This page was not yet optimized for use on mobile devices.

Qualcomm® Trusted Execution Environment (TEE) Software Cryptographic Library

Certificate #4809

Webpage information ?

Status	active
Validation dates	23.09.2024
Sunset date	22-09-2026
Standard	FIPS 140-3
Security level	1
Type	Software-Hybrid
Embodiment	Single Chip
Caveat	Interim validation. When operated in the approved mode and installed, initialized and configured as specified in Section 11.5 of the Security Policy with bound module Qualcomm® Pseudo Random Number Generator validated to FIPS 140-3 under Cert. #4778
Exceptions	Physical security: Level 2 Non-invasive security: N/A Life-cycle assurance: Level 2 Documentation requirements: N/A Cryptographic module security policy: N/A
Description	Qualcomm Trusted Execution Environment (TEE) Software Cryptographic Library provides various software cryptographic functionalities to the 64bit Qualcomm Trusted Execution Environment Trusted Applications.
Version (Hardware)	513b121d8d789b1e5a7fd22743994650a94b222d108c33b0d82c98ff282bac64
Tested configurations	Qualcomm Trusted Execution Environment (TEE) TZ.XF.5.24 running on Snapdragon 8 Gen 2 Mobile Platform with PAA
Vendor	Qualcomm Technologies, Inc.
References	This certificate's webpage directly references 1 certificates, transitively this expands into 1 certificates.

Certificate

Webpage

Security policy ?

Security target PDF TXT

Symmetric Algorithms

AES, CAST, DES, SM4, HMAC, HMAC-SHA-256

Asymmetric Algorithms

RSA 2048, RSA-OAEP, ECDH, ECDSA, ECIES, ECC

Hash functions

SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, MD5, RIPEMD-160, PBKDF2, PBKDF

Schemes

MAC

Randomness

DRBG, RNG

Elliptic Curves

P-224, P-256, P-384, P-192, P-521, secp160r1, Ed25519

Block cipher modes

ECB, CBC, CTR, CFB, OFB, GCM, CCM, XTS

JavaCard API constants

SM2

Trusted Execution Environments

TEE

Vendor

Qualcomm

Security level

Level 1, Level 2

Side-channel analysis

side-channel

Standards

FIPS 140-3, FIPS 197, FIPS 180-4, FIPS 198-1, FIPS 186-4, FIPS140-3, FIPS PUB 140-3, FIPS180-4, FIPS186-4, FIPS197, FIPS198-1, SP 800-132, SP 800-38E, PKCS#1, ISO/IEC 24759

File metadata

Title	FIPS 140-3 Non-Proprietary Security Policy
Author	Alejandro Fabio Masino
Creation date	D:20240826161024-05'00'
Pages	38
Creator	Writer
Producer	LibreOffice 7.3

References

Outgoing

4778 - active - Qualcomm® Pseudo Random Number Generator

Heuristics ?

No heuristics are available for this certificate.

References ?

Updates ?

14.10.2024 The certificate data changed.
Certificate changed

The web extraction data was updated.
- The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2024_011024_0217.pdf.
01.10.2024 The certificate was first processed.

New certificate

A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4809,
  "dgst": "43eb64f59e486941",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "SHA2-224A2940",
        "SHA2-256A2949",
        "AES-OFBA2940",
        "AES-ECBA2940",
        "HMAC-SHA2-512A2940",
        "AES-CTRA2940",
        "HMAC-SHA2-256A2940",
        "AES-CBC-CS2A2940",
        "HMAC-SHA-1A2940",
        "RSA KeyGen (FIPS186-4)A2940",
        "AES-CCMA2940",
        "SHA-1A2940",
        "AES-CFB128A2940",
        "SHA2-512A2940",
        "HMAC-SHA2-384A2940",
        "Hash DRBGA2945",
        "HMAC-SHA2-224A2940",
        "PBKDFA2940",
        "AES-XTS Testing Revision 2.0A2940",
        "RSA SigGen (FIPS186-4)A2940",
        "ECDSA SigVer (FIPS186-4)A2940",
        "SHA2-384A2940",
        "RSA SigVer (FIPS186-4)A2940",
        "RSA Signature PrimitiveA2940",
        "ECDSA KeyGen (FIPS186-4)A2940",
        "ECDSA SigGen (FIPS186-4)A2940",
        "AES-CBCA2940"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "4778"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "4778"
        ]
      }
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": [
        "4778"
      ]
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "4778"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "4778"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "4778"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDH": {
            "ECDH": 3
          },
          "ECDSA": {
            "ECDSA": 36
          },
          "ECIES": {
            "ECIES": 3
          }
        },
        "RSA": {
          "RSA 2048": 1,
          "RSA-OAEP": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CCM": {
          "CCM": 5
        },
        "CFB": {
          "CFB": 1
        },
        "CTR": {
          "CTR": 3
        },
        "ECB": {
          "ECB": 4
        },
        "GCM": {
          "GCM": 3
        },
        "OFB": {
          "OFB": 3
        },
        "XTS": {
          "XTS": 5
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "MAC": {
          "MAC": 2
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Edwards": {
          "Ed25519": 4
        },
        "NIST": {
          "P-192": 10,
          "P-224": 14,
          "P-256": 14,
          "P-384": 10,
          "P-521": 4,
          "secp160r1": 5
        }
      },
      "eval_facility": {
        "atsec": {
          "atsec": 41
        }
      },
      "fips_cert_id": {
        "Cert": {
          "#2": 1,
          "#4778": 2
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES 256": 1,
          "AES key 128, 192": 1,
          "DES3": 1,
          "HMAC SHA-1": 1,
          "HMAC- SHA-256": 1,
          "HMAC-SHA- 256": 2,
          "HMAC-SHA-256": 6,
          "PKCS#1": 12,
          "RSA 2048": 1,
          "RSA PKCS#1": 2,
          "SHA- 256": 2,
          "SHA- 512": 2,
          "SHA-1": 13,
          "SHA-224": 13,
          "SHA-256": 22,
          "SHA-256 and 2048": 1,
          "SHA-384": 8,
          "SHA-512": 8,
          "SHA-512 112": 1,
          "SHA-512 96": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 1,
          "Level 2": 1
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 2
          }
        },
        "PBKDF": {
          "PBKDF": 1,
          "PBKDF2": 7
        },
        "RIPEMD": {
          "RIPEMD-160": 2
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 13
          },
          "SHA2": {
            "SHA-224": 13,
            "SHA-256": 23,
            "SHA-384": 8,
            "SHA-512": 10
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {
        "curves": {
          "SM2": 5
        }
      },
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 9
        },
        "RNG": {
          "RNG": 1
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "side-channel": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-3": 52,
          "FIPS 180-4": 6,
          "FIPS 186-4": 15,
          "FIPS 197": 1,
          "FIPS 198-1": 1,
          "FIPS PUB 140-3": 1,
          "FIPS140-3": 1,
          "FIPS180-4": 1,
          "FIPS186-4": 1,
          "FIPS197": 1,
          "FIPS198-1": 1
        },
        "ISO": {
          "ISO/IEC 24759": 2
        },
        "NIST": {
          "SP 800-132": 2,
          "SP 800-38E": 1
        },
        "PKCS": {
          "PKCS#1": 7
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 11
          },
          "CAST": {
            "CAST": 1
          }
        },
        "DES": {
          "DES": {
            "DES": 7
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 17,
            "HMAC-SHA-256": 3
          }
        },
        "miscellaneous": {
          "SM4": {
            "SM4": 3
          }
        }
      },
      "tee_name": {
        "other": {
          "TEE": 89
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "Qualcomm": {
          "Qualcomm": 44
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Alejandro Fabio Masino",
      "/CreationDate": "D:20240826161024-05\u002700\u0027",
      "/Creator": "Writer",
      "/Producer": "LibreOffice 7.3",
      "/Title": "FIPS 140-3 Non-Proprietary Security Policy",
      "pdf_file_size_bytes": 2707265,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf",
          "http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf",
          "https://csrc.nist.gov/CSRC/media/Projects/cryptographic-module-validation-program/documents/fips%20140-3/FIPS%20140-3%20IG.pdf",
          "http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf",
          "http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
          "http://csrc.nist.gov/publications/fips/fips198-1/FIPS-198-1_final.pdf",
          "http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf",
          "http://www.ietf.org/rfc/rfc3447.txt",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf",
          "http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf",
          "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf",
          "http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
          "http://csrc.nist.gov/publications/nistpubs/800-132/nist-sp800-132.pdf",
          "http://csrc.nist.gov/publications/nistpubs/800-38E/nist-sp-800-38E.pdf",
          "https://doi.org/10.6028/NIST.FIPS.140-3"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 38
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "c9e26ec3fa596b8974cc131a921d34a62b7f403e8a27e40ae2404e2d1e9faa66",
    "policy_txt_hash": "e267ccc6828079ef9128d50567fcdb9ead4adcea26dc0fb29a25a5d99d4110f9"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "Interim validation. When operated in the approved mode and installed, initialized and configured as specified in Section 11.5 of the Security Policy with bound module Qualcomm\u00ae Pseudo Random Number Generator validated to FIPS 140-3 under Cert. #4778",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2024_011024_0217.pdf",
    "date_sunset": "2026-09-22",
    "description": "Qualcomm Trusted Execution Environment (TEE) Software Cryptographic Library provides various software cryptographic functionalities to the 64bit Qualcomm Trusted Execution Environment Trusted Applications.",
    "embodiment": "Single Chip",
    "exceptions": [
      "Physical security: Level 2",
      "Non-invasive security: N/A",
      "Life-cycle assurance: Level 2",
      "Documentation requirements: N/A",
      "Cryptographic module security policy: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": "513b121d8d789b1e5a7fd22743994650a94b222d108c33b0d82c98ff282bac64",
    "level": 1,
    "mentioned_certs": {
      "4778": 1
    },
    "module_name": "Qualcomm\u00ae Trusted Execution Environment (TEE) Software Cryptographic Library",
    "module_type": "Software-Hybrid",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-3",
    "status": "active",
    "sw_versions": "513b121d8d789b1e5a7fd22743994650a94b222d108c33b0d82c98ff282bac64",
    "tested_conf": [
      "Qualcomm Trusted Execution Environment (TEE) TZ.XF.5.24 running on Snapdragon 8 Gen 2 Mobile Platform with PAA"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2024-09-23",
        "lab": "ATSEC INFORMATION SECURITY CORP",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Qualcomm Technologies, Inc.",
    "vendor_url": "http://www.qualcomm.com"
  }
}