Skip to content

Profiles introduction🔗

Profiles set the criteria for cryptographic analysis in AQtive Guard. When you upload a trace, AQtive Guard checks the discovered cryptography against the rules defined in the chosen profile. Each time a rule is evaluated, it’s logged as an Instance within the relevant Issue and given a status.

Tip

Understanding the relationship between profiles, issues, and instances is crucial. Review Issue and Instance fundamentals to lay the groundwork for understanding how profile configurations affect analysis and reports.

Profile types🔗

Navigate to Profiles from the menu bar to access the available profiles for your organization. The table may contain two types of profiles:

  1. Built-in AQtive Guard profiles, identified by the gold AQtive Guard icon
  2. Custom profiles configured by your organization

Note

AQtive Guard profiles are engineered to adhere to industry best practices and cannot be altered. However, you can use them as a starting point to configure a custom profile tailored to your organization’s policies and needs.

AQtive Guard profiles🔗

AQtive Guard pre-defined profiles perform complementary functions, including:

  • Cryptosense 2022 (Fuzzing + Tracing): SandboxAQ recommendations.
  • FIPS provider check: Used to verify whether cryptographic libraries used are compliant with the Federal Information Processing Standard and implemented in the right way.
  • FIPS compliance: Used to remediate a failure in the FIPS provider check.
  • ECRYPT: European Network of Excellence in Cryptology recommendations.
  • NIST: National Institute of Standards and Technology recommendations.
  • Post Quantum Readiness: Used to evaluate your organization’s readiness for attacks that could be performed with quantum computing.

Find the Profile ID🔗

When a query in the AQtive Guard API requires a profile ID, you can find it using the Web Interface.

  1. Select Profiles from the menu bar.

  2. Select the desired profile name to view the profile details. The profile ID (profileId) is the number near the end of the page URL: https://analyzer.cryptosense.com/organization/profiles/<profileId>/detail