| name |
TNOR Guard v. 1.1.3 |
Cyberark Privileged Access Manager – Linux Components including PSMP v14.0.0.14 |
| category |
Boundary Protection Devices and Systems |
Access Control Devices and Systems |
| scheme |
NO |
NL |
| status |
active |
active |
| not_valid_after |
12.05.2027 |
03.07.2029 |
| not_valid_before |
12.05.2022 |
03.07.2024 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/SERTIT-120%20C%20v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2400011-01-Cert.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/SERTIT-120%20CR%20v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2400011-01-CR.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/TNOR%20Guards%20739_20726_aaaa_sc_ed10-4-public.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2400011-01-ST_1.9.pdf |
| manufacturer |
Thales Norway AS |
CyberArk Software, Ltd |
| manufacturer_web |
https://www.thales.no/ |
https://www.cyberark.com/ |
| security_level |
EAL4+, AVA_VAN.4, ALC_FLR.3 |
ASE_SPD.1, ATE_IND.1, ALC_CMS.1, ASE_INT.1, ALC_TSU_EXT.1, ASE_TSS.1, ALC_CMC.1, AGD_OPE.1, AVA_VAN.1, ADV_FSP.1, ASE_CCL.1, AGD_PRE.1, ASE_ECD.1 |
| dgst |
03972af324dcd07f |
ab9360809e691356 |
| heuristics/cert_id |
SERTIT-120 |
NSCIB-CC-2400011-01-CR |
| heuristics/cert_lab |
[] |
|
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_INT.1, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ASE_TSS.1, ASE_SPD.1, ALC_DEL.1, ALC_LCD.1, ALC_FLR.3, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ATE_DPT.1, ASE_REQ.2, ALC_DVS.1, ADV_FSP.4, ATE_IND.2, AVA_VAN.4, ASE_CCL.1 |
ASE_TSS.1, ADV_FSP.1, ALC_CMC.1, ASE_INT.1, ASE_SPD.1, ASE_OBJ.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ASE_REQ.1, ASE_CCL.1, ASE_ECD.1, ALC_TSU_EXT.1, AGD_PRE.1 |
| heuristics/extracted_versions |
1.1.3 |
14.0.0.14 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- category: Boundary Protection Devices and Systems
- certification_date: 12.05.2022
- developer: Thales Norway AS
- enhanced:
- category: Boundary Protection Devices and Systems
- cert_id: SERTIT-120
- certification_date: 12.05.2022
- description: TNOR Guard is a technology that provides controlled information flow between networks with different system and application security policies. The TNOR Guard (TOE) is part of the XOmail product family for messaging and information exchange in mission-critical military and civilian networks. The Guard implements high-assurance information flow control for the trusted exchange of information across security domain boundaries. This product is also described in this report as the Target of Evaluation (TOE). The main security feature of the TOE is to mediate a one-way or bidirectional flow between two security domains. The TOE inspects every information object that is requested sent between the security domains, and makes an automated release decision according to configured policy. The TOE covers the following four Guard products: STANAG 4406 Ed 2 Message Guard For connectivity towards the NATO standard Military Message Handling System (MMHS), SMTP Message Guard (E-mail) For connectivity towards standard e-mail systems such as Microsoft Exchange. Supports RFC 6477 for Military Message Handling attributes within the SMTP domain, Chat (XMPP) Guard Instant Messaging service between security domains. XML/SOAP Guard Exchange of XML/SOAP data between security domains.
- developer: Thales Norway AS
- documents: frozendict({'cert': [frozendict({'href': 'https://sertit.no/getfile.php/1311036-1656573547/SERTIT/Sertifikater/2022/120/SERTIT-120%20C%20v1.0.pdf'})], 'target': [frozendict({'href': 'https://sertit.no/getfile.php/1310630-1654589563/SERTIT/Sertifikater/2022/120/TNOR%20Guards%20739_20726_aaaa_sc_ed10-4-public.pdf'})], 'report': [frozendict({'href': 'https://sertit.no/getfile.php/1310627-1654589561/SERTIT/Sertifikater/2022/120/SERTIT-120%20CR%20v1.0.pdf'})]})
- evaluation_facility: System Sikkerhet AS
- expiration_date: 12.05.2027
- level: EAL 4, ALC_FLR.3, AVA_VAN.4
- mutual_recognition: CCRA, SOG-IS
- product: TNOR Guard version 1.1.3
- sponsor: Forsvarsmateriell IKT-kapasiteter
- product: TNOR Guard
- url: https://sertit.no/certified-products/tnor-guard-article2842-1919.html
|
- cert_id: NSCIB-CC-2400011-01-CR
- cert_link: https://trustcb.com/download/?wpdmdl=4328
- certification_date: 03.07.2024
- developer: CyberArk Software Ltd.
