Certifications
NIST (the US National Institute of Standards and Technology) establishes Federal Information Processing Standards (FIPS) certifications, which are widely used on a voluntary basis by public and private organizations. These standards are primarily used to address legal mandates issued by the US Federal Government, and are used worldwide by organizations seeking enhanced security for cryptographic solutions.
FIPS 140-3
NIST’s latest benchmark is FIPS 140-3, an evolution of FIPS 140-2, aligning with international standards (ISO/IEC 19790). It imposes more rigorous security and testing protocols for cryptographic modules. Formal assurance of compliance, and the functional correctness of cryptographic algorithms is provided through NIST’s Cryptographic Module Validation Program (CMVP) and the Cryptographic Algorithm Validation Program (CAVP), ultimately increasing confidence in the security of protected sensitive information.
PQShield’s commitment to security extends to our products, which are aligning with these benchmarks. Security isn’t just a promise; it’s a standard we uphold through rigorous, globally recognized certifications.
CAVP and CMVP certification overview
| Product | Version | Certification Type | Link to Certificate |
|---|---|---|---|
| PQCryptoLib | v1.0.0 | CAVP | Certificate #A3011 |
| CMVP Level 1 | Certificate #4800 | ||
| v3.0.0 | CAVP | Certificate #A6553 | |
| PQPerform-Lattice | PQF-HW-LAT-1 v1.0.0 | CAVP | Certificate #A6920 |