This page was not yet optimized for use on mobile devices.

Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9

CSV information

Status	archived
Valid from	09.07.2020
Valid until	09.07.2025
Scheme	🇫🇷 FR
Manufacturer	Stormshield
Category	Network and Network-Related Devices and Systems
Security level	AVA_VAN.3, ALC_CMS.4, EAL3+, ALC_CMC.4, ALC_FLR.3

Heuristics summary

Certificate ID: ANSSI-CC-2020/66

Certificate

Certificate PDF TXT

Extracted keywords

Security level

EAL3, EAL2

Security Assurance Requirements (SAR)

ALC_CMS.4, ALC_CMC.4, ALC_FLR.3, AVA_VAN.3

Certificates

ANSSI-CC-2020/66

File metadata

Title	ANSSI-CC-2020/66
Subject	CER/F/14.2
Author	Christian Benardeau
Creation date	D:20200713162713+02'00'
Modification date	D:20200713162713+02'00'
Pages	1
Creator	Microsoft® Word 2010
Producer	Microsoft® Word 2010

Certification report

Certification report PDF TXT

Extracted keywords

Symmetric Algorithms

DES

Protocols

SSH, SSL, IKE, IPsec, VPN

Security level

EAL 3, EAL2, EAL3, EAL4, EAL 1, EAL 5, EAL 7, EAL3+, ITSEC E3 Elémentaire

Security Assurance Requirements (SAR)

ADV_ARC, ADV_FSP, ADV_IMP, ADV_INT, ADV_SPM, ADV_TDS, AGD_OPE, AGD_PRE, ALC_CMS.4, ALC_CMC.4, ALC_FLR.3, ALC_FLR, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS, ALC_LCD, ALC_TAT, ATE_COV, ATE_DPT, ATE_FUN, ATE_IND, AVA_VAN.3, AVA_VAN, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_REQ, ASE_SPD, ASE_TSS

Certificates

ANSSI-CC-2020/66

Standards

CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004

File metadata

Title	ANSSI-CC-2020/66
Subject	Stormshield Network Security UTM / NG-Firewall Software Suite
Keywords	ANSSI-CC-CER-F-07 v29.2
Author	BENARDEAU Christian
Creation date	D:20200713162534+02'00'
Modification date	D:20200713162534+02'00'
Pages	15
Creator	Microsoft® Word 2010
Producer	Microsoft® Word 2010

Security target

Security target PDF TXT

Extracted keywords

Symmetric Algorithms

AES, CAST, CAST-128, DES, Triple-DES, Blowfish, HMAC

Asymmetric Algorithms

RSA 2048, ECDH, ECDSA, Diffie-Hellman, DH, DSA

Hash functions

SHA2, SHA-2, MD5

Schemes

Key Exchange, Key Agreement

Protocols

SSH, SSL, TLS, IKE, IKEv2, VPN

Libraries

OpenSSL

Block cipher modes

CBC

TLS cipher suites

TLS_DHE_RSA_WITH_AES_128_CBC_SHA

JavaCard API constants

SECP256R1

Vendor

Microsoft, Cisco

Security level

EAL3+, EAL3, EAL3 augmented

Claims

O.PCAOA, O.RESIST_AUTH_ADMIN, O.PCFI_FILTERING, O.PCFI_APPLICATION_CONTEXT, O.PCFI_ENCRYPTION, O.IPS_ATTACK_DETECTION, O.LAA_PCFI, O.CRYPTO, O.IPS_RFC_COMPLIANCE, O.LAA_IPS, O.LAA_PCAOA, O.BACKUP_RESTORATION, O.PROTECT_LOGS, O.PROTECT_ADMIN_SESSIONS, T.IP_SPOOFING, T.IMPROPER_USE, T.ILLEGAL_ADMIN, T.ADMIN_USURP, T.ILLEGAL_ADMIN_SESSION, T.AUDIT, OE.PROTECT_APPLIANCES, OE.SUPER_ADMIN, OE.PASSWORD, OE.GOOD_PCFI, OE.CRYPTO_EXT, OE.PERSONNEL, OE.INTERPOSITION, OE.STRICT_USAGE, OE.AUTONOMOUS, OE.PROTECT_WORKSTATIONS, OE.PROTECT_VPN_PEER, OE.PROTECT_VPN_CLIENTS, OE.TIMESTAMPS, OE.REVOCATION_LIST, OE.PROTECT_WORKSTATIO

Security Assurance Requirements (SAR)

ADV_ARC.1, ADV_FSP.3, ADV_TDS.2, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ALC_CMC.4, ALC_FLR.3, ALC_DEL.1, ALC_DVS.1, ALC_LCD.1, ALC_CMS, ALC_CMC, ALC_CMS.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.3, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1

Security Functional Requirements (SFR)

