Ciena Waveserver Ai Rel 1.3
CSV information ?
Status | archived |
---|---|
Valid from | 26.06.2019 |
Valid until | 26.06.2021 |
Scheme | 🇺🇸 US |
Manufacturer | Ciena, Inc. |
Category | Network and Network-Related Devices and Systems |
Security level |
Heuristics summary ?
Certificate ?
Extracted keywords
Certificates
CCEVS-VR-VID10967-2019Evaluation facilities
Acumen SecurityFile metadata
Creation date | D:20190628123807-04'00' |
---|---|
Modification date | D:20190628123807-04'00' |
Pages | 1 |
Producer | iText 2.1.0 (by lowagie.com) |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512Asymmetric Algorithms
ECDSA, Diffie-HellmanHash functions
SHA-256, SHA-384, SHA-512Schemes
MAC, Key exchangeProtocols
SSH, TLS, TLS v1.2Randomness
DRBGLibraries
Crypto Library 2Elliptic Curves
P-256, P-384, P-521Block cipher modes
CBC, CTR, GCMTLS cipher suites
TLS_RSA_WITH_AES_256_CBC_SHA256, TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Claims
T.UNAUTHORIZED_ADMINISTRATOR_ACCESS, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_CHANNELS, T.WEAK_AUTHENTICATION_ENDPOINTS, T.UPDATE_COMPROMISE, T.UNDETECTED_ACTIVITY, T.SECURITY_FUNCTIONALITY_COMPROMISE, T.PASSWORD_CRACKING, T.SECURITY_FUNCTIONALITY_FAILURE, A.PHYSICAL_PROTECTION, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.TRUSTED_ADMINISTRATOR, A.REGULAR_UPDATES, A.ADMIN_CREDENTIALS_SECURE, A.RESIDUAL_INFORMATION, OE.PHYSICAL, OE.NO_GENERAL_PURPOSE, OE.NO_THRU_TRAFFIC_PROTECTION, OE.TRUSTED_ADMIN, OE.UPDATES, OE.ADMIN_CREDENTIALS_SECURESecurity Functional Requirements (SFR)
FAU_GEN.1, FCS_CKM.1, FCS_CKM.2, FCS_CKM.4, FCS_COP, FCS_DRBG_EXT.1, FCS_TLSC_EXT.2, FCS_TLSS_EXT.2, FCS_SSHS_EXT.1Certificates
CCEVS-VR-VID10967-2019Evaluation facilities
Acumen SecurityCertification process
out of scope, optional) The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested, part of the evaluated configuration: NTP server (optional) The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested) gRPC is disabled 20 8 IT ProductStandards
FIPS PUB 186-4, PKCS #1, RFC 8017, RFC 3526, RFC2818, RFC 5246, RFC 5289, ISO/IEC 9796-2, ISO/IEC 14888-3, ISO/IEC 18031:2011File metadata
Creation date | D:20190628114507-04'00' |
---|---|
Modification date | D:20190628114507-04'00' |
Pages | 27 |
Frontpage
Certificate ID | CCEVS-VR-VID10967-2019 |
---|---|
Certified item | for the Ciena Waveserver Ai Rel 1.3 |
Certification lab | US NIAP |
Security target ?
Extracted keywords
Symmetric Algorithms
AES, HMAC, HMAC-SHA-384, HMAC-SHA-512, HMAC-SHA-256Asymmetric Algorithms
ECDH, ECDHE, ECDSA, ECC, Diffie-Hellman, DH, DHE, DSAHash functions
SHA-256, SHA-512, SHA256, SHA-384, SHA384, SHA512Schemes
MAC, Key exchangeProtocols
SSH, SSL, SSL 2.0, SSL 3.0, TLS v1.2, TLS, TLS1.1, TLS1.2, TLS 1.2, TLS 1.0, TLS 1.1, DTLSRandomness
TRNG, DRBG, RNG, RBGLibraries
Crypto Library 2Elliptic Curves
P-256, P-384, P-521, secp256r1, secp384r1, secp521r1Block cipher modes
CBC, CTR, GCMTLS cipher suites
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA256, TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Claims
