firmware) 5300 FIPS FW ver-14.0.15 [1] and {IDCore30-revB - Build 06, IDPrime MD Applet version V4.3.5.D and MSPNP Applet V1.2} [2]
Vendor Thales
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-128, AES-192, AES-256, DES, TDEA, TDES, Triple-DES, CMAC
Asymmetric Algorithms
RSA-2048, RSA 2048, ECDH, ECDSA, ECC, Diffie-Hellman, DH
Hash functions
SHA-1, SHA-224, SHA-256, SHA-512, SHA256, SHA-384, SHA2
Schemes
MAC
Randomness
DRBG, RNG
Elliptic Curves
P-224, P-256, P-384, P-521, P-192
Block cipher modes
ECB, CBC, CTR

JavaCard versions
Java Card 2.2.2, Java Card 3.0.1, JavaCard 2.2.2, GlobalPlatform 2.1.1
Trusted Execution Environments
SE
Vendor
Infineon, STMicro, Thales Group, Thales, Microsoft

Security level
Level 2, Level 3
Side-channel analysis
Side channel

Standards
FIPS 140-2, FIPS140-2, FIPS 113, FIPS 197, FIPS 186-4, FIPS 180-4, FIPS PUB 140-2, SP 800-67, SP 800-56A, SP 800-90A, SP 800-108, SP 800-133, SP 800-90, SP 800-56B, PKCS#1, PKCS #1, PKCS1, SCP03

File metadata

Author Wolfe, Susan
Creation date D:20230531090645-07'00'
Modification date D:20230531090709-07'00'
Pages 42
Creator Acrobat PDFMaker 23 for Word
Producer Adobe PDF Library 23.1.206

References

Outgoing
  • 719 - historical - Connect:Direct Secure+ Option

Heuristics ?

No heuristics are available for this certificate.

References ?

Updates ?