FAU_GEN.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_STG.3, FAU_SAA.4, FAU_GEN.2, FAU_GEN.2.1, FAU_SAR.1, FAU_SAR.1.1, FAU_SAR.1.2, FAU_STG.3.1, FAU_ARP.1, FAU_SAA.4.1, FAU_SAA.4.2, FAU_SAA.4.3, FAU_SAA.1, FAU_ARP, FAU_ARP.1.1, FAU_GEN, FCS_COP.1, FCS_CKM.1, FCS_CKM.4, FDP_IFC.2.1, FDP_IFC.2, FDP_IFC.2.2, FDP_IFF.1, FDP_IFC.1, FDP_IFC.1.1, FDP_UCT.1, FDP_UIT.1, FDP_UCT.1.1, FDP_UIT.1.1, FDP_UIT.1.2, FDP_ACC.2, FDP_ACC.2.1, FDP_ACC.2.2, FDP_ACC.1, FDP_ITC.1, FDP_ITC.2, FDP_IFF.1.1, FDP_IFF.1.2, FDP_IFF.1.3, FDP_IFF.1.4, FDP_IFF.1.5, FIA_UAU.5, FIA_UID.1, FIA_UAU.5.1, FIA_UAU.5.2, FMT_MTD, FMT_SMR.1, FMT_MOF.1, FMT_MTD.1, FMT_SMF.1, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MOF.1.1, FMT_MTD.1.1, FMT_MSA.3, FMT_SMF, FPT_TDC.1, FPT_TDC.1.1, FPT_TDC.1.2, FPT_ITT.1, FPT_ITT.1.1, FPT_STM.1, FTP_TRP.1, FTP_ITT.1, FTP_ITC.1, FTP_TRP.1.1, FTP_TRP.1.2, FTP_TRP.1.3

Certificates

CC-01, CC-02, CC-03

Certification process

out of scope, protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted

Standards

FIPS PUB 197, FIPS PUB 46-3, FIPS 180-1, FIPS 180-2, FIPS PUB 186-4, PKCS #1, RFC 1349, RFC 792, RFC 3376, RFC 768, RFC 793, RFC 2401, RFC 4303, RFC 3526, RFC 5903, RFC 6932, RFC 4754, RFC 7427, RFC 959, RFC 2577, RFC 2389, RFC 2428, RFC 2616, RFC 2518, RFC 3253, RFC 1034, RFC 1035, RFC 1058, RFC 2453, RFC 2474, RFC 3435, RFC 3261, RFC 3550, RFC 3605, RFC 2246, RFC 3268, RFC 2631, RFC 2144, RFC 2104, RFC 1321, RFC 2409, RFC 3330, RFC 2385, RFC 2817, RFC 6455, X.509, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004

File metadata

Title	Stormshield Network Security
Subject	UTM / NG-Firewall Software Suite
Author	Stormshield
Creation date	D:20200515152045+02'00'
Modification date	D:20200515152045+02'00'
Pages	95
Creator	Microsoft® Word 2010
Producer	Microsoft® Word 2010

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

Certificate ID

ANSSI-CC-2020/66

Extracted SARs

ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_DVS.1, ALC_FLR.3, ALC_LCD.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.3

Similar certificates

Name	Certificate ID
Stormshield Network Security UTM / NG - Firewall Software Suite (Version 3.7.9)	ANSSI-CC-2020/39	Compare

References

No references are available for this certificate.

Updates Feed

14.07.2025

The certificate data changed.
Certificate changed

The Status was updated.

The new value is archived.
10.02.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
05.02.2025

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The report property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The st property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The cert property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The computed heuristics were updated.

The following values were inserted: {'protection_profiles': None, 'eal': 'EAL3+'}.

The prev_certificates property was set to None.

The next_certificates property was set to None.

The scheme_data property was set to {'product': 'Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9', 'url': 'https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379-0', 'description': 'Le produit évalué est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » développé par STORMSHIELD et exécuté par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN2100, SN3000, SN3100, SN6000, SN6100. Le produit offre des fonctions de sécurité permettant d’interconnecter un ou plusieurs réseaux de confiance via', 'sponsor': 'Stormshield', 'developer': 'Stormshield', 'cert_id': 'ANSSI-CC-2020/66', 'level': 'EAL3+', 'expiration_date': '2025-07-09', 'enhanced': {'cert_id': 'ANSSI-CC-2020/66', 'certification_date': '2020-07-09', 'expiration_date': '2025-07-09', 'category': 'Produits réseau', 'cc_version': 'Critères Communs version 3.1r5', 'developer': 'Stormshield', 'sponsor': 'Stormshield', 'evaluation_facility': 'Oppida', 'level': 'EAL3+', 'protection_profile': '', 'mutual_recognition': 'SOG-IS CCRA', 'augmented': 'ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3', 'target_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cible-cc-2020_66en.pdf', 'report_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cc-2020_66fr.pdf'}}.
03.02.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
27.01.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to {'product': 'Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9', 'url': 'https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379-0', 'description': 'Le produit évalué est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » développé par STORMSHIELD et exécuté par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN2100, SN3000, SN3100, SN6000, SN6100. Le produit offre des fonctions de sécurité permettant d’interconnecter un ou plusieurs réseaux de confiance via', 'sponsor': 'Stormshield', 'developer': 'Stormshield', 'cert_id': 'ANSSI-CC-2020/66', 'level': 'EAL3+', 'expiration_date': '2025-07-09', 'enhanced': {'cert_id': 'ANSSI-CC-2020/66', 'certification_date': '2020-07-09', 'expiration_date': '2025-07-09', 'category': 'Produits réseau', 'cc_version': 'Critères Communs version 3.1r5', 'developer': 'Stormshield', 'sponsor': 'Stormshield', 'evaluation_facility': 'Oppida', 'level': 'EAL3+', 'protection_profile': '', 'mutual_recognition': 'SOG-IS CCRA', 'augmented': 'ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3', 'target_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cible-cc-2020_66en.pdf', 'report_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cc-2020_66fr.pdf'}}.
06.01.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
16.12.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to {'product': 'Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9', 'url': 'https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379-0', 'description': 'Le produit évalué est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » développé par STORMSHIELD et exécuté par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN2100, SN3000, SN3100, SN6000, SN6100. Le produit offre des fonctions de sécurité permettant d’interconnecter un ou plusieurs réseaux de confiance via', 'sponsor': 'Stormshield', 'developer': 'Stormshield', 'cert_id': 'ANSSI-CC-2020/66', 'level': 'EAL3+', 'expiration_date': '2025-07-09', 'enhanced': {'cert_id': 'ANSSI-CC-2020/66', 'certification_date': '2020-07-09', 'expiration_date': '2025-07-09', 'category': 'Produits réseau', 'cc_version': 'Critères Communs version 3.1r5', 'developer': 'Stormshield', 'sponsor': 'Stormshield', 'evaluation_facility': 'Oppida', 'level': 'EAL3+', 'protection_profile': '', 'mutual_recognition': 'SOG-IS CCRA', 'augmented': 'ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3', 'target_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cible-cc-2020_66en.pdf', 'report_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cc-2020_66fr.pdf'}}.
09.12.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
21.11.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The following values were inserted: {'prev_certificates': [], 'next_certificates': []}.
09.11.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was updated, with the {'description': 'Le produit évalué est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » développé par STORMSHIELD et exécuté par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN2100, SN3000, SN3100, SN6000, SN6100. Le produit offre des fonctions de sécurité permettant d’interconnecter un ou plusieurs réseaux de confiance via', 'cert_id': 'ANSSI-CC-2020/66', 'expiration_date': '2025-07-09', 'enhanced': {'__update__': {'cert_id': 'ANSSI-CC-2020/66', 'certification_date': '2020-07-09', 'expiration_date': '2025-07-09', 'mutual_recognition': 'SOG-IS CCRA'}}} data.
14.10.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to {'product': 'Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9', 'url': 'https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379-0', 'description': 'Le produit évalué est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » développé par STORMSHIELD et exécuté par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN2100, SN3000, SN3100, SN6000, SN6100.\n\nLe produit offre des fonctions de sécurité permettant d’interconnecter un ou plusieurs réseaux de confiance via', 'sponsor': 'Stormshield', 'developer': 'Stormshield', 'cert_id': '2020/66', 'level': 'EAL3+', 'expiration_date': '9 Juillet 2025', 'enhanced': {'cert_id': '2020/66', 'certification_date': '09/07/2020', 'expiration_date': '09/07/2025', 'category': 'Produits réseau', 'cc_version': 'Critères Communs version 3.1r5', 'developer': 'Stormshield', 'sponsor': 'Stormshield', 'evaluation_facility': 'Oppida', 'level': 'EAL3+', 'protection_profile': '', 'mutual_recognition': 'SOG-IS\n CCRA', 'augmented': 'ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3', 'target_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cible-cc-2020_66en.pdf', 'report_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cc-2020_66fr.pdf'}}.
02.09.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
22.08.2024

