{"_id": "6481dd36a26bf09d", "_type": "sec_certs.sample.cc.CCCertificate", "dgst": "6481dd36a26bf09d", "status": "archived", "category": "Network and Network-Related Devices and Systems", "name": "Junos OS 19.2R1 for SRX1500, SRX4100, SRX4200 and SRX4600 Series", "manufacturer": "HPE Juniper Networking", "scheme": "AU", "security_level": {"_type": "Set", "elements": []}, "not_valid_before": "2019-12-13", "not_valid_after": "2024-12-13", "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ACSC%20Certifcation%20Report%20EFT-T005_v1.0.pdf", "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Juniper-SRX-TVP-SecurityTarget-v3.7%20Final.pdf", "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/EFT-T005_AISEP_Certifcate_2019_125_OS_CCRA_posting.pdf", "manufacturer_web": "https://www.juniper.net/", "protection_profile_links": {"_type": "Set", "elements": ["https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.1.pdf", "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_FW_V2.0E.pdf"]}, "maintenance_updates": {"_type": "Set", "elements": []}, "state": {"_type": "sec_certs.sample.cc_eucc_common.InternalState", "report": {"_type": "sec_certs.sample.document_state.DocumentState", "download_ok": true, "convert_ok": true, "extract_ok": true, "pdf_hash": "f405182d6808de7e242d3009d2ef2e8cf0441625ed5da4eeedc5ab08aa9c4710", "txt_hash": "52ac120f8a2bf0f837f7894a4571b304aac993c180ed1cda0909db5294ed5510", "json_hash": null}, "st": {"_type": "sec_certs.sample.document_state.DocumentState", "download_ok": true, "convert_ok": true, "extract_ok": true, "pdf_hash": "a3d2b13f2a317290f571a89be8efa88ea6e07889acaa50599cada49ee1036065", "txt_hash": "4b84958ccb3cd237c172ac3327b55ff898b059c27e4e9159cb64b0c51bed7ca3", "json_hash": null}, "cert": {"_type": "sec_certs.sample.document_state.DocumentState", "download_ok": true, "convert_ok": true, "extract_ok": false, "pdf_hash": "07ddd59d8dbf488b7f75b234d043bb03dc95f00a81fd1855ff40daeec800444a", "txt_hash": "3c007c90fde6fa1888511b9082d41574e7ac002415272c0f261c8f225eeba9ed", "json_hash": null}}, "pdf_data": {"_type": "sec_certs.sample.cc_eucc_common.PdfData", "report_metadata": {"pdf_file_size_bytes": 2522120, "pdf_is_encrypted": false, "pdf_number_of_pages": 19, "/CreationDate": "D:20191219160016+11'00'", "/ModDate": "D:20191219160016+11'00'", "pdf_hyperlinks": {"_type": "Set", "elements": ["https://www.nzism.gcsb.govt.nz/ism-document/", "https://www.commoncriteriaportal.org/", "https://www.cyber.gov.au/publications/aisep-policy-manual", "https://www.cyber.gov.au/ism", "https://www.gcsb.govt.nz/", "https://www.juniper.net/customers/csc/management", "https://www.juniper.net/"]}}, "st_metadata": {"pdf_file_size_bytes": 1336985, "pdf_is_encrypted": false, "pdf_number_of_pages": 88, "/Producer": "Microsoft\u00ae Word for Office 365", "/Creator": "Microsoft\u00ae Word for Office 