Symantec Management Center Virtual Appliance

Certificate #4452

Webpage information ?

Status active
Validation dates 15.03.2023
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode.
Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Description Symantec Management Center is a powerful, unified management platform that gives you centralized visibility over Symantec’s product portfolio. With a single pane of glass, you can see your Symantec deployments, including ProxySG, SSL Visibility Appliance, Content Analysis, Malware Analysis and Reporter. You can also scale deployments and apply powerful proxy policies throughout your environment that address your specific needs and ensure the consistent application of web security and governance.
Tested configurations
  • KVM on Centos 7 running on a Symantec ISG SSP-S410-20 with an Intel® Xeon® Silver 4210 (single-user mode)
Vendor Symantec, A Division of Broadcom
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Document information ?

Security policy

Symmetric Algorithms
AES, AES-256, AES-128, HMAC, HMAC-SHA-512
Asymmetric Algorithms
ECC
Hash functions
SHA-1, SHA-256, SHA-512, SHA-384, SHA384, MD5
Schemes
Key Agreement
Protocols
SSH, TLS, TLS 1.2
Randomness
DRBG, RNG
Elliptic Curves
P-256, P-384, P-521
Block cipher modes
ECB, CBC, CTR, GCM, XTS

Vendor
Broadcom, Broadcom Inc

Security level
Level 1

Standards
FIPS 140-2, FIPS 197, FIPS 180-4, FIPS 198-1, FIPS 186-4, SP 800-38A, SP 800-38F, SP 800-38E, SP 800-90A, SP 800-133, SP 800-56A, PKCS1

File metadata

Title: FIPS 140-2 Security Policy
Subject: Symantec Management Center
Author: Broadcom
Creation date: D:20230215113026-05'00'
Modification date: D:20230215113026-05'00'
Pages: 33
Creator: Microsoft® Word 2016
Producer: Microsoft® Word 2016

References

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 18.05.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2023_030423_0646.pdf.
  • 19.03.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4452,
  "dgst": "0ee9b22a5999a969",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "RSA#A1762",
        "HMAC#A1762",
        "SHS#A1762",
        "DRBG#A1965",
        "KAS#A1964",
        "CVL#A1964",
        "AES#A1965",
        "KAS-SSC#A1964",
        "DRBG#A1964",
        "KTS-RSA#A1964",
        "AES#A1964",
        "SHS#A1965",
        "RSA#A1964",
        "SHS#A1964",
        "HMAC#A1964",
        "KTS#A1964"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 2
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 9
        },
        "CTR": {
          "CTR": 16
        },
        "ECB": {
          "ECB": 2
        },
        "GCM": {
          "GCM": 1
        },
        "XTS": {
          "XTS": 7
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "SSH": {
          "SSH": 47
        },
        "TLS": {
          "TLS": {
            "TLS": 68,
            "TLS 1.2": 2
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 4
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 18,
          "P-384": 8,
          "P-521": 6
        }
      },
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "AES 128, 192": 2,
          "AES 128, 256": 2,
          "AES CBC 128": 1,
          "AES CTR 128": 1,
          "AES-128": 1,
          "AES-256": 4,
          "HMAC- SHA-256": 1,
          "HMAC-SHA- 384": 2,
          "HMAC-SHA-1": 4,
          "HMAC-SHA-1 128": 2,
          "HMAC-SHA-512 128": 2,
          "PKCS1": 6,
          "SHA- 384": 1,
          "SHA-1": 5,
          "SHA-256": 10,
          "SHA-384": 2,
          "SHA-512": 5,
          "SHA384": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 3
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 1
          }
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 5
          },
          "SHA2": {
            "SHA-256": 10,
            "SHA-384": 2,
            "SHA-512": 5,
            "SHA384": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 37
        },
        "RNG": {
          "RNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 54,
          "FIPS 180-4": 3,
          "FIPS 186-4": 3,
          "FIPS 197": 1,
          "FIPS 198-1": 2
        },
        "NIST": {
          "SP 800-133": 1,
          "SP 800-38A": 1,
          "SP 800-38E": 1,
          "SP 800-38F": 1,
          "SP 800-56A": 2,
          "SP 800-90A": 8
        },
        "PKCS": {
          "PKCS1": 3
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 18,
            "AES-128": 1,
            "AES-256": 4
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 8,
            "HMAC-SHA-512": 1
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Broadcom": {
          "Broadcom": 8,
          "Broadcom Inc": 1
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Broadcom",
      "/CreationDate": "D:20230215113026-05\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2016",
      "/ModDate": "D:20230215113026-05\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2016",
      "/Subject": "Symantec Management Center",
      "/Title": "FIPS 140-2 Security Policy",
      "pdf_file_size_bytes": 1269542,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search/",
          "https://www.cse-cst.gc.ca/en/backgrounder-fiche-information",
          "https://csrc.nist.gov/projects/cryptographic-module-validation-program",
          "http://www.broadcom.com/",
          "https://techdocs.broadcom.com/us/en/symantec-security-software/web-and-network-security/management-center/3-3/index.html"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 33
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "ab6bef7bf7e4b02cb7ab4db03b64d38aacb0c4014857667f13d3d7d800be7917",
    "policy_txt_hash": "37711faf84782019fa5fee868144cbb74598e2c26ab0b9bf0b999df3b591aceb"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2023_030423_0646.pdf",
    "date_sunset": "2026-09-21",
    "description": "Symantec Management Center is a powerful, unified management platform that gives you centralized visibility over Symantec\u2019s product portfolio. With a single pane of glass, you can see your Symantec deployments, including ProxySG, SSL Visibility Appliance, Content Analysis, Malware Analysis and Reporter. You can also scale deployments and apply powerful proxy policies throughout your environment that address your specific needs and ensure the consistent application of web security and governance.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Roles, Services, and Authentication: Level 2",
      "Physical Security: N/A",
      "Design Assurance: Level 3",
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "Symantec Management Center Virtual Appliance",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": "3.3.1.1",
    "tested_conf": [
      "KVM on Centos 7 running on a \tSymantec ISG SSP-S410-20 with \tan Intel\u00ae Xeon\u00ae Silver 4210 \t(single-user mode)"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-03-15",
        "lab": "Lightship Security, Inc.",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Symantec, A Division of Broadcom",
    "vendor_url": "http://www.broadcom.com"
  }
}