Oracle Linux 6 Libreswan Cryptographic Module

This certificate has known related CVEs, which means that the certified product might be vulnerable.

Certificate #3170

Webpage information ?

Status historical
Historical reason SP 800-56Arev3 transition
Validation dates 12.04.2018 , 12.10.2018
Standard FIPS 140-2
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode with Oracle Linux 6 NSS Cryptographic Module validated to FIPS 140-2 under Cert. #3111 operating in FIPS mode and Oracle Linux OpenSSL Cryptographic Module validated to FIPS 140-2 under Cert. #3017 operating in FIPS mode
Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Description The Oracle Linux 6 Libreswan Cryptographic Module is a framework for providing cryptographic services to other network entities implementing the IKEv1 and IKEv2 protocols.
Tested configurations
  • Oracle Linux 6.9 64 bit running on Oracle Server X6-2 with PAA
  • Oracle Linux 6.9 64 bit running on Oracle Server X6-2 without PAA
  • Oracle Linux 6.9 64 bit running on Oracle Server X7-2 with PAA€
  • Oracle Linux 6.9 64 bit running on Oracle Server X7-2 without PAA (single-user mode)
Vendor Oracle Corporation
References

This certificate's webpage directly references 2 certificates, transitively this expands into 2 certificates.

Security policy ?

Symmetric Algorithms
AES, DES, Triple-DES, TDEA, HMAC, HMAC-SHA-256
Asymmetric Algorithms
ECDH, ECDSA, Diffie-Hellman, DH, DHE, DSA
Hash functions
SHA-1, SHA-256, SHA-384, SHA-512, MD5, PBKDF
Schemes
Key Exchange
Protocols
IKEv1, IKEv2, IKE, IPsec
Randomness
DRBG
Libraries
OpenSSL, NSS
Elliptic Curves
P-256, P-384, P-521
Block cipher modes
CBC, CTR, GCM

Vendor
Huawei, Cisco

Security level
Level 1, level 1
Side-channel analysis
Timing Attacks

Standards
FIPS 140-2, FIPS 140, FIPS PUB 140-2, FIPS 197, FIPS 180-4, FIPS 198-1, FIPS 186-4, NIST SP 800-135, SP 800-135, NIST SP 800-38A, NIST SP 800-38D, NIST SP 800-38F, NIST SP 800-56A, NIST SP 800-67, NIST SP 800-90A

File metadata

Author chris brych
Creation date D:20180924125023-05'00'
Modification date D:20180924125023-05'00'
Pages 25
Creator Microsoft® Office Word 2007
Producer Microsoft® Office Word 2007

References

Outgoing
  • 3017 - historical - Oracle Linux OpenSSL Cryptographic Module
  • 3111 - historical - Oracle Linux 6 NSS Cryptographic Module

Heuristics ?