365", "/CreationDate": "D:20200128124532+11'00'", "/ModDate": "D:20200128124532+11'00'", "pdf_hyperlinks": {"_type": "Set", "elements": ["https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=323", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0451", "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31442", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0450", "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31447", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=325", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=183", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0449", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=313", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0447", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=434", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0452", "http://www.juniper.net/", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=322", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=254", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0453", "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31446", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=213", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=433", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=435", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=248", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0448", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=335", "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31443", "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0436", "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31440", "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31441"]}}, "cert_metadata": null, "report_frontpage": {}, "st_frontpage": null, "cert_frontpage": null, "report_keywords": {"cc_cert_id": {}, "cc_protection_profile_id": {}, "cc_security_level": {}, "cc_sar": {}, "cc_sfr": {}, "cc_claims": {"A": {"A.RESIDUAL_INFORMATION": 1, "A.NO_THRU_TRAFFIC_PROTECTION": 1, "A.CONNECTIONS": 1}}, "vendor": {}, "eval_facility": {"Teron": {"Teron Labs": 4}}, "symmetric_crypto": {}, "asymmetric_crypto": {}, "pq_crypto": {}, "hash_function": {}, "crypto_scheme": {}, "crypto_protocol": {"SSH": {"SSH": 2, "SSHv2": 2}, "IKE": {"IKE": 2}, "IPsec": {"IPsec": 3}, "VPN": {"VPN": 8}}, "randomness": {"RNG": {"RBG": 1}}, "cipher_mode": {}, "ecc_curve": {}, "crypto_engine": {}, "tls_cipher_suite": {}, "crypto_library": {}, "vulnerability": {}, "side_channel_analysis": {}, "technical_report_id": {}, "device_model": {}, "tee_name": {}, "os_name": {}, "cplc_data": {}, "ic_data_group": {}, "standard_id": {}, "javacard_version": {}, "javacard_api_const": {}, "javacard_packages": {}, "certification_process": {}}, "st_keywords": {"cc_cert_id": {}, "cc_protection_profile_id": {}, "cc_security_level": {}, "cc_sar": {"ADV": {"ADV_FSP.1": 1}, "AGD": {"AGD_OPE.1": 1, "AGD_PRE.1": 1}, "ALC": {"ALC_CMC.1": 1, "ALC_CMS.1": 1}, "ATE": {"ATE_IND.1": 1}, "AVA": {"AVA_VAN.1": 1}, "ASE": {"ASE_CCL.1": 1, "ASE_ECD.1": 1, "ASE_INT.1": 1, "ASE_OBJ.1": 1, "ASE_REQ.1": 1, "ASE_SPD.1": 1, "ASE_TSS.1": 1}}, "cc_sfr": {"FAU": {"FAU_GEN": 