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd09805a4776537b501a094940768fe98376b6b078b26a0bdd333486155310582', 'txt_hash': '8b7c73bbe8a411c494f171df0f03ad7800c3886b7d74fc91b7cfe69cf017279e'} data.

The cert property was updated, with the {'download_ok': True, 'convert_garbage': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'bac37f02083df9f27ae9ec2b428d37e7b1432926fe7e69e8a2e0e61ef45e4d01', 'txt_hash': '613d3ccfb06063ae63b7d5dd97267ca6d2d0fb8979ee703c68bfa75e8904ceb0'} data.

The PDF extraction data was updated.

The st_metadata property was set to {'pdf_file_size_bytes': 2167789, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 95, '/Title': 'Stormshield Network Security', '/Author': 'Stormshield', '/Subject': 'UTM / NG-Firewall Software Suite', '/Creator': 'Microsoft® Word 2010', '/CreationDate': "D:20200515152045+02'00'", '/ModDate': "D:20200515152045+02'00'", '/Producer': 'Microsoft® Word 2010', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['2.1.1.General%20points%7Coutline']}}.

The cert_metadata property was set to {'pdf_file_size_bytes': 732049, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Title': 'ANSSI-CC-2020/66', '/Author': 'Christian Benardeau', '/Subject': 'CER/F/14.2', '/Creator': 'Microsoft® Word 2010', '/CreationDate': "D:20200713162713+02'00'", '/ModDate': "D:20200713162713+02'00'", '/Producer': 'Microsoft® Word 2010', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.