T.UNAUTHORIZED_ADMINISTRATOR_ACCESS, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_CHANNELS, T.WEAK_AUTHENTICATION_ENDPOINTS, T.UPDATE_COMPROMISE, T.UNDETECTED_ACTIVITY, T.SECURITY_FUNCTIONALITY_COMPROMISE, T.PASSWORD_CRACKING, T.SECURITY_FUNCTIONALITY_FAILURE, A.PHYSICAL_PROTECTION, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.TRUSTED_ADMINISTRATOR, A.REGULAR_UPDATES, A.ADMIN_CREDENTIALS_SECURE, A.RESIDUAL_INFORMATION, OE.PHYSICAL, OE.NO_GENERAL_PURPOSE, OE.NO_THRU_TRAFFIC_PROTECTION, OE.TRUSTED_ADMIN, OE.UPDATES, OE.ADMIN_CREDENTIALS_SECURE, OE.RESIDUAL_INFORMATIONSecurity Assurance Requirements (SAR)
ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_SPD.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_GEN.1, FAU_GEN.2, FAU_STG_EXT.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FAU_STG_EXT.1.1, FAU_STG_EXT.1.2, FAU_STG_EXT.1.3, FCS_CKM.1, FCS_CKM.2, FCS_CKM.4, FCS_COP, FCS_DRBG_EXT.1, FCS_TLSC_EXT.2, FCS_TLSS_EXT.2, FCS_SSHS_EXT.1, FCS_SSHS_EXT.1.5, FCS_SSHC_EXT.1.5, FCS_SSHC_EXT.1, FCS_TLSC_EXT.1.1, FCS_SSHS_EXT.1.2, FCS_DTLS, FCS_TLSC_EXT, FCS_SSHS_EXT.1.4, FCS_RBG_EXT.1, FCS_CKM.1.1, FCS_CKM.2.1, FCS_CKM.4.1, FCS_COP.1, FCS_RBG_EXT.1.1, FCS_RBG_EXT.1.2, FCS_SSHS_EXT.1.1, FCS_SSHS_EXT.1.3, FCS_SSHS_EXT.1.6, FCS_SSHS_EXT.1.7, FCS_SSHS_EXT.1.8, FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.2.2, FCS_TLSC_EXT.2.3, FCS_TLSC_EXT.2.4, FCS_TLSC_EXT.2.5, FCS_TLSS_EXT.2.1, FCS_TLSS_EXT.2.2, FCS_TLSS_EXT.2.3, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5, FCS_TLSS_EXT.2.6, FIA_AFL.1, FIA_PMG_EXT.1, FIA_UIA_EXT.1, FIA_UAU_EXT.2, FIA_UAU.7, FIA_AFL.1.1, FIA_AFL.1.2, FIA_PMG_EXT.1.1, FIA_UIA_EXT.1.1, FIA_UIA_EXT.1.2, FIA_UAU_EXT.2.1, FIA_UAU.7.1, FMT_MOF, FMT_MTD, FMT_SMF.1, FMT_SMR.2, FMT_MOF.1, FMT_MTD.1.1, FMT_SMF.1.1, FMT_SMR.2.1, FMT_SMR.2.2, FMT_SMR.2.3, FMT_SMR.1, FPT_SKP_EXT.1, FPT_APW_EXT.1, FPT_STM.1, FPT_STM_EXT.1, FPT_TUD_EXT.1, FPT_TST_EXT.1, FPT_SKP_EXT.1.1, FPT_APW_EXT.1.1, FPT_APW_EXT.1.2, FPT_STM_EXT.1.1, FPT_STM_EXT.1.2, FPT_TUD_EXT.1.1, FPT_TUD_EXT.1.2, FPT_TUD_EXT.1.3, FPT_TST_EXT.1.1, FTA_TAB.1, FTA_SSL_EXT.1, FTA_SSL.3, FTA_SSL.4, FTA_SSL_EXT.1.1, FTA_SSL.3.1, FTA_SSL.4.1, FTA_TAB.1.1, FTP_ITC.1, FTP_TRP, FTP_ITC.1.1, FTP_ITC.1.2, FTP_ITC.1.3, FTP_TRP.1Evaluation facilities
Acumen SecurityCertification process
out of scope, optional) • The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested, part of the evaluated configuration: • NTP server (optional) • The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested) • gRPC is disabled 1.8 TOEStandards
FIPS PUB 186-4, PKCS #1, PKCS#12, RFC 8017, RFC 3526, RFC2818, RFC 5246, RFC 5288, RFC 5289, RFC 6187, RFC 2818, RFC 4253, RFC 6125, RFC 5280, RFC 6960, RFC 2986, RFC6125, ISO/IEC 9796-2, ISO/IEC 14888-3, ISO/IEC 10118-, ISO/IEC 18031:2011, X.509File metadata
Author | ppatin |
---|---|
Creation date | D:20190620132009-04'00' |
Modification date | D:20190620132009-04'00' |
Pages | 48 |
Creator | Microsoft® Word for Office 365 |
Producer | Microsoft® Word for Office 365 |
Heuristics ?
Extracted SARs
AGD_OPE.1, ASE_REQ.1, ASE_ECD.1, ATE_IND.1, ASE_SPD.1, AVA_VAN.1, ASE_INT.1, ASE_TSS.1, ALC_CMS.1, AGD_PRE.1, ADV_FSP.1, ASE_CCL.1, ALC_CMC.1, ASE_OBJ.1References ?
No references are available for this certificate.
Updates ?
