Artifact GuideGLOBALFIPS 140-3

FIPS 140-3 Algorithm Certificate Mapping Workflow

A workflow for deciding whether a CAVP algorithm certificate can support a FIPS 140-3 module claim.

Use it to align certificate numbers, implementation versions, operational environments, services, and Security Policy evidence before a CMVP submission or procurement review.

Back to main artifactReview sources
Author
Sorena AI
Published
May 9, 2026
Updated
May 9, 2026
Sections
6

Structured answer sets in this page tree.

Primary sources
9

Cited legal and guidance references.

Publication metadata
Sorena AI
Published May 9, 2026
Updated May 9, 2026
Overview

This workflow is for product security, validation, and procurement teams that need to connect CAVP algorithm validation certificates to a FIPS 140-3 cryptographic module. The page focuses on what the CMVP guidance actually asks teams to compare: the validated algorithm implementation, the tested operational environment, whether the implementation changed during integration, and how the module Security Policy and test evidence identify the algorithms used by each service.

Section 1

Start with the certificate-to-module fit check

Do not begin with a generic list of algorithms. Begin with one candidate CAVP certificate and one module service that plans to rely on it. CMVP Implementation Guidance 2.3.A says the algorithm validation certificate identifies the validated implementation name, version, and tested operational environment; the module certificate identifies the validated module name, version, and tested operational environment.

The first decision is therefore narrow: can this exact algorithm implementation, in this exact module build and environment, support the FIPS 140-3 claim? If the implementation was modified after CAVP testing, or if the module operational environment is not identical to or fully inclusive of the CAVP-tested environment, treat the mapping as unresolved until the lab confirms the path.

  • Record the CAVP certificate number, algorithm name, implementation name, implementation version, and tested operational environment.
  • Record the module name, module version, module type, claimed operational environment, and the service that will call the algorithm.
  • Confirm whether the algorithm implementation was integrated unchanged into the module under test.
  • Compare the CAVP-tested environment with the module environment before using the certificate in customer, procurement, or validation evidence.
Sources for this answer
CMVP Implementation Guidance, section 2.3.A
Grounds the certificate-mapping test: CAVP certificates identify the algorithm implementation and tested operational environment, and the module environment must match or include that tested environment.
NIST FIPS 140-3
Establishes that FIPS 140-3 applies to cryptographic modules and requires approved security functions for modules claiming conformance.
NIST CAVP validation search
Public search page for checking CAVP algorithm certificates before adding them to a module evidence map.
Section 2

Build the mapping row for each service

A useful mapping row connects a module service to the algorithm evidence behind it. For each service, list the callable function or service name, the approved algorithm used, the CAVP certificate that supports that implementation, and the service indicator or Security Policy text that tells an operator when the approved algorithm is being used in an approved manner.

Keep protocol and component validation logic separate from raw algorithm certificates. CMVP guidance includes cases where CVL components, KDFs, key agreement pieces, entropy certificates, or protocol claims have their own documentation conditions. The mapping should show those limits instead of implying that a CAVP certificate validates an entire protocol or product.

  • Use one row per module service, not one row per marketing feature.
  • Separate approved algorithms, allowed algorithms, CVL components, entropy entries, and non-approved algorithms with no security claimed.
  • Add any protocol, parameter, security-strength, key-size, or usage caveat that limits how the algorithm certificate can be used.
  • Point each row to the Security Policy table or paragraph where the same claim is documented.
Sources for this answer
CMVP Implementation Guidance, section 2.4.C
Supports mapping algorithms to services because each service must indicate when it uses an approved algorithm, security function, or process in an approved manner.
CMVP Implementation Guidance, section 2.4.B
Supports keeping CVL components and their usage restrictions distinct from broader module or protocol claims.
NIST FIPS 140-3
Provides the FIPS 140-3 basis for focusing on cryptographic module specification, interfaces, roles, services, authentication, self-tests, and lifecycle assurance.
Recommended next step

Operationalize the certificate mapping workflow

Use this workflow to turn CAVP certificate lookups into service-level evidence rows that product, security, validation, and procurement reviewers can inspect.

Assessment workflow
Open Assessment Autopilot for FIPS 140-3

Convert algorithm certificate mapping into owner-assigned evidence requests and review checkpoints.

Explore next step
Research workflow
Research FIPS 140-3 source questions

Use cited NIST and CMVP source material to resolve certificate, environment, and service-indicator questions.

