Look-aside Cryptography and Compression Engine (LCE)

Certificate #4445

Webpage information ?

Status active
Validation dates 27.02.2023
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 1
Type Hardware
Embodiment Single Chip
Caveat When operated in FIPS mode with module [Google Integrated Management Complex (IMC) and B227 True Random Number Generator (TRNG) Firmware-Hybrid Cryptographic Module] validated to FIPS 140-2 under Cert. #4400 operating in FIPS mode.
Exceptions
  • Mitigation of Other Attacks: N/A
Description The Look-aside Cryptography and Compression Engine (LCE) module is comprised of a sub-chip cryptographic subsystem in the Google IN762 SoC. The module provides lookaside cryptography services including bulk encryption, cryptographic hashing, Integrity Checksum Value (ICV) verification, and compression services. The module also supports operation chaining including cryptographic and pipeline compressing/decompressing and verification as well as standalone or combined DMA data (payload) transfers between nodes.
Version (Hardware) 3.0
Version (Firmware) B0.4.1 FW 6023
Tested configurations
  • IN762 SoC B0
Vendor Google, LLC
References

This certificate's webpage directly references 1 certificates, transitively this expands into 2 certificates.

Document information ?

Security policy

Symmetric Algorithms
AES, AES-, HMAC, CMAC
Hash functions
SHA-1, SHA-2, SHA-3, SHA3-224, SHA3-256, SHA3-384, SHA3-512
Randomness
TRNG
Block cipher modes
ECB, CTR, GCM, XTS

Security level
Level 1, level 1

Standards
FIPS 140-2, FIPS 140, FIPS 180-4, FIPS 202, FIPS 198-1, SP 800-38A, SP 800-38D, SP 800-38E, SP 800-38B, NIST SP 800-38D

File metadata

Creation date: D:20230206002201-08'00'
Modification date: D:20230206002201-08'00'
Pages: 16
Creator: Microsoft® Word for Microsoft 365
Producer: Microsoft® Word for Microsoft 365

References

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 12.03.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4445,
  "dgst": "4ccb5ef0208e78fc",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "HMAC#A683",
        "SHS#A683",
        "AES#A683",
        "SHA-3#A683",
        "AES#A2469"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "0.4.1",
        "3.0"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "4400"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "4367",
          "4400"
        ]
      }
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": [
        "4400"
      ]
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "4400"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "4400"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "4400"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {},
      "certification_process": {},
      "cipher_mode": {
        "CTR": {
          "CTR": 6
        },
        "ECB": {
          "ECB": 1
        },
        "GCM": {
          "GCM": 8
        },
        "XTS": {
          "XTS": 9
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#4400": 4
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES-CTR (256": 1,
          "AES-CTR 128": 1,
          "AES-GCM (256": 1,
          "AES-GCM 128": 1,
          "HMAC 160": 1,
          "HMAC 160, 224": 1,
          "HMAC SHA-1": 1,
          "HMAC SHA-2": 1,
          "HMAC-SHA-1": 6,
          "HMAC-SHA-2": 2,
          "HMAC-SHA-3": 6,
          "HMAC-SHA1": 2,
          "SHA-1": 3,
          "SHA-14": 1,
          "SHA-2": 3,
          "SHA-3": 2,
          "SHA-3 224": 1,
          "SHA2-224": 1,
          "SHA2-384": 1,
          "SHA2-512": 1,
          "SHA3-224": 1,
          "SHA3-256": 1,
          "SHA3-384": 1,
          "SHA3-512": 1,
          "SHS 160": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 3,
          "level 1": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 3
          },
          "SHA2": {
            "SHA-2": 3
          },
          "SHA3": {
            "SHA-3": 3,
            "SHA3-224": 1,
            "SHA3-256": 1,
            "SHA3-384": 1,
            "SHA3-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "TRNG": {
          "TRNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140": 1,
          "FIPS 140-2": 14,
          "FIPS 180-4": 1,
          "FIPS 198-1": 1,
          "FIPS 202": 2
        },
        "NIST": {
          "NIST SP 800-38D": 1,
          "SP 800-38A": 2,
          "SP 800-38B": 1,
          "SP 800-38D": 4,
          "SP 800-38E": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 5,
            "AES-": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 1,
            "HMAC": 7
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/CreationDate": "D:20230206002201-08\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20230206002201-08\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "pdf_file_size_bytes": 488981,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://csrc.nist.gov/groups/STM/cmvp/index.html"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 16
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "e5830bfe2933de1dd60a1a2e64c257cc168eba575ed07b2a90eb871e626a6924",
    "policy_txt_hash": "7ea673522260241350e90d8934069328e6e37e7f1bf0d288882713296015d83a"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode with module [Google Integrated Management Complex (IMC) and B227 True Random Number Generator (TRNG) Firmware-Hybrid Cryptographic Module] validated to FIPS 140-2 under Cert. #4400 operating in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/February 2023_010323_0649.pdf",
    "date_sunset": "2026-09-21",
    "description": "The Look-aside Cryptography and Compression Engine (LCE) module is comprised of a sub-chip cryptographic subsystem in the Google IN762 SoC. The module provides lookaside cryptography services including bulk encryption, cryptographic hashing, Integrity Checksum Value (ICV) verification, and compression services. The module also supports operation chaining including cryptographic and pipeline compressing/decompressing and verification as well as standalone or combined DMA data (payload) transfers between nodes.",
    "embodiment": "Single Chip",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "B0.4.1 FW 6023",
    "historical_reason": null,
    "hw_versions": "3.0",
    "level": 1,
    "mentioned_certs": {
      "4400": 1
    },
    "module_name": "Look-aside Cryptography and Compression Engine (LCE)",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": [
      "IN762 SoC B0"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-02-27",
        "lab": "ACUMEN SECURITY, LLC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Google, LLC",
    "vendor_url": "http://www.google.com"
  }
}