Intel® QuickAssist Technology (QAT) Provider

Certificate #5032

Webpage information

Status active
Validation dates 26.06.2025
Sunset date 25-06-2030
Standard FIPS 140-3
Security level 1
Type Software-Hybrid
Embodiment Multi-Chip Stand Alone
Caveat No assurance of minimum security of SSPs (e.g., keys, bit strings) that are externally loaded, or of SSPs established with externally loaded SSPs
Exceptions
  • Non-invasive security: N/A
  • Mitigation of other attacks: N/A
Description Intel® QuickAssist Technology (QAT) Provider which supports the ability to accelerate the operations from the stand OpenSSL 3.0.8 to basic Intel instruction set, to either hardware acceleration path or via the optimized software acceleration path.
Version (Hardware) 4940 (rev 40)
Tested configurations
  • Red Hat Enterprise Linux 9.0 on StreamEagle Server with Intel Xeon Platinum 8488C with PAA
Vendor Intel Corporation
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES
Asymmetric Algorithms
ECDH, ECDSA, ECC, Diffie-Hellman, DH, DSA
Hash functions
SHA256, SHA2, SHA-3, SHA3-224, SHA3-384, SHA3-512, SHA3, SHA3-256
Schemes
MAC, Key Agreement
Protocols
TLS, TLSv1.2, TLSv1.3, TLS 1.2, TLS 1.3, TLS v1.2, TLS v1.3
Randomness
DRBG
Libraries
OpenSSL
Elliptic Curves
P-224, P-256, P-384, P-521, B-283, B-571, K-283, K-409, K-571, B-233, K-233
Block cipher modes
GCM
TLS cipher suites
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

Trusted Execution Environments
SSC

Security level
Level 1, level 1

Standards
FIPS 140-3, FIPS PUB 186-4, FIPS PUB 202, FIPS 180-4, FIPS PUB 197, FIPS PUB 180-4, NIST SP 800-38D, NIST SP 800-140, NIST SP 800-38A, SP 800-38A, SP 800-38D, RFC 8446, RFC 7627, RFC 5288, RFC 5246, RFC 8846, ISO/IEC 19790, ISO/IEC 24759, ISO/IEC 19790:2012, ISO/IEC 24759:2017

File metadata

Author Alejandro Muñoz del Rey
Creation date D:20250513174844+02'00'
Modification date D:20250513174844+02'00'
Pages 36
Creator Microsoft® Word 2019
Producer Microsoft® Word 2019

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 5032,
  "dgst": "ff9511e0254eff33",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "SHA3-512A4390",
        "SHA2-256A4392",
        "AES-GCMA4391",
        "SHA3-256A4390",
        "DSA SigGen (FIPS186-4)A4390",
        "SHA2-384A4391",
        "RSA SigVer (FIPS186-4)A4392",
        "KAS-FFC-SSC Sp800-56Ar3A4390",
        "TLS v1.3 KDFA4390",
        "ECDSA SigVer (FIPS186-4)A4390",
        "SHA3-224A4390",
        "SHA2-224A4391",
        "SHA3-384A4390",
        "DSA SigVer (FIPS186-4)A4390",
        "ECDSA SigGen (FIPS186-4)A4390",
        "RSA SigGen (FIPS186-4)A4390",
        "TLS v1.2 KDF RFC7627A4390",
        "KAS-ECC-SSC Sp800-56Ar3A4390",
        "SHA2-512A4391"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "40",
        "4940"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDH": {
            "ECDH": 10
          },
          "ECDSA": {
            "ECDSA": 28
          }
        },
        "FF": {
          "DH": {
            "DH": 8,
            "Diffie-Hellman": 15
          },
          "DSA": {
            "DSA": 21
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "GCM": {
          "GCM": 19
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 10
        }
      },
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS": 35,
            "TLS 1.2": 1,
            "TLS 1.3": 1,
            "TLS v1.2": 1,
            "TLS v1.3": 1,
            "TLSv1.2": 1,
            "TLSv1.3": 1
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 8
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "B-233": 1,
          "B-283": 2,
          "B-571": 2,
          "K-233": 1,
          "K-283": 2,
          "K-409": 2,
          "K-571": 2,
          "P-224": 6,
          "P-256": 20,
          "P-384": 16,
          "P-521": 4
        }
      },
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "SHA-3": 3,
          "SHA2": 1,
          "SHA2- 256": 3,
          "SHA2- 384": 1,
          "SHA2-224": 1,
          "SHA2-256": 17,
          "SHA2-384": 3,
          "SHA2-512": 1,
          "SHA256": 1,
          "SHA3": 1,
          "SHA3- 256": 1,
          "SHA3-224": 2,
          "SHA3-256": 1,
          "SHA3-384": 1,
          "SHA3-512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 3,
          "level 1": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA2": 1,
            "SHA256": 1
          },
          "SHA3": {
            "SHA-3": 3,
            "SHA3": 1,
            "SHA3-224": 2,
            "SHA3-256": 1,
            "SHA3-384": 1,
            "SHA3-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-3": 17,
          "FIPS 180-4": 2,
          "FIPS PUB 180-4": 1,
          "FIPS PUB 186-4": 7,
          "FIPS PUB 197": 1,
          "FIPS PUB 202": 2
        },
        "ISO": {
          "ISO/IEC 19790": 6,
          "ISO/IEC 19790:2012": 1,
          "ISO/IEC 24759": 2,
          "ISO/IEC 24759:2017": 1
        },
        "NIST": {
          "NIST SP 800-140": 1,
          "NIST SP 800-38A": 1,
          "NIST SP 800-38D": 4,
          "SP 800-38A": 1,
          "SP 800-38D": 1
        },
        "RFC": {
          "RFC 5246": 1,
          "RFC 5288": 1,
          "RFC 7627": 3,
          "RFC 8446": 2,
          "RFC 8846": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 18
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SSC": 5
        }
      },
      "tls_cipher_suite": {
        "TLS": {
          "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256": 1,
          "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384": 1,
          "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 1,
          "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 1,
          "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": 1,
          "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 1
        }
      },
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Alejandro Mu\u00f1oz del Rey",
      "/CreationDate": "D:20250513174844+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2019",
      "/ModDate": "D:20250513174844+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2019",
      "pdf_file_size_bytes": 694003,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=36999",
          "https://github.com/intel/QAT_Engine",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=37000",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=37002",
          "https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Validated-Modules/Search",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=37001"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 36
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "d2be87f1480d67bc11067613c475819a20d7e2eed24846a386eccddb6091374a",
    "policy_txt_hash": "33282887e11ba2faaf0dd9dcd888c5e6159713886ca73c2a567414080a883006"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "No assurance of minimum security of SSPs (e.g., keys, bit strings) that are externally loaded, or of SSPs established with externally loaded SSPs",
    "certificate_pdf_url": null,
    "date_sunset": "2030-06-25",
    "description": "Intel\u00ae QuickAssist Technology (QAT) Provider which supports the ability to accelerate the operations from the stand OpenSSL 3.0.8 to basic Intel instruction set, to either hardware acceleration path or via the optimized software acceleration path.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Non-invasive security: N/A",
      "Mitigation of other attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": "4940 (rev 40)",
    "level": 1,
    "mentioned_certs": {},
    "module_name": "Intel\u00ae QuickAssist Technology (QAT) Provider",
    "module_type": "Software-Hybrid",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-3",
    "status": "active",
    "sw_versions": "1.3.1",
    "tested_conf": [
      "Red Hat Enterprise Linux 9.0 on StreamEagle Server with Intel Xeon Platinum 8488C with PAA"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2025-06-26",
        "lab": "DEKRA Testing and Certification S.A.U",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Intel Corporation",
    "vendor_url": "https://www.intel.com/"
  }
}