8, "FAU_STG_EXT": 2, "FAU_GEN.1": 15, "FAU_GEN.2": 5, "FAU_STG_EXT.1": 4, "FAU_STG.1": 5, "FAU_GEN.2.1": 1, "FAU_STG_EXT.1.1": 1, "FAU_STG_EXT.1.2": 1, "FAU_STG_EXT.1.3": 1, "FAU_STG.1.1": 1, "FAU_STG.1.2": 1}, "FCS": {"FCS_CKM": 9, "FCS_COP": 41, "FCS_RBG_EXT": 2, "FCS_SSHS_EXT": 2, "FCS_SSHC_EXT.1.9": 1, "FCS_TLSS_EXT.1.2": 1, "FCS_TLSS_EXT.2.2": 1, "FCS_TLSS_EXT": 1, "FCS_CKM.2": 18, "FCS_SSHC_EXT.1.7": 1, "FCS_SSHS_EXT.1.7": 2, "FCS_SSHC_EXT.1.5": 4, "FCS_SSHS_EXT.1.5": 5, "FCS_CKM.1": 23, "FCS_SSHC_EXT.1.1": 1, "FCS_SSHS_EXT.1.1": 2, "FCS_TLSC_EXT.1.1": 3, "FCS_TLSC_EXT.2.1": 2, "FCS_TLSS_EXT.2.4": 1, "FCS_TLSS_EXT.2.5": 1, "FCS_SSHS_EXT.1.2": 2, "FCS_SSHS_EXT.1": 8, "FCS_DTLS": 1, "FCS_TLSS_EXT.1.1": 1, "FCS_TLSS_EXT.2.1": 1, "FCS_CKM.4": 12, "FCS_RBG_EXT.1": 10, "FCS_CKM.2.1": 1, "FCS_CKM.4.1": 1, "FCS_COP.1": 7, "FCS_RBG_EXT.1.1": 2, "FCS_RBG_EXT.1.2": 1, "FCS_SSHS_EXT.1.3": 1, "FCS_SSHS_EXT.1.4": 1, "FCS_SSHS_EXT.1.6": 1, "FCS_SSHS_EXT.1.8": 1}, "FDP": {"FDP_RIP": 2, "FDP_RIP.2": 5, "FDP_RIP.2.1": 1}, "FIA": {"FIA_AFL": 2, "FIA_PMG_EXT": 2, "FIA_UIA_EXT": 2, "FIA_UAU": 2, "FIA_UAU_EXT": 2, "FIA_AFL.1": 11, "FIA_UAU_EXT.2": 6, "FIA_PMG_EXT.1": 5, "FIA_UIA_EXT.1": 11, "FIA_UAU.7": 5, "FIA_AFL.1.1": 1, "FIA_AFL.1.2": 1, "FIA_PMG_EXT.1.1": 1, "FIA_UIA_EXT.1.1": 1, "FIA_UIA_EXT.1.2": 1, "FIA_UAU_EXT.2.1": 1, "FIA_UAU.7.1": 1, "FIA_PSK_EXT.1": 5, "FIA_PSK_EXT.1.1": 1, "FIA_PSK_EXT.1.2": 1, "FIA_PSK_EXT.1.3": 1, "FIA_PSK_EXT.1.4": 1, "FIA_UID.1": 3}, "FMT": {"FMT_MOF": 22, "FMT_MTD": 16, "FMT_SMF": 7, "FMT_SMR": 2, "FMT_SMF.1": 17, "FMT_SMF.1.1": 1, "FMT_SMR.2": 12, "FMT_MOF.1": 3, "FMT_MTD.1": 2, "FMT_SMR.2.1": 1, "FMT_SMR.2.2": 1, "FMT_SMR.2.3": 1, "FMT_SMR.1": 5}, "FPT": {"FPT_SKP_EXT": 2, "FPT_APW_EXT": 2, "FPT_TST_EXT": 3, "FPT_TUD_EXT": 2, "FPT_STM_EXT": 2, "FPT_FLS": 5, "FPT_ITT.1": 1, "FPT_STM_EXT.1": 4, "FPT_TST_EXT.2.1": 1, "FPT_TST_EXT.3.1": 2, "FPT_SKP_EXT.1": 5, "FPT_APW_EXT.1": 5, "FPT_TST_EXT.1": 6, "FPT_TUD_EXT.1": 9, "FPT_STM.1": 6, "FPT_SKP_EXT.1.1": 1, "FPT_APW_EXT.1.1": 1, "FPT_APW_EXT.1.2": 1, "FPT_TST_EXT.1.1": 1, "FPT_TST_EXT.3": 3, "FPT_TUD_EXT.1.1": 1, "FPT_TUD_EXT.1.2": 1, "FPT_TUD_EXT.1.3": 1, "FPT_STM_EXT.1.1": 1, "FPT_STM_EXT.1.2": 1, "FPT_FLS.1": 2, "FPT_STM": 1}, "FTA": {"FTA_SSL_EXT": 2, "FTA_SSL": 2, "FTA_TAB": 2, "FTA_SSL.3": 8, "FTA_SSL_EXT.1": 6, "FTA_SSL.4": 6, "FTA_TAB.1": 9, "FTA_SSL_EXT.1.1": 1}, "FTP": {"FTP_ITC": 2, "FTP_TRP": 9, "FTP_ITC.1": 24, "FTP_ITC_EXT.1.1": 1, "FTP_ITC.1.1": 2, "FTP_ITC.1.2": 1, "FTP_ITC.1.3": 1, "FTP_TRP.1": 3, "FTP_ITC.2": 6}}, "cc_claims": {"O": {"O.SYSTEM_MONITORING": 2, "O.IPS_ANALYZE": 2, "O.TOE_ADMINISTRATION": 2, "O.ADDRESS_FILTERING": 1, "O.ASSIGNED_PRIVATE_ADDRESS": 1, "O.AUTHENTICATION": 1, "O.CLIENT_ESTABLISHMENT_CONSTRAINTS": 1, "O.CRYPTOGRAPHIC_FUNCTIONS": 1, "O.FAIL_SECURE": 1, "O.PORT_FILTERING": 1, "O.REMOTE_SESSION_TERMINATION": 1}, "T": {"T.UNAUTHORIZED_ADMINISTRATOR_ACCESS": 1, "T.WEAK_CRYPTOGRAPHY": 1, "T.UNTRUSTED_COMMUNICATION_CHANNELS": 1, "T.WEAK_AUTHENTICATION_ENDPOINTS": 