{"_type": "sec_certs.sample.fips.FIPSCertificate", "dgst": "ed16d272044ed81f", "cert_id": 2860, "web_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.WebData", "module_name": "DocuSign HSM Appliance", "validation_history": [{"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2017-03-08", "validation_type": "Initial", "lab": "CYGNACOM SOLUTIONS INC"}, {"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2017-10-03", "validation_type": "Update", "lab": "CYGNACOM SOLUTIONS INC"}, {"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry", "date": "2018-04-10", "validation_type": "Update", "lab": "CYGNACOM SOLUTIONS INC"}], "vendor_url": "http://www.docusign.com", "vendor": "DocuSign, Inc.", "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertMar2017.pdf", "module_type": "Hardware", "standard": "FIPS 140-2", "status": "historical", "level": 3, "caveat": "When operated in FIPS mode. This module contains the embedded module eToken 5105 validated to FIPS 140-2 under Cert. #1883 operating in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy", "exceptions": ["Mitigation of Other Attacks: N/A"], "embodiment": "Multi-Chip Stand Alone", "description": "DocuSign HSM Appliance is a high-performance cryptographic service provider. It performs high-speed cryptographic operations while protecting sensitive data. Its features include Triple-DES, AES, Triple-DES MAC, CCM, HMAC, RSA, ECDSA, SHA-1, SHA-256, SHA-384, SHA-512, public key database and certificate support, authenticated and encrypted communication with the module, secure storage of secret/private keys, software key medium and smartcard support, tamper-responsive enclosure, high level API requiring no cryptographic expertise, in-depth logging and auditing, and secure backup capabilities.", "tested_conf": null, "hw_versions": "5.0", "fw_versions": "5.0.0, 5.0.2 and 5.0.3", "sw_versions": null, "mentioned_certs": {"1883": 1}, "historical_reason": "Moved to historical list due to dependency on certificate #1883", "date_sunset": null, "revoked_reason": null, "revoked_link": null}, "pdf_data": {"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData", "keywords": {"fips_cert_id": {"Cert": {"#1883": 2, "#98": 2}}, "fips_security_level": {"Level": {"Level 3": 3, "level 3": 2}}, "fips_certlike": {"Certlike": {"HMAC-SHA-1": 2, "HMAC-SHA-384": 2, "HMAC-SHA-256": 2, "HMAC-SHA-256 256": 2, "SHA-256": 12, "SHA-1": 8, "SHA-384": 7, "SHA-512": 4, "SHA-512 2048": 2, "SHA-512 1024": 1, "RSA 2048": 6, "PKCS#1": 8, "RSA PKCS#1": 4, "AES-128": 2, "AES 128, 192 and 256": 1, "AES 128": 5, "AES 256": 2, "AES128": 2, "AES192": 2, "AES256": 2, "Diffie-Hellman 2048": 1, "DRBG 857": 1, "DRBG 17": 1, "DRBG (Cert. #98": 1, "DRBG Cert. #98": 1, "CVL 1039": 1, "CVL 1745": 1}}, "vendor": {}, "eval_facility": {}, "symmetric_crypto": {"AES_competition": {"AES": {"AES": 20, "AES-128": 2, "AES128": 2, "AES192": 2, "AES256": 2}}, "DES": {"DES": {"DES": 8}, "3DES": {"Triple-DES": 5}}, "constructions": {"MAC": {"HMAC": 10, "HMAC-SHA-256": 3, "HMAC-SHA-512": 1, "CMAC": 3}}}, "asymmetric_crypto": {"RSA": {"RSA 2048": 6}, "ECC": {"ECDSA": {"ECDSA": 12}}, "FF": {"DH": {"Diffie-Hellman": 6}}}, "pq_crypto": {}, "hash_function": {"SHA": {"SHA1": {"SHA-1": 8}, "SHA2": {"SHA-256": 17, "SHA-384": 3, "SHA-512": 10}}, "MD": {"MD5": {"MD5": 2}}}, "crypto_scheme": {"MAC": {"MAC": 7}, "KEX": {"Key exchange": 1, "Key Exchange": 1}}, "crypto_protocol": {"TLS": {"TLS": {"TLS 1.2": 6, "TLS": 