-
22.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '1f42368fc96968e60e41b34db6003deadd96fb3c7fdc3402fd44c044a45e05b6', 'txt_hash': 'c70ab7220181dcf01740912482fa17da518de77feade596864c6a82b081d449c'}
data. - The st property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '4a066a7f29d216a94bcaa0755fbd88c8f976a42a85f458bb069de59bf1eda60a', 'txt_hash': '667ee3612fd9876cdbb1e3b789888d7b33ccc4a2a184531a09bf92a90a46d561'}
data. - The cert property was updated, with the
{'download_ok': True, 'convert_garbage': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '670eed2f0a1d836e8d65ab1bd5b30d88731a002a8acfd646ce76a8247bebda31', 'txt_hash': '379c5ddfe5e5e2435c793e14bfc6118a7d18aa47598f8ece4f398cdf2dd5e98f'}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 695875, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 27, '/CreationDate': "D:20190628114507-04'00'", '/ModDate': "D:20190628114507-04'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://nvd.nist.gov/']}}
. - The st_metadata property was set to
{'pdf_file_size_bytes': 893721, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 48, '/Author': 'ppatin', '/Creator': 'Microsoft® Word for Office 365', '/CreationDate': "D:20190620132009-04'00'", '/ModDate': "D:20190620132009-04'00'", '/Producer': 'Microsoft® Word for Office 365', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.ciena.com/', 'https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10554', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=262', 'http://www.acumensecurity.net/', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=295', 'https://www.ciena.com/', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=327', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=265', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=296', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=287', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=297', 'https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=263']}}
. - The cert_metadata property was set to
{'pdf_file_size_bytes': 179856, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/ModDate': "D:20190628123807-04'00'", '/CreationDate': "D:20190628123807-04'00'", '/Producer': 'iText 2.1.0 (by lowagie.com)', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}
. - The report_frontpage property was set to
{'US': {'cert_id': 'CCEVS-VR-VID10967-2019', 'cert_item': 'for the Ciena Waveserver Ai Rel 1.3', 'cert_lab': 'US NIAP'}}
. - The report_keywords property was set to
{'cc_cert_id': {'US': {'CCEVS-VR-VID10967-2019': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {}, 'cc_sar': {}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 1}, 'FCS': {'FCS_CKM.1': 1, 'FCS_CKM.2': 1, 'FCS_CKM.4': 1, 'FCS_COP': 4, 'FCS_DRBG_EXT.1': 1, 'FCS_TLSC_EXT.2': 1, 'FCS_TLSS_EXT.2': 1, 'FCS_SSHS_EXT.1': 1}}, 'cc_claims': {'T': {'T.UNAUTHORIZED_ADMINISTRATOR_ACCESS': 1, 'T.WEAK_CRYPTOGRAPHY': 1, 'T.UNTRUSTED_COMMUNICATION_CHANNELS': 1, 'T.WEAK_AUTHENTICATION_ENDPOINTS': 1, 'T.UPDATE_COMPROMISE': 1, 'T.UNDETECTED_ACTIVITY': 1, 'T.SECURITY_FUNCTIONALITY_COMPROMISE': 1, 'T.PASSWORD_CRACKING': 1, 'T.SECURITY_FUNCTIONALITY_FAILURE': 1}, 'A': {'A.PHYSICAL_PROTECTION': 2, 'A.LIMITED_FUNCTIONALITY': 2, 'A.NO_THRU_TRAFFIC_PROTECTION': 2, 'A.TRUSTED_ADMINISTRATOR': 2, 'A.REGULAR_UPDATES': 2, 'A.ADMIN_CREDENTIALS_SECURE': 2, 'A.RESIDUAL_INFORMATION': 2}, 'OE': {'OE.PHYSICAL': 1, 'OE.NO_GENERAL_PURPOSE': 1, 'OE.NO_THRU_TRAFFIC_PROTECTION': 1, 'OE.TRUSTED_ADMIN': 1, 'OE.UPDATES': 1, 'OE.ADMIN_CREDENTIALS_SECURE': 1}}, 'vendor': {}, 'eval_facility': {'Acumen': {'Acumen Security': 4}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 5}}, 'constructions': {'MAC': {'HMAC': 1, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 1}}, 'FF': {'DH': {'Diffie-Hellman': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-256': 1, 'SHA-384': 1, 'SHA-512': 1}}}, 'crypto_scheme': {'MAC': {'MAC': 1}, 'KEX': {'Key exchange': 1}}, 'crypto_protocol': {'SSH': {'SSH': 11}, 'TLS': {'TLS': {'TLS': 5, 'TLS v1.2': 7}}}, 'randomness': {'PRNG': {'DRBG': 1}}, 'cipher_mode': {'CBC': {'CBC': 2}, 'CTR': {'CTR': 2}, 'GCM': {'GCM': 2}}, 