1, "T.UPDATE_COMPROMISE": 1, "T.UNDETECTED_ACTIVITY": 1, "T.SECURITY_FUNCTIONALITY_COMPROMISE": 1, "T.PASSWORD_CRACKING": 1, "T.SECURITY_FUNCTIONALITY_FAILURE": 1, "T.NETWORK_DISCLOSURE": 1, "T.NETWORK_MISUSE": 1, "T.MALICIOUS_TRAFFIC": 1, "T.NETWORK_DOS": 1, "T.DATA_INTEGRITY": 1, "T.HIJACKED_SESSION": 1, "T.REPLAY_ATTACK": 1, "T.UNAUTHORIZED_CONNECTION": 1, "T.UNPROTECTED_TRAFFIC": 1}, "A": {"A.CONNECTIONS": 3, "A.PHYSICAL_PROTECTION": 1, "A.LIMITED_FUNCTIONALITY": 1, "A.TRUSTED_ADMINSTRATOR": 1, "A.REGULAR_UPDATES": 1, "A.ADMIN_CREDENTIALS_SECURE": 1, "A.RESIDUAL_INFORMATION": 1, "A.NO_THRU_TRAFFIC_PROTECTION": 1}, "OE": {"OE.NO_THRU_TRAFFIC_PROTECTION": 2, "OE.RESIDUAL_INFORMATION": 2, "OE.CONNECTIONS": 1, "OE.PHYSICAL": 1, "OE.NO_GENERAL_PURPOSE": 1, "OE.TRUSTED_ADMIN": 1, "OE.UPDATES": 1, "OE.ADMIN_CREDENTIALS_SECURE": 1}}, "vendor": {}, "eval_facility": {}, "symmetric_crypto": {"AES_competition": {"AES": {"AES-": 2, "AES": 29}}, "DES": {"DES": {"DES": 1}}, "constructions": {"MAC": {"HMAC": 9, "HMAC-SHA-256": 4, "HMAC-SHA-384": 2}}}, "asymmetric_crypto": {"RSA": {"RSA 2048": 4, "RSA 4096": 2}, "ECC": {"ECDH": {"ECDH": 4}, "ECDSA": {"ECDSA": 20}, "ECC": {"ECC": 6}}, "FF": {"DH": {"Diffie-Hellman": 6, "DH": 19}}}, "pq_crypto": {}, "hash_function": {"SHA": {"SHA1": {"SHA-1": 2, "SHA1": 4}, "SHA2": {"SHA-256": 9, "SHA-384": 2, "SHA-512": 5}}}, "crypto_scheme": {"MAC": {"MAC": 4}, "KEX": {"Key Exchange": 4, "Key exchange": 1}, "AEAD": {"AEAD": 2}}, "crypto_protocol": {"SSH": {"SSH": 103, "SSHv2": 11}, "TLS": {"SSL": {"SSL": 6}, "TLS": {"TLS1.1": 1, "TLS1.2": 1, "TLS": 2}}, "IKE": {"IKE": 33, "IKEv1": 20, "IKEv2": 18}, "IPsec": {"IPsec": 31}, "VPN": {"VPN": 25}}, "randomness": {"PRNG": {"PRNG": 1, "DRBG": 10}, "RNG": {"RNG": 3, "RBG": 3}}, "cipher_mode": {"CBC": {"CBC": 16}, "CTR": {"CTR": 5}, "GCM": {"GCM": 8}, "CCM": {"CCM": 1}}, "ecc_curve": {"NIST": {"P-256": 28, "P-384": 24, "P-521": 10}}, "crypto_engine": {}, "tls_cipher_suite": {}, "crypto_library": {"OpenSSL": {"OpenSSL": 6}}, "vulnerability": {}, "side_channel_analysis": {"FI": {"DFA": 2}}, "technical_report_id": {}, "device_model": {}, "tee_name": {}, "os_name": {}, "cplc_data": {}, "ic_data_group": {}, "standard_id": {"FIPS": {"FIPS PUB 186-4": 9, "FIPS 197": 5, "FIPS 180-4": 6, "FIPS 198-1": 3, "FIPS 186-4": 5}, "NIST": {"NIST SP 800-56A": 2}, "PKCS": {"PKCS #1": 1}, "RFC": {"RFC 6187": 1, "RFC 3526": 2, "RFC 4301": 2, "RFC 4303": 1, "RFC 3602": 3, "RFC 4109": 2, "RFC 4868": 4, "RFC 5996": 1, "RFC 5282": 1, "RFC 4945": 2, "RFC 4253": 3, "RFC 5280": 5, "RFC 2986": 2, "RFC 2409": 2, "RFC 4306": 2, "RFC 791": 3, "RFC 2460": 3, "RFC 793": 3, "RFC 768": 3, "RFC 5735": 2, "RFC 3513": 2, "RFC 792": 2, "RFC 2463": 1, "RFC3526": 1, "RFC 4251": 2, "RFC 5656": 1, "RFC 4252": 1, "RFC 4254": 1, "RFC5656": 1, "RFC 6668": 1, "RFC 4443": 1, "RFC 959": 1}, "ISO": {"ISO/IEC 9796-2": 1, "ISO/IEC 14888-3": 1, "ISO/IEC 18031:2011": 1}, "X509": {"X.509": 11}, "CC": {"CCMB-2017-04-001": 1, "CCMB-2017-04-002": 1, "CCMB-2017-04-003": 