This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Huawei UNC V001R001C20SPC200 with Patch V100R001C20SPH230 2019-7-INF-4068	Palo Alto Networks Panorama 10.1 CCEVS-VR-VID-11285-2022
name	Huawei UNC V001R001C20SPC200 with Patch V100R001C20SPH230	Palo Alto Networks Panorama 10.1
category	Other Devices and Systems	Network and Network-Related Devices and Systems
scheme	ES	US
status	active	active
not_valid_after	21.09.2028	16.05.2025
not_valid_before	21.06.2023	04.08.2022
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/2019-07_Certificado.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-ci.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/2019-07-INF-4068.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-vr.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/2019-07_ST.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-st.pdf
manufacturer	Huawei Technologies Co., Ltd.	Palo Alto Networks, Inc.
manufacturer_web	https://www.huawei.com	https://www.paloaltonetworks.com/
security_level	EAL4+, ALC_FLR.1	{}
dgst	0e8a25a9fbdc32c5	cc0f706a935c08bc
heuristics/cert_id	2019-7-INF-4068	CCEVS-VR-VID-11285-2022
heuristics/cert_lab	[]	US
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ATE_COV.2, ALC_FLR.1, ALC_TAT.1, ASE_INT.1, ALC_CMC.4, ATE_FUN.1, ALC_DEL.1, AGD_OPE.1, ADV_ARC.1, ADV_IMP.1, ASE_CCL.1, AVA_VAN.3, ASE_REQ.2	ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, AGD_PRE.1
heuristics/extracted_versions	-	10.1
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	{}
heuristics/report_references/directly_referencing	{}	{}
heuristics/report_references/indirectly_referenced_by	{}	{}
heuristics/report_references/indirectly_referencing	{}	{}
heuristics/scheme_data	category: Others certification_date: 21.06.2023 enhanced: category: Others cc_version: Common Criteria 3.1 release 5 cert_link: https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1852 certification_date: 21.06.2023 description: The TOE is server service software that is deployed on CloudOS, which serves as a united network controller (UNC). UNC authenticates mobile subscribers onto the network system and tracks active and idle subscribers on the network system. UNC pages mobile subscribers when it is triggered by new data arriving for an idle subscriber at the assigned Serving GW (gateway). When a subscriber attaches to an eNodeB, the eNodeB select a UNC. UNC in turn selects the Serving GW and the PDN GW that will handle bearer packets of the subscriber. There are procedures to relocate a subscriber to a new UNC (and potentially a new Serving GW), when an active or idle subscriber moves to a new area outside of the current UNC control. evaluation_facility: DEKRA Testing and Certification S.A.U. level: EAL4 + ALC_FLR.1 manufacturer: Huawei Technologies Co., Ltd. report_link: https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1853 status: Certified target_link: https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1851 type: Product manufacturer: Huawei Technologies Co., Ltd. product: Huawei UNC V001R001C20SPC200 with Patch V100R001C20SPH230 product_link: https://oc.ccn.cni.es/en/certified-products/certified-products/995-huawei-unc-v001r001c20spc200-with-patch-v100r001c20sph230	category: Network Device cert_link: https://www.niap-ccevs.org/api/file/get_public_file/?file_id=24004 certification_date: 04.08.2022 evaluation_facility: Leidos Common Criteria Testing Laboratory expiration_date: 16.05.2025 id: CCEVS-VR-VID11285-2022 product: Palo Alto Networks Panorama 10.1 report_link: https://www.niap-ccevs.org/api/file/get_public_file/?file_id=24006 scheme: US target_link: https://www.niap-ccevs.org/api/file/get_public_file/?file_id=24005 url: https://www.niap-ccevs.org/product/11285 vendor: Palo Alto Networks, Inc.