'ecc_curve': {'NIST': {'P-256': 2, 'P-384': 2, 'P-521': 2}}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_RSA_WITH_AES_256_CBC_SHA256': 2, 'TLS_RSA_WITH_AES_256_GCM_SHA384': 2, 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384': 2, 'TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384': 2, 'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384': 2}}, 'crypto_library': {'Generic': {'Crypto Library 2': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 186-4': 2}, 'PKCS': {'PKCS #1': 1}, 'RFC': {'RFC 8017': 1, 'RFC 3526': 1, 'RFC2818': 1, 'RFC 5246': 2, 'RFC 5289': 8}, 'ISO': {'ISO/IEC 9796-2': 1, 'ISO/IEC 14888-3': 1, 'ISO/IEC 18031:2011': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 1, 'optional) The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested': 1, 'part of the evaluated configuration: NTP server (optional) The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested) gRPC is disabled 20 8 IT Product': 1}}}
. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {}, 'cc_sar': {'ADV': {'ADV_FSP.1': 2}, 'AGD': {'AGD_OPE.1': 2, 'AGD_PRE.1': 2}, 'ALC': {'ALC_CMC.1': 2, 'ALC_CMS.1': 2}, 'ATE': {'ATE_IND.1': 2}, 'AVA': {'AVA_VAN.1': 2}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.1': 1, 'ASE_REQ.1': 1, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 5, 'FAU_GEN.2': 3, 'FAU_STG_EXT.1': 3, 'FAU_GEN.1.1': 2, 'FAU_GEN.1.2': 1, 'FAU_GEN.2.1': 1, 'FAU_STG_EXT.1.1': 1, 'FAU_STG_EXT.1.2': 1, 'FAU_STG_EXT.1.3': 1}, 'FCS': {'FCS_CKM.1': 5, 'FCS_CKM.2': 6, 'FCS_CKM.4': 5, 'FCS_COP': 16, 'FCS_DRBG_EXT.1': 1, 'FCS_TLSC_EXT.2': 4, 'FCS_TLSS_EXT.2': 4, 'FCS_SSHS_EXT.1': 3, 'FCS_SSHS_EXT.1.5': 6, 'FCS_SSHC_EXT.1.5': 1, 'FCS_SSHC_EXT.1': 2, 'FCS_TLSC_EXT.1.1': 1, 'FCS_SSHS_EXT.1.2': 3, 'FCS_DTLS': 1, 'FCS_TLSC_EXT': 1, 'FCS_SSHS_EXT.1.4': 5, 'FCS_RBG_EXT.1': 3, 'FCS_CKM.1.1': 1, 'FCS_CKM.2.1': 1, 'FCS_CKM.4.1': 1, 'FCS_COP.1': 4, 'FCS_RBG_EXT.1.1': 1, 'FCS_RBG_EXT.1.2': 1, 'FCS_SSHS_EXT.1.1': 2, 'FCS_SSHS_EXT.1.3': 2, 'FCS_SSHS_EXT.1.6': 3, 'FCS_SSHS_EXT.1.7': 3, 'FCS_SSHS_EXT.1.8': 2, 'FCS_TLSC_EXT.2.1': 2, 'FCS_TLSC_EXT.2.2': 1, 'FCS_TLSC_EXT.2.3': 1, 'FCS_TLSC_EXT.2.4': 2, 'FCS_TLSC_EXT.2.5': 2, 'FCS_TLSS_EXT.2.1': 2, 'FCS_TLSS_EXT.2.2': 1, 'FCS_TLSS_EXT.2.3': 2, 'FCS_TLSS_EXT.2.4': 2, 'FCS_TLSS_EXT.2.5': 2, 'FCS_TLSS_EXT.2.6': 2}, 'FIA': {'FIA_AFL.1': 5, 'FIA_PMG_EXT.1': 3, 'FIA_UIA_EXT.1': 3, 'FIA_UAU_EXT.2': 3, 'FIA_UAU.7': 3, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 1, 'FIA_PMG_EXT.1.1': 1, 'FIA_UIA_EXT.1.1': 1, 'FIA_UIA_EXT.1.2': 1, 'FIA_UAU_EXT.2.1': 1, 'FIA_UAU.7.1': 1}, 'FMT': {'FMT_MOF': 2, 'FMT_MTD': 3, 'FMT_SMF.1': 3, 'FMT_SMR.2': 2, 'FMT_MOF.1': 2, 'FMT_MTD.1.1': 1, 'FMT_SMF.1.1': 1, 'FMT_SMR.2.1': 1, 'FMT_SMR.2.2': 1, 'FMT_SMR.2.3': 1, 'FMT_SMR.1': 1}, 'FPT': {'FPT_SKP_EXT.1': 3, 'FPT_APW_EXT.1': 3, 'FPT_STM.1': 2, 'FPT_STM_EXT.1': 2, 'FPT_TUD_EXT.1': 3, 'FPT_TST_EXT.1': 3, 'FPT_SKP_EXT.1.1': 1, 'FPT_APW_EXT.1.1': 1, 'FPT_APW_EXT.1.2': 1, 'FPT_STM_EXT.1.1': 1, 'FPT_STM_EXT.1.2': 1, 'FPT_TUD_EXT.1.1': 1, 'FPT_TUD_EXT.1.2': 1, 'FPT_TUD_EXT.1.3': 1, 'FPT_TST_EXT.1.1': 1}, 'FTA': {'FTA_TAB.1': 5, 'FTA_SSL_EXT.1': 3, 'FTA_SSL.3': 3, 'FTA_SSL.4': 3, 'FTA_SSL_EXT.1.1': 1, 'FTA_SSL.3.1': 1, 'FTA_SSL.4.1': 1, 'FTA_TAB.1.1': 1}, 'FTP': {'FTP_ITC.1': 4, 'FTP_TRP': 2, 'FTP_ITC.1.1': 1, 'FTP_ITC.1.2': 1, 'FTP_ITC.1.3': 1, 'FTP_TRP.1': 4}}, 'cc_claims': {'T': {'T.UNAUTHORIZED_ADMINISTRATOR_ACCESS': 1, 'T.WEAK_CRYPTOGRAPHY': 1, 'T.UNTRUSTED_COMMUNICATION_CHANNELS': 1, 'T.WEAK_AUTHENTICATION_ENDPOINTS': 1, 'T.UPDATE_COMPROMISE': 1, 'T.UNDETECTED_ACTIVITY': 1, 'T.SECURITY_FUNCTIONALITY_COMPROMISE': 1, 'T.PASSWORD_CRACKING': 1, 'T.SECURITY_FUNCTIONALITY_FAILURE': 1}, 'A': {'A.PHYSICAL_PROTECTION': 2, 'A.LIMITED_FUNCTIONALITY': 2, 'A.NO_THRU_TRAFFIC_PROTECTION': 2, 'A.TRUSTED_ADMINISTRATOR': 2, 'A.REGULAR_UPDATES': 2, 'A.ADMIN_CREDENTIALS_SECURE': 2, 'A.RESIDUAL_INFORMATION': 2}, 'OE': {'OE.PHYSICAL': 3, 'OE.NO_GENERAL_PURPOSE': 3, 'OE.NO_THRU_TRAFFIC_PROTECTION': 3, 'OE.TRUSTED_ADMIN': 3, 'OE.UPDATES': 3, 'OE.ADMIN_CREDENTIALS_SECURE': 3, 'OE.RESIDUAL_INFORMATION': 2}}, 'vendor': {}, 'eval_facility': {'Acumen': {'Acumen Security': 