This page was not yet optimized for use on mobile devices.
VMware’s VPN Crypto Module
Certificate #4881
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, CAST, HMAC, CMACHash functions
SHA-1Schemes
MACProtocols
IKEv2, VPNRandomness
DRBGBlock cipher modes
CBC, CTR, CFB, GCM, CCMVendor
Broadcom Inc, BroadcomSecurity level
Level 1, level 1Standards
FIPS 140-3, FIPS PUB 197, FIPS PUB 198-1, FIPS 180-4, RFC 4106, RFC 7296, ISO/IEC 19790, ISO/IEC 24759File metadata
| Author | Lynn Butler Bradford |
|---|---|
| Creation date | D:20241030164108-04'00' |
| Modification date | D:20241030164108-04'00' |
| Pages | 16 |
| Creator | Microsoft® Word for Microsoft 365 |
| Producer | Microsoft® Word for Microsoft 365 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
18.11.2024 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4881,
"dgst": "f2047c17e14c8c5b",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"AES-CCMA4384",
"AES-GCMA4384",
"SHA2-224A4384",
"SHA2-512A4384",
"SHA2-256A4385",
"SHA2-384A4384",
"AES-GMACA4384",
"HMAC-SHA2-512A4384",
"HMAC-SHA2-384A4384",
"SHA-1A4384",
"AES-CBCA4384",
"HMAC-SHA-1A4384",
"HMAC-SHA2-256A4385",
"HMAC-SHA2-224A4384",
"AES-CMACA4384"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"21.11"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 6
},
"CCM": {
"CCM": 6
},
"CFB": {
"CFB": 1
},
"CTR": {
"CTR": 1
},
"GCM": {
"GCM": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKEv2": 2
},
"VPN": {
"VPN": 20
}
},
"crypto_scheme": {
"MAC": {
"MAC": 5
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"HMAC-SHA-1": 6,
"SHA-1": 2,
"SHA2- 224": 1,
"SHA2-224": 1,
"SHA2-256": 7,
"SHA2-384": 2,
"SHA2-512": 4
}
},
"fips_security_level": {
"Level": {
"Level 1": 2,
"level 1": 3
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-3": 7,
"FIPS 180-4": 2,
"FIPS PUB 197": 1,
"FIPS PUB 198-1": 2
},
"ISO": {
"ISO/IEC 19790": 2,
"ISO/IEC 24759": 6
},
"RFC": {
"RFC 4106": 1,
"RFC 7296": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 24
},
"CAST": {
"CAST": 1
}
},
"constructions": {
"MAC": {
"CMAC": 4,
"HMAC": 8
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Broadcom": {
"Broadcom": 3,
"Broadcom Inc": 16
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Lynn Butler Bradford",
"/CreationDate": "D:20241030164108-04\u002700\u0027",
"/Creator": "Microsoft\u00ae Word for Microsoft 365",
"/ModDate": "D:20241030164108-04\u002700\u0027",
"/Producer": "Microsoft\u00ae Word for Microsoft 365",
"pdf_file_size_bytes": 474025,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://librte_crypto_post.so/",
"https://csrc.nist.gov/projects/cryptographic-module-validation-program",
"http://librte_cryptodev.so/",
"http://libipsec_mb.so/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 16
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "fafed96bf3b6e1614b51c32f1ea62f2fef30bd5a0bb889cd4d87ca7b2b7446df",
"policy_txt_hash": "037dc807f28aa2b8078f9aaff8d2828a7ec21eab747242b3215cf60d6ada07a3"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "Interim validation",
"certificate_pdf_url": null,
"date_sunset": "2026-11-14",
"description": "VMware\u0027s VPN Crypto Module is a firmware cryptographic module whose purpose is to provide FIPS 140-3 validated cryptographic functions to various applications utilizing VPN capabilities.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Non-invasive security: N/A",
"Mitigation of other attacks: N/A",
"Documentation requirements: N/A",
"Cryptographic module security policy: N/A"
],
"fw_versions": "21.11",
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "VMware\u2019s VPN Crypto Module",
"module_type": "Firmware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": null,
"tested_conf": [
"Ubuntu 20.04 on ESXi 8.0 running on Dell PowerEdge R650 with Intel(R) Xeon(R) Gold 6330 with PAA",
"Ubuntu 20.04 on ESXi 8.0 running on Dell PowerEdge R650 with Intel(R) Xeon(R) Gold 6330 without PAA"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-11-15",
"lab": "Lightship Security, Inc.",
"validation_type": "Initial"
}
],
"vendor": "Broadcom Inc.",
"vendor_url": "http://www.broadcom.com"
}
}