Indian Common Criteria Corifation Scheme (IC3S) Government of India Ministry of Electronics & Information Technology, STQC Directorate 6 CGO Complex, New Delhi 110003 Certificate Number: IC3S/KOLO1/ADVA/EAL2/0520/0022 Product Name: Scalable Optical Transport Solution FSP 3000R7 Operating System (CC), Version R7 Rel.19.3.1 (OLO1// Version: 1.0, Dated: 08-02-2021 The product identified in the certificate has been evaluated under the terms and conditions of the Indian Common Criteria Certification Scheme (IC3S), at Common Criteria Test Laboratory, ERTL (East), Kolkata, India the accredited testing laboratory using the Common Methodology for IT Security Evaluation (Version 3.1 Revision 5) for conformance to the Common Criteria for IT Security Evaluation (Version 3.1 Revision 5). This certificate applies only to specific version and release of the product in its evaluated configuration (Refer Annexure and Certification Report). The product’s functional and assurance security specifications are contained in the Security Target, and the conclusions of the Common Criteria Testing Laboratory in the evaluation technical report are consistent with the evidence produced. This certificate is not an endorsement of the product by any agency of the Government of India and no warranty of the product is either expressed or implied. Date of Issue: 04.03.2021 Head IC3S Certification Body Certificate Expiry: 03.03.2026 . § + ra aa Annexure to Common Criteria Certificate Number: IC3S/KOLO1/ADVA/EAL2/0520/0022 Indian Common Criteria Certification Scheme (IC3S) Government of India, Ministry of Electronics & Information Technology STQC Directorate, 6 CGO Complex, New Delhi 110003 The product below has been evaluated under the terms of Indian Common Criteria Certification Scheme (IC3S) and has met the stated Common Criteria requirements. The scope of the evaluation and the assumed usage environment are specified in the body of Certification Report No. IC3S/KOLO1/ADVA/EAL2/0520/0022 /CR Version: 1.0, Dated: 08-02-2021, which is available in the website: www.commoncriteria-india.gov.in Sponsor M/s ADVA OPTICAL NETWORKING SE, Fraunhoferstr.9a 82152 Martinsried, Munich, Germany Developer M/s ADVA OPTICAL NETWORKING SE, Fraunhoferstr.9a 82152 Martinsried, Munich, Germany Security Target Reference Identification FSP 3000R7 Operating System Release 19.3.1 Common Criteria Certification Security Target, version 3.0 Product and Version Scalable Optical Transport Solution FSP 3000 Operating System, version R7 Rel. 19.3.1 and its related guidance documentation. TOE in short: FSP 3000R7 Operating System (CC) TOE Version: R7 Rel.19.3.1 Target of Evaluation Scalable Optical Transport Solution FSP 3000 Operating System, version R7 Rel. 19.3.1 and its related guidance documentation. TOE in short: FSP 3000R7 Operating System (CC) TOE Version: R7 Rel.19.3.1 eee Evaluated Configuration Part of the NCU-II card is the operating system of the FSP 3000R7 family. The evaluated NCU-II operating system is R7 Rel 19.3.1 Users Manual (AGD_OPE) In addition, the following guidance documents are part of the TOE: FSP3000R7_R19.3_Hardware_Description_IssA.pdf FSP3000R7_R19.3_High-Density_Subshelf_Guide_IssA.pdf FSP3000R7_R19.3_Installation and Commissioning_Manual_IssA.pdf FSP3000R7_R19.3_Maintenance_and_Troubleshooting_Manual_IssC.pdt FSP3000R7_R19.3_Management_Data_Guide_IssA.pdf FSP3000R7_R19.3_Module_System_Specification_IssB.pdf FSP3000R7_R19.3_Network_Element_Director_IssA.pdf FSP3000R7_R19.3_Network_Element_Director_Quick Start_Guide_IssA.pdf FSP3000R7_R19.3_Provisioning_and_Operations_Manual_IssA.pdf FSP3000R7_R19.3_Safety_Guide_issA.pdf FSP3000R7_R19.3_System_Description_IssA.pdf FSP3000R7_R19.3_TL1_Commands_and_Syntax_Guide_IssA.pdf FSP3000R7_R19.3_TL1_Maintenance_and_Troubleshooting_Manual_IssA.pdf FSP3000R7_R19.3_TL1_Module_Parameters_Guide_IssA.pdf FSP3000R7 R19.3 Secure System Configuration Guide.pdf Environment The TOE consists of the operating system of the NCU-II. The is installed in the Network Control Unit (NCU Il card.). NCU-II is supported per network element. One NCU-I is able to manage a complete network element. The NCU-I installed in the master shelf and requires a shelf control unit (SCU, SCU-S, SCU-II) in each (master + any additional) shelf to communicate with the modules. To ensure that sensitive data is transmitted to and from the TOE the TOE will provide encryption for these communication paths between themselves and the endpoint. These channels are implemented using following standard protocols: HTTPS (TLS), SH, and SNMPv3. The hardware (mainboard, casing, interface modules) is not in the scope of the evaluation unless addressed by any assumption relating the operational environment. Compliance to CC Part 2 Compliant with extended components Compliance to CC Part 3 | Compliant Evaluation Assurance Level (EAL) EAL2 Evaluation Lab Common Criteria Test Laboratory (CCTL), ERTL ( East) , Kolkata, India Date Authorized 04.03.2021 Date of Issue: 04.03.2021 Certificate Expiry: 03.03.2026