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	{}
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	{}
heuristics/protection_profiles	{}	89f2a255423f4a20
maintenance_updates		maintenance_date: 18.09.2023 maintenance_report_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-add2.pdf maintenance_st_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-st-2.pdf maintenance_title: Palo Alto Networks M-200, M-300, M-600, and M-700 Hardware, and Virtual Appliances all running Panorama 11.0 maintenance_date: 31.05.2023 maintenance_report_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-add1.pdf maintenance_st_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-st.pdf maintenance_title: Palo Alto Networks M-200, M-300, M-600, and M-700 Hardware, and Virtual Appliances all running Panorama 10.2 maintenance_date: 16.05.2024 maintenance_report_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-add3.pdf maintenance_st_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11285-st-3.pdf maintenance_title: Palo Alto Networks M-200, M-300, M-600, and M-700 Hardware, and Virtual Appliances all running Panorama 11.0.4
protection_profiles
protection_profile_links	{}	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf
pdf_data/cert_filename	2019-07_Certificado.pdf	st_vid11285-ci.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id		US: CCEVS-VR-VID11285-2022: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level	EAL: EAL 2: 1 EAL 4: 1 EAL4: 1
pdf_data/cert_keywords/cc_sar	ALC: ALC_FLR: 2 ALC_FLR.1: 1
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims	A: A.U: 1 O: O.E: 1 R: R.C: 1
pdf_data/cert_keywords/vendor	Huawei: Huawei: 2 Huawei Technologies Co: 2
pdf_data/cert_keywords/eval_facility		Leidos: Leidos: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/Author: /CreationDate: /Creator: /Keywords: /ModDate: /Producer: /Subject: /Title: /Trapped: pdf_file_size_bytes: 934591 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 2	/CreationDate: D:20220805182522-04'00' /ModDate: D:20220805182522-04'00' /Producer: iText 2.1.0 (by lowagie.com) pdf_file_size_bytes: 179276 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	2019-07-INF-4068.pdf	st_vid11285-vr.pdf
pdf_data/report_frontpage	US:	US: cert_id: CCEVS-VR-VID11285-2022 cert_item: for Palo Alto Networks Panorama v10.1 cert_lab: US NIAP
pdf_data/report_keywords/cc_cert_id	ES: 2019-7-INF-4068- v1: 1	US: CCEVS-VR-VID11285-2022: 1
pdf_data/report_keywords/cc_protection_profile_id
pdf_data/report_keywords/cc_security_level	EAL: EAL 1: 1 EAL 2: 1 EAL 4: 2 EAL2: 1 EAL4: 8 ITSEC: ITSEC Evaluation: 1
pdf_data/report_keywords/cc_sar	ADV: ADV_ARC.1: 1 ADV_IMP.1: 1 AGD: AGD_OPE.1: 1 ALC: ALC_CMC.4: 1 ALC_DEL.1: 1 ALC_FLR: 3 ALC_FLR.1: 9 ALC_TAT.1: 1 ASE: ASE_CCL.1: 1 ASE_INT.1: 1 ASE_REQ.2: 1 ATE: ATE_COV.2: 1 ATE_FUN.1: 1 AVA: AVA_VAN.3: 1	ADV: ADV_FSP.1: 1 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.1: 1 ALC_CMS.1: 1 ATE: ATE_IND.1: 1 AVA: AVA_VAN.1: 1
