This page was not yet optimized for use on mobile devices.
Symantec Content Analysis Virtual Appliance
Certificate #4456
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, AES-256, AES-128, HMAC, HMAC-SHA-512Asymmetric Algorithms
RSA-OAEP, ECCHash functions
SHA-1, SHA-256, SHA-512, SHA-384, SHA384, MD5Schemes
Key AgreementProtocols
SSH, TLS, TLS 1.2Randomness
DRBG, RNGElliptic Curves
P-256, P-384, P-521Block cipher modes
ECB, CBC, CTR, GCM, XTSVendor
Broadcom, Broadcom IncSecurity level
Level 1Standards
FIPS 140-2, FIPS 197, FIPS 180-4, FIPS PUB 140-2, FIPS 198-1, FIPS 186-4, SP 800-38A, SP 800-38F, SP 800-38E, NIST SP 800-38D, SP 800-56B, SP 800-90A, SP 800-133, SP 800-56A, SP 800-90B, SP 800-90, PKCS1File metadata
| Title | FIPS 140-2 Security Policy |
|---|---|
| Subject | Symantec Content Analysis |
| Author | Broadcom |
| Creation date | D:20230215111628-05'00' |
| Modification date | D:20230215111628-05'00' |
| Pages | 34 |
| Creator | Microsoft® Word 2016 |
| Producer | Microsoft® Word 2016 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
18.05.2023 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The certificate_pdf_url property was set to
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2023_030423_0646.pdf.
- The certificate_pdf_url property was set to
-
27.03.2023 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4456,
"dgst": "ff805620597e9225",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"RSA#A1762",
"AES#A1764",
"DRBG#A1764",
"SHS#A1763",
"SHS#A1762",
"SHS#A1764",
"KTS#A1764",
"AES#A1763",
"KAS-SSC#A1764",
"KAS#A1764",
"KTS-RSA#A1764",
"RSA#A1764",
"DRBG#A1763",
"CVL#A1764",
"HMAC#A1764",
"HMAC#A1762"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"-"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
}
},
"RSA": {
"RSA-OAEP": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 9
},
"CTR": {
"CTR": 15
},
"ECB": {
"ECB": 2
},
"GCM": {
"GCM": 11
},
"XTS": {
"XTS": 6
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"SSH": {
"SSH": 58
},
"TLS": {
"TLS": {
"TLS": 57,
"TLS 1.2": 2
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 5
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 18,
"P-384": 8,
"P-521": 6
}
},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#2": 1
}
},
"fips_certlike": {
"Certlike": {
"AES 128, 192": 3,
"AES 128, 1928": 1,
"AES 128, 256": 2,
"AES CBC 128": 1,
"AES CTR 128": 1,
"AES GCM 128": 2,
"AES-128": 1,
"AES-256": 4,
"HMAC- SHA-256": 1,
"HMAC-SHA- 384": 2,
"HMAC-SHA-1": 6,
"HMAC-SHA-1 128": 2,
"HMAC-SHA-512 128": 2,
"PKCS1": 6,
"SHA- 384": 1,
"SHA-1": 5,
"SHA-110": 1,
"SHA-113": 1,
"SHA-256": 10,
"SHA-384": 2,
"SHA-512": 5,
"SHA384": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 3
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 1
}
},
"SHA": {
"SHA1": {
"SHA-1": 5
},
"SHA2": {
"SHA-256": 10,
"SHA-384": 2,
"SHA-512": 5,
"SHA384": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 34
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 57,
"FIPS 180-4": 3,
"FIPS 186-4": 3,
"FIPS 197": 1,
"FIPS 198-1": 2,
"FIPS PUB 140-2": 1
},
"NIST": {
"NIST SP 800-38D": 1,
"SP 800-133": 1,
"SP 800-38A": 1,
"SP 800-38E": 1,
"SP 800-38F": 1,
"SP 800-56A": 2,
"SP 800-56B": 1,
"SP 800-90": 1,
"SP 800-90A": 7,
"SP 800-90B": 1
},
"PKCS": {
"PKCS1": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 26,
"AES-128": 1,
"AES-256": 4
}
},
"constructions": {
"MAC": {
"HMAC": 8,
"HMAC-SHA-512": 1
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Broadcom": {
"Broadcom": 9,
"Broadcom Inc": 1
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Broadcom",
"/CreationDate": "D:20230215111628-05\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2016",
"/ModDate": "D:20230215111628-05\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2016",
"/Subject": "Symantec Content Analysis",
"/Title": "FIPS 140-2 Security Policy",
"pdf_file_size_bytes": 1172134,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search/",
"https://www.cse-cst.gc.ca/en/backgrounder-fiche-information",
"https://techdocs.broadcom.com/us/en/symantec-security-software/web-and-network-security/content-analysis/3-1/cli-index.html",
"https://csrc.nist.gov/projects/cryptographic-module-validation-program",
"http://www.broadcom.com/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 34
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "f05a793aa25866a04080b27d8890ca232f3d7a6257388b622e8c9a7854395398",
"policy_txt_hash": "784140fc4e0f25ead99e4188360d74d47da9c1e156661433becc77177d3a989c"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When installed, initialized and configured as specified in Section 3 of the Security Policy.",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2023_030423_0646.pdf",
"date_sunset": "2026-09-21",
"description": "The Symantec Content Analysis (CAS) is a critical component of effective protection against advanced targeted attacks achieved via multi-layer file inspection and sandboxing. Together with ProxySG or Symantec Messaging Gateway (SMG), it offers the most complete advanced threat protection in the marketplace for blocking known threats and analyzing zero-day and other advanced threats.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 2",
"Physical Security: N/A",
"Design Assurance: Level 3",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Symantec Content Analysis Virtual Appliance",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": "3.1.3.0",
"tested_conf": [
"KVM on Centos 7 running on a Symantec ISG SSP-S410-10 with an Intel\u00ae Xeon\u00ae Silver 4210 (single-user mode)"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2023-03-22",
"lab": "Lightship Security, Inc.",
"validation_type": "Initial"
}
],
"vendor": "Symantec, A Division of Broadcom",
"vendor_url": "http://www.broadcom.com"
}
}