1}}, "javacard_version": {}, "javacard_api_const": {}, "javacard_packages": {}, "certification_process": {"OutOfScope": {"out of scope": 1, "over SSH and IPsec). Telnet, File Transfer Protocol (FTP), and Secure Socket Layer (SSL) are out of scope. The TOE includes a baseline cryptographic module that provides the underlying cryptographic": 1}}}, "cert_keywords": {"cc_cert_id": {}, "cc_protection_profile_id": {}, "cc_security_level": {}, "cc_sar": {}, "cc_sfr": {}, "cc_claims": {}, "vendor": {}, "eval_facility": {}, "symmetric_crypto": {}, "asymmetric_crypto": {}, "pq_crypto": {}, "hash_function": {}, "crypto_scheme": {}, "crypto_protocol": {"VPN": {"VPN": 1}}, "randomness": {}, "cipher_mode": {}, "ecc_curve": {}, "crypto_engine": {}, "tls_cipher_suite": {}, "crypto_library": {}, "vulnerability": {}, "side_channel_analysis": {}, "technical_report_id": {}, "device_model": {}, "tee_name": {}, "os_name": {}, "cplc_data": {}, "ic_data_group": {}, "standard_id": {}, "javacard_version": {}, "javacard_api_const": {}, "javacard_packages": {}, "certification_process": {}}, "report_filename": "ACSC Certifcation Report EFT-T005_v1.0.pdf", "st_filename": "Juniper-SRX-TVP-SecurityTarget-v3.7 Final.pdf", "cert_filename": "EFT-T005_AISEP_Certifcate_2019_125_OS_CCRA_posting.pdf"}, "heuristics": {"_type": "sec_certs.sample.cc_eucc_common.Heuristics", "extracted_versions": {"_type": "Set", "elements": ["19.2"]}, "cpe_matches": null, "verified_cpe_matches": null, "related_cves": null, "cert_lab": null, "cert_id": "Certificate Number: 2019/125", "prev_certificates": null, "next_certificates": null, "st_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "report_references": {"_type": "sec_certs.sample.certificate.References", "directly_referenced_by": null, "indirectly_referenced_by": null, "directly_referencing": null, "indirectly_referencing": null}, "annotated_references": null, "extracted_sars": {"_type": "Set", "elements": [{"_type": "sec_certs.sample.sar.SAR", "family": "ASE_TSS", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ASE_OBJ", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ALC_CMS", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ASE_CCL", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ASE_SPD", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "AGD_OPE", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ALC_CMC", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ASE_REQ", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ASE_ECD", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ASE_INT", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ADV_FSP", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "ATE_IND", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "AGD_PRE", "level": 1}, {"_type": "sec_certs.sample.sar.SAR", "family": "AVA_VAN", "level": 1}]}, "direct_transitive_cves": null, "indirect_transitive_cves": null, "scheme_data": null, "protection_profiles": {"_type": "Set", "elements": ["5c8dd9013898f051"]}, "eal": null}}