2}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 21}}, 'constructions': {'MAC': {'HMAC': 7, 'HMAC-SHA-384': 2, 'HMAC-SHA-512': 2, 'HMAC-SHA-256': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 2, 'ECDHE': 1}, 'ECDSA': {'ECDSA': 12}, 'ECC': {'ECC': 5}}, 'FF': {'DH': {'Diffie-Hellman': 10, 'DH': 1, 'DHE': 1}, 'DSA': {'DSA': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-256': 4, 'SHA-512': 6, 'SHA256': 4, 'SHA-384': 2, 'SHA384': 2, 'SHA512': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 5}, 'KEX': {'Key exchange': 1}}, 'crypto_protocol': {'SSH': {'SSH': 45}, 'TLS': {'SSL': {'SSL': 3, 'SSL 2.0': 2, 'SSL 3.0': 2}, 'TLS': {'TLS v1.2': 12, 'TLS': 58, 'TLS1.1': 1, 'TLS1.2': 1, 'TLS 1.2': 2, 'TLS 1.0': 2, 'TLS 1.1': 2}, 'DTLS': {'DTLS': 3}}}, 'randomness': {'TRNG': {'TRNG': 2}, 'PRNG': {'DRBG': 4}, 'RNG': {'RNG': 5, 'RBG': 1}}, 'cipher_mode': {'CBC': {'CBC': 7}, 'CTR': {'CTR': 6}, 'GCM': {'GCM': 7}}, 'ecc_curve': {'NIST': {'P-256': 10, 'P-384': 10, 'P-521': 10, 'secp256r1': 4, 'secp384r1': 4, 'secp521r1': 4}}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_DHE_RSA_WITH_AES_256_CBC_SHA256': 1, 'TLS_RSA_WITH_AES_256_CBC_SHA256': 4, 'TLS_RSA_WITH_AES_256_GCM_SHA384': 6, 'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384': 6, 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384': 6, 'TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384': 6, 'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384': 6}}, 'crypto_library': {'Generic': {'Crypto Library 2': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 186-4': 13}, 'PKCS': {'PKCS #1': 3, 'PKCS#12': 1}, 'RFC': {'RFC 8017': 4, 'RFC 3526': 5, 'RFC2818': 1, 'RFC 5246': 9, 'RFC 5288': 6, 'RFC 5289': 24, 'RFC 6187': 1, 'RFC 2818': 4, 'RFC 4253': 2, 'RFC 6125': 2, 'RFC 5280': 8, 'RFC 6960': 4, 'RFC 2986': 2, 'RFC6125': 1}, 'ISO': {'ISO/IEC 9796-2': 3, 'ISO/IEC 14888-3': 3, 'ISO/IEC 10118-': 1, 'ISO/IEC 18031:2011': 4}, 'X509': {'X.509': 17}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 1, 'optional) • The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested': 1, 'part of the evaluated configuration: • NTP server (optional) • The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested) • gRPC is disabled 1.8 TOE': 1}}}
. - The cert_keywords property was set to
{'cc_cert_id': {'US': {'CCEVS-VR-VID10967-2019': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {}, 'cc_sar': {}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'Acumen': {'Acumen Security': 1}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The report_filename property was set to
st_vid10967-vr.pdf
. - The st_filename property was set to
st_vid10967-st.pdf
. - The cert_filename property was set to
st_vid10967-ci.pdf
.
The computed heuristics were updated.
- The cert_lab property was set to
['US']
. - The cert_id property was set to
CCEVS-VR-VID-10967-2019
. - The extracted_sars property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 1}]}
.
- The report property was updated, with the
-
17.08.2024 The certificate data changed.
Certificate changed
The report_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10967-vr.pdf
.
The st_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10967-st.pdf
.
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data. - The cert property was updated, with the
{'download_ok': False, 'convert_garbage': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
None
. - The cert_metadata property was set to
None
. - The report_frontpage property was set to
None
. - The report_keywords property was set to
None
. - The cert_keywords property was set to
None
. - The report_filename property was set to
None
. - The cert_filename property was set to
None
.
The computed heuristics were updated.
- The cert_lab property was set to
None
. - The cert_id property was set to
None
.
- The new value is
-
12.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data.
The PDF extraction data was updated.
- The st_metadata property was set to
None
. - The st_keywords property was set to
None
. - The st_filename property was set to
None
.
The computed heuristics were updated.
- The extracted_sars property was set to
None
.