- evaluation_facility: SGS Brightsight
- level: ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE.REQ.1, ASE.TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ATE_IND.1, AVA_VAN.1
- product: Cyberark Privileged Access Manager – Linux Components including PSMP v14.0.0.14
- report_link: https://trustcb.com/download/?wpdmdl=4329
- status: Issued
- target_link: https://trustcb.com/download/?wpdmdl=4330
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
90c116e62a19bc4d, c40ae795865a0dba, ed9c9d74c3710878 |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PP_APP_V1.4.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pkg_ssh_v1.0.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PKG_TLS_V1.1.pdf |
| pdf_data/cert_filename |
SERTIT-120 C v1.0.pdf |
NSCIB-CC-2400011-01-Cert.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
- NL:
- NSCIB-2400011-01: 1
- NSCIB-CC-2400011-01: 1
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
- EAL:
- EAL 2: 1
- EAL 4: 2
- EAL 4 augmented: 1
|
|
| pdf_data/cert_keywords/cc_sar |
|
- ADV:
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ALC_FLR: 1
- ALC_FLR.3: 1
- ALC_TSU_EXT.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_SPD.1: 1
- ATE:
- AVA:
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
- BrightSight:
- SGS:
- SGS: 1
- SGS Brightsight: 1
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
- ISO:
- ISO/IEC 15408-1: 2
- ISO/IEC 18045: 4
- ISO/IEC 18045:2008: 1
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /Author: helgerudt
- /CreationDate: D:20220629133919+02'00'
- /Creator: Hewlett-Packard MFP
- /ModDate: D:20220629142649+02'00'
- /Producer: PixEdit AS, PixEdit Version 8.7.4.6
- /Subject: 201676 201334 VEDLEGG01
- pdf_file_size_bytes: 1289183
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: brian
- /CreationDate: D:20240717190023+01'00'
- /Creator: Microsoft® Word 2021
- /ModDate: D:20240717190023+01'00'
- /Producer: Microsoft® Word 2021
- /Title: NSCIB Certificate
- pdf_file_size_bytes: 128233
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
SERTIT-120 CR v1.0.pdf |
NSCIB-CC-2400011-01-CR.pdf |
| pdf_data/report_frontpage |
|
- NL:
- cert_id: NSCIB-CC-2400011-01-CR
- cert_item: Cyberark Privileged Access Manager – Linux Components including PSMP v14.0.0.14
- cert_lab: SGS Brightsight B.V.
- developer: CyberArk Software Ltd
|
| pdf_data/report_keywords/cc_cert_id |
|
- NL:
- NSCIB-2400011-01: 1
- NSCIB-CC-2400011-01-CR: 12
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 2: 1
- EAL 4: 27
- EAL 4 augmented: 24
|
|
| pdf_data/report_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.1: 1
- ALC_FLR: 1
- ALC_FLR.3: 26
- ALC_LCD.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.2: 1
- ATE_DPT.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
- ADV:
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ALC_TSU_EXT.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_SPD.1: 1
- ATE:
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
- BrightSight:
- SGS:
- SGS: 2
- SGS Brightsight: 2
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- CC:
- ISO:
- ISO/IEC 15408: 8
- ISO/IEC 17025: 2