The st_keywords property was set to {'cc_cert_id': {'NL': {'CC-01': 3, 'CC-02': 6, 'CC-03': 5}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL3+': 2, 'EAL3': 22, 'EAL3 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 1, 'ADV_FSP.3': 1, 'ADV_TDS.2': 1, 'ADV_FSP.4': 1, 'ADV_IMP.1': 1, 'ADV_TDS.3': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_CMS.4': 5, 'ALC_CMC.4': 5, 'ALC_FLR.3': 4, 'ALC_DEL.1': 1, 'ALC_DVS.1': 2, 'ALC_LCD.1': 2, 'ALC_CMS': 1, 'ALC_CMC': 1, 'ALC_CMS.1': 1}, 'ATE': {'ATE_COV.2': 1, 'ATE_DPT.1': 1, 'ATE_FUN.1': 1, 'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.3': 5}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 3, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 7, 'FAU_GEN.1.1': 2, 'FAU_GEN.1.2': 4, 'FAU_STG.3': 7, 'FAU_SAA.4': 9, 'FAU_GEN.2': 6, 'FAU_GEN.2.1': 2, 'FAU_SAR.1': 7, 'FAU_SAR.1.1': 2, 'FAU_SAR.1.2': 2, 'FAU_STG.3.1': 2, 'FAU_ARP.1': 14, 'FAU_SAA.4.1': 4, 'FAU_SAA.4.2': 2, 'FAU_SAA.4.3': 3, 'FAU_SAA.1': 2, 'FAU_ARP': 2, 'FAU_ARP.1.1': 2, 'FAU_GEN': 1}, 'FCS': {'FCS_COP.1': 59, 'FCS_CKM.1': 7, 'FCS_CKM.4': 7}, 'FDP': {'FDP_IFC.2.1': 3, 'FDP_IFC.2': 6, 'FDP_IFC.2.2': 2, 'FDP_IFF.1': 29, 'FDP_IFC.1': 10, 'FDP_IFC.1.1': 2, 'FDP_UCT.1': 11, 'FDP_UIT.1': 11, 'FDP_UCT.1.1': 2, 'FDP_UIT.1.1': 2, 'FDP_UIT.1.2': 2, 'FDP_ACC.2': 6, 'FDP_ACC.2.1': 2, 'FDP_ACC.2.2': 2, 'FDP_ACC.1': 2, 'FDP_ITC.1': 7, 'FDP_ITC.2': 7, 'FDP_IFF.1.1': 2, 'FDP_IFF.1.2': 2, 'FDP_IFF.1.3': 2, 'FDP_IFF.1.4': 2, 'FDP_IFF.1.5': 2}, 'FIA': {'FIA_UAU.5': 45, 'FIA_UID.1': 2, 'FIA_UAU.5.1': 4, 'FIA_UAU.5.2': 4}, 'FMT': {'FMT_MTD': 22, 'FMT_SMR.1': 8, 'FMT_MOF.1': 10, 'FMT_MTD.1': 11, 'FMT_SMF.1': 12, 'FMT_SMF.1.1': 2, 'FMT_SMR.1.1': 3, 'FMT_SMR.1.2': 4, 'FMT_MOF.1.1': 3, 'FMT_MTD.1.1': 3, 'FMT_MSA.3': 2, 'FMT_SMF': 1}, 'FPT': {'FPT_TDC.1': 8, 'FPT_TDC.1.1': 2, 'FPT_TDC.1.2': 2, 'FPT_ITT.1': 10, 'FPT_ITT.1.1': 2, 'FPT_STM.1': 1}, 'FTP': {'FTP_TRP.1': 64, 'FTP_ITT.1': 1, 'FTP_ITC.1': 2, 'FTP_TRP.1.1': 4, 'FTP_TRP.1.2': 4, 'FTP_TRP.1.3': 4}}, 'cc_claims': {'O': {'O.PCAOA': 13, 'O.RESIST_AUTH_ADMIN': 6, 'O.PCFI_FILTERING': 7, 'O.PCFI_APPLICATION_CONTEXT': 4, 'O.PCFI_ENCRYPTION': 14, 'O.IPS_ATTACK_DETECTION': 8, 'O.LAA_PCFI': 8, 'O.CRYPTO': 4, 'O.IPS_RFC_COMPLIANCE': 7, 'O.LAA_IPS': 9, 'O.LAA_PCAOA': 13, 'O.BACKUP_RESTORATION': 6, 'O.PROTECT_LOGS': 6, 'O.PROTECT_ADMIN_SESSIONS': 6}, 'T': {'T.IP_SPOOFING': 5, 'T.IMPROPER_USE': 11, 'T.ILLEGAL_ADMIN': 18, 'T.ADMIN_USURP': 3, 'T.ILLEGAL_ADMIN_SESSION': 4, 'T.AUDIT': 2}, 'OE': {'OE.PROTECT_APPLIANCES': 3, 'OE.SUPER_ADMIN': 3, 'OE.PASSWORD': 3, 'OE.GOOD_PCFI': 3, 'OE.CRYPTO_EXT': 3, 'OE.PERSONNEL': 3, 'OE.INTERPOSITION': 4, 'OE.STRICT_USAGE': 3, 'OE.AUTONOMOUS': 3, 'OE.PROTECT_WORKSTATIONS': 2, 'OE.PROTECT_VPN_PEER': 3, 'OE.PROTECT_VPN_CLIENTS': 3, 'OE.TIMESTAMPS': 4, 'OE.REVOCATION_LIST': 3, 'OE.PROTECT_WORKSTATIO': 1}}, 'vendor': {'Microsoft': {'Microsoft': 4}, 'Cisco': {'Cisco': 1}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 15}, 'CAST': {'CAST': 9, 'CAST-128': 1}}, 'DES': {'DES': {'DES': 9}, '3DES': {'Triple-DES': 1}}, 'miscellaneous': {'Blowfish': {'Blowfish': 9}}, 'constructions': {'MAC': {'HMAC': 3}}}, 'asymmetric_crypto': {'RSA': {'RSA 2048': 1}, 'ECC': {'ECDH': {'ECDH': 4}, 'ECDSA': {'ECDSA': 6}}, 'FF': {'DH': {'Diffie-Hellman': 9, 'DH': 4}, 'DSA': {'DSA': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA2': 9, 'SHA-2': 1}}, 'MD': {'MD5': {'MD5': 3}}}, 'crypto_scheme': {'KEX': {'Key Exchange': 3}, 'KA': {'Key Agreement': 1}}, 'crypto_protocol': {'SSH': {'SSH': 1}, 'TLS': {'SSL': {'SSL': 2}, 'TLS': {'TLS': 40}}, 'IKE': {'IKE': 33, 'IKEv2': 8}, 'VPN': {'VPN': 98}}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_DHE_RSA_WITH_AES_128_CBC_SHA': 1}}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 197': 1, 'FIPS PUB 46-3': 1, 'FIPS 180-1': 1, 'FIPS 180-2': 1, 'FIPS PUB 186-4': 1}, 'PKCS': {'PKCS #1': 1}, 'RFC': {'RFC 1349': 1, 'RFC 792': 1, 'RFC 3376': 1, 'RFC 768': 1, 'RFC 793': 1, 'RFC 2401': 2, 'RFC 4303': 1, 'RFC 3526': 1, 'RFC 5903': 1, 'RFC 6932': 1, 'RFC 4754': 1, 'RFC 7427': 1, 'RFC 959': 1, 'RFC 2577': 1, 'RFC 2389': 1, 'RFC 2428': 1, 'RFC 2616': 1, 'RFC 2518': 1, 'RFC 3253': 1, 'RFC 1034': 1, 'RFC 1035': 1, 'RFC 1058': 1, 'RFC 2453': 1, 'RFC 2474': 1, 'RFC 3435': 1, 'RFC 3261': 1, 'RFC 3550': 1, 'RFC 3605': 1, 'RFC 2246': 2, 'RFC 3268': 1, 'RFC 2631': 1, 'RFC 2144': 1, 'RFC 2104': 1, 'RFC 1321': 1, 'RFC 2409': 2, 'RFC 3330': 1, 'RFC 2385': 1, 'RFC 2817': 1, 'RFC 6455': 1}, 'X509': {'X.509': 17}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {'curves': {'SECP256R1': 1}}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 1, 'protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted': 1}}}.

The cert_keywords property was set to {'cc_cert_id': {'FR': {'ANSSI-CC-2020/66': 2}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL3': 2, 'EAL2': 1}}, 'cc_sar': {'ALC': {'ALC_CMS.4': 2, 'ALC_CMC.4': 2, 'ALC_FLR.3': 1}, 'AVA': {'AVA_VAN.3': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.

The st_filename property was set to anssi-cible-cc-2020_66en.pdf.

The cert_filename property was set to certificat-ANSSI-CC-2020_66..pdf.

The computed heuristics were updated.

The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}]} values added.
19.08.2024

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The report property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '32d37bc9fb0c4d6d38e4a39413127568bb38aeac0815bf507a888cf309be434c', 'txt_hash': 'f16beb58caf265eab5a15dade39dba9ed0b9f29660360a5efcc3847f34625c60'} data.

The PDF extraction data was updated.

The report_metadata property was set to {'pdf_file_size_bytes': 629246, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 15, '/Title': 'ANSSI-CC-2020/66', '/Author': 'BENARDEAU Christian', '/Subject': 'Stormshield Network Security UTM / NG-Firewall Software Suite', '/Keywords': 'ANSSI-CC-CER-F-07 v29.2', '/Creator': 'Microsoft® Word 2010', '/CreationDate': "D:20200713162534+02'00'", '/ModDate': "D:20200713162534+02'00'", '/Producer': 'Microsoft® Word 2010', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['mailto:[email protected]', 'http://www.ssi.gouv.fr/']}}.

The report_frontpage property was set to {'FR': {}}.

The report_keywords property was set to {'cc_cert_id': {'FR': {'ANSSI-CC-2020/66': 16}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 3': 3, 'EAL2': 2, 'EAL3': 1, 'EAL4': 1, 'EAL 1': 1, 'EAL 5': 1, 'EAL 7': 1, 'EAL3+': 1}, 'ITSEC': {'ITSEC E3 Elémentaire': 1}}, 'cc_sar': {'ADV': {'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP': 1, 'ADV_INT': 1, 'ADV_SPM': 1, 'ADV_TDS': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_CMS.4': 3, 'ALC_CMC.4': 3, 'ALC_FLR.3': 4, 'ALC_FLR': 2, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_LCD': 1, 'ALC_TAT': 1}, 'ATE': {'ATE_COV': 1, 'ATE_DPT': 1, 'ATE_FUN': 1, 'ATE_IND': 1}, 'AVA': {'AVA_VAN.3': 3, 'AVA_VAN': 1}, 'ASE': {'ASE_CCL': 1, 'ASE_ECD': 1, 'ASE_INT': 1, 'ASE_OBJ': 1, 'ASE_REQ': 1, 'ASE_SPD': 1, 'ASE_TSS': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'DES': {'DES': {'DES': 1}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'SSH': {'SSH': 1}, 'TLS': {'SSL': {'SSL': 2}}, 'IKE': {'IKE': 1}, 'IPsec': {'IPsec': 1}, 'VPN': {'VPN': 2}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.

The report_filename property was set to anssi-cc-2020_66fr.pdf.

The computed heuristics were updated.

The cert_id property was set to ANSSI-CC-2020/66.
17.08.2024

The certificate data changed.
Certificate changed

The report_link was updated.

The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cc-2020_66fr.pdf.

The st_link was updated.

The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cible-cc-2020_66en.pdf.

The state of the certificate object was updated.

The report property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

The cert property was updated, with the {'download_ok': False, 'convert_garbage': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

The PDF extraction data was updated.

The report_metadata property was set to None.

The st_metadata property was set to None.

The cert_metadata property was set to None.

The report_frontpage property was set to None.

The report_keywords property was set to None.

The st_keywords property was set to None.

The cert_keywords property was set to None.

The report_filename property was set to None.

The st_filename property was set to None.

The cert_filename property was set to None.

The computed heuristics were updated.

The cert_id property was set to None.

