{"id":3306,"date":"2022-12-07T21:42:00","date_gmt":"2022-12-07T20:42:00","guid":{"rendered":"https:\/\/webdev.atsec.us\/?p=3306"},"modified":"2024-07-24T21:44:47","modified_gmt":"2024-07-24T19:44:47","slug":"the-cryptographic-module-validation-program-cmvp-issues-the-first-fips-140-3-certificates","status":"publish","type":"post","link":"https:\/\/webdev.atsec.us\/the-cryptographic-module-validation-program-cmvp-issues-the-first-fips-140-3-certificates\/","title":{"rendered":"The Cryptographic Module Validation Program (CMVP) issues the first FIPS 140-3 certificates"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"620\" height=\"434\" src=\"https:\/\/webdev.atsec.us\/wp-content\/uploads\/2024\/07\/number-one-1.png\" alt=\"\" class=\"wp-image-3307\" srcset=\"https:\/\/webdev.atsec.us\/wp-content\/uploads\/2024\/07\/number-one-1.png 620w, https:\/\/webdev.atsec.us\/wp-content\/uploads\/2024\/07\/number-one-1-300x210.png 300w\" sizes=\"(max-width: 620px) 100vw, 620px\" \/><\/figure>\n\n\n\n<p>The CMVP published four FIPS 140-3 certificates today, marking the first modules to go through testing and validation under the new version of the FIPS 140 standard. FIPS 140-3 became effective on September 22, 2019, and testing began on September 22, 2020. FIPS 140-3 has been mandatory for new modules since September 22, 2021.<br><br>The certified modules are:<\/p>\n\n\n\n<ul>\n<li><a href=\"https:\/\/csrc.nist.gov\/projects\/cryptographic-module-validation-program\/certificate\/4389\" target=\"_blank\" rel=\"noreferrer noopener\">Certificate #4389 &#8211; Apple corecrypto Module v11.1 [Intel, User, Software]<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/csrc.nist.gov\/projects\/cryptographic-module-validation-program\/certificate\/4390\" target=\"_blank\" rel=\"noreferrer noopener\">Certificate #4390 &#8211; Apple corecrypto Module v11.1 [Intel, Kernel, Software]<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/csrc.nist.gov\/projects\/cryptographic-module-validation-program\/certificate\/4391\" target=\"_blank\" rel=\"noreferrer noopener\">Certificate #4391 &#8211; Apple corecrypto Module v11.1 [Apple silicon, User, Software]<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/csrc.nist.gov\/projects\/cryptographic-module-validation-program\/certificate\/4392\" target=\"_blank\" rel=\"noreferrer noopener\">Certificate #4392 &#8211; Apple corecrypto Module v11.1 [Apple silicon, Kernel, Software]<\/a><\/li>\n<\/ul>\n\n\n\n<p>We want to thank the <a href=\"https:\/\/csrc.nist.gov\/projects\/cryptographic-module-validation-program\" target=\"_blank\" rel=\"noreferrer noopener\">CMVP<\/a> for their leadership and hard work in adopting ISO\/IEC 19790 and 24759 as the successor to FIPS 140-2 and, in particular, the NIST CMVP for establishing the infrastructure to support the validation under FIPS 140-3. In this process, atsec helped in various ways, including with the transition from the desktop version of the Cryptik tool to the web-based Web Cryptik. atsec also spearheaded the effort to educate the cryptographic module community with a series of trainings in the <a href=\"https:\/\/cmuf.org\/\" target=\"_blank\" rel=\"noreferrer noopener\">Cryptographic Module User Forum<\/a> as well as presentations at the <a href=\"https:\/\/icmconference.org\/\" target=\"_blank\" rel=\"noreferrer noopener\">International Cryptographic Module Conference<\/a>, e.g. Swapneela Unkule\u2019s presentation \u201c360 View Of FIPS 140-3 Certification\u201d, where she laid out the differences in the submission procedures between FIPS 140-2 and FIPS 140-3.<br><br>We are happy to see the first FIPS 140-3 certificates published &#8211; happy for atsec, for the technical community, our customers, and the CMVP. We hope to see many more certificates in the coming months and years.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The CMVP published four FIPS 140-3 certificates today, marking the first modules to go through testing and validation under the new version of the FIPS 140 standard. FIPS 140-3 became effective on September 22, 2019, and testing began on September 22, 2020. FIPS 140-3 has been mandatory for new modules since September 22, 2021. The [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":3308,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[7,6,11],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts\/3306"}],"collection":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/comments?post=3306"}],"version-history":[{"count":1,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts\/3306\/revisions"}],"predecessor-version":[{"id":3309,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts\/3306\/revisions\/3309"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/media\/3308"}],"wp:attachment":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/media?parent=3306"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/categories?post=3306"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/tags?post=3306"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}