- ISO/IEC 18045: 2
- RFC:
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- OutOfScope:
- following proprietary or non-standard algorithms, protocols and implementations: none, which are out of scope as there are no security claims relating to these. Page: 11/12 of report number: 1
- out of scope: 1
|
| pdf_data/report_metadata |
- /CreationDate: D:20220518100037+02'00'
- /ModDate: D:20220518100037+02'00'
- pdf_file_size_bytes: 529073
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 22
|
|
| pdf_data/st_filename |
TNOR Guards 739_20726_aaaa_sc_ed10-4-public.pdf |
NSCIB-CC-2400011-01-ST_1.9.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL4: 8
- EAL4 augmented: 5
|
|
| pdf_data/st_keywords/cc_sar |
- ALC:
- ASE:
- ASE_CCL: 2
- ASE_ECD: 2
- ASE_INT: 2
- ASE_OBJ: 2
- ASE_REQ: 2
- ASE_SPD: 2
- ASE_TSS: 2
- AVA:
|
- ADV:
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ALC_TSU_EXT.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_REQ.1: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_ARP: 2
- FAU_ARP.1: 9
- FAU_GEN: 2
- FAU_GEN.1: 13
- FAU_GEN.2: 8
- FAU_GEN.2.1: 1
- FAU_SAA: 1
- FAU_SAA.1: 10
- FAU_SAR: 1
- FAU_SAR.1: 11
- FAU_SAR.2: 8
- FAU_STG: 1
- FAU_STG.1: 12
- FAU_STG.3: 9
- FAU_STG.4: 9
- FCO:
- FCS:
- FCS_CKM.1: 2
- FCS_CKM.4: 1
- FCS_COP: 1
- FCS_COP.1: 10
- FCS_NRO.1: 1
- FDP:
- FDP_ACC: 1
- FDP_ACC.1: 9
- FDP_ACC.2: 10
- FDP_ACF: 1
- FDP_ACF.1: 12
- FDP_ETC: 1
- FDP_ETC.2: 13
- FDP_IFC: 19
- FDP_IFC.1: 14
- FDP_IFC.2: 11
- FDP_IFF: 19
- FDP_IFF.1: 16
- FDP_IFF.2: 16
- FDP_IFF.2.2: 1
- FDP_ITC: 1
- FDP_ITC.1: 2
- FDP_ITC.2: 15
- FDP_RIP: 1
- FDP_RIP.1: 1
- FDP_RIP.2: 10
- FDP_UIT: 1
- FDP_UIT.1: 9
- FIA:
- FIA_ATD: 1
- FIA_ATD.1: 9
- FIA_UID: 1
- FIA_UID.1: 7
- FIA_UID.2: 13
- FMT:
- FMT_MOF: 19
- FMT_MOF.1: 5
- FMT_MSA: 1
- FMT_MSA.1: 10
- FMT_MSA.3: 15
- FMT_MTD: 2
- FMT_MTD.1: 12
- FMT_MTD.3: 8
- FMT_MTS: 1
- FMT_REV: 1
- FMT_REV.1: 9
- FMT_SMF: 1
- FMT_SMF.1: 15
- FMT_SMR: 1
- FMT_SMR.1: 9
- FMT_SMR.2: 16
- FMT_TST.1: 1
- FPT:
- FPT_FLS: 1
- FPT_FLS.1: 11
- FPT_RCV: 1
- FPT_RCV.4: 10
- FPT_STM.1: 2
- FPT_TDC: 1
- FPT_TDC.1: 11
- FPT_TST: 1
- FPT_TST.1: 12
- FRU:
- FTP:
- FTP_ITC.1: 4
- FTP_TRP: 1
- FTP_TRP.1: 15
- FTP_TRP.2: 2
|
- FCS:
- FCS_CKM: 3
- FCS_CKM.1: 1
- FCS_CKM.2: 2
- FCS_CKM.2.1: 1
- FCS_CKM_EXT.1: 3
- FCS_CKM_EXT.1.1: 1
- FCS_COP: 13
- FCS_COP.1: 4
- FCS_RBG_EXT.1: 3
- FCS_RBG_EXT.1.1: 1
- FCS_SSHC_EXT: 1
- FCS_SSHC_EXT.1: 1
- FCS_SSHC_EXT.1.1: 1
- FCS_SSHS_EXT.1: 1
- FCS_SSHS_EXT.1.3: 1
- FCS_SSH_EXT.1: 4
- FCS_SSH_EXT.1.1: 1
- FCS_SSH_EXT.1.2: 1
- FCS_SSH_EXT.1.3: 1
- FCS_SSH_EXT.1.4: 1
- FCS_SSH_EXT.1.5: 1
- FCS_SSH_EXT.1.6: 1
- FCS_SSH_EXT.1.7: 1
- FCS_SSH_EXT.1.8: 1
- FCS_STO_EXT.1: 4
- FCS_STO_EXT.1.1: 1
- FCS_TLSC_EXT: 2
- FCS_TLSC_EXT.1: 1
- FCS_TLSC_EXT.1.1: 1
- FCS_TLSC_EXT.1.2: 1
- FCS_TLSC_EXT.1.3: 1
- FCS_TLSC_EXT.5: 2
- FCS_TLSC_EXT.5.1: 1
- FCS_TLSS_EXT.1.1: 1
- FCS_TLS_EXT.1: 3
- FCS_TLS_EXT.1.1: 1
- FDP:
- FDP_DAR_EXT.1: 3
- FDP_DAR_EXT.1.1: 1
- FDP_DEC_EXT.1: 4
- FDP_DEC_EXT.1.1: 1
- FDP_DEC_EXT.1.2: 1
- FDP_NET_EXT.1: 3
- FDP_NET_EXT.1.1: 1
- FMT:
- FMT_CFG_EXT.1: 3
- FMT_CFG_EXT.1.1: 1
- FMT_CFG_EXT.1.2: 1
- FMT_MEC_EXT.1: 3
