Primus HSM

Certificate #4583

Webpage information ?

Status historical
Historical reason Moved to historical list due to sunsetting
Validation dates 05.09.2023
Standard FIPS 140-2
Security level 3
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode as specified in the Security Policy
Description Securosys' Primus series of hardware security modules (HSM) provide high performance cryptographic operations, creation, storage, and controlled access to encryption keys and certificates in an always active tamper protected appliance. Applications include digital signatures for financial transactions, secure messaging and email, blockchain, crypto currency and crypto asset storage, PKI, elDAS, database and cloud encryption, GDPR, SSL / TLS, and e-government.
Version (Hardware) P/Ns E20 / 60-1004 Rev0, E60 / 60-1004 Rev0, E150 / 60-1004 Rev0, EP700 / 60-1008 Rev0, X200 / 60-1002 Rev1, X400 / 60-1002 Rev1, X700 / 60-1002 Rev1 and X1000 / 60-1010 Rev1
Version (Firmware) 2.5.14
Vendor Securosys SA
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-256, AES-128, Triple-DES, TDES, HMAC, CMAC, CBC-MAC
Asymmetric Algorithms
RSA-4096, RSA 4096, ECDH, ECDSA, ECC, DH, DSA
Hash functions
SHA-1, SHA-512, SHA-224, SHA-256, SHA-384, SHA256, SHA512, SHA3-224, SHA3-256, SHA3-384, SHA3-512, MD5
Schemes
MAC
Randomness
TRNG, DRBG, RNG, RBG
Elliptic Curves
P-224, P-256, P-384, P-521, secp224k1
Block cipher modes
ECB, CBC, CTR

Security level
Level 3, Level 1
Side-channel analysis
side-channel, side channel, Timing attack, Fault injection

Standards
FIPS 140-2, FIPS 197, FIPS 186-4, FIPS 198-1, FIPS 180-4, FIPS 202, FIPS140-2, SP 800-38A, SP 800-38B, SP 800-38D, SP 800-38F, SP 800-90A, SP 800-108, SP 800-67, SP 800-90B, PKCS11, PKCS #1, PKCS1, PKCS#11, PKCS#1

File metadata

Subject FIPS 140-2 Security Policy Template
Author Colton Parsons
Creation date D:20230427143543-07'00'
Modification date D:20230427143559-07'00'
Pages 31
Creator Acrobat PDFMaker 23 for Word
Producer Adobe PDF Library 23.1.175

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 04.07.2024 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The status property was set to historical.
    • The historical_reason property was set to Moved to historical list due to sunsetting.
    • The date_sunset property was set to None.
  • 01.11.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2023_101023_1100 signed (2).pdf.
  • 18.09.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4583,
  "dgst": "eb7539924cf4b8b6",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "ECDSA#1471",
        "SHS#4402",
        "KTS-RSA#A2382",
        "KTS#5485",
        "Triple-DES#2762",
        "HMAC#3643",
        "KAS#A2382",
        "DSA#1412",
        "KBKDF#226",
        "CVL#1941",
        "AES#5485",
        "RSA#2946",
        "CVL#1939",
        "SHA-3#48",
        "DRBG#2160"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "2.5.14"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 2
          },
          "ECDH": {
            "ECDH": 4
          },
          "ECDSA": {
            "ECDSA": 10
          }
        },
        "FF": {
          "DH": {
            "DH": 9
          },
          "DSA": {
            "DSA": 8
          }
        },
        "RSA": {
          "RSA 4096": 1,
          "RSA-4096": 8
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        },
        "CTR": {
          "CTR": 4
        },
        "ECB": {
          "ECB": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "MAC": {
          "MAC": 2
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-224": 6,
          "P-256": 8,
          "P-384": 8,
          "P-521": 10,
          "secp224k1": 1
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 2,
          "#2946": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES-128": 1,
          "AES-128/192/256": 1,
          "AES-256 2160": 1,
          "AES-GCM (256": 1,
          "Cert # AES": 1,
          "DRBG 11": 1,
          "PKCS #1": 4,
          "PKCS#1": 2,
          "PKCS#11": 2,
          "PKCS1": 4,
          "PKCS11": 2,
          "RSA 4096": 1,
          "SHA- 3": 1,
          "SHA-1": 5,
          "SHA-1, 224": 1,
          "SHA-224": 4,
          "SHA-256": 6,
          "SHA-384": 4,
          "SHA-512": 6,
          "SHA2-224": 3,
          "SHA2-256": 3,
          "SHA2-384": 3,
          "SHA2-512": 3,
          "SHA256": 1,
          "SHA3- 256": 1,
          "SHA3- 512": 1,
          "SHA3-224": 5,
          "SHA3-256": 4,
          "SHA3-384": 5,
          "SHA3-512": 2,
          "SHA3-512 3643": 1,
          "SHA3-512 4402": 1,
          "SHA512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 1,
          "Level 3": 2
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 1
          }
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 6
          },
          "SHA2": {
            "SHA-224": 4,
            "SHA-256": 6,
            "SHA-384": 4,
            "SHA-512": 6,
            "SHA256": 1,
            "SHA512": 1
          },
          "SHA3": {
            "SHA3-224": 5,
            "SHA3-256": 4,
            "SHA3-384": 5,
            "SHA3-512": 4
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 18
        },
        "RNG": {
          "RBG": 2,
          "RNG": 1
        },
        "TRNG": {
          "TRNG": 1
        }
      },
      "side_channel_analysis": {
        "FI": {
          "Fault injection": 1
        },
        "SCA": {
          "Timing attack": 1,
          "side channel": 1,
          "side-channel": 2
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 9,
          "FIPS 180-4": 1,
          "FIPS 186-4": 5,
          "FIPS 197": 2,
          "FIPS 198-1": 1,
          "FIPS 202": 1,
          "FIPS140-2": 1
        },
        "NIST": {
          "SP 800-108": 1,
          "SP 800-38A": 1,
          "SP 800-38B": 1,
          "SP 800-38D": 1,
          "SP 800-38F": 1,
          "SP 800-67": 1,
          "SP 800-90A": 2,
          "SP 800-90B": 1
        },
        "PKCS": {
          "PKCS #1": 2,
          "PKCS#1": 1,
          "PKCS#11": 1,
          "PKCS1": 2,
          "PKCS11": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 10,
            "AES-128": 1,
            "AES-256": 1
          }
        },
        "DES": {
          "3DES": {
            "TDES": 2,
            "Triple-DES": 3
          }
        },
        "constructions": {
          "MAC": {
            "CBC-MAC": 1,
            "CMAC": 2,
            "HMAC": 9
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/AppVersion": "15.0000",
      "/Author": "Colton Parsons",
      "/Company": "",
      "/CreationDate": "D:20230427143543-07\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 23 for Word",
      "/DocSecurity": "0.000000",
      "/HyperlinksChanged": "0",
      "/LinksUpToDate": "0",
      "/ModDate": "D:20230427143559-07\u002700\u0027",
      "/Producer": "Adobe PDF Library 23.1.175",
      "/ScaleCrop": "0",
      "/ShareDoc": "0",
      "/SourceModified": "D:20230427213505",
      "/Subject": "FIPS 140-2 Security Policy Template",
      "/Title": "",
      "pdf_file_size_bytes": 1451551,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 31
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "bc64fb2c95a631c462d824889c7579e7e47fbb5bcdbf5c6a7d35af5088283c0f",
    "policy_txt_hash": "89ac8ca4c4c3f3c35f73170bed09c81c206c69e48deec659f71c35cd295c4cf4"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode as specified in the Security Policy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2023_101023_1100 signed (2).pdf",
    "date_sunset": null,
    "description": "Securosys\u0027 Primus series of hardware security modules (HSM) provide high performance cryptographic operations, creation, storage, and controlled access to encryption keys and certificates in an always active tamper protected appliance. Applications include digital signatures for financial transactions, secure messaging and email, blockchain, crypto currency and crypto asset storage, PKI, elDAS, database and cloud encryption, GDPR, SSL / TLS, and e-government.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": null,
    "fw_versions": "2.5.14",
    "historical_reason": "Moved to historical list due to sunsetting",
    "hw_versions": "P/Ns E20 / 60-1004 Rev0, E60 / 60-1004 Rev0, E150 / 60-1004 Rev0, EP700 / 60-1008 Rev0, X200 / 60-1002 Rev1, X400 / 60-1002 Rev1, X700 / 60-1002 Rev1 and X1000 / 60-1010 Rev1",
    "level": 3,
    "mentioned_certs": {},
    "module_name": "Primus HSM",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-09-05",
        "lab": "UL VERIFICATION SERVICES INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Securosys SA",
    "vendor_url": "http://www.securosys.com"
  }
}