- The st property was updated, with the
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name Ciena Waveserver Ai Rel 1.3 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Network and Network-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10967-ci.pdf",
"dgst": "811cf8b1c8951221",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "CCEVS-VR-VID-10967-2019",
"cert_lab": [
"US"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"1.3"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Ciena, Inc.",
"manufacturer_web": "https://www.ciena.com/",
"name": "Ciena Waveserver Ai Rel 1.3",
"not_valid_after": "2021-06-26",
"not_valid_before": "2019-06-26",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "st_vid10967-ci.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"US": {
"CCEVS-VR-VID10967-2019": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {},
"cc_security_level": {},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"Acumen": {
"Acumen Security": 1
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/CreationDate": "D:20190628123807-04\u002700\u0027",
"/ModDate": "D:20190628123807-04\u002700\u0027",
"/Producer": "iText 2.1.0 (by lowagie.com)",
"pdf_file_size_bytes": 179856,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "st_vid10967-vr.pdf",
"report_frontpage": {
"US": {
"cert_id": "CCEVS-VR-VID10967-2019",
"cert_item": "for the Ciena Waveserver Ai Rel 1.3",
"cert_lab": "US NIAP"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 1
}
},
"FF": {
"DH": {
"Diffie-Hellman": 1
}
}
},
"cc_cert_id": {
"US": {
"CCEVS-VR-VID10967-2019": 1
}
},
"cc_claims": {
"A": {
"A.ADMIN_CREDENTIALS_SECURE": 2,
"A.LIMITED_FUNCTIONALITY": 2,
"A.NO_THRU_TRAFFIC_PROTECTION": 2,
"A.PHYSICAL_PROTECTION": 2,
"A.REGULAR_UPDATES": 2,
"A.RESIDUAL_INFORMATION": 2,
"A.TRUSTED_ADMINISTRATOR": 2
},
"OE": {
"OE.ADMIN_CREDENTIALS_SECURE": 1,
"OE.NO_GENERAL_PURPOSE": 1,
"OE.NO_THRU_TRAFFIC_PROTECTION": 1,
"OE.PHYSICAL": 1,
"OE.TRUSTED_ADMIN": 1,
"OE.UPDATES": 1
},
"T": {
"T.PASSWORD_CRACKING": 1,
"T.SECURITY_FUNCTIONALITY_COMPROMISE": 1,
"T.SECURITY_FUNCTIONALITY_FAILURE": 1,
"T.UNAUTHORIZED_ADMINISTRATOR_ACCESS": 1,
"T.UNDETECTED_ACTIVITY": 1,
"T.UNTRUSTED_COMMUNICATION_CHANNELS": 1,
"T.UPDATE_COMPROMISE": 1,
"T.WEAK_AUTHENTICATION_ENDPOINTS": 1,
"T.WEAK_CRYPTOGRAPHY": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {},
"cc_security_level": {},
"cc_sfr": {
"FAU": {
"FAU_GEN.1": 1
},
"FCS": {
"FCS_CKM.1": 1,
"FCS_CKM.2": 1,
"FCS_CKM.4": 1,
"FCS_COP": 4,
"FCS_DRBG_EXT.1": 1,
"FCS_SSHS_EXT.1": 1,
"FCS_TLSC_EXT.2": 1,
"FCS_TLSS_EXT.2": 1
}
},
"certification_process": {
"OutOfScope": {
"optional) The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested": 1,
"out of scope": 1,
"part of the evaluated configuration: NTP server (optional) The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested) gRPC is disabled 20 8 IT Product": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 2
},
"CTR": {
"CTR": 2
},
"GCM": {
"GCM": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"Generic": {
"Crypto Library 2": 1
}
},
"crypto_protocol": {
"SSH": {
"SSH": 11
},
"TLS": {
"TLS": {
"TLS": 5,
"TLS v1.2": 7
}
}
},
"crypto_scheme": {
"KEX": {
"Key exchange": 1
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 2,
"P-384": 2,
"P-521": 2
}
},
"eval_facility": {
"Acumen": {
"Acumen Security": 4
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 1,
"SHA-384": 1,
"SHA-512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS PUB 186-4": 2
},
"ISO": {
"ISO/IEC 14888-3": 1,
"ISO/IEC 18031:2011": 1,
"ISO/IEC 9796-2": 1
},
"PKCS": {
"PKCS #1": 1
},
"RFC": {
"RFC 3526": 1,
"RFC 5246": 2,
"RFC 5289": 8,
"RFC 8017": 1,
"RFC2818": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 5
}
},
"constructions": {
"MAC": {
"HMAC": 1,
"HMAC-SHA-256": 1,
"HMAC-SHA-384": 1,
"HMAC-SHA-512": 1
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384": 2,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 2,
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 2,
"TLS_RSA_WITH_AES_256_CBC_SHA256": 2,
"TLS_RSA_WITH_AES_256_GCM_SHA384": 2
}