6}}}, "randomness": {"PRNG": {"DRBG": 16}, "RNG": {"RNG": 4}}, "cipher_mode": {"ECB": {"ECB": 7}, "CBC": {"CBC": 10}, "CTR": {"CTR": 2}, "GCM": {"GCM": 1}, "CCM": {"CCM": 1}}, "ecc_curve": {"NIST": {"P-256": 10, "P-384": 10, "P-521": 10}}, "crypto_engine": {}, "tls_cipher_suite": {"TLS": {"TLS_RSA_WITH_AES_256_CBC_SHA256": 2}}, "crypto_library": {}, "vulnerability": {}, "side_channel_analysis": {"FI": {"physical tampering": 1}}, "device_model": {}, "tee_name": {}, "os_name": {}, "cplc_data": {}, "ic_data_group": {}, "standard_id": {"FIPS": {"FIPS 140-2": 32, "FIPS 180-4": 3, "FIPS 197": 4, "FIPS 198-1": 2, "FIPS 186-4": 3, "FIPS 46-3": 2}, "NIST": {"SP 800-67": 1, "SP 800-38A": 1, "SP 800-38B": 2, "SP 800-38C": 1, "SP 800-38D": 2, "SP 800-38F": 1, "SP 800-38G": 1}, "PKCS": {"PKCS#1": 6}, "RFC": {"RFC 1321": 1}, "X509": {"X.509": 1}}, "javacard_version": {}, "javacard_api_const": {}, "javacard_packages": {}, "certification_process": {}}, "policy_metadata": {"pdf_file_size_bytes": 1368175, "pdf_is_encrypted": false, "pdf_number_of_pages": 31, "/Title": "Non-Proprietary FIPS 140-1 Security Policy", "/Author": "Andrew Donofrio", "/Subject": "FIPS 140-1 Security Policy", "/Keywords": "FIPS 140-1 Security Policy Documentation Submission Template", "/Creator": "Microsoft\u00ae Word 2016", "/CreationDate": "D:20180404192115+03'00'", "/ModDate": "D:20180404192115+03'00'", "/Producer": "Microsoft\u00ae Word 2016", "pdf_hyperlinks": {"_type": "Set", "elements": ["https://csrc.nist.gov/projects/cryptographic-module-validation-program", "http://www.docusign.com/"]}}}, "heuristics": {"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics", "algorithms": {"_type": "Set", "elements": ["KTS#2630", "AES#4031", "Triple-DES MAC#2469", "RSA#2533", "SHS#3805", "SHS#4243", "RSA#2069", "KTS#4641", "HMAC#3491", "ECDSA#900", "AES#4641", "SHS#3325", "SHS#3804", "CVL#857", "CVL#1297", "ECDSA#1378", "HMAC#2630", "DRBG#98", "HMAC#3074", "Triple-DES#2207", "AES#4029", "Triple-DES MAC#2207", "HMAC#3073", "Triple-DES#2669", "AES#5283", "Triple-DES MAC#2669", "KTS#3074", "KTS#3491", "CVL#1296", "CVL#1039", "AES#4640", "DRBG#2030", "DRBG#1565", "SHS#3326", "CVL#1746", "SHS#1465", "CVL#1745", "KTS#5284", "AES#5284", "KTS#4029", "DRBG#1205", "HMAC#3490", "SHS#4242", "RSA#2822", "ECDSA#1143", "HMAC#2632", "Triple-DES#2469"]}, "extracted_versions": {"_type": "Set", "elements": ["5.0.2", "5.0.3", "5.0.0", "5.0"]}, "cpe_matches": null, "verified_cpe_matches": null, "related_cves": null, "policy_prunned_references": {"_type": "Set", "elements": ["1883"]}, "module_prunned_references": {"_type": "Set", "elements": ["1883"]}, "policy_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": {"_type": "Set", "elements": ["1883"]}, "indirectly_referencing": {"_type": "Set", "elements": ["1883"]}}, "module_processed_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": {"_type": "Set", "elements": ["1883"]}, "indirectly_referencing": {"_type": "Set", "elements": ["1883"]}}, "direct_transitive_cves": null, "indirect_transitive_cves": null}, "state": {"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState", "module_download_ok": true, "policy_download_ok": true, "policy_convert_ok": true, "module_extract_ok": true, "policy_extract_ok": true, "policy_pdf_hash": "d6c29154d6ac935216ce3b3067989436bd2ec34c5c6249a50858b988d8e5ee4b", "policy_txt_hash": "9a3316575ea311f7a2945d79c64beb2ead789c13bf6f2d8af8d37fd09a613256", "policy_json_hash": null}}