- FMT_MEC_EXT.1.1: 1
- FMT_SMF.1: 3
- FMT_SMF.1.1: 1
- FPR:
- FPR_ANO_EXT.1: 3
- FPR_ANO_EXT.1.1: 1
- FPT:
- FPT_AEX_EXT.1: 3
- FPT_AEX_EXT.1.1: 1
- FPT_AEX_EXT.1.2: 1
- FPT_AEX_EXT.1.3: 2
- FPT_AEX_EXT.1.4: 1
- FPT_AEX_EXT.1.5: 2
- FPT_API_EXT.1: 3
- FPT_API_EXT.1.1: 1
- FPT_IDV_EXT.1: 3
- FPT_IDV_EXT.1.1: 1
- FPT_LIB_EXT.1: 3
- FPT_LIB_EXT.1.1: 1
- FPT_TUD_EXT: 1
- FPT_TUD_EXT.1: 2
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.1.3: 1
- FPT_TUD_EXT.1.4: 1
- FPT_TUD_EXT.1.5: 1
- FPT_TUD_EXT.2: 2
- FPT_TUD_EXT.2.1: 1
- FPT_TUD_EXT.2.2: 2
- FPT_TUD_EXT.2.3: 1
- FTP:
- FTP_DIT_EXT.1: 3
- FTP_DIT_EXT.1.1: 2
|
| pdf_data/st_keywords/cc_claims |
- A:
- A..Z: 1
- A.APPROVED_CRYPTO: 3
- A.APPROVED_PKI: 2
- A.CORRECT_CONFIGURATION: 3
- A.NETWORK_PROTECTED: 2
- A.PHYSICAL_ACCESS_MANAGED: 3
- A.TRUSTED_AND_TRAINED_ADMIN: 2
- A.TRUSTED_LABELLER: 3
- O:
- O.ACCESS: 8
- O.AUDIT: 13
- O.CMD_ACL: 10
- O.CONFIGURATION_CHANGE: 5
- O.CONTROLLED_INFORMATION: 1
- O.CONTROLLED_INFORMATION_FLOW: 5
- O.CORRECT_TSF_OPERATION: 6
- O.INTERNAL_LEAST_PRIVILEG: 1
- O.INTERNAL_LEAST_PRIVILEGE: 9
- O.LABEL_MAPPING: 8
- O.MAC: 5
- O.MGMT_MODE: 6
- O.MINIMAL_PROXY: 10
- O.OBJECT_INTEGRITY: 9
- O.RESIDUAL_INFORMATION: 7
- O.RESOURCE_SHARING: 7
- O.SECURE_STATE: 8
- O.SUBJECT_ISOLATION: 12
- O.TRANSITION: 5
- O.TSF_INTEGRITY: 9
- O.VALID_LABEL: 6
- OE:
- OE.APPROVED_CRYPTO: 7
- OE.APPROVED_PKI: 7
- OE.BORDER_PROTECTION: 12
- OE.CONFIGURATION: 8
- OE.CONTENT_INSPECTION_S: 1
- OE.CONTENT_INSPECTION_SE: 2
- OE.CONTENT_INSPECTION_SERVICE: 6
- OE.DIRECTORY_SERVICE: 6
- OE.MINIMAL_POSTURE: 10
- OE.NETWORK: 10
- OE.PHYSICAL_ACCESS_MANA: 2
- OE.PHYSICAL_ACCESS_MANAG: 1
- OE.PHYSICAL_ACCESS_MANAGED: 6
- OE.PLATFORM: 10
- OE.TIME_SOURCE: 6
- OE.TRUSTED_AND_TRAINED_: 1
- OE.TRUSTED_AND_TRAINED_A: 1
- OE.TRUSTED_AND_TRAINED_ADMIN: 8
- OE.TRUSTED_AND_TRAINED_ADMINS: 1
- OE.TRUSTED_LABELLER: 7
- T:
- T.ADMIN_MASQUERADE: 4
- T.AUDIT_COMPROMISE: 2
- T.COVERT_CHANNEL: 2
- T.DOS: 4
- T.INFORMATION_LEAK: 2
- T.INSECURE_STATE: 4
- T.MALWARE_INJECTION: 2
- T.METADATA_LEAK: 4
- T.NETWORK_ATTACK: 2
- T.OBJECT_TAMPERING: 4
- T.RECONNAISSANCE: 4
- T.RESIDUAL_DATA: 2
- T.TSF_COMPROMISE: 3
- T.UNATTENDED_ADMIN_SESSION: 2
- T.UNAUTHORIZED_ACCESS: 4
- T.UNNOTICED_ATTACK: 2
|
- A:
- A.PLATFORM: 3
- A.PROPER_ADMIN: 3
- A.PROPER_USER: 3
- O:
- O.INTEGRITY: 3
- O.MANAGEMENT: 5
- O.PROTECTED_COMMS: 5
- O.PROTECTED_STORAG: 1
- O.PROTECTED_STORAGE: 2
- O.QUALITY: 5
- OE:
- OE.PLATFORM: 3
- OE.PROPER_ADMIN: 3
- OE.PROPER_USER: 3
- T:
- T.LOCAL_ATTACK: 2
- T.NETWORK_ATTACK: 5
- T.NETWORK_EAVES: 1
- T.NETWORK_EAVESDROP: 3
- T.PHYSICAL_ACCESS: 2
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
- AES_competition:
- AES:
- AES: 4
- AES-: 1
- AES-256: 1
- constructions:
- MAC:
- HMAC: 5
- HMAC-SHA-256: 3
- HMAC-SHA-384: 2
- HMAC-SHA-512: 2
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
- SHA:
- SHA2:
- SHA-256: 3
- SHA-384: 3
- SHA-512: 2
- SHA256: 1
- SHA384: 1
- SHA512: 1
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
- SSH:
- TLS:
- TLS:
- TLS: 52
- TLS 1.1: 1
- TLS 1.2: 1
- TLS v1.2: 3
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
- NIST:
