a Indian Common Criteria Certification Scheme (1C35) Government of India Ministry of Electronics & Information Technology, STQC Directorate 6 CGO Complex, New Delhi 110003 Certificate Number: IC3S/MUMO01/CISCO/cPP/0119/0016 Product Name: Cisco ASR900 Series and NCS4200 Series running IOS-XE 16.9 Assurance Level: NDcPP, ver. 2.1 AND VPNGWEP ver. 2.1 Certificate Report No: 1C3S/MUM01/CISCO/cPP/0119/0016/CR Version: 1.0, Dated: 03.12.2019 The product identified in the certificate has been evaluated under the terms and conditions of the Indian Common Criteria Scheme (IC3S), at Common Criteria Test Laboratory, Acucert Labs LLP, D-509 Neelkanth Business Park Vidyavihar West, Mumbai 400086, India, the accredited testing laboratory using the Common Methodology for IT Security Evaluation (Version 3.1) for conformance to the Common Criteria for IT Security Evaluation (Version 3.1). This certificate applies only to specific version and release of the product in its evaluated configuration (Refer Annexure and Certification Report). The product’s functional and assurance security specifications are contained in the Security Target and the conclusions of the Common Criteria Testing Laboratory in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the product by any agency of the Government of the India and no warranty of the product is either expressed or implied. Date of Issue:17.12.2019 Head IC3S Certification Body Date of Expiry:16.12.2024 7 Annexure to Common Criteria Certificate Number IC3S/MUM01/CISCO/cPP/0119/0016 Indian Common Criteria Certification Scheme (IC3S) Government of India, Ministry of Electronics & Information Technology STQC Directorate, 6 CGO Complex, New Delhi 110003 The product below has been evaluated under the terms of Indian Common Criteria Certification Scheme (IC3S) and has met the stated Common Criteria requirements. The scope of the evaluation and the assumed usage environment are specified in the body of Certification Report No. 1C3S/MUM01/CISCO/cPP/0119/0016/CR Version: 1.0, Dated: 03.12.2019, which is available in the website: www.commoncriteria-india.gov.in Sponsor Cisco Systems, Inc. 170 West Tasman Dr. San Jose, CA 95134-1706 USA Developer Cisco Systems, Inc. 170 West Tasman Dr. San Jose, CA 95134-1706 USA Security Target Cisco ASR900 Series and NCS4200 Series Switches running IOS-XE 16.9 ST Version Reference 1.0, October 11, 2019 Identification Product and Version | Cisco ASR900 Series and NCS4200 Series running with IOS-XE 16.9, Version 1.0 Target of Evaluation Cisco ASR 900 Series and NCS4200 Series running IOS-XE 16.9. (CISCO ASR902, ASR903, ASR907, ASR920 and CISCO NCS4201, NCS4202, NCS4206, NCS4216) Evaluated The Cisco IOS-XE configuration determines how packets are handled to and from Configuration the TOE’s network interfaces. The TOE configuration will determine how traffic flows, received on an interface will be handled.. Environment CISCO ASR902, ASR903, ASR907, ASR920 and NCS4201, NCS4202, NCS4206, NCS4216 Hardware models. The ASR900 Series and NCS4200 Series that comprises the TOE has common hardware characteristics. These characteristics affect only non-TSF relevant functions of the platforms (such as throughput and amount of storage) and therefore support security equivalency of the platforms in terms of hardware. Compliance to CC Compliant Part 2 Compliance to CC Compliant Part 3 Evaluation Assurance | As per Level (EAL) 1. collaborative Protection Profile for Network Devices (NDcPP), ver.2.1, 24 September 2018 2. Network Device collaborative Protection Profile (NDcPP) Extended Package VPN Gateway (VPNGWEP), ver. 2.1, 8" March 2017 Evaluation Lab Common Criteria Test Laboratory: Acucert Labs LLP, D-509 Neelkanth Business Park Vidyavihar West, Mumbai 400086, India Date Authorized 5” April, 2019 \ à D cation Body Date of Issue: 17.12.2019 Head IC: