This page was not yet optimized for use on mobile devices.
CorSSL
Certificate #4897
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, CAST, CAST5, RC4, RC5, RC2, DES, Triple-DES, ChaCha20, Poly1305, IDEA, Blowfish, Camellia, ARIA, SM4, SEED, HMAC, CMACAsymmetric Algorithms
ECDH, ECDSA, EdDSA, ECC, DH, Diffie-Hellman, DSAHash functions
SHA-1, SHA-2, SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHA-3, Blake2, MD4, MD5, RIPEMD, PBKDF2, PBKDFSchemes
MAC, Key AgreementProtocols
SSL, TLS, TLS v1.2, TLS 1.2, TLS v1.3, TLS 1.3Randomness
DRBG, RNG, RBGLibraries
OpenSSLElliptic Curves
P-224, P-256, P-384, P-521, P-192, B-233, B-283, B-409, B-571, K-233, K-283, K-409, K-571, B-163, K-163Block cipher modes
ECB, CBC, CTR, CFB, OFB, GCM, CCM, XEX, XTSJavaCard API constants
SM2Trusted Execution Environments
PSPSecurity level
Level 1, Level 9Vulnerabilities
CVE-2023-3446, CVE-2023-3817, CVE-2024-4741Standards
FIPS 140-3, FIPS 140-2, FIPS PUB 197, FIPS186-4, FIPS PUB 186-4, FIPS PUB 198-1, FIPS PUB 180-4, FIPS PUB 202, NIST SP 800-38A, NIST SP 800-38C, NIST SP 800-38B, NIST SP 800-38D, NIST SP 800-38F, NIST SP 800-38E, NIST SP 800-132, SP 800-38F, SP 800-38C, SP 800-38D, PKCS#1, RFC 7627, RFC 8446, RFC7627, RFC 5246, RFC 5288, ISO/IEC 19790, ISO/IEC 24579, ISO/IEC 19790:2021File metadata
| Creation date | D:20241106130609-06'00' |
|---|---|
| Modification date | D:20241106130609-06'00' |
| Pages | 46 |
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
24.02.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The exceptions property was updated.
-
25.11.2024 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name CorSSL was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4897,
"dgst": "eda7ca2e850cca25",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"DSA SigVer (FIPS186-4)A3254",
"HMAC-SHA2-384A3254",
"SHA-1A3254",
"ECDSA KeyVer (FIPS186-4)A3254",
"HMAC-SHA2-512A3254",
"RSA SigVer (FIPS186-4)A3254",
"AES-GMACA3254",
"AES-CFB1A3254",
"HMAC-SHA2-224A3254",
"PBKDFA3254",
"HMAC-SHA-1A3254",
"SHA2-224A3254",
"SHA2-384A3254",
"SHA3-384A3254",
"AES-CMACA3254",
"KAS-FFC-SSC Sp800-56Ar3A3254",
"AES-CTRA3254",
"TDES-CMACA3254",
"ECDSA SigGen (FIPS186-4)A3254",
"AES-CFB128A3254",
"DSA SigGen (FIPS186-4)A3254",
"DSA PQGVer (FIPS186-4)A3254",
"Counter DRBGA3254",
"AES-KWPA3254",
"HMAC-SHA3-384A3254",
"TDES-CBCA3254",
"ECDSA SigVer (FIPS186-4)A3254",
"HMAC-SHA3-256A3254",
"HMAC-SHA2-256A3254",
"DSA PQGGen (FIPS186-4)A3254",
"KAS-ECC-SSC Sp800-56Ar3A3254",
"RSA SigGen (FIPS186-4)A3254",
"TLS v1.3 KDFA3253",
"AES-GCMA3254",
"DSA KeyGen (FIPS186-4)A3254",
"AES-CFB8A3254",
"SHA3-512A3254",
"SHA2-512A3254",
"AES-CBCA3254",
"TDES-CFB1A3254",
"TDES-ECBA3254",
"SHAKE-256A3254",
"AES-XTS Testing Revision 2.0A3254",
"HMAC-SHA3-512A3254",
"SHA2-256A3254",
"SHAKE-128A3254",
"AES-ECBA3254",
"ECDSA KeyGen (FIPS186-4)A3254",
"AES-CCMA3254",
"TDES-OFBA3254",
"SHA3-224A3254",
"AES-OFBA3254",
"TDES-CFB64A3254",
"TDES-CFB8A3254",
"TLS v1.2 KDF RFC7627A3254",
"HMAC-SHA3-224A3254",
"RSA KeyGen (FIPS186-4)A3254",
"AES-KWA3254",
"SHA3-256A3254"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"-"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 3
},
"ECDH": {
"ECDH": 18
},
"ECDSA": {
"ECDSA": 41
},
"EdDSA": {
"EdDSA": 2
}
},
"FF": {
"DH": {
"DH": 23,
"Diffie-Hellman": 2
},
"DSA": {
"DSA": 46
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 7
},
"CCM": {
"CCM": 5
},
"CFB": {
"CFB": 2
},
"CTR": {
"CTR": 3
},
"ECB": {
"ECB": 8
},
"GCM": {
"GCM": 42
},
"OFB": {
"OFB": 4
},
"XEX": {
"XEX": 3
},
"XTS": {
"XTS": 12
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 3
}
},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 3
},
"TLS": {
"TLS": 36,
"TLS 1.2": 3,
"TLS 1.3": 6,
"TLS v1.2": 7,
"TLS v1.3": 8
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 13
},
"MAC": {
"MAC": 10
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"B-163": 3,
"B-233": 7,
"B-283": 7,
"B-409": 7,
"B-571": 7,
"K-163": 5,
"K-233": 9,
"K-283": 7,
"K-409": 7,
"K-571": 7,
"P-192": 10,
"P-224": 20,
"P-256": 14,
"P-384": 14,
"P-521": 10
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES-CBC7": 1,
"AES-CMAC11": 1,
"AES-CTR12": 1,
"AES-GCM14": 1,
"DRBG 9": 1,
