Trusted Platform Module ST33KTPM2XSPI / ST33KTPM2X / ST33KTPM2A / ST33KTPM2I

Certificate #4737

Webpage information ?

Status active
Validation dates 25.07.2024
Sunset date 24-07-2026
Standard FIPS 140-3
Security level 1
Type Hardware
Embodiment Single Chip
Caveat Interim validation, When operated in Approved mode
Exceptions
  • Physical security: Level 3
  • Non-invasive security: N/A
  • Mitigation of other attacks: N/A
  • Documentation requirements: N/A
  • Cryptographic module security policy: N/A
Description The ST33KTPM2X, ST33KTPM2XSPI, ST33KTPM2X, ST33KTPM2A, ST33KTPM2I Trusted Platform Module (TPM) are hardware cryptographic modules which implement the TPM2.0 standard as defined by the Trusted Computing Group. TPMs are used primarily for the generation, storage, and management of cryptographic keys, as well was for secure storage of digital certificates.
Version (Hardware) P/Ns ST33KTPM2XSPI [A, C], ST33KTPM2X [A], ST33KTPM2A [B] and ST33KTPM2I [B]
Version (Firmware) 9.257 [A], 10.257 [B], 9.258 [C]
Vendor STMicroelectronics
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, CAST, DES, HMAC
Asymmetric Algorithms
ECDSA, ECC, DH
Hash functions
SHA-1, SHA1, SHA3-384, SHA3-256, SHA3
Schemes
MAC, Key agreement
Randomness
DRBG
Libraries
NSS
Elliptic Curves
P-256, P-384, NIST P-256, NIST P-384
Block cipher modes
ECB, CBC, CTR, CFB, OFB

Trusted Execution Environments
PSP
Vendor
STMicroelectronics

Security level
Level 1, level 1, Level 3

Standards
FIPS140-3, FIPS 140-3, FIPS 186-4, FIPS 198-1, FIPS 202, FIPS 180-4, FIPS PUB 140-3, FIPS 197, SP 800-38A, SP 800-90A, SP 800-56A, SP 800-56C, SP 800-108, SP 800-38F, SP 800-56B, AIS31, ISO/IEC 24759, ISO/IEC 19790, ISO/IEC 19790:2012, ISO/IEC 24759:2017, X.509

File metadata

Title ST33KTPM2X
Subject Security policy
Author Fabien ARRIVE
Creation date D:20240614112913-07'00'
Modification date D:20240614113125-07'00'
Pages 57
Creator Acrobat PDFMaker 24 for Word
Producer Adobe PDF Library 24.2.23

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 12.08.2024 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2024_010824_1146.pdf.
  • 03.08.2024 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4737,
  "dgst": "f27f4a6236a87083",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "RSA Decryption PrimitiveA2554",
        "AES-CBCA2553",
        "HMAC-SHA2-256A2552",
        "KDF SP800-108A2550",
        "AES-CFB128A2553",
        "HMAC-SHA-1A2552",
        "KAS-ECC Sp800-56Ar3A2555",
        "SHA-1A2549",
        "HMAC-SHA2-384A2552",
        "KTS-IFCA2554",
        "RSA SigVer (FIPS186-4)A2554",
        "AES-CTRA2553",
        "SHA3-384A2548",
        "ECDSA KeyVer (FIPS186-4)A2555",
        "RSA KeyGen (FIPS186-4)A2554",
        "AES-ECBA2553",
        "RSA SigGen (FIPS186-4)A2554",
        "SHA3-256A2548",
        "ECDSA KeyGen (FIPS186-4)A2555",
        "HMAC-SHA3-384A2552",
        "HMAC-SHA3-256A2552",
        "ECDSA SigGen (FIPS186-4)A2555",
        "ECDSA SigVer (FIPS186-4)A2555",
        "Hash DRBGA2547",
        "SHA2-256A2549",
        "SHA2-384A2549",
        "AES-OFBA2553"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "9.258",
        "9.257",
        "10.257"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 88
          },
          "ECDSA": {
            "ECDSA": 23
          }
        },
        "FF": {
          "DH": {
            "DH": 5
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CFB": {
          "CFB": 4
        },
        "CTR": {
          "CTR": 20
        },
        "ECB": {
          "ECB": 1
        },
        "OFB": {
          "OFB": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "NSS": {
          "NSS": 5
        }
      },
      "crypto_protocol": {},
      "crypto_scheme": {
        "KA": {
          "Key agreement": 2
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "NIST P-256": 4,
          "NIST P-384": 2,
          "P-256": 60,
          "P-384": 14
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 6,
          "#10": 1,
          "#2": 2,
          "#2551": 1,
          "#3": 1,
          "#4": 1,
          "#5": 1,
          "#6": 1,
          "#7": 1,
          "#8": 1,
          "#9": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES - 128 128": 1,
          "AES CBC 128": 2,
          "DRBG 512 256": 1,
          "HMAC Cert. #2551": 2,
          "HMAC SHA-1": 1,
          "HMAC SHA1": 1,
          "PKCS1-v1_5": 1,
          "SHA-1": 15,
          "SHA-11": 1,
          "SHA1": 2,
          "SHA2- 256": 1,
          "SHA2- 384": 4,
          "SHA2-256": 19,
          "SHA2-384": 13,
          "SHA3": 57,
          "SHA3- 256": 2,
          "SHA3- 384": 1,
          "SHA3-256": 5,
          "SHA3-384": 6
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 5,
          "Level 3": 1,
          "level 1": 8
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 15,
            "SHA1": 2
          },
          "SHA3": {
            "SHA3": 57,
            "SHA3-256": 5,
            "SHA3-384": 6
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 42
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "BSI": {
          "AIS31": 2
        },
        "FIPS": {
          "FIPS 140-3": 26,
          "FIPS 180-4": 2,
          "FIPS 186-4": 5,
          "FIPS 197": 1,
          "FIPS 198-1": 2,
          "FIPS 202": 2,
          "FIPS PUB 140-3": 1,
          "FIPS140-3": 1
        },
        "ISO": {
          "ISO/IEC 19790": 8,
          "ISO/IEC 19790:2012": 2,
          "ISO/IEC 24759": 18,
          "ISO/IEC 24759:2017": 1
        },
        "NIST": {
          "SP 800-108": 1,
          "SP 800-38A": 1,
          "SP 800-38F": 1,
          "SP 800-56A": 2,
          "SP 800-56B": 1,
          "SP 800-56C": 1,
          "SP 800-90A": 1
        },
        "X509": {
          "X.509": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 43
          },
          "CAST": {
            "CAST": 1
          }
        },
        "DES": {
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 86
          }
        }
      },
      "tee_name": {
        "AMD": {
          "PSP": 4
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "STMicroelectronics": {
          "STMicroelectronics": 3
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Approve2": "\u003capprover2\u003e",
      "/Author": "Fabien ARRIVE",
      "/Classification": "Secure MCU Restricted Distribution",
      "/Client Rep": "\u003cclient rep\u003e",
      "/Company": "STMicroelectronics",
      "/ContentTypeId": "0x0101007144136AC8F2B54EB87D936709D54072",
      "/CreationDate": "D:20240614112913-07\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 24 for Word",
      "/Document Number": "SSS_ST33TPHF2ESPI_SP_15_001",
      "/Issuing Dept": "Secure Software Development",
      "/MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_ActionId": "d7a98c3b-02f7-4e2e-be84-9d5d59364db0",
      "/MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_ContentBits": "0",
      "/MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_Enabled": "true",
      "/MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_Method": "Privileged",
      "/MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_Name": "cf8c7287-838c-46dd-b281-b1140229e67a",
      "/MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_SetDate": "2021-10-11T11:23:32Z",
      "/MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_SiteId": "75e027c9-20d5-47d5-b82f-77d7cd041e8f",
      "/Manager": "\u003cmanager\u003e",
      "/ModDate": "D:20240614113125-07\u002700\u0027",
      "/Order": "27300.000000",
      "/Producer": "Adobe PDF Library 24.2.23",
      "/Product": "ST33TPHF2ESPI",
      "/Revision Date": "19-06-2015",
      "/SourceModified": "D:20240614182841",
      "/Subject": "Security policy",
      "/TemplateUrl": "",
      "/Title": "ST33KTPM2X",
      "/Version": "02-00",
      "/_CopySource": "",
      "/xd_ProgID": "",
      "pdf_file_size_bytes": 1008367,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program/entropy-validations/certificate/41",
          "http://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/details?validation=35159"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 57
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "11942933f85ae9b7ecca5a38f7d50d388195ee33eb09724c02a8c97578ed7322",
    "policy_txt_hash": "ccbecac30c0cdd0eeddacd1e92c16d8792bc1a768df6bc29a1cdb250fef22557"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "Interim validation, When operated in Approved mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/July 2024_010824_1146.pdf",
    "date_sunset": "2026-07-24",
    "description": "The ST33KTPM2X, ST33KTPM2XSPI, ST33KTPM2X, ST33KTPM2A, ST33KTPM2I Trusted Platform Module (TPM) are hardware cryptographic modules which implement the TPM2.0 standard as defined by the Trusted Computing Group. TPMs are used primarily for the generation, storage, and management of cryptographic keys, as well was for secure storage of digital certificates.",
    "embodiment": "Single Chip",
    "exceptions": [
      "Physical security: Level 3",
      "Non-invasive security: N/A",
      "Mitigation of other attacks: N/A",
      "Documentation requirements: N/A",
      "Cryptographic module security policy: N/A"
    ],
    "fw_versions": "9.257 [A], 10.257 [B], 9.258 [C]",
    "historical_reason": null,
    "hw_versions": "P/Ns ST33KTPM2XSPI [A, C], ST33KTPM2X [A], ST33KTPM2A [B] and ST33KTPM2I [B]",
    "level": 1,
    "mentioned_certs": {},
    "module_name": "Trusted Platform Module ST33KTPM2XSPI / ST33KTPM2X / ST33KTPM2A / ST33KTPM2I",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-3",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2024-07-25",
        "lab": "UL VERIFICATION SERVICES INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "STMicroelectronics",
    "vendor_url": "http://www.st.com"
  }
}