- P-256: 2
- P-384: 2
- secp256r1: 2
- secp384r1: 2
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
- TLS:
- TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_GCM_SHA384: 2
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 2
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 4
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- ISO:
- PKCS:
- PKCS #11: 2
- PKCS#11: 4
- PKCS11: 2
- RFC:
- RFC 5321: 1
- RFC 5322: 1
- RFC 6120: 1
- RFC 6121: 1
- RFC 6477: 1
- RFC 7622: 2
- RFC3507: 2
- RFC5905: 1
- RFC6120: 2
- RFC6121: 1
- X509:
|
- CC:
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- FIPS:
- NIST:
- NIST SP 800-38A: 2
- NIST SP 800-38D: 4
- NIST SP 800-57: 1
- SP 800-90A: 2
- RFC:
- RFC 4251: 1
- RFC 4252: 2
- RFC 4253: 4
- RFC 4256: 2
- RFC 4344: 2
- RFC 5246: 2
- RFC 5280: 5
- RFC 5288: 2
- RFC 5289: 4
- RFC 5656: 7
- RFC 5759: 1
- RFC 6125: 2
- RFC 6668: 2
- RFC 7919: 1
- X509:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- C7089CE 1.3.1.3 Out-of-Scope Functionality 16 All out of scope functionalities are disabled by default in the evaluated configuration of the TOE. 17 The: 1
- out of scope: 1
|
| pdf_data/st_metadata |
- /Author: Radical
- /CreationDate: D:20220510093219+02'00'
- /Creator: Microsoft® Word 2016
- /ModDate: D:20220510093219+02'00'
- /Producer: Microsoft® Word 2016
- /Title: System/Subsystem Specification
- pdf_file_size_bytes: 3028038
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 78
|
- /Author: Marina Ibrishimova
- /CreationDate: D:20240613164120+03'00'
- /Creator: Microsoft® Word for Microsoft 365
- /ModDate: D:20240613164120+03'00'
- /Producer: Microsoft® Word for Microsoft 365
- /Subject: Privileged Access Manager – Linux Components
- /Title: CyberArk
- pdf_file_size_bytes: 756962
- pdf_hyperlinks: https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0780, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0499, https://cyberark.my.site.com/mplace/s/#software, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0513, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0732, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0822, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0779, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0682, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0815, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0469, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0823, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0777, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0798, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0650, https://cyberark.my.site.com/s/login/, http://www.lightshipsec.com/, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0739, https://www.cyberark.com/product-security/, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0695, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0747, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0770, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0726
- pdf_is_encrypted: False
- pdf_number_of_pages: 39
|
| state/cert/convert_garbage |
False |
False |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |