Aegis Fortress L3 Cryptographic Module

Certificate #4529

Webpage information ?

Status active
Validation dates 05.06.2023
Sunset date 28-07-2026
Standard FIPS 140-2
Security level 3
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat When configured as specified in Section 11.1 of the Security Policy
Exceptions
  • Mitigation of Other Attacks: N/A
Description The Aegis Fortress L3 is a FIPS 140-2 Level 3 validated hardware encrypted USB 3.1 external storage drive. Its software free design allows interface to any host that supports USB and mass storage. Authentication is performed via the embedded keypad and all CSPs (PINs, encryption keys, etc) never leave the device boundary for improved security. The device supports 1 administrator and 1 user and offers a variety of features including forced enrollment, programmable brute force, recovery PINs, 7-16 digit PINs, auto lock, read only modes, and is compatible with Apricorn’s Aegis Configurator.
Version (Hardware) P/Ns AFL3-500, AFL3-1TB, AFL3-2TB, AFL3-3TB, AFL3-4TB, AFL3-5TB, AFL3-S500, AFL3-S1TB, AFL3-S2TB, AFL3-S4TB, AFL3-S8TB, AFL3-S16TB and AFL3-S20TB; Hardware Version: Rev B1
Version (Firmware) 3.3
Vendor Apricorn
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-256
Asymmetric Algorithms
ECDH, ECDSA, ECC, DH, Diffie-Hellman
Hash functions
SHA-256
Schemes
Key Agreement
Randomness
DRBG, RNG
Elliptic Curves
P-256
Block cipher modes
ECB, CBC, XEX, XTS

Trusted Execution Environments
SSC

Security level
Level 3
Certification process
out of scope, module only supports a FIPS Approved mode of operation; therefore, a non-compliant configuration is out of scope for this validation. Aegis Fortress L3 Cryptographic Module Cryptographic Module Security Policy ©

Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 197, FIPS 180-4, FIPS 186-4, NIST SP 800-90A, NIST SP 800-38E, NIST SP 800-133, SP 800-38E, SP 800-38A, SP 800-133, SP 800-90A, SP 800-56A

File metadata

Title Date
Keywords Apricorn Security Policy
Author Robert Davidosn
Creation date D:20230509074752-07'00'
Modification date D:20230509074758-07'00'
Pages 17
Creator Acrobat PDFMaker 23 for Word
Producer Adobe PDF Library 23.1.175

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 31.07.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf.
  • 26.06.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4529,
  "dgst": "9d9ceff673eaf9a7",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#C555",
        "DRBG#C656",
        "AES#C1597",
        "SHS#C568",
        "KAS#A2429",
        "ECDSA#C570",
        "KAS-SSC#A2429",
        "KDA#A2429"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.3"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 2
          },
          "ECDH": {
            "ECDH": 10
          },
          "ECDSA": {
            "ECDSA": 1
          }
        },
        "FF": {
          "DH": {
            "DH": 2,
            "Diffie-Hellman": 6
          }
        }
      },
      "certification_process": {
        "OutOfScope": {
          "module only supports a FIPS Approved mode of operation; therefore, a non-compliant configuration is out of scope for this validation. Aegis Fortress L3 Cryptographic Module Cryptographic Module Security Policy \u00a9": 1,
          "out of scope": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        },
        "ECB": {
          "ECB": 1
        },
        "XEX": {
          "XEX": 1
        },
        "XTS": {
          "XTS": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 14
        }
      },
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "AES-256": 1,
          "SHA-256": 3
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 3": 13
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 3
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 10
        },
        "RNG": {
          "RNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 11,
          "FIPS 180-4": 2,
          "FIPS 186-4": 1,
          "FIPS 197": 1,
          "FIPS PUB 140-2": 2
        },
        "NIST": {
          "NIST SP 800-133": 1,
          "NIST SP 800-38E": 1,
          "NIST SP 800-90A": 1,
          "SP 800-133": 1,
          "SP 800-38A": 1,
          "SP 800-38E": 1,
          "SP 800-56A": 5,
          "SP 800-90A": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 15,
            "AES-256": 1
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SSC": 1
        }
      },
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Robert Davidosn",
      "/Company": "Apricorn",
      "/CreationDate": "D:20230509074752-07\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 23 for Word",
      "/Keywords": "Apricorn Security Policy",
      "/ModDate": "D:20230509074758-07\u002700\u0027",
      "/Producer": "Adobe PDF Library 23.1.175",
      "/SourceModified": "D:20230509144725",
      "/Subject": "",
      "/Title": "Date",
      "pdf_file_size_bytes": 489125,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 17
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "24d1bf63b47ee6696fceee499524c2c9de4681ceae13031e449e9b55705c796e",
    "policy_txt_hash": "0e150800a97c8b375563b75676308e99523a3071c83cf2e97118775eda2c23b3"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When configured as specified in Section 11.1 of the Security Policy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf",
    "date_sunset": "2026-07-28",
    "description": "The Aegis Fortress L3 is a FIPS 140-2 Level 3 validated hardware encrypted USB 3.1 external storage drive. Its software free design allows interface to any host that supports USB and mass storage. Authentication is performed via the embedded keypad and all CSPs (PINs, encryption keys, etc) never leave the device boundary for improved security. The device supports 1 administrator and 1 user and offers a variety of features including forced enrollment, programmable brute force, recovery PINs, 7-16 digit PINs, auto lock, read only modes, and is compatible with Apricorn\u2019s Aegis Configurator.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "3.3",
    "historical_reason": null,
    "hw_versions": "P/Ns AFL3-500, AFL3-1TB, AFL3-2TB, AFL3-3TB, AFL3-4TB, AFL3-5TB, AFL3-S500, AFL3-S1TB, AFL3-S2TB, AFL3-S4TB, AFL3-S8TB, AFL3-S16TB and AFL3-S20TB; Hardware Version: Rev B1",
    "level": 3,
    "mentioned_certs": {},
    "module_name": "Aegis Fortress L3 Cryptographic Module",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-06-05",
        "lab": "UL VERIFICATION SERVICES INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Apricorn",
    "vendor_url": "http://www.apricorn.com"
  }
}