The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}]} values discarded.
12.08.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to {'product': 'Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9', 'url': 'https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379-0', 'description': 'Le produit évalué est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » développé par STORMSHIELD et exécuté par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN2100, SN3000, SN3100, SN6000, SN6100.\n\nLe produit offre des fonctions de sécurité permettant d’interconnecter un ou plusieurs réseaux de confiance via', 'sponsor': 'Stormshield', 'developer': 'Stormshield', 'cert_id': '2020/66', 'level': 'EAL3+', 'expiration_date': '9 Juillet 2025', 'enhanced': {'cert_id': '2020/66', 'certification_date': '09/07/2020', 'expiration_date': '09/07/2025', 'category': 'Produits réseau', 'cc_version': 'Critères Communs version 3.1r5', 'developer': 'Stormshield', 'sponsor': 'Stormshield', 'evaluation_facility': 'Oppida', 'level': 'EAL3+', 'protection_profile': '', 'mutual_recognition': 'SOG-IS\n CCRA', 'augmented': 'ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3', 'target_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cible-cc-2020_66en.pdf', 'report_link': 'https://cyber.gouv.fr/sites/default/files/2020/07/anssi-cc-2020_66fr.pdf'}}.
31.07.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
23.07.2024

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Network and Network-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/certificat-ANSSI-CC-2020_66..pdf",
  "dgst": "1e8d89de9a36e1b1",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "ANSSI-CC-2020/66",
    "cert_lab": null,
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "eal": "EAL3+",
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_INT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_DPT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_TDS",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_OBJ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_ARC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_COV",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_CCL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_REQ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_FUN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DVS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_LCD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_SPD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DEL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_IMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_ECD",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.7.9"
      ]
    },
    "indirect_transitive_cves": null,
    "next_certificates": null,
    "prev_certificates": null,
    "protection_profiles": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": null,
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "Stormshield",
  "manufacturer_web": "https://www.stormshield.eu/",
  "name": "Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9",
  "not_valid_after": "2025-07-09",
  "not_valid_before": "2020-07-09",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "certificat-ANSSI-CC-2020_66..pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "FR": {
          "ANSSI-CC-2020/66": 2
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ALC": {
          "ALC_CMC.4": 2,
          "ALC_CMS.4": 2,
          "ALC_FLR.3": 1
        },
        "AVA": {
          "AVA_VAN.3": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL2": 1,
          "EAL3": 2
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {},
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Christian Benardeau",
      "/CreationDate": "D:20200713162713+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010",
      "/ModDate": "D:20200713162713+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010",
      "/Subject": "CER/F/14.2",
      "/Title": "ANSSI-CC-2020/66",
      "pdf_file_size_bytes": 732049,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "anssi-cc-2020_66fr.pdf",
    "report_frontpage": {
      "FR": {}
    },
    "report_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "FR": {
          "ANSSI-CC-2020/66": 16
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1,
          "ADV_FSP": 1,
          "ADV_IMP": 1,
          "ADV_INT": 1,
          "ADV_SPM": 1,
          "ADV_TDS": 1
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_PRE": 1
        },
        "ALC": {
          "ALC_CMC": 1,
          "ALC_CMC.4": 3,
          "ALC_CMS": 1,
          "ALC_CMS.4": 3,
          "ALC_DEL": 1,
          "ALC_DVS": 1,
          "ALC_FLR": 2,
          "ALC_FLR.3": 4,
          "ALC_LCD": 1,
          "ALC_TAT": 1
        },
        "ASE": {
          "ASE_CCL": 1,
          "ASE_ECD": 1,
          "ASE_INT": 1,
          "ASE_OBJ": 1,
          "ASE_REQ": 1,
          "ASE_SPD": 1,
          "ASE_TSS": 1
        },
        "ATE": {
          "ATE_COV": 1,
          "ATE_DPT": 1,
          "ATE_FUN": 1,
          "ATE_IND": 1
        },
        "AVA": {
          "AVA_VAN": 1,
          "AVA_VAN.3": 3
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 3": 3,
          "EAL 5": 1,
          "EAL 7": 1,
          "EAL2": 2,
          "EAL3": 1,
          "EAL3+": 1,
          "EAL4": 1
        },
        "ITSEC": {
          "ITSEC E3 El\u00e9mentaire": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 1
        },
        "IPsec": {
          "IPsec": 1
        },
        "SSH": {
          "SSH": 1
        },
        "TLS": {
          "SSL": {
            "SSL": 2
          }
        },
        "VPN": {
          "VPN": 2
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "CC": {
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1,
          "CCMB-2017-04-004": 1
        }
      },
      "symmetric_crypto": {
        "DES": {
          "DES": {
            "DES": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "BENARDEAU Christian",
      "/CreationDate": "D:20200713162534+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010",
      "/Keywords": "ANSSI-CC-CER-F-07 v29.2",
      "/ModDate": "D:20200713162534+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010",
      "/Subject": "Stormshield Network Security UTM / NG-Firewall Software Suite",
      "/Title": "ANSSI-CC-2020/66",
      "pdf_file_size_bytes": 629246,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.ssi.gouv.fr/",
          "mailto:[email protected]"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 15
    },
    "st_filename": "anssi-cible-cc-2020_66en.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 4
          },
          "ECDSA": {
            "ECDSA": 6
          }
        },
        "FF": {
          "DH": {
            "DH": 4,
            "Diffie-Hellman": 9
          },
          "DSA": {
            "DSA": 2
          }
        },
        "RSA": {
          "RSA 2048": 1
        }
      },
      "cc_cert_id": {
        "NL": {
          "CC-01": 3,
          "CC-02": 6,
          "CC-03": 5
        }
      },
      "cc_claims": {
        "O": {
          "O.BACKUP_RESTORATION": 6,
          "O.CRYPTO": 4,
          "O.IPS_ATTACK_DETECTION": 8,
          "O.IPS_RFC_COMPLIANCE": 7,
          "O.LAA_IPS": 9,
          "O.LAA_PCAOA": 13,
          "O.LAA_PCFI": 8,
          "O.PCAOA": 13,
          "O.PCFI_APPLICATION_CONTEXT": 4,
          "O.PCFI_ENCRYPTION": 14,
          "O.PCFI_FILTERING": 7,
          "O.PROTECT_ADMIN_SESSIONS": 6,
          "O.PROTECT_LOGS": 6,
          "O.RESIST_AUTH_ADMIN": 6
        },
        "OE": {
          "OE.AUTONOMOUS": 3,
          "OE.CRYPTO_EXT": 3,
          "OE.GOOD_PCFI": 3,
          "OE.INTERPOSITION": 4,
          "OE.PASSWORD": 3,
          "OE.PERSONNEL": 3,
          "OE.PROTECT_APPLIANCES": 3,
          "OE.PROTECT_VPN_CLIENTS": 3,
          "OE.PROTECT_VPN_PEER": 3,
          "OE.PROTECT_WORKSTATIO": 1,
          "OE.PROTECT_WORKSTATIONS": 2,
          "OE.REVOCATION_LIST": 3,
          "OE.STRICT_USAGE": 3,
          "OE.SUPER_ADMIN": 3,
          "OE.TIMESTAMPS": 4
        },
        "T": {
          "T.ADMIN_USURP": 3,
          "T.AUDIT": 2,
          "T.ILLEGAL_ADMIN": 18,
          "T.ILLEGAL_ADMIN_SESSION": 4,
          "T.IMPROPER_USE": 11,
          "T.IP_SPOOFING": 5
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_ARC.1": 1,
          "ADV_FSP.3": 1,
          "ADV_FSP.4": 1,
          "ADV_IMP.1": 1,
          "ADV_TDS.2": 1,
          "ADV_TDS.3": 1
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC": 1,
          "ALC_CMC.4": 5,
          "ALC_CMS": 1,
          "ALC_CMS.1": 1,
          "ALC_CMS.4": 5,
          "ALC_DEL.1": 1,
          "ALC_DVS.1": 2,
          "ALC_FLR.3": 4,
          "ALC_LCD.1": 2
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.2": 1,
          "ASE_REQ.2": 3,
          "ASE_SPD.1": 1,
          "ASE_TSS.1": 1
        },
        "ATE": {
          "ATE_COV.2": 1,
          "ATE_DPT.1": 1,
          "ATE_FUN.1": 1,
          "ATE_IND.2": 1
        },
        "AVA": {
          "AVA_VAN.3": 5
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL3": 22,
          "EAL3 augmented": 1,
          "EAL3+": 2
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_ARP": 2,
          "FAU_ARP.1": 14,
          "FAU_ARP.1.1": 2,
          "FAU_GEN": 1,
          "FAU_GEN.1": 7,
          "FAU_GEN.1.1": 2,
          "FAU_GEN.1.2": 4,
          "FAU_GEN.2": 6,
          "FAU_GEN.2.1": 2,
          "FAU_SAA.1": 2,
          "FAU_SAA.4": 9,
          "FAU_SAA.4.1": 4,
          "FAU_SAA.4.2": 2,
          "FAU_SAA.4.3": 3,
          "FAU_SAR.1": 7,
          "FAU_SAR.1.1": 2,
          "FAU_SAR.1.2": 2,
          "FAU_STG.3": 7,
          "FAU_STG.3.1": 2
        },
        "FCS": {
          "FCS_CKM.1": 7,
          "FCS_CKM.4": 7,
          "FCS_COP.1": 59
        },
        "FDP": {
          "FDP_ACC.1": 2,
          "FDP_ACC.2": 6,
          "FDP_ACC.2.1": 2,
          "FDP_ACC.2.2": 2,
          "FDP_IFC.1": 10,
          "FDP_IFC.1.1": 2,
          "FDP_IFC.2": 6,
          "FDP_IFC.2.1": 3,
          "FDP_IFC.2.2": 2,
          "FDP_IFF.1": 29,
          "FDP_IFF.1.1": 2,
          "FDP_IFF.1.2": 2,
          "FDP_IFF.1.3": 2,
          "FDP_IFF.1.4": 2,
          "FDP_IFF.1.5": 2,
          "FDP_ITC.1": 7,
          "FDP_ITC.2": 7,
          "FDP_UCT.1": 11,
          "FDP_UCT.1.1": 2,
          "FDP_UIT.1": 11,
          "FDP_UIT.1.1": 2,
          "FDP_UIT.1.2": 2
        },
        "FIA": {
          "FIA_UAU.5": 45,
          "FIA_UAU.5.1": 4,
          "FIA_UAU.5.2": 4,
          "FIA_UID.1": 2
        },
        "FMT": {
          "FMT_MOF.1": 10,
          "FMT_MOF.1.1": 3,
          "FMT_MSA.3": 2,
          "FMT_MTD": 22,
          "FMT_MTD.1": 11,
          "FMT_MTD.1.1": 3,
          "FMT_SMF": 1,
          "FMT_SMF.1": 12,
          "FMT_SMF.1.1": 2,
          "FMT_SMR.1": 8,
          "FMT_SMR.1.1": 3,
          "FMT_SMR.1.2": 4
        },
        "FPT": {
          "FPT_ITT.1": 10,
          "FPT_ITT.1.1": 2,
          "FPT_STM.1": 1,
          "FPT_TDC.1": 8,
          "FPT_TDC.1.1": 2,
          "FPT_TDC.1.2": 2
        },
        "FTP": {
          "FTP_ITC.1": 2,
          "FTP_ITT.1": 1,
          "FTP_TRP.1": 64,
          "FTP_TRP.1.1": 4,
          "FTP_TRP.1.2": 4,
          "FTP_TRP.1.3": 4
        }
      },
      "certification_process": {
        "OutOfScope": {
          "out of scope": 1,
          "protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 1
        }
      },
      "crypto_protocol": {
        "IKE": {
          "IKE": 33,
          "IKEv2": 8
        },
        "SSH": {
          "SSH": 1
        },
        "TLS": {
          "SSL": {
            "SSL": 2
          },
          "TLS": {
            "TLS": 40
          }
        },
        "VPN": {
          "VPN": 98
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        },
        "KEX": {
          "Key Exchange": 3
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 3
          }
        },
        "SHA": {
          "SHA2": {
            "SHA-2": 1,
            "SHA2": 9
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {
        "curves": {
          "SECP256R1": 1
        }
      },
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "CC": {
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1,
          "CCMB-2017-04-004": 1
        },
        "FIPS": {
          "FIPS 180-1": 1,
          "FIPS 180-2": 1,
          "FIPS PUB 186-4": 1,
          "FIPS PUB 197": 1,
          "FIPS PUB 46-3": 1
        },
        "PKCS": {
          "PKCS #1": 1
        },
        "RFC": {
          "RFC 1034": 1,
          "RFC 1035": 1,
          "RFC 1058": 1,
          "RFC 1321": 1,
          "RFC 1349": 1,
          "RFC 2104": 1,
          "RFC 2144": 1,
          "RFC 2246": 2,
          "RFC 2385": 1,
          "RFC 2389": 1,
          "RFC 2401": 2,
          "RFC 2409": 2,
          "RFC 2428": 1,
          "RFC 2453": 1,
          "RFC 2474": 1,
          "RFC 2518": 1,
          "RFC 2577": 1,
          "RFC 2616": 1,
          "RFC 2631": 1,
          "RFC 2817": 1,
          "RFC 3253": 1,
          "RFC 3261": 1,
          "RFC 3268": 1,
          "RFC 3330": 1,
          "RFC 3376": 1,
          "RFC 3435": 1,
          "RFC 3526": 1,
          "RFC 3550": 1,
          "RFC 3605": 1,
          "RFC 4303": 1,
          "RFC 4754": 1,
          "RFC 5903": 1,
          "RFC 6455": 1,
          "RFC 6932": 1,
          "RFC 7427": 1,
          "RFC 768": 1,
          "RFC 792": 1,
          "RFC 793": 1,
          "RFC 959": 1
        },
        "X509": {
          "X.509": 17
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 15
          },
          "CAST": {
            "CAST": 9,
            "CAST-128": 1
          }
        },
        "DES": {
          "3DES": {
            "Triple-DES": 1
          },
          "DES": {
            "DES": 9
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 3
          }
        },
        "miscellaneous": {
          "Blowfish": {
            "Blowfish": 9
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {
        "TLS": {
          "TLS_DHE_RSA_WITH_AES_128_CBC_SHA": 1
        }
      },
      "vendor": {
        "Cisco": {
          "Cisco": 1
        },
        "Microsoft": {
          "Microsoft": 4
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Stormshield",
      "/CreationDate": "D:20200515152045+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010",
      "/ModDate": "D:20200515152045+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010",
      "/Subject": "UTM / NG-Firewall Software Suite",
      "/Title": "Stormshield Network Security",
      "pdf_file_size_bytes": 2167789,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "2.1.1.General%20points%7Coutline"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 95
    }
  },
  "protection_profile_links": {
    "_type": "Set",
    "elements": []
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cc-2020_66fr.pdf",
  "scheme": "FR",
  "security_level": {
    "_type": "Set",
    "elements": [
      "ALC_FLR.3",
      "AVA_VAN.3",
      "ALC_CMS.4",
      "ALC_CMC.4",
      "EAL3+"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cible-cc-2020_66en.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_garbage": true,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "bac37f02083df9f27ae9ec2b428d37e7b1432926fe7e69e8a2e0e61ef45e4d01",
      "txt_hash": "613d3ccfb06063ae63b7d5dd97267ca6d2d0fb8979ee703c68bfa75e8904ceb0"
    },
    "report": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "32d37bc9fb0c4d6d38e4a39413127568bb38aeac0815bf507a888cf309be434c",
      "txt_hash": "f16beb58caf265eab5a15dade39dba9ed0b9f29660360a5efcc3847f34625c60"
    },
    "st": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "d09805a4776537b501a094940768fe98376b6b078b26a0bdd333486155310582",
      "txt_hash": "8b7c73bbe8a411c494f171df0f03ad7800c3886b7d74fc91b7cfe69cf017279e"
    }
  },
  "status": "archived"
}

Sections

Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9

CSV information

Heuristics summary

Certificate

Extracted keywords

Common Criteria

Security level

Security Assurance Requirements (SAR)

Certificates

File metadata

Certification report

Extracted keywords

Cryptography

Symmetric Algorithms

Protocols

Common Criteria

Security level

Security Assurance Requirements (SAR)

Certificates

Other

Standards

File metadata

Security target

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Libraries

Block cipher modes

TLS cipher suites

Device

JavaCard API constants

Vendor

Common Criteria

Security level

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Certificates

Security

Certification process

Other

Standards

File metadata

Heuristics

Automated inference - use with caution

Certificate ID

Extracted SARs

Similar certificates

References

Updates Feed

Raw data

Toggle raw data