Modules In Process
Cryptographic Module Validation Program FIPS 140-1 and FIPS
140-2 Modules In Process List
FIPS 140-1 and FIPS 140-2 Modules In Process List [ PDF
Updated weekly - Last Update 11/23/2015
DISCLAIMER: The Cryptographic Module Validation Program (CMVP)
FIPS 140-1 and FIPS 140-2 Modules In Process List is provided for information
purposes only. Participation on the list is voluntary and is a joint
decision by the vendor and Cryptographic Security and Testing (CST)
laboratory. Modules are listed alphabetically by name. Blank entries
indicate modules in process but joint decision made not to post. Posting
on the list does not imply guarantee of final FIPS 140-1 or FIPS 140-2
The following phases describe the FIPS 140-1 and FIPS 140-2 modules
in process. The status of each cryptographic module in the process is
identified in the list.
- Implementation Under Test (IUT)
If the module report was submitted
to the CMVP but placed on HOLD by request from the CST Laboratory,
the status is reflected as IUT.
- There exists a viable contract between the vendor and CST laboratory
for the testing of the cryptographic module.
- The cryptographic module is resident at the CST laboratory.
- All of the required documentation is resident at the CST laboratory.
(Note: if the vendor requires the CST lab personnel to test the
cryptographic module onsite, all documents must be onsite with
- Review Pending
- Complete set of testing documents submitted to NIST and CSEC
for review. The set includes: draft certificate, summary module
description, detailed test report, nonproprietary security policy,
web-site information. In addition, some CST labs include a separate
physical testing report.
- Signed letter from laboratory stating recommendation for validation
received by NIST and CSEC.
- In Review
- NIST and CSEC reviewers assigned.
- NIST and CSEC perform a preliminary review of the test documents
(if required). NIST and CSEC perform a review of the test documents.
- Comments coordinated by NIST and CSEC reviewers and combined
set of comments sent to the CST laboratory.
- Coordination (this process
may be iterative)
- Comments received by the CST laboratory from NIST and CSEC for
- Additional testing (if required).
- Additional documentation (if required).
- Comments resolution developed for resubmission to NIST and CSEC.
- Testing documents updated for resubmission to NIST and CSEC.
- Responses to comments and revised test documents submitted to
NIST and CSEC.
- Final resolution of validation review comments submitted to
NIST and CSEC.
- Testing documents updated based on resolutions and submitted
to NIST and CSEC.
- Certificate number assigned.
- Certificate printing and signature process initiated.