Security certifications for the Apple T2

The following documents can be useful in context with these certifications and validations:

• Apple Platform Security

For information on public certifications related to Apple Internet Services, see:

• Apple Internet Services Certifications

For information on public certifications related to Apple applications, see:

• Security certifications for Apple applications

For information on public certifications related to Apple operating systems, see:

• Product security certifications for iOS
• Product security certifications for iPadOS
• Product security certifications for macOS
• Product security certifications for watchOS
• Product security certifications for tvOS

For information on public certifications related to hardware and associated firmware components, see:

• Security certifications for SEP (Secure Key Store)
• Security certifications for T2 and its firmware

All Apple FIPS 140-2/-3 Conformance Validation Certificates are on the CMVP web site. Apple actively engages in the validation of the CoreCrypto User and CoreCrypto Kernel modules for each major release of an operating system. Validation of conformance can only be performed against a final module release version and formally submitted upon OS public release. 

The CMVP maintains the validation status of cryptographic modules under four separate lists depending on their current status. The modules may begin in the Implementation Under Test List and then proceed to the Modules in Process List. Once validated they appear on the validated cryptographic modules list, and after five years are moved to the “historical” list.

In 2020 the CMVP adopt the international standard, ISO/IEC 19790, as the basis for FIPS 140-3.

For more information about FIPS 140-2/-3 validations, see Apple Platform Security.