Related CVEs

ID Links Severity CVSS Score Published on
Base Exploitability Impact
CVE-2004-2771
C M N
HIGH 7.5 6.4 24.12.2014 18:59
CVE-2010-5325
C M N
CRITICAL 9.8 5.9 15.04.2016 14:59
CVE-2013-4312
C M N
MEDIUM 6.2 3.6 08.02.2016 03:59
CVE-2013-5211
C M N
MEDIUM 5.0 2.9 02.01.2014 14:59
CVE-2013-5704
C M N
MEDIUM 5.0 2.9 15.04.2014 10:55
CVE-2013-7421
C M N
LOW 2.1 2.9 02.03.2015 11:59
CVE-2014-0196
C M N
MEDIUM 6.9 10.0 07.05.2014 10:55
CVE-2014-0203
C M N
MEDIUM 5.5 3.6 23.06.2014 11:21
CVE-2014-1737
C M N
HIGH 7.2 10.0 11.05.2014 21:55
CVE-2014-1738
C M N
LOW 2.1 2.9 11.05.2014 21:55
CVE-2014-2706
C M N
HIGH 7.1 6.9 14.04.2014 23:55
CVE-2014-3144
C M N
MEDIUM 4.9 6.9 11.05.2014 21:55
CVE-2014-3145
C M N
MEDIUM 4.9 6.9 11.05.2014 21:55
CVE-2014-3153
C M N
HIGH 7.8 5.9 07.06.2014 14:55
CVE-2014-3581
C M N
MEDIUM 5.0 2.9 10.10.2014 10:55
CVE-2014-3673
C M N
HIGH 7.5 3.6 10.11.2014 11:55
CVE-2014-3687
C M N
HIGH 7.5 3.6 10.11.2014 11:55
CVE-2014-6271
C M N
CRITICAL 9.8 5.9 24.09.2014 18:48
CVE-2014-7169
C M N
CRITICAL 9.8 5.9 25.09.2014 01:55
CVE-2014-8134
C M N
LOW 3.3 1.4 12.12.2014 18:59
CVE-2014-8566
C M N
MEDIUM 6.4 4.9 15.11.2014 21:59
CVE-2014-9644
C M N
LOW 2.1 2.9 02.03.2015 11:59
CVE-2015-1351
C M N
HIGH 7.5 6.4 30.03.2015 10:59
CVE-2015-3195
C M N
MEDIUM 5.3 1.4 06.12.2015 20:59
CVE-2015-3329
C M N
HIGH 7.5 6.4 09.06.2015 18:59
CVE-2015-3330
C M N
MEDIUM 6.8 6.4 09.06.2015 18:59
CVE-2015-4024
C M N
MEDIUM 5.0 2.9 09.06.2015 18:59
CVE-2015-4643
C M N
CRITICAL 9.8 5.9 16.05.2016 10:59
CVE-2015-5219
C M N
HIGH 7.5 3.6 21.07.2017 14:29
CVE-2015-7512
C M N
CRITICAL 9.0 6.0 08.01.2016 21:59
CVE-2015-7691
C M N
HIGH 7.5 3.6 07.08.2017 20:29
CVE-2015-7692
C M N
HIGH 7.5 3.6 07.08.2017 20:29
CVE-2015-7701
C M N
HIGH 7.5 3.6 07.08.2017 20:29
CVE-2015-7702
C M N
MEDIUM 6.5 3.6 07.08.2017 20:29
CVE-2015-7703
C M N
HIGH 7.5 3.6 24.07.2017 14:29
CVE-2015-7852
C M N
MEDIUM 5.9 3.6 07.08.2017 20:29
CVE-2015-7977
C M N
MEDIUM 5.9 3.6 30.01.2017 21:59
CVE-2015-8000
C M N
MEDIUM 5.0 2.9 16.12.2015 15:59
CVE-2015-8126
C M N
HIGH 7.5 6.4 13.11.2015 03:59
CVE-2015-8629
C M N
MEDIUM 5.3 3.6 13.02.2016 02:59
CVE-2015-8631
C M N
MEDIUM 6.5 3.6 13.02.2016 02:59
CVE-2015-8668
C M N
CRITICAL 9.8 5.9 08.01.2016 19:59
CVE-2015-8896
C M N
MEDIUM 6.5 3.6 15.03.2017 19:59
CVE-2016-0695
C M N
MEDIUM 5.9 3.6 21.04.2016 10:59
CVE-2016-1714
C M N
HIGH 8.1 6.0 07.04.2016 19:59
CVE-2016-1908
C M N
CRITICAL 9.8 5.9 11.04.2017 18:59
CVE-2016-1930
C M N
CRITICAL 9.8 5.9 31.01.2016 18:59
CVE-2016-1935
C M N
HIGH 8.8 5.9 31.01.2016 18:59
CVE-2016-1950
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1952
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1954
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1957
C M N
MEDIUM 4.3 1.4 13.03.2016 18:59
CVE-2016-1958
C M N
MEDIUM 4.3 1.4 13.03.2016 18:59
CVE-2016-1960
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1961
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1962
C M N
CRITICAL 9.8 5.9 13.03.2016 18:59
CVE-2016-1964
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1965
C M N
MEDIUM 4.3 1.4 13.03.2016 18:59
CVE-2016-1966
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1973
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1974
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-1977
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2177
C M N
CRITICAL 9.8 5.9 20.06.2016 01:59
CVE-2016-2178
C M N
MEDIUM 5.5 3.6 20.06.2016 01:59
CVE-2016-2179
C M N
HIGH 7.5 3.6 16.09.2016 05:59
CVE-2016-2180
C M N
HIGH 7.5 3.6 01.08.2016 02:59
CVE-2016-2181
C M N
HIGH 7.5 3.6 16.09.2016 05:59
CVE-2016-2182
C M N
CRITICAL 9.8 5.9 16.09.2016 05:59
CVE-2016-2518
C M N
MEDIUM 5.3 1.4 30.01.2017 21:59
CVE-2016-2776
C M N
HIGH 7.5 3.6 28.09.2016 10:59
CVE-2016-2790
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2791
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2792
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2793
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2794
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2795
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2796
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2797
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2798
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2799
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2800
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2801
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2802
C M N
HIGH 8.8 5.9 13.03.2016 18:59
CVE-2016-2837
C M N
MEDIUM 6.3 3.4 05.08.2016 01:59
CVE-2016-3427
C M N
CRITICAL 9.8 5.9 21.04.2016 11:00
CVE-2016-3458
C M N
MEDIUM 4.3 1.4 21.07.2016 10:12
CVE-2016-3500
C M N
MEDIUM 5.3 1.4 21.07.2016 10:12
CVE-2016-3508
C M N
MEDIUM 5.3 1.4 21.07.2016 10:13
CVE-2016-3550
C M N
MEDIUM 4.3 1.4 21.07.2016 10:13
CVE-2016-3587
C M N
CRITICAL 9.6 6.0 21.07.2016 10:14
CVE-2016-3598
C M N
CRITICAL 9.6 6.0 21.07.2016 10:14
CVE-2016-3610
C M N
CRITICAL 9.6 6.0 21.07.2016 10:14
CVE-2016-3710
C M N
HIGH 8.8 6.0 11.05.2016 21:59
CVE-2016-3715
C M N
MEDIUM 5.5 3.6 05.05.2016 18:59
CVE-2016-3718
C M N
MEDIUM 5.5 3.6 05.05.2016 18:59
CVE-2016-4051
C M N
HIGH 8.8 5.9 25.04.2016 14:59
CVE-2016-4053
C M N
LOW 3.7 1.4 25.04.2016 14:59
CVE-2016-4054
C M N
HIGH 8.1 5.9 25.04.2016 14:59
CVE-2016-4448
C M N
CRITICAL 9.8 5.9 09.06.2016 16:59
CVE-2016-4470
C M N
MEDIUM 5.5 3.6 27.06.2016 10:59
CVE-2016-4554
C M N
HIGH 8.6 4.0 10.05.2016 19:59
CVE-2016-4555
C M N
HIGH 7.5 3.6 10.05.2016 19:59
CVE-2016-4556
C M N
HIGH 7.5 3.6 10.05.2016 19:59
CVE-2016-4581
C M N
MEDIUM 5.5 3.6 23.05.2016 10:59
CVE-2016-4805
C M N
HIGH 7.8 5.9 23.05.2016 10:59
CVE-2016-4809
C M N
HIGH 7.5 3.6 21.09.2016 14:25
CVE-2016-4913
C M N
HIGH 7.8 5.9 23.05.2016 10:59
CVE-2016-4951
C M N
HIGH 7.8 5.9 23.05.2016 10:59
CVE-2016-5118
C M N
CRITICAL 9.8 5.9 10.06.2016 15:59
CVE-2016-5252
C M N
HIGH 8.8 5.9 05.08.2016 01:59
CVE-2016-5254
C M N
CRITICAL 9.8 5.9 05.08.2016 01:59
CVE-2016-5258
C M N
HIGH 8.8 5.9 05.08.2016 01:59
CVE-2016-5259
C M N
HIGH 8.8 5.9 05.08.2016 01:59
CVE-2016-5262
C M N
MEDIUM 6.1 2.7 05.08.2016 01:59
CVE-2016-5263
C M N
HIGH 8.8 5.9 05.08.2016 01:59
CVE-2016-5264
C M N
HIGH 8.8 5.9 05.08.2016 01:59
CVE-2016-5265
C M N
MEDIUM 5.5 4.0 05.08.2016 01:59
CVE-2016-5385
C M N
HIGH 8.1 5.9 19.07.2016 02:00
CVE-2016-5387
C M N
HIGH 8.1 5.9 19.07.2016 02:00
CVE-2016-5388
C M N
HIGH 8.1 5.9 19.07.2016 02:00
CVE-2016-5403
C M N
MEDIUM 5.5 3.6 02.08.2016 16:59
CVE-2016-5404
C M N
MEDIUM 6.5 3.6 07.09.2016 20:59
CVE-2016-5408
C M N
CRITICAL 9.8 5.9 10.08.2016 14:59
CVE-2016-5418
C M N
HIGH 7.5 3.6 21.09.2016 14:25
CVE-2016-5844
C M N
MEDIUM 6.5 3.6 21.09.2016 14:25
CVE-2016-6197
C M N
MEDIUM 5.5 3.6 06.08.2016 20:59
CVE-2016-6198
C M N
MEDIUM 5.5 3.6 06.08.2016 20:59
CVE-2016-6302
C M N
HIGH 7.5 3.6 16.09.2016 05:59
CVE-2016-7039
C M N
HIGH 7.5 3.6 16.10.2016 21:59
CVE-2016-7166
C M N
MEDIUM 5.5 3.6 21.09.2016 14:25
CVE-2022-21499
C M N
MEDIUM 4.6 6.4 09.06.2022 21:15
CVE-2023-22024
C M N
MEDIUM 5.5 3.6 20.09.2023 21:15
Showing 5 out of 132.

References ?

Updates ?

  • 14.10.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2015-7691', 'CVE-2015-7852', 'CVE-2015-7701', 'CVE-2015-4643', 'CVE-2016-4556', 'CVE-2016-4805', 'CVE-2016-4951', 'CVE-2016-3715', 'CVE-2010-5325', 'CVE-2016-4581', 'CVE-2016-4051', 'CVE-2016-5118', 'CVE-2016-4554', 'CVE-2015-7692', 'CVE-2015-7703', 'CVE-2016-4448', 'CVE-2016-4470', 'CVE-2016-5385', 'CVE-2016-3718', 'CVE-2016-3427', 'CVE-2016-3500', 'CVE-2016-4555', 'CVE-2016-0695', 'CVE-2016-2177', 'CVE-2016-5387', 'CVE-2016-5388', 'CVE-2016-3710', 'CVE-2015-5219', 'CVE-2016-4913', 'CVE-2015-7702', 'CVE-2016-2178', 'CVE-2016-4053', 'CVE-2016-4054', 'CVE-2016-3508', 'CVE-2016-3458']} values added.
  • 01.10.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2023-22024', 'CVE-2014-6271', 'CVE-2015-8668', 'CVE-2014-7169', 'CVE-2014-3153', 'CVE-2013-5211']} values added.
  • 18.05.2023 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*']} values discarded.
    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-2179', 'CVE-2016-2181', 'CVE-2016-4556', 'CVE-2016-4805', 'CVE-2016-2180', 'CVE-2016-4951', 'CVE-2015-4024', 'CVE-2016-6198', 'CVE-2010-5325', 'CVE-2016-2182', 'CVE-2016-4581', 'CVE-2016-5118', 'CVE-2016-4051', 'CVE-2016-4554', 'CVE-2016-4809', 'CVE-2016-7039', 'CVE-2015-3330', 'CVE-2015-1351', 'CVE-2016-3587', 'CVE-2016-5418', 'CVE-2016-5404', 'CVE-2016-6197', 'CVE-2016-5408', 'CVE-2016-4555', 'CVE-2016-2177', 'CVE-2016-5388', 'CVE-2016-4913', 'CVE-2015-3329', 'CVE-2016-2178', 'CVE-2014-8566', 'CVE-2016-4053', 'CVE-2016-4054', 'CVE-2016-1714', 'CVE-2016-5844', 'CVE-2016-7166', 'CVE-2004-2771', 'CVE-2016-6302']} values added.
  • 19.03.2023 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-2179', 'CVE-2016-2181', 'CVE-2016-4556', 'CVE-2016-4805', 'CVE-2016-2180', 'CVE-2016-4951', 'CVE-2015-4024', 'CVE-2016-6198', 'CVE-2010-5325', 'CVE-2016-2182', 'CVE-2016-4581', 'CVE-2016-5118', 'CVE-2016-4051', 'CVE-2016-4554', 'CVE-2016-4809', 'CVE-2016-7039', 'CVE-2015-3330', 'CVE-2015-1351', 'CVE-2016-3587', 'CVE-2016-5418', 'CVE-2016-5404', 'CVE-2016-6197', 'CVE-2016-5408', 'CVE-2016-2177', 'CVE-2016-4555', 'CVE-2016-5388', 'CVE-2016-4913', 'CVE-2015-3329', 'CVE-2016-2178', 'CVE-2014-8566', 'CVE-2016-4053', 'CVE-2016-4054', 'CVE-2016-1714', 'CVE-2016-5844', 'CVE-2016-7166', 'CVE-2004-2771', 'CVE-2016-6302']} values discarded.
  • 09.02.2023 The certificate data changed.
    Certificate changed

    The cert_id was updated.

    • The new value is 3170.

    The web extraction data was updated.

    • The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2018-04-12', 'validation_type': 'Initial', 'lab': 'ATSEC INFORMATION SECURITY CORP'}, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2018-10-12', 'validation_type': 'Update', 'lab': 'ATSEC INFORMATION SECURITY CORP'}], 'vendor_url': 'http://www.oracle.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated2018.pdf', 'hw_versions': None, 'fw_versions': None}.
    • The standard property was set to FIPS 140-2.
    • The status property was set to historical.
    • The level property was set to 1.
    • The embodiment property was set to Multi-Chip Stand Alone.
    • The mentioned_certs property was updated, with the {'3111': 1, '3017': 1} data.
    • The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].

    The PDF extraction data was updated.

    • The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 871597, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 25, '/Author': 'chris brych', '/Creator': 'Microsoft® Office Word 2007', '/CreationDate': "D:20180924125023-05'00'", '/ModDate': "D:20180924125023-05'00'", '/Producer': 'Microsoft® Office Word 2007', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#4391', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3628', 'https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3111', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2615', 'http://csrc.nist.gov/groups/STM/cmvp/index.html', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2995', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1417', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2939', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#2151', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1427', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3918', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/ECDSA#1464', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3184', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1285', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4773', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4774', 'http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/fipscheck-1.2.0-7.el6.x86_64.rpm', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5469', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2993', 'https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3017', 'http://www.oracle.com/', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2640', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1407', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3550', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component#1924', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1652', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3549', 'http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/libreswan-3.15-7.5.0.1.el6_9.x86_64.rpm', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2536', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#2081', 'https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5472', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1199', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2755']}}}.
    • The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].

    The computed heuristics were updated.

    • The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': ['3111', '3017']}, 'module_prunned_references': {'_type': 'Set', 'elements': ['3111', '3017']}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}.
    • The algorithms property was set to {'_type': 'Set', 'elements': ['RSA#2615', 'HMAC#3550', 'AES#5472', 'SHS#4391', 'DSA#1285', 'ECDSA#1464', 'ECDSA#1199', 'DRBG#2151', 'HMAC#3628', 'DSA#1407', 'Triple-DES#2536', 'DRBG#1652', 'SHS#3918', 'HMAC#2993', 'HMAC#3184', 'RSA#2939', 'CVL#1427', 'Triple-DES#2755', 'AES#4773', 'CVL#2081', 'CVL#1417', 'HMAC#3549', 'AES#5469', 'AES#4774', 'HMAC#2995', 'RSA#2640', 'CVL#1924']}.
    • The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].