},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/CreationDate": "D:20190628114507-04\u002700\u0027",
"/ModDate": "D:20190628114507-04\u002700\u0027",
"pdf_file_size_bytes": 695875,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://nvd.nist.gov/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 27
},
"st_filename": "st_vid10967-st.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 5
},
"ECDH": {
"ECDH": 2,
"ECDHE": 1
},
"ECDSA": {
"ECDSA": 12
}
},
"FF": {
"DH": {
"DH": 1,
"DHE": 1,
"Diffie-Hellman": 10
},
"DSA": {
"DSA": 1
}
}
},
"cc_cert_id": {},
"cc_claims": {
"A": {
"A.ADMIN_CREDENTIALS_SECURE": 2,
"A.LIMITED_FUNCTIONALITY": 2,
"A.NO_THRU_TRAFFIC_PROTECTION": 2,
"A.PHYSICAL_PROTECTION": 2,
"A.REGULAR_UPDATES": 2,
"A.RESIDUAL_INFORMATION": 2,
"A.TRUSTED_ADMINISTRATOR": 2
},
"OE": {
"OE.ADMIN_CREDENTIALS_SECURE": 3,
"OE.NO_GENERAL_PURPOSE": 3,
"OE.NO_THRU_TRAFFIC_PROTECTION": 3,
"OE.PHYSICAL": 3,
"OE.RESIDUAL_INFORMATION": 2,
"OE.TRUSTED_ADMIN": 3,
"OE.UPDATES": 3
},
"T": {
"T.PASSWORD_CRACKING": 1,
"T.SECURITY_FUNCTIONALITY_COMPROMISE": 1,
"T.SECURITY_FUNCTIONALITY_FAILURE": 1,
"T.UNAUTHORIZED_ADMINISTRATOR_ACCESS": 1,
"T.UNDETECTED_ACTIVITY": 1,
"T.UNTRUSTED_COMMUNICATION_CHANNELS": 1,
"T.UPDATE_COMPROMISE": 1,
"T.WEAK_AUTHENTICATION_ENDPOINTS": 1,
"T.WEAK_CRYPTOGRAPHY": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_FSP.1": 2
},
"AGD": {
"AGD_OPE.1": 2,
"AGD_PRE.1": 2
},
"ALC": {
"ALC_CMC.1": 2,
"ALC_CMS.1": 2
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.1": 1,
"ASE_REQ.1": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_IND.1": 2
},
"AVA": {
"AVA_VAN.1": 2
}
},
"cc_security_level": {},
"cc_sfr": {
"FAU": {
"FAU_GEN.1": 5,
"FAU_GEN.1.1": 2,
"FAU_GEN.1.2": 1,
"FAU_GEN.2": 3,
"FAU_GEN.2.1": 1,
"FAU_STG_EXT.1": 3,
"FAU_STG_EXT.1.1": 1,
"FAU_STG_EXT.1.2": 1,
"FAU_STG_EXT.1.3": 1
},
"FCS": {
"FCS_CKM.1": 5,
"FCS_CKM.1.1": 1,
"FCS_CKM.2": 6,
"FCS_CKM.2.1": 1,
"FCS_CKM.4": 5,
"FCS_CKM.4.1": 1,
"FCS_COP": 16,
"FCS_COP.1": 4,
"FCS_DRBG_EXT.1": 1,
"FCS_DTLS": 1,
"FCS_RBG_EXT.1": 3,
"FCS_RBG_EXT.1.1": 1,
"FCS_RBG_EXT.1.2": 1,
"FCS_SSHC_EXT.1": 2,
"FCS_SSHC_EXT.1.5": 1,
"FCS_SSHS_EXT.1": 3,
"FCS_SSHS_EXT.1.1": 2,
"FCS_SSHS_EXT.1.2": 3,
"FCS_SSHS_EXT.1.3": 2,
"FCS_SSHS_EXT.1.4": 5,
"FCS_SSHS_EXT.1.5": 6,
"FCS_SSHS_EXT.1.6": 3,
"FCS_SSHS_EXT.1.7": 3,
"FCS_SSHS_EXT.1.8": 2,
"FCS_TLSC_EXT": 1,
"FCS_TLSC_EXT.1.1": 1,
"FCS_TLSC_EXT.2": 4,
"FCS_TLSC_EXT.2.1": 2,
"FCS_TLSC_EXT.2.2": 1,
"FCS_TLSC_EXT.2.3": 1,
"FCS_TLSC_EXT.2.4": 2,
"FCS_TLSC_EXT.2.5": 2,
"FCS_TLSS_EXT.2": 4,
"FCS_TLSS_EXT.2.1": 2,
"FCS_TLSS_EXT.2.2": 1,
"FCS_TLSS_EXT.2.3": 2,
"FCS_TLSS_EXT.2.4": 2,
"FCS_TLSS_EXT.2.5": 2,
"FCS_TLSS_EXT.2.6": 2
},
"FIA": {
"FIA_AFL.1": 5,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 1,
"FIA_PMG_EXT.1": 3,
"FIA_PMG_EXT.1.1": 1,
"FIA_UAU.7": 3,
"FIA_UAU.7.1": 1,
"FIA_UAU_EXT.2": 3,
"FIA_UAU_EXT.2.1": 1,
"FIA_UIA_EXT.1": 3,
"FIA_UIA_EXT.1.1": 1,
"FIA_UIA_EXT.1.2": 1
},
"FMT": {
"FMT_MOF": 2,
"FMT_MOF.1": 2,
"FMT_MTD": 3,
"FMT_MTD.1.1": 1,
"FMT_SMF.1": 3,
"FMT_SMF.1.1": 1,
"FMT_SMR.1": 1,
"FMT_SMR.2": 2,
"FMT_SMR.2.1": 1,
"FMT_SMR.2.2": 1,
"FMT_SMR.2.3": 1
},
"FPT": {
"FPT_APW_EXT.1": 3,
"FPT_APW_EXT.1.1": 1,
"FPT_APW_EXT.1.2": 1,
"FPT_SKP_EXT.1": 3,
"FPT_SKP_EXT.1.1": 1,
"FPT_STM.1": 2,
"FPT_STM_EXT.1": 2,
"FPT_STM_EXT.1.1": 1,
"FPT_STM_EXT.1.2": 1,
"FPT_TST_EXT.1": 3,
"FPT_TST_EXT.1.1": 1,
"FPT_TUD_EXT.1": 3,
"FPT_TUD_EXT.1.1": 1,
"FPT_TUD_EXT.1.2": 1,
"FPT_TUD_EXT.1.3": 1
},
"FTA": {
"FTA_SSL.3": 3,
"FTA_SSL.3.1": 1,
"FTA_SSL.4": 3,
"FTA_SSL.4.1": 1,
"FTA_SSL_EXT.1": 3,
"FTA_SSL_EXT.1.1": 1,
"FTA_TAB.1": 5,
"FTA_TAB.1.1": 1
},
"FTP": {
"FTP_ITC.1": 4,
"FTP_ITC.1.1": 1,
"FTP_ITC.1.2": 1,
"FTP_ITC.1.3": 1,
"FTP_TRP": 2,
"FTP_TRP.1": 4
}
},
"certification_process": {
"OutOfScope": {
"optional) \u2022 The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested": 1,
"out of scope": 1,
"part of the evaluated configuration: \u2022 NTP server (optional) \u2022 The Web UI management interface is out of scope (All HTTPS and TLSS requirements were evaluated and tested) \u2022 gRPC is disabled 1.8 TOE": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 7