Explore next step
Talk to Sorena
Talk through FIPS 140-3 certificate mapping

Review module scope, certificate evidence, operational environments, and unresolved validation questions with Sorena.

Explore next step
Section 3

Operational environment matching rules

For software modules, the mapping has to name the operating system, platform, and processor used for the module claim. If a hypervisor was part of the tested environment, include it. Do not generalize a certificate from one operating system to another, from a 32-bit processor to a 64-bit claim, or from one hardware implementation to another without grounded validation support.

The workflow should make environment mismatches visible early. A row that says only "AES certificate available" is not enough; the reviewer needs to know whether the CAVP certificate environment matches the module environment and whether the implementation was retested where required.

  • Compare processor bit size, operating system, platform, and hypervisor details where they are part of the tested environment.
  • For FPGA or hardware implementations, verify whether the validated hardware implementation is being reused unchanged or whether new hardware validation is needed.
  • When CAVP testing was not performed directly by the CST lab, keep the vendor-supplied environment evidence and the lab verification record with the row.
  • Do not carry a certificate into a new operational environment by assumption; document the lab-confirmed rationale or retest path.
Sources for this answer
CMVP Implementation Guidance, section 2.3.A
Grounds the operational-environment comparison rules for software, firmware, and hardware algorithm implementations embedded in a FIPS 140-3 module.
NIST FIPS 140-3
Explains that a cryptographic module may be hardware, software, firmware, or a combination, which is why the environment evidence differs by module type.
NIST CAVP validation search
Use the public CAVP search result as the starting point for certificate identity and environment evidence.
Section 4

Mapping table template

Use a compact row structure so reviewers can see whether the certificate supports the module claim without reading the whole Security Policy.

Row fields: module service; approved algorithm or component; CAVP certificate number; implementation name and version; CAVP-tested operational environment; module operational environment; Security Policy location; service indicator; caveat or usage restriction; change trigger.

Example decision outcomes: mapped with no change; mapped with caveat; cannot map because the implementation changed; cannot map because the operational environment does not match; hold for CST lab or CMVP guidance.

  • Keep each row traceable to the same service and algorithm wording used in the Security Policy.
  • Use "not claimed" when an algorithm exists in code but is not used to support an approved service.
  • Use "no security claimed" only where the CMVP guidance supports that treatment for a non-approved algorithm in the approved mode.
  • Keep unresolved rows out of public compliance claims until the lab has accepted the mapping or retesting path.
Sources for this answer
CMVP Implementation Guidance, section 2.3.A
Supports row-level fields for implementation identity, certificate identity, and tested operational environment.
CMVP Implementation Guidance, section 2.4.A
Grounds the treatment of non-approved algorithms, including when no security is claimed and when certificate listing is not appropriate.
NIST FIPS 140-3
Supports keeping the mapping tied to approved security functions rather than broad product-level compliance statements.
Section 5

Change triggers that reopen the mapping

Treat the mapping as release evidence, not a one-time spreadsheet. Recheck rows when a cryptographic library changes, an algorithm implementation is patched, compiler or build flags affect the implementation, the processor or operating system changes, a hypervisor is added, a hardware implementation moves to a new device, or a service starts using a different algorithm path.

For modules relying on bound or embedded modules, keep the dependency visible. The IUT documentation and Security Policy need clear separation between the module under test and the embedded or bound validated module, including certificate number, version, service, algorithm, sensitive security parameter, self-test, and zeroisation distinctions where applicable.

  • Trigger review when the module boundary, binary, algorithm implementation, operational environment, or service table changes.
  • Trigger review when a bound or embedded validated module changes certificate number, version, approved status, or service exposure.
  • Trigger review when PAA or PAI behavior is introduced, removed, or moved to a different processor path.
  • Keep the change record with the mapping row so future reviewers can see why retesting was or was not required.
Sources for this answer
CMVP Implementation Guidance, section 1.A and 2.3.A
Grounds the need to track bound or embedded module evidence separately and to preserve implementation and environment fit for algorithm certificate mapping.
CMVP Implementation Guidance, section 2.3.C
Supports review triggers for processor algorithm accelerators and processor algorithm implementations that affect algorithm execution paths.
NIST FIPS 140-3
Explains that conformance alone does not prove a particular module is secure, so operators still need release and residual-risk review.
Section 6

Common mapping mistakes

Most failures in this workflow come from over-reading an algorithm certificate. A CAVP certificate is evidence for a tested algorithm implementation in a tested environment; it is not a blanket validation of the whole module, product, protocol, cloud deployment, or future release.

The cleanest public claim is specific: name the module certificate or validation status separately from the algorithm certificate evidence, and do not state that a service is approved unless the service table, indicator, Security Policy, and certificate mapping support the claim.

  • Do not map a CAVP certificate to a module after changing the algorithm implementation unless the change has a grounded validation path.
  • Do not use a certificate tested on one operating system, processor bit size, platform, or hardware implementation as evidence for a different environment without lab-supported justification.
  • Do not imply that CAVP testing validates an entire protocol when the guidance only supports tested algorithm or component claims.
  • Do not hide non-approved algorithms in narrative text; identify whether they are outside the approved service, allowed with no security claimed, or disallowed for the approved mode.
Sources for this answer
CMVP Implementation Guidance for FIPS 140-3
Grounds the main mapping risks: implementation changes, operational-environment mismatch, service indicators, non-approved functions, and protocol/component caveats.
NIST FIPS 140-3
Supports avoiding blanket security claims by noting that operators remain responsible for sufficiency and residual risk.
NIST CAVP validation search
Use public certificate lookup as evidence input, not as a substitute for module-level CMVP validation evidence.
Primary sources

References and citations

CMVP Implementation Guidance for FIPS 140-3
csrc.nist.gov
Referenced sections
  • Grounds the main mapping risks: implementation changes, operational-environment mismatch, service indicators, non-approved functions, and protocol/component caveats.
"cannot be used in an approved service"
CMVP Implementation Guidance, section 1.A and 2.3.A
csrc.nist.gov
Referenced sections
  • Grounds the need to track bound or embedded module evidence separately and to preserve implementation and environment fit for algorithm certificate mapping.
"clear separation of services, algorithms"
CMVP Implementation Guidance, section 2.3.C
csrc.nist.gov
Referenced sections
  • Supports review triggers for processor algorithm accelerators and processor algorithm implementations that affect algorithm execution paths.
"PAA/PAI shall be illustrated"
CMVP Implementation Guidance, section 2.4.A
csrc.nist.gov
Referenced sections
  • Grounds the treatment of non-approved algorithms, including when no security is claimed and when certificate listing is not appropriate.
"not security relevant"
CMVP Implementation Guidance, section 2.4.B
csrc.nist.gov
Referenced sections
  • Supports keeping CVL components and their usage restrictions distinct from broader module or protocol claims.
"shall only be used within the context"
CMVP Implementation Guidance, section 2.4.C
csrc.nist.gov
Referenced sections
  • Supports mapping algorithms to services because each service must indicate when it uses an approved algorithm, security function, or process in an approved manner.
"Each IUT service shall indicate"
NIST CAVP validation search
csrc.nist.gov
Referenced sections
  • Use public certificate lookup as evidence input, not as a substitute for module-level CMVP validation evidence.
"validation-search"
NIST FIPS 140-3
doi.org
Referenced sections
  • Supports avoiding blanket security claims by noting that operators remain responsible for sufficiency and residual risk.
"residual risk is acknowledged and accepted"
Related guides

Explore more topics

FIPS 140-3 algorithm certificate mapping: ACVTS certificates to module boundary
Map CAVP algorithm certificates to FIPS 140-3 module services, approved security functions, security policy tables, and validation evidence.
FIPS 140-3 Algorithm Certificates FAQ
How CAVP algorithm certificates support, but do not replace, FIPS 140-3 cryptographic module validation evidence.
FIPS 140-3 Applicability Test
Check whether FIPS 140-3 applies to a cryptographic module claim by testing agency use, module boundary, security level, approved functions, CMVP status, and procurement evidence.
FIPS 140-3 Approved and Non-Approved Mode Workflow
Classify FIPS 140-3 module services by approved security service, allowed no-security-claimed use, and non-approved service evidence.
FIPS 140-3 approved-mode evidence workflow
A grounded workflow for collecting FIPS 140-3 approved-mode evidence: module boundary, approved services, service indicators, CAVP certificates, Security Policy entries, and change review.
FIPS 140-3 Certificate Maintenance FAQ
How to maintain FIPS 140-3 certificate evidence after validation by checking module status, version, caveats, Security Policy, and revalidation records.
FIPS 140-3 Change Impact Review
Review FIPS 140-3 module changes against boundary, version, operational environment, embedded module, software loading, CVE, and certificate evidence.
FIPS 140-3 compliance guide
A grounded FIPS 140-3 compliance guide for cryptographic module scope, security-level claims, CMVP validation evidence, and procurement review.
FIPS 140-3 Entropy and DRBG Evidence
FIPS 140-3 entropy and DRBG guidance for module boundary decisions, entropy caveats, Security Policy evidence, ESV references, and DRBG CSP handling.
FIPS 140-3 Entropy Evidence FAQ
How FIPS 140-3 entropy evidence should document entropy source location, GetEntropy access, SP 800-90B testing, Security Policy text, and certificate caveats.
FIPS 140-3 FAQ for Cryptographic Modules
Answers to common FIPS 140-3 questions about scope, CMVP validation, algorithm certificates, module boundaries, approved mode, and validation evidence.
FIPS 140-3 Module Boundaries FAQ
Understand how FIPS 140-3 module boundaries affect cryptographic module scope, interfaces, software and firmware components, and bound or embedded validated modules.
FIPS 140-3 Module Boundary Selector Workflow
A FIPS 140-3 workflow for selecting a cryptographic module boundary, separating embedded and bound modules, and collecting CMVP validation evidence.
FIPS 140-3 operational environments FAQ
Learn what a FIPS 140-3 operational environment means for software, firmware, and hybrid cryptographic modules, and what evidence to check before relying on a validation claim.
FIPS 140-3 security levels: how to choose and evidence them
A practical FAQ on FIPS 140-3 security levels, module scope, CMVP evidence, bound or embedded modules, and common claim mistakes.
FIPS 140-3 Security Policy Template
Build a FIPS 140-3 module Security Policy with sections for boundary, roles, services, approved algorithms, SSP handling, self-tests, and CMVP evidence.
FIPS 140-3 Validation Checklist
Checklist for preparing a cryptographic module for FIPS 140-3 validation: boundary, levels, services, approved algorithms, entropy, tests, security policy, and change evidence.
FIPS 140-3 Validation Maintenance
Maintain FIPS 140-3 validation claims by checking module identity, certificate status, boundary changes, operational environments, and CAVP evidence.
FIPS 140-3 Validation Maintenance Change Workflow
A FIPS 140-3 workflow for triaging module changes against CMVP validation scope, Security Policy evidence, CAVP certificates, software loading, and CVE records.
FIPS 140-3 Vendor Affirmation FAQ
When vendor affirmation can support a FIPS 140-3 module claim, what it does not supersede, and which Security Policy, CAVP, CSTL, and test-report evidence to keep.
FIPS 140-3 vs ISO/IEC 19790 and ISO/IEC 24759
Compare FIPS 140-3 with ISO/IEC 19790 and ISO/IEC 24759 for cryptographic module validation scope, evidence, testing, and procurement claims.
FIPS 140-3: CMVP Lifecycle Timeline
Practical FIPS 140-3 guidance for CMVP Lifecycle Timeline: scope, controls, evidence, source-linked decisions, and implementation checkpoints.
FIPS 140-3: FIPS 140-2 vs FIPS 140-3
Compare FIPS 140-2 legacy references with FIPS 140-3 requirements, ISO/IEC 19790 alignment, CMVP testing evidence, and guidance mappings.
FIPS 140-3: Module Boundary and Service Mapping
Map a FIPS 140-3 cryptographic module boundary to services, approved algorithms, operational environments, and CMVP validation evidence.
FIPS 140-3: Module Boundary Selector
Select and document a FIPS 140-3 cryptographic module boundary across hardware, software, firmware, operational environment, services, and validation evidence.
FIPS 140-3: Operational Environment
FIPS 140-3 operational environment guidance for software, firmware, hybrid, CAVP certificate, EVM, and PAA/PAI validation claims.
FIPS 140-3: Security Levels Explained
Explain FIPS 140-3 Security Levels 1 through 4, what they cover, and how to document level claims for cryptographic module validation.
How should teams handle approved mode under FIPS 140-3?
Answer the FIPS 140-3 approved-mode question with service-level indicators, Security Policy evidence, and limits on non-approved functions.