    The state was updated.

    • The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': '5ed8d53e909a6d44852656fdf695785f3f66f9ea2a3e0c20627c69111c90ba65', 'policy_txt_hash': 'af8e5636edc2cb0bb7b6b6efaf020bdaf30fae9a1450d384351fbbb146b19dce'}.
    • The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
  • 07.12.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The clean_cert_ids property was updated, with the {'#1924': 2, '#2081': 2} values inserted.
    • The st_references property was updated, with the {'directly_referencing': {'__add__': {'_type': 'Set', 'elements': ['1924', '2081']}}, 'indirectly_referencing': {'__add__': {'_type': 'Set', 'elements': ['1418', '1924', '1925', '2081']}}} data.
  • 05.11.2022 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The algorithms property was set to {'_type': 'Set', 'elements': []}.

    The PDF extraction data was updated.

    • The clean_cert_ids property was updated, with the {'#1924': 2, '#1427': 2, '#2081': 2} values inserted.

    The computed heuristics were updated.

    • The algorithms property was set to {'_type': 'Set', 'elements': []}.
  • 25.10.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The keywords property was updated, with the {'fips_certlike': {'__update__': {'Certlike': {'__update__': {'SHA-256': 8}, '__delete__': ['SHA- 256', 'PKCS #11', 'AES, 3', 'DES CBC 2536', 'CVL 2081']}}}, 'vendor': {'__delete__': ['STMicroelectronics']}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__delete__': ['E2']}, 'DES': {'__update__': {'DES': {'__update__': {'DES': 1}, '__delete__': ['DEA']}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 15}}}}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__update__': {'Diffie-Hellman': 8, 'DH': 2}}, 'DSA': {'__update__': {'DSA': 2}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA2': {'__update__': {'SHA-256': 8}, '__delete__': ['SHA-2']}}, '__delete__': ['SHA3']}}}, 'crypto_scheme': {'__delete__': ['MAC', 'KA']}, 'crypto_protocol': {'__update__': {'IKE': {'__update__': {'IKEv1': 1}}}, '__delete__': ['TLS']}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 2}}}, '__delete__': ['RNG']}, 'crypto_library': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': 12}}, 'NSS': {'__update__': {'NSS': 23}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'NIST': {'NIST SP 800-135': 1, 'SP 800-135': 2, 'NIST SP 800-38A': 1, 'NIST SP 800-38D': 1, 'NIST SP 800-38F': 1, 'NIST SP 800-56A': 1, 'NIST SP 800-67': 1, 'NIST SP 800-90A': 1}}, '__delete__': ['PKCS']}} data.
    • The clean_cert_ids property was updated, with the {'#11': 1} values inserted.

    The computed heuristics were updated.

    • The st_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}} data.
    • The web_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3111', '3017']}} data.

    The state was updated.

    • The tables_done property was set to True.
  • 10.10.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*']} values added.
  • 08.10.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The keywords property was updated, with the {'vendor': {'__insert__': {'Cisco': {'Cisco': 17}}}} data.

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*']} values discarded.
    • The st_references property was updated, with the {'directly_referencing': None, 'indirectly_referencing': None} data.
    • The web_references property was updated, with the {'directly_referencing': None, 'indirectly_referencing': None} data.
  • 17.09.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2014-3581']} values added.
  • 03.09.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-1908']} values added.
  • 17.07.2022 The certificate data changed.
    Certificate changed

    The _type was updated.

    • The new value is sec_certs.sample.fips.FIPSCertificate.

    The computed heuristics were updated.

    • The following values were inserted: {'clean_cert_ids': {'#3111': 1, '#3017': 1}}.
    • The _type property was set to sec_certs.sample.fips.FIPSCertificate.Heuristics.
    • The keywords property was set to {}.
    • The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3628', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1427', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2615', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3918', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1652', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2939', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1199', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1417', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2151', 'algorithm_type': 'DRBG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4391', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1285', 'algorithm_type': 'DSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3184', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2995', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2640', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2536', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2993', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1464', 'algorithm_type': 'ECDSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5469', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4773', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1924', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#5472', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#4774', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2755', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3550', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#2081', 'algorithm_type': 'CVL', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1407', 'algorithm_type': 'DSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#3549', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}]}.
    • The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References', 'directly_referencing': {'__add__': {'_type': 'Set', 'elements': ['3111']}}, 'indirectly_referencing': {'__add__': {'_type': 'Set', 'elements': ['3111']}}} data.
    • The web_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.

    The state was updated.

    • The _type property was set to sec_certs.sample.fips.FIPSCertificate.InternalState.
    • The following properties were deleted: ['fragment_path'].
  • 02.07.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The status property was set to Historical.
    • The date_sunset property was set to None.
    • The historical_reason property was set to SP 800-56Arev3 transition.
  • 29.06.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 25.06.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 23.06.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 21.06.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 19.06.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-21499']} values added.
  • 14.06.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The pdf_scan was updated.

    • The keywords property was updated, with the {'rules_cert_id': {}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__delete__': ['FIPS 140-2', 'FIPS 180-4', 'FIPS 198-1']}, 'FIPS ?(?:PUB )?[0-9]+?': {'__delete__': ['FIPS 140']}, 'NIST SP [0-9]+-[0-9]+?[a-zA-Z]?': {'__delete__': ['NIST SP 800-135', 'NIST SP 800-38A', 'NIST SP 800-38D', 'NIST SP 800-38F', 'NIST SP 800-56A', 'NIST SP 800-67']}}}, 'rules_block_cipher_modes': {'__update__': {'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-256', 'P-384']}}}, 'rules_crypto_libs': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': {'__update__': {'count': 1}}}}, 'NSS': {'__update__': {'NSS': {'__update__': {'count': 1}}}}}}, 'rules_other': {'__update__': {'library': {'__update__': {'library': {'__update__': {'count': 1}}}}}}} data.

    The computed heuristics were updated.

    • The keywords property was updated, with the {'rules_cert_id': {'__delete__': ['(?:#[^\\S\\r\\n]?|Cert\\.?(?!.\\s)[^\\S\\r\\n]?|Certificate[^\\S\\r\\n]?)(?P<id>\\d{4})(?!\\d)']}, 'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__delete__': ['FIPS 140-2', 'FIPS 180-4', 'FIPS 198-1']}, 'FIPS ?(?:PUB )?[0-9]+?': {'__delete__': ['FIPS 140']}, 'NIST SP [0-9]+-[0-9]+?[a-zA-Z]?': {'__delete__': ['NIST SP 800-135', 'NIST SP 800-38A', 'NIST SP 800-38D', 'NIST SP 800-38F', 'NIST SP 800-56A', 'NIST SP 800-67']}}}, 'rules_block_cipher_modes': {'__update__': {'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}, 'GCM': {'__update__': {'GCM': {'__update__': {'count': 1}}}}}}, 'rules_ecc_curves': {'__insert__': {'(NIST)? ?[PBK]-[0-9]{3}': {'P-521': {'count': 1}}}, '__update__': {'(?:Curve |curve |)P-(192|224|256|384|521)': {'__update__': {'P-521': {'__update__': {'count': 1}}}, '__delete__': ['P-256', 'P-384']}}}, 'rules_crypto_libs': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': {'__update__': {'count': 1}}}}, 'NSS': {'__update__': {'NSS': {'__update__': {'count': 1}}}}}}, 'rules_other': {'__update__': {'library': {'__update__': {'library': {'__update__': {'count': 1}}}}}}} data.
    • The algorithms property was updated.
  • 07.06.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 24.05.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 22.05.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6.4:*:*:*:*:*:*:*']} values added.
  • 20.05.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 19.05.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 18.05.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 17.05.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 13.05.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 18.04.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2013-5704']} values added.
  • 11.03.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 10.03.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 08.03.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.
    • The following properties were deleted: ['connections'].

    The pdf_scan was updated.

    • The following properties were deleted: ['connections'].

    The computed heuristics were updated.

    • The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3017']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017']}}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['3017', '3111']}}}.
    • The algorithms property was updated.
    • The following properties were deleted: ['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
  • 23.02.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 18.02.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
    • The extracted_versions property was set to {'_type': 'Set', 'elements': ['6']}.
    • The cpe_matches property was set to {'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:6:6:*:*:*:*:*:*', 'cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*']}.
  • 12.02.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
    • The cpe_matches property was updated, with the [[1, 'cpe:2.3:o:oracle:linux:6:6:*:*:*:*:*:*']] values inserted.
  • 11.02.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 03.02.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 02.02.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The module_type property was set to Software.
    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
  • 31.01.2022 The certificate data changed.
    Certificate changed

    The web_scan was updated.

    • The algorithms property was updated.

    The computed heuristics were updated.

    • The algorithms property was updated.
    • The cpe_matches property was updated, with the [[1, 'cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*']] values inserted.
  • 30.01.2022 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 3170,
  "dgst": "d7827558d408d7af",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "HMAC#2995",
        "DRBG#2151",
        "Triple-DES#2536",
        "HMAC#3628",
        "AES#4773",
        "DSA#1285",
        "ECDSA#1464",
        "RSA#2640",
        "CVL#1427",
        "HMAC#3549",
        "SHS#4391",
        "SHS#3918",
        "AES#4774",
        "HMAC#3184",
        "CVL#2081",
        "HMAC#2993",
        "AES#5469",
        "CVL#1417",
        "RSA#2615",
        "DSA#1407",
        "Triple-DES#2755",
        "DRBG#1652",
        "RSA#2939",
        "AES#5472",
        "ECDSA#1199",
        "CVL#1924",
        "HMAC#3550"
      ]
    },
    "cpe_matches": {
      "_type": "Set",
      "elements": [
        "cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*",
        "cpe:2.3:o:oracle:linux:6:7:*:*:*:*:*:*",
        "cpe:2.3:o:oracle:linux:6:5:*:*:*:*:*:*",
        "cpe:2.3:o:oracle:linux:6:6:*:*:*:*:*:*",
        "cpe:2.3:o:oracle:linux:6:4:*:*:*:*:*:*"
      ]
    },
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "6"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "3017",
          "3111"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "3017",
          "3111"
        ]
      }
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": [
        "3017",
        "3111"
      ]
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "3017",
          "3111"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "3017",
          "3111"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "3017",
        "3111"
      ]
    },
    "related_cves": {
      "_type": "Set",
      "elements": [
        "CVE-2016-1930",
        "CVE-2015-8631",
        "CVE-2016-7166",
        "CVE-2015-7701",
        "CVE-2015-7703",
        "CVE-2015-5219",
        "CVE-2015-8000",
        "CVE-2016-1960",
        "CVE-2016-2796",
        "CVE-2016-1954",
        "CVE-2016-3500",
        "CVE-2016-0695",
        "CVE-2016-5118",
        "CVE-2013-7421",
        "CVE-2004-2771",
        "CVE-2016-7039",
        "CVE-2016-4054",
        "CVE-2016-4809",
        "CVE-2016-2178",
        "CVE-2016-5264",
        "CVE-2016-3508",
        "CVE-2016-1957",
        "CVE-2016-1714",
        "CVE-2016-3587",
        "CVE-2013-4312",
        "CVE-2016-4470",
        "CVE-2016-5387",
        "CVE-2016-5258",
        "CVE-2015-7977",
        "CVE-2014-8134",
        "CVE-2016-5259",
        "CVE-2016-2179",
        "CVE-2016-1977",
        "CVE-2016-1974",
        "CVE-2016-2180",
        "CVE-2016-1966",
        "CVE-2016-1952",
        "CVE-2016-4581",
        "CVE-2014-3673",
        "CVE-2014-3145",
        "CVE-2016-4555",
        "CVE-2016-1973",
        "CVE-2016-3427",
        "CVE-2010-5325",
        "CVE-2014-3144",
        "CVE-2014-1738",
        "CVE-2014-0196",
        "CVE-2016-5408",
        "CVE-2016-2776",
        "CVE-2016-2797",
        "CVE-2014-9644",
        "CVE-2016-5404",
        "CVE-2016-1935",
        "CVE-2016-2518",
        "CVE-2016-2795",
        "CVE-2016-6197",
        "CVE-2014-8566",
        "CVE-2016-5385",
        "CVE-2016-4448",
        "CVE-2014-3687",
        "CVE-2014-1737",
        "CVE-2016-1908",
        "CVE-2016-5262",
        "CVE-2023-22024",
        "CVE-2016-3598",
        "CVE-2016-3710",
        "CVE-2016-4913",
        "CVE-2016-1950",
        "CVE-2013-5211",
        "CVE-2015-4643",
        "CVE-2015-8629",
        "CVE-2014-3581",
        "CVE-2016-2801",
        "CVE-2015-3330",
        "CVE-2015-8668",
        "CVE-2016-2792",
        "CVE-2016-3715",
        "CVE-2016-5252",
        "CVE-2016-5254",
        "CVE-2015-3329",
        "CVE-2015-7852",
        "CVE-2016-5403",
        "CVE-2015-4024",
        "CVE-2015-8896",
        "CVE-2016-2791",
        "CVE-2016-3550",
        "CVE-2015-1351",
        "CVE-2016-1961",
        "CVE-2016-4951",
        "CVE-2016-2793",
        "CVE-2014-3153",
        "CVE-2016-2799",
        "CVE-2014-0203",
        "CVE-2016-6198",
        "CVE-2016-5388",
        "CVE-2016-2802",
        "CVE-2016-4805",
        "CVE-2016-3718",
        "CVE-2016-4556",
        "CVE-2014-2706",
        "CVE-2016-2837",
        "CVE-2013-5704",
        "CVE-2015-3195",
        "CVE-2016-4554",
        "CVE-2014-7169",
        "CVE-2016-5844",
        "CVE-2016-2182",
        "CVE-2016-6302",
        "CVE-2015-7512",
        "CVE-2016-1962",
        "CVE-2016-3610",
        "CVE-2022-21499",
        "CVE-2016-1958",
        "CVE-2015-8126",
        "CVE-2015-7692",
        "CVE-2016-2798",
        "CVE-2016-2177",
        "CVE-2016-1965",
        "CVE-2016-5263",
        "CVE-2016-1964",
        "CVE-2016-2790",
        "CVE-2016-4051",
        "CVE-2016-5418",
        "CVE-2014-6271",
        "CVE-2016-2794",
        "CVE-2015-7702",
        "CVE-2016-2181",
        "CVE-2016-5265",
        "CVE-2016-2800",
        "CVE-2016-3458",
        "CVE-2015-7691",
        "CVE-2016-4053"
      ]
    },
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 1
          },
          "ECDSA": {
            "ECDSA": 2
          }
        },
        "FF": {
          "DH": {
            "DH": 2,
            "DHE": 1,
            "Diffie-Hellman": 8
          },
          "DSA": {
            "DSA": 2
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "CTR": {
          "CTR": 1
        },
        "GCM": {
          "GCM": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "NSS": {
          "NSS": 23
        },
        "OpenSSL": {
          "OpenSSL": 12
        }
      },
      "crypto_protocol": {
        "IKE": {
          "IKE": 47,
          "IKEv1": 1,
          "IKEv2": 2
        },
        "IPsec": {
          "IPsec": 5
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key Exchange": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 4,
          "P-384": 4,
          "P-521": 4
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#11": 1,
          "#1417": 2,