  • 02.01.2024 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The status property was set to historical.
    • The historical_reason property was set to Moved to historical list due to sunsetting.
    • The date_sunset property was set to None.
  • 31.07.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf.
  • 03.07.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4544,
  "dgst": "dcdc295abab24089",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#3779",
        "DRBG#1045",
        "Triple-DES#2100",
        "RSA#2622",
        "KBKDF#81",
        "RSA#1946",
        "ECDSA#814",
        "SHS#3146",
        "SHS#3928",
        "RSA#1947"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "14.0.15",
        "1.2",
        "4.3.5"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "719"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "118",
          "719"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "719"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 3
          },
          "ECDH": {
            "ECDH": 1
          },
          "ECDSA": {
            "ECDSA": 18
          }
        },
        "FF": {
          "DH": {
            "DH": 2,
            "Diffie-Hellman": 2
          }
        },
        "RSA": {
          "RSA 2048": 2,
          "RSA-2048": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "CTR": {
          "CTR": 1
        },
        "ECB": {
          "ECB": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "MAC": {
          "MAC": 7
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-192": 2,
          "P-224": 18,
          "P-256": 18,
          "P-384": 18,
          "P-521": 18
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1,
          "#3779": 1,
          "#719": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES 128": 2,
          "AES 128/192/256": 4,
          "AES CMAC Cert. #3779": 1,
          "AES-128": 2,
          "AES-128/192/256": 8,
          "AES-192": 1,
          "AES-256": 1,
          "Cert # AES": 1,
          "DSA2": 1,
          "PKCS #1": 2,
          "PKCS#1": 15,
          "PKCS1": 4,
          "RSA 2048": 2,
          "RSA PKCS#1": 3,
          "RSA2": 1,
          "SHA- 384": 1,
          "SHA-1": 4,
          "SHA-224": 2,
          "SHA-256": 6,
          "SHA-384": 1,
          "SHA-512": 4,
          "SHA2": 1,
          "SHA256": 2
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 42,
          "Level 3": 2
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 4
          },
          "SHA2": {
            "SHA-224": 2,
            "SHA-256": 6,
            "SHA-384": 1,
            "SHA-512": 4,
            "SHA2": 1,
            "SHA256": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {
        "GlobalPlatform": {
          "GlobalPlatform 2.1.1": 1
        },
        "JavaCard": {
          "Java Card 2.2.2": 3,
          "Java Card 3.0.1": 1,
          "JavaCard 2.2.2": 1
        }
      },
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 8
        },
        "RNG": {
          "RNG": 1
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "Side channel": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 113": 1,
          "FIPS 140-2": 48,
          "FIPS 180-4": 3,
          "FIPS 186-4": 5,
          "FIPS 197": 2,
          "FIPS PUB 140-2": 1,
          "FIPS140-2": 1
        },
        "NIST": {
          "SP 800-108": 2,
          "SP 800-133": 1,
          "SP 800-56A": 2,
          "SP 800-56B": 2,
          "SP 800-67": 2,
          "SP 800-90": 3,
          "SP 800-90A": 2
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 9,
          "PKCS1": 2
        },
        "SCP": {
          "SCP03": 20
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 29,
            "AES-128": 2,
            "AES-192": 1,
            "AES-256": 1
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "TDES": 1,
            "Triple-DES": 10
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 5
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SE": 4
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "Infineon": {
          "Infineon": 2
        },
        "Microsoft": {
          "Microsoft": 3
        },
        "STMicroelectronics": {
          "STMicro": 1
        },
        "Thales": {
          "Thales": 25,
          "Thales Group": 41
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Wolfe, Susan",
      "/Company": "",
      "/Company Name": "Thales DIS CPL Canada",
      "/ContentTypeId": "0x010100885E7B9ED766DA4C8C705C6640E1914C",
      "/CreationDate": "D:20230531090645-07\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 23 for Word",
      "/Doc Part Number": "Doc Number 1.1",
      "/Doc Revision": "B",
      "/Document Name": "FIPS 140-2 Cryptographic Module Security Policy Level 2",
      "/Document Subject": "eToken 5300 Micro MD 4.3.5",
      "/ModDate": "D:20230531090709-07\u002700\u0027",
      "/Producer": "Adobe PDF Library 23.1.206",
      "/Product Name": "eToken 5300 Mini and Micro ",
      "/Product Version": "MD 4.3.5",
      "/SourceModified": "D:20230531160600",
      "/Title": "",
      "pdf_file_size_bytes": 1228784,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 42
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "7a371ea940dada1c291ab94ddeefc5425e73ae1ddafe9035d4140de4288ec4f8",
    "policy_txt_hash": "56b51cc7f70a4d10a5ebbff2850362419916badcbdee93c97567ebe062e7afb0"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode with IDPrime MD 830-revB",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf",
    "date_sunset": null,
    "description": "eToken 5300 is an ideal solution for enterprises looking to deploy the military-grade security of PKI, while maintaining a convenient solution for employees. The eToken 5300 is a compact, tamper-evident USB with presence detection, which creates a third factor of authentication. Something you have (physical token), something you know (PIN), something you do (touching the token). The eToken 5300 is a state-of-the-art new design, which offers multi-application dynamic smart card functionality.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Roles, Services, and Authentication: Level 3",
      "EMI/EMC: Level 3",
      "Design Assurance: Level 3"
    ],
    "fw_versions": "5300 FIPS FW ver-14.0.15 [1] and {IDCore30-revB - Build 06, IDPrime MD Applet version V4.3.5.D and MSPNP Applet V1.2} [2]",
    "historical_reason": "Moved to historical list due to sunsetting",
    "hw_versions": "214-010381-001, [1] [2], 214-010382-001, [1] [2]: STM32F042K6U6TR [1] and SLE78CFX3000PH [2]",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "eToken 5300 Mini and Micro MD 4.3.5",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-06-29",
        "lab": "UL VERIFICATION SERVICES INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Thales",
    "vendor_url": "http://www.thalesgroup.com"
  }
}