},
"CTR": {
"CTR": 6
},
"GCM": {
"GCM": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"Generic": {
"Crypto Library 2": 1
}
},
"crypto_protocol": {
"SSH": {
"SSH": 45
},
"TLS": {
"DTLS": {
"DTLS": 3
},
"SSL": {
"SSL": 3,
"SSL 2.0": 2,
"SSL 3.0": 2
},
"TLS": {
"TLS": 58,
"TLS 1.0": 2,
"TLS 1.1": 2,
"TLS 1.2": 2,
"TLS v1.2": 12,
"TLS1.1": 1,
"TLS1.2": 1
}
}
},
"crypto_scheme": {
"KEX": {
"Key exchange": 1
},
"MAC": {
"MAC": 5
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 10,
"P-384": 10,
"P-521": 10,
"secp256r1": 4,
"secp384r1": 4,
"secp521r1": 4
}
},
"eval_facility": {
"Acumen": {
"Acumen Security": 2
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 4,
"SHA-384": 2,
"SHA-512": 6,
"SHA256": 4,
"SHA384": 2,
"SHA512": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 4
},
"RNG": {
"RBG": 1,
"RNG": 5
},
"TRNG": {
"TRNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS PUB 186-4": 13
},
"ISO": {
"ISO/IEC 10118-": 1,
"ISO/IEC 14888-3": 3,
"ISO/IEC 18031:2011": 4,
"ISO/IEC 9796-2": 3
},
"PKCS": {
"PKCS #1": 3,
"PKCS#12": 1
},
"RFC": {
"RFC 2818": 4,
"RFC 2986": 2,
"RFC 3526": 5,
"RFC 4253": 2,
"RFC 5246": 9,
"RFC 5280": 8,
"RFC 5288": 6,
"RFC 5289": 24,
"RFC 6125": 2,
"RFC 6187": 1,
"RFC 6960": 4,
"RFC 8017": 4,
"RFC2818": 1,
"RFC6125": 1
},
"X509": {
"X.509": 17
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 21
}
},
"constructions": {
"MAC": {
"HMAC": 7,
"HMAC-SHA-256": 1,
"HMAC-SHA-384": 2,
"HMAC-SHA-512": 2
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_DHE_RSA_WITH_AES_256_CBC_SHA256": 1,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384": 6,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 6,
"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384": 6,
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 6,
"TLS_RSA_WITH_AES_256_CBC_SHA256": 4,
"TLS_RSA_WITH_AES_256_GCM_SHA384": 6
}
},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"/Author": "ppatin",
"/CreationDate": "D:20190620132009-04\u002700\u0027",
"/Creator": "Microsoft\u00ae Word for Office 365",
"/ModDate": "D:20190620132009-04\u002700\u0027",
"/Producer": "Microsoft\u00ae Word for Office 365",
"pdf_file_size_bytes": 893721,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.ciena.com/",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=297",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=296",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=327",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=263",
"http://www.acumensecurity.net/",
"http://www.ciena.com/",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=287",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=265",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=295",
"https://niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=262",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10554"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 48
}
},
"protection_profiles": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"pp_eal": null,
"pp_ids": null,
"pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.0E.pdf",
"pp_name": "collaborative Protection Profile for Network Devices v2.0 + Errata 20180314"
}
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10967-vr.pdf",
"scheme": "US",
"security_level": {
"_type": "Set",
"elements": []
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10967-st.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": true,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "670eed2f0a1d836e8d65ab1bd5b30d88731a002a8acfd646ce76a8247bebda31",
"txt_hash": "379c5ddfe5e5e2435c793e14bfc6118a7d18aa47598f8ece4f398cdf2dd5e98f"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "1f42368fc96968e60e41b34db6003deadd96fb3c7fdc3402fd44c044a45e05b6",
"txt_hash": "c70ab7220181dcf01740912482fa17da518de77feade596864c6a82b081d449c"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "4a066a7f29d216a94bcaa0755fbd88c8f976a42a85f458bb069de59bf1eda60a",
"txt_hash": "667ee3612fd9876cdbb1e3b789888d7b33ccc4a2a184531a09bf92a90a46d561"
}
},
"status": "archived"
}