          "#1427": 2,
          "#1924": 2,
          "#2081": 2,
          "#3017": 1,
          "#3111": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "CVL 1417": 2,
          "CVL 1427": 1,
          "Diffie-Hellman (CVL Cert. #1417": 2,
          "HMAC SHA-256": 5,
          "HMAC-SHA- 256": 2,
          "HMAC-SHA-256": 8,
          "SHA 1 , 256": 1,
          "SHA 1, 256": 5,
          "SHA-1": 2,
          "SHA-256": 8,
          "SHA-384": 2,
          "SHA-512": 1,
          "SHA-512 3918": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 4,
          "level 1": 2
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 1
          }
        },
        "PBKDF": {
          "PBKDF": 1
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 2
          },
          "SHA2": {
            "SHA-256": 8,
            "SHA-384": 2,
            "SHA-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 2
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "Timing Attacks": 2
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140": 5,
          "FIPS 140-2": 25,
          "FIPS 180-4": 1,
          "FIPS 186-4": 1,
          "FIPS 197": 1,
          "FIPS 198-1": 1,
          "FIPS PUB 140-2": 2
        },
        "NIST": {
          "NIST SP 800-135": 1,
          "NIST SP 800-38A": 1,
          "NIST SP 800-38D": 1,
          "NIST SP 800-38F": 1,
          "NIST SP 800-56A": 1,
          "NIST SP 800-67": 1,
          "NIST SP 800-90A": 1,
          "SP 800-135": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 5
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "Triple-DES": 2
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 15,
            "HMAC-SHA-256": 4
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Cisco": {
          "Cisco": 17
        },
        "Huawei": {
          "Huawei": 7
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "chris brych",
      "/CreationDate": "D:20180924125023-05\u002700\u0027",
      "/Creator": "Microsoft\u00ae Office Word 2007",
      "/ModDate": "D:20180924125023-05\u002700\u0027",
      "/Producer": "Microsoft\u00ae Office Word 2007",
      "pdf_file_size_bytes": 871597,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.oracle.com/",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2993",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/ECDSA#1464",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4774",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2640",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1285",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#4391",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3549",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#2081",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1417",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3918",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3628",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2755",
          "http://csrc.nist.gov/groups/STM/cmvp/index.html",
          "http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/fipscheck-1.2.0-7.el6.x86_64.rpm",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1652",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2615",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#2151",
          "http://yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPackage/libreswan-3.15-7.5.0.1.el6_9.x86_64.rpm",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1199",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2939",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5469",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3184",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3017",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#2995",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5472",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1427",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4773",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3550",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component#1924",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1407",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/3111",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2536"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 25
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "5ed8d53e909a6d44852656fdf695785f3f66f9ea2a3e0c20627c69111c90ba65",
    "policy_txt_hash": "af8e5636edc2cb0bb7b6b6efaf020bdaf30fae9a1450d384351fbbb146b19dce"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode with Oracle Linux 6 NSS Cryptographic Module validated to FIPS 140-2 under Cert. #3111 operating in FIPS mode and Oracle Linux OpenSSL Cryptographic Module validated to FIPS 140-2 under Cert. #3017 operating in FIPS mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated2018.pdf",
    "date_sunset": null,
    "description": "The Oracle Linux 6 Libreswan Cryptographic Module is a framework for providing cryptographic services to other network entities implementing the IKEv1 and IKEv2 protocols.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical Security: N/A",
      "Design Assurance: Level 3",
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": "SP 800-56Arev3 transition",
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {
      "3017": 1,
      "3111": 1
    },
    "module_name": "Oracle Linux 6 Libreswan Cryptographic Module",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": "R6-1.0.0",
    "tested_conf": [
      "Oracle Linux 6.9 64 bit running on Oracle Server X6-2 with PAA",
      "Oracle Linux 6.9 64 bit running on Oracle Server X6-2 without PAA",
      "Oracle Linux 6.9 64 bit running on Oracle Server X7-2 with PAA\u00c2\u20ac",
      "Oracle Linux 6.9 64 bit running on Oracle Server X7-2 without PAA (single-user mode)"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-04-12",
        "lab": "ATSEC INFORMATION SECURITY CORP",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-10-12",
        "lab": "ATSEC INFORMATION SECURITY CORP",
        "validation_type": "Update"
      }
    ],
    "vendor": "Oracle Corporation",
    "vendor_url": "http://www.oracle.com"
  }
}