"DRBG25": 1,
"DSA26": 1,
"HMAC SHA-1": 3,
"HMAC SHA-1-80": 1,
"PKCS#1": 8,
"RSA31": 1,
"RSA32": 1,
"RSA34": 1,
"SHA- 1": 2,
"SHA-1": 18,
"SHA-1 KAT 48": 1,
"SHA-1-80": 1,
"SHA-2": 1,
"SHA-3": 1,
"SHA2- 224": 2,
"SHA2- 256": 4,
"SHA2- 384": 1,
"SHA2-224": 19,
"SHA2-256": 33,
"SHA2-384": 24,
"SHA2-512": 24,
"SHA3-224": 8,
"SHA3-256": 9,
"SHA3-384": 8,
"SHA3-512": 8
}
},
"fips_security_level": {
"Level": {
"Level 1": 3,
"Level 9": 1
}
},
"hash_function": {
"BLAKE": {
"Blake2": 3
},
"MD": {
"MD4": {
"MD4": 2
},
"MD5": {
"MD5": 2
}
},
"PBKDF": {
"PBKDF": 4,
"PBKDF2": 7
},
"RIPEMD": {
"RIPEMD": 2
},
"SHA": {
"SHA1": {
"SHA-1": 19
},
"SHA2": {
"SHA-2": 1
},
"SHA3": {
"SHA-3": 1,
"SHA3-224": 8,
"SHA3-256": 9,
"SHA3-384": 8,
"SHA3-512": 8
}
}
},
"ic_data_group": {},
"javacard_api_const": {
"curves": {
"SM2": 2
}
},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 48
},
"RNG": {
"RBG": 2,
"RNG": 4
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 1,
"FIPS 140-3": 19,
"FIPS PUB 180-4": 5,
"FIPS PUB 186-4": 13,
"FIPS PUB 197": 6,
"FIPS PUB 198-1": 9,
"FIPS PUB 202": 6,
"FIPS186-4": 26
},
"ISO": {
"ISO/IEC 19790": 6,
"ISO/IEC 19790:2021": 2,
"ISO/IEC 24579": 4
},
"NIST": {
"NIST SP 800-132": 3,
"NIST SP 800-38A": 13,
"NIST SP 800-38B": 2,
"NIST SP 800-38C": 2,
"NIST SP 800-38D": 6,
"NIST SP 800-38E": 2,
"NIST SP 800-38F": 4,
"SP 800-38C": 1,
"SP 800-38D": 1,
"SP 800-38F": 4
},
"PKCS": {
"PKCS#1": 4
},
"RFC": {
"RFC 5246": 1,
"RFC 5288": 1,
"RFC 7627": 4,
"RFC 8446": 4,
"RFC7627": 7
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 90
},
"CAST": {
"CAST": 4,
"CAST5": 3
},
"RC": {
"RC2": 2,
"RC4": 3,
"RC5": 3
}
},
"DES": {
"3DES": {
"Triple-DES": 15
},
"DES": {
"DES": 8
}
},
"constructions": {
"MAC": {
"CMAC": 17,
"HMAC": 48
}
},
"djb": {
"ChaCha": {
"ChaCha20": 3
},
"Poly": {
"Poly1305": 2
}
},
"miscellaneous": {
"ARIA": {
"ARIA": 3
},
"Blowfish": {
"Blowfish": 3
},
"Camellia": {
"Camellia": 3
},
"IDEA": {
"IDEA": 3
},
"SEED": {
"SEED": 3
},
"SM4": {
"SM4": 4
}
}
},
"tee_name": {
"AMD": {
"PSP": 6
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {
"CVE": {
"CVE-2023-3446": 1,
"CVE-2023-3817": 1,
"CVE-2024-4741": 1
}
}
},
"policy_metadata": {
"/CreationDate": "D:20241106130609-06\u002700\u0027",
"/ModDate": "D:20241106130609-06\u002700\u0027",
"pdf_file_size_bytes": 1530312,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=14891",
"http://csrc.nist.gov/groups/STM/cmvp",
"http://www.corsec.com/",
"https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Validated-Modules/Search",
"mailto:[email protected]",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=35864",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=35863"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 46
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "686122cb0c47e788955322e26ac3dfe705606343a15d075ffe7c8636bebf0f10",
"policy_txt_hash": "f38bfcb715f1fbb6c28156ab8e64b1e7d8388afb8a54c004ee2e6bc4698d166b"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "Interim validation. When operated in approved mode. When installed, initialized and configured as specified in Section 11 of the Security Policy. No assurance of the minimum strength of generated SSPs (e.g., keys)",
"certificate_pdf_url": null,
"date_sunset": "2026-11-20",
"description": "CorSSL offers symmetric encryption/decryption, digital signature generation/verification, hashing, cryptographic key generation, random number generation, message authentication, and key establishment functions to secure data. The libcrypto library provides the main cryptographic functionality for the module.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A",
"Mitigation of other attacks: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "CorSSL",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": "1.1.1s.005",
"tested_conf": [
"Debian 9 running on a Dell PowerEdge R440 with an Intel(R) Xeon(R) Silver 4214R with PAA",
"Debian 9 running on a Dell PowerEdge R440 with an Intel(R) Xeon(R) Silver 4214R without PAA"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-11-21",
"lab": "LEIDOS CSTL",
"validation_type": "Initial"
}
],
"vendor": "Corsec Security, Inc.",
"vendor_url": "http://www.corsec.com"
}
}