This page was not yet optimized for use on mobile devices.
IPsec IP Gateway Server
Certificate #4448
Webpage information ?
Document information ?
Security policy
Symmetric Algorithms
AES, DES, HMACAsymmetric Algorithms
DH, Diffie-HellmanHash functions
SHA-1, SHA-256, SHA2, SHA-2, MD5Schemes
MAC, Key Exchange, Key AgreementProtocols
IKEv2, IKE, IPsecRandomness
DRBG, RNGLibraries
Crypto Library 1.0, Crypto Library v1, OpenSSLBlock cipher modes
CBC, CTRSecurity level
Level 1Standards
FIPS 140-2, FIPS PUB 197, FIPS PUB 198-1, FIPS PUB 186-4, FIPS PUB 180-4, NIST SP 800-90BFile metadata
| Title: | FIPS 140-2 Non-Proprietary Security Policy |
|---|---|
| Author: | Corsec Security, Inc. |
| Creation date: | D:20230117093004-05'00' |
| Modification date: | D:20230117093004-05'00' |
| Pages: | 25 |
| Creator: | Microsoft® Word for Microsoft 365 |
| Producer: | Microsoft® Word for Microsoft 365 |
References
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
18.05.2023 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The certificate_pdf_url property was set to
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2023_030423_0646.pdf.
- The certificate_pdf_url property was set to
-
19.03.2023 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4448,
"dgst": "3fc9188c732df92e",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"CVL#A1459",
"HMAC#A1457",
"RSA#A1457",
"HMAC#A1458",
"SHS#A1458",
"KAS-SSC#A1457",
"AES#A1458",
"SHS#A1457",
"DRBG#A1457",
"AES#A1457"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"7.4.1.15",
"7.4.1.8"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"FF": {
"DH": {
"DH": 15,
"Diffie-Hellman": 2
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"CTR": {
"CTR": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"Generic": {
"Crypto Library 1.0": 6,
"Crypto Library v1": 1
},
"OpenSSL": {
"OpenSSL": 6
}
},
"crypto_protocol": {
"IKE": {
"IKE": 16,
"IKEv2": 8
},
"IPsec": {
"IPsec": 86
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 3
},
"KEX": {
"Key Exchange": 1
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1": 1
}
},
"fips_certlike": {
"Certlike": {
"AES9": 1,
"DRBG 2": 1,
"DRBG13": 1,
"HMAC16": 2,
"RSA20": 1,
"SHA-1": 8,
"SHA-2": 4,
"SHA-256": 8,
"SHA2": 1,
"SHA2-256": 3,
"SHS21": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 3
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 1
}
},
"SHA": {
"SHA1": {
"SHA-1": 8
},
"SHA2": {
"SHA-2": 4,
"SHA-256": 8,
"SHA2": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 19
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 22,
"FIPS PUB 180-4": 2,
"FIPS PUB 186-4": 1,
"FIPS PUB 197": 2,
"FIPS PUB 198-1": 2
},
"NIST": {
"NIST SP 800-90B": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 8
}
},
"DES": {
"DES": {
"DES": 1
}
},
"constructions": {
"MAC": {
"HMAC": 11
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Corsec Security, Inc.",
"/CreationDate": "D:20230117093004-05\u002700\u0027",
"/Creator": "Microsoft\u00ae Word for Microsoft 365",
"/ModDate": "D:20230117093004-05\u002700\u0027",
"/Producer": "Microsoft\u00ae Word for Microsoft 365",
"/Title": "FIPS 140-2 Non-Proprietary Security Policy",
"pdf_file_size_bytes": 710598,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"mailto:info@corsec.com",
"https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Validated-Modules/Search",
"http://www.hughes.com/",
"http://www.corsec.com/",
"http://csrc.nist.gov/groups/STM/cmvp",
"https://www.hughes.com/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 25
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "f506ac63a995f9d31dbe71c23791412c04ed5d8eea1311901c9f5d15b919ec61",
"policy_txt_hash": "9474fed16619a902ad2f15fcbb1d07ca06522ccd1916c51e9a001b96b9f75231"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode. The module generates random strings whose strengths are modified by available entropy.",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/March 2023_030423_0646.pdf",
"date_sunset": "2026-09-21",
"description": "The Hughes JUPITER System is a broadband satellite system designed to support high-throughput satellite communications. It consists of VSAT satellite terminals, single rack or multi rack JUPITER GWs and the capabilities to manage these devices over the network. The IPsec IPGW is a JUPITER GW component that is used to provide Internet access for associated terminals, perform IP acceleration and routing of packets between terminals and the Internet, and encrypt user traffic between itself and HT Satellite Router terminals via IPsec tunnels.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "IPsec IPGW Firmware Version: 7.4.1.15, Management Gateway Client Firmware Version: 7.4.1.8",
"historical_reason": null,
"hw_versions": "1507355-8022",
"level": 1,
"mentioned_certs": {},
"module_name": "IPsec IP Gateway Server",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2023-03-13",
"lab": "DEKRA Testing and Certification S.A.U",
"validation_type": "Initial"
}
],
"vendor": "Hughes Network Systems, LLC",
"vendor_url": "http://www.hughes.com"
}
}