This page was not yet optimized for use on mobile devices.
AIX FIPS Crypto Provider for OpenSSL 3
Certificate #4889
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, CAST, HMAC, KMAC, CMACAsymmetric Algorithms
ECDSA, EdDSA, ECC, DHE, DSAHash functions
SHA2, SHA3, SHAKE128, SHAKE256, PBKDFSchemes
MAC, Key agreement, Key Agreement, AEADProtocols
SSH, SSHv2, TLS v1.2, TLS v1.3, TLS 1.3, TLS, TLS 1.2Randomness
DRBG, RBGLibraries
OpenSSLBlock cipher modes
CTR, GCM, CCMJavaCard API constants
ED25519, ED448Trusted Execution Environments
PSP, SSCSecurity level
Level 1Side-channel analysis
timing attacksStandards
FIPS 202, PKCS 1, RFC7627, RFC 5288, RFC 5647, RFC 8446, RFC8446, ISO/IEC 19790:2012File metadata
| Title | Microsoft Word - IBM FIPS 140-3 Security Policy v1.1_Output_2024-12-03.docx |
|---|---|
| Author | Rachel Shelby |
| Creation date | D:20241203150555-08'00' |
| Modification date | D:20241203150555-08'00' |
| Pages | 41 |
| Creator | PScript5.dll Version 5.2.2 |
| Producer | Acrobat Distiller 24.0 (Windows) |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
04.04.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The validation_history property was updated, with the
[[1, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2025-03-19', 'validation_type': 'Update', 'lab': 'EWA CANADA'}]]values inserted.
The PDF extraction data was updated.
- The keywords property was updated, with the
{'crypto_protocol': {'__update__': {'SSH': {'__insert__': {'SSHv2': 2}}}}, 'crypto_library': {'__update__': {'OpenSSL': {'__update__': {'OpenSSL': 52}}}}}data. - The policy_metadata property was updated, with the
{'pdf_file_size_bytes': 667312, 'pdf_number_of_pages': 41, '/CreationDate': "D:20241203150555-08'00'", '/ModDate': "D:20241203150555-08'00'", '/Title': 'Microsoft Word - IBM FIPS 140-3 Security Policy v1.1_Output_2024-12-03.docx'}data.
The state was updated.
- The policy_pdf_hash property was set to
d65a9da9d1cc836bd3479121f5725679f3e5efa0489169c0f42c742ef23fc922. - The policy_txt_hash property was set to
09783183e7f32238862e73fcdde6e42a8ea5a724c841748039fe83eb6a133a92.
- The validation_history property was updated, with the
-
24.02.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The exceptions property was updated.
-
25.11.2024 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name AIX FIPS Crypto Provider for OpenSSL 3 was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4889,
"dgst": "371e6e08c996fca6",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": []
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"3"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 8
},
"ECDSA": {
"ECDSA": 23
},
"EdDSA": {
"EdDSA": 4
}
},
"FF": {
"DH": {
"DHE": 1
},
"DSA": {
"DSA": 23
}
}
},
"certification_process": {},
"cipher_mode": {
"CCM": {
"CCM": 1
},
"CTR": {
"CTR": 3
},
"GCM": {
"GCM": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 52
}
},
"crypto_protocol": {
"SSH": {
"SSH": 4,
"SSHv2": 2
},
"TLS": {
"TLS": {
"TLS": 3,
"TLS 1.2": 1,
"TLS 1.3": 1,
"TLS v1.2": 4,
"TLS v1.3": 5
}
}
},
"crypto_scheme": {
"AEAD": {
"AEAD": 1
},
"KA": {
"Key Agreement": 1,
"Key agreement": 17
},
"MAC": {
"MAC": 16
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"PKCS 1": 4,
"SHA2": 1,
"SHA3": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 3
}
},
"hash_function": {
"PBKDF": {
"PBKDF": 10
},
"SHA": {
"SHA2": {
"SHA2": 1
},
"SHA3": {
"SHA3": 1
}
},
"SHAKE": {
"SHAKE128": 1,
"SHAKE256": 1
}
},
"ic_data_group": {},
"javacard_api_const": {
"curves": {
"ED25519": 4,
"ED448": 4
}
},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 37
},
"RNG": {
"RBG": 3
}
},
"side_channel_analysis": {
"SCA": {
"timing attacks": 2
}
},
"standard_id": {
"FIPS": {
"FIPS 202": 6
},
"ISO": {
"ISO/IEC 19790:2012": 3
},
"PKCS": {
"PKCS 1": 2
},
"RFC": {
"RFC 5288": 1,
"RFC 5647": 1,
"RFC 8446": 1,
"RFC7627": 4,
"RFC8446": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 10
},
"CAST": {
"CAST": 73
}
},
"constructions": {
"MAC": {
"CMAC": 6,
"HMAC": 19,
"KMAC": 7
}
}
},
"tee_name": {
"AMD": {
"PSP": 12
},
"IBM": {
"SSC": 1
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Rachel Shelby",
"/CreationDate": "D:20241203150555-08\u002700\u0027",
"/Creator": "PScript5.dll Version 5.2.2",
"/ModDate": "D:20241203150555-08\u002700\u0027",
"/Producer": "Acrobat Distiller 24.0 (Windows)",
"/Title": "Microsoft Word - IBM FIPS 140-3 Security Policy v1.1_Output_2024-12-03.docx",
"pdf_file_size_bytes": 667312,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 41
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "d65a9da9d1cc836bd3479121f5725679f3e5efa0489169c0f42c742ef23fc922",
"policy_txt_hash": "09783183e7f32238862e73fcdde6e42a8ea5a724c841748039fe83eb6a133a92"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "No assurance of the minimum strength of generated SSPs (e.g., keys).",
"certificate_pdf_url": null,
"date_sunset": "2029-07-10",
"description": "AIX FIPS Crypto Provider is based on OpenSSL 3.0 and is supported on AIX for the Power 8, Power 9, Power 10 and above platforms.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A",
"Life-cycle assurance: Level 3"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "AIX FIPS Crypto Provider for OpenSSL 3",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-11-18",
"lab": "EWA CANADA",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2025-03-19",
"lab": "EWA CANADA",
"validation_type": "Update"
}
],
"vendor": "IBM",
"vendor_url": "http://www.ibm.com/products/aix?lnk=flatitem"
}
}