pdf_data/report_keywords/cc_sfr	FAU: FAU_GEN.1: 1 FAU_SAR.1: 1 FAU_STG.1: 1 FDP: FDP_ACC.1: 1 FIA: FIA_ATD.1: 1 FIA_UAU.4: 1 FIA_UID.2: 1 FMT: FMT_MOF.1: 1 FMT_MSA.3: 1 FMT_SMF.1: 1 FTA: FTA_MCS: 2 FTA_SSL.3: 1 FTP: FTP_TRP.1: 1	FCS: FCS_CKM.1: 2 FCS_CKM.2: 2 FCS_COP: 6 FCS_RBG_EXT.1: 2
pdf_data/report_keywords/cc_claims	A: A.U: 4
pdf_data/report_keywords/vendor	Huawei: Huawei: 20 Huawei Technologies Co: 3 Microsoft: Microsoft: 2
pdf_data/report_keywords/eval_facility	DEKRA: DEKRA Testing and Certification: 4	Leidos: Leidos: 7
pdf_data/report_keywords/symmetric_crypto		AES_competition: AES: AES: 2 constructions: MAC: HMAC: 2
pdf_data/report_keywords/asymmetric_crypto		ECC: ECDSA: ECDSA: 2 FF: DSA: DSA: 2
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function	SHA: SHA2: SHA256: 2
pdf_data/report_keywords/crypto_scheme
pdf_data/report_keywords/crypto_protocol	SSH: SSH: 3 TLS: TLS: TLS: 3	IPsec: IPsec: 1 SSH: SSH: 6 SSHv2: 1 TLS: TLS: TLS: 7 VPN: VPN: 2
pdf_data/report_keywords/randomness		PRNG: DRBG: 2 RNG: RBG: 1
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process		OutOfScope: e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed. The: 1 out of scope: 1
pdf_data/report_metadata	/Author: /CreationDate: /Creator: /Keywords: /ModDate: /Producer: /Subject: /Title: /Trapped: pdf_file_size_bytes: 353595 pdf_hyperlinks: https://www.sogis.eu/, http://www.commoncriteriaportal.org/ pdf_is_encrypted: False pdf_number_of_pages: 14	/CreationDate: D:20220805175053-04'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20220805175053-04'00' /Producer: Microsoft® Word for Microsoft 365 pdf_file_size_bytes: 578203 pdf_hyperlinks: http://www.niap-ccevs.org/, https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/vm-series/10-1/vm-series-deployment/vm-series-deployment.pdf, https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/pan-os/10-1/pan-os-panorama-api/pan-os-panorama-api.pdf, https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/panorama/-%201/panorama-admin/panorama-admin.pdf pdf_is_encrypted: False pdf_number_of_pages: 22
pdf_data/st_filename	2019-07_ST.pdf	st_vid11285-st.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id
pdf_data/st_keywords/cc_protection_profile_id
pdf_data/st_keywords/cc_security_level	EAL: EAL4: 2
pdf_data/st_keywords/cc_sar	ADV: ADV_ARC: 1 ADV_FSP: 1 ADV_IMP: 1 ADV_TDS: 1 AGD: AGD_OPE: 1 AGD_PRE: 1 ALC: ALC_CMC: 1 ALC_CMS: 1 ALC_DEL: 1 ALC_DVS: 1 ALC_FLR: 1 ALC_FLR.1: 2 ALC_LCD: 1 ALC_TAT: 1 ASE: ASE_CCL: 1 ASE_ECD: 1 ASE_INT: 1 ASE_OBJ: 1 ASE_REQ: 1 ASE_SPD: 1 ASE_TSS: 1 ATE: ATE_COV: 1 ATE_DPT: 1 ATE_FUN: 1 ATE_IND: 1 AVA: AVA_VAN: 1	ADV: ADV_FSP.1: 1 AGD: AGD_OPE: 1 AGD_PRE: 1 ALC: ALC_CMC.1: 1 ALC_CMS.1: 1 ASE: ASE_CCL: 1 ASE_ECD: 1 ASE_INT: 1 ASE_OBJ: 1 ASE_REQ: 1 ASE_SPD: 1 ASE_TSS: 1 ATE: ATE_IND.1: 1 AVA: AVA_VAN: 1 AVA_VAN.1: 2
pdf_data/st_keywords/cc_sfr	FAU: FAU_GEN.1: 8 FAU_GEN.1.1: 1 FAU_GEN.1.2: 1 FAU_GEN.2: 5 FAU_GEN.2.1: 1 FAU_SAR.1: 6 FAU_SAR.1.1: 1 FAU_SAR.1.2: 1 FAU_SAR.3: 4 FAU_SAR.3.1: 1 FAU_STG.1: 7 FAU_STG.1.1: 1 FAU_STG.1.2: 1 FAU_STG.3: 4 FAU_STG.3.1: 1 FDP: FDP_ACC.1: 9 FDP_ACC.1.1: 1 FDP_ACF.1: 7 FDP_ACF.1.1: 1 FDP_ACF.1.2: 1 FDP_ACF.1.3: 1 FDP_ACF.1.4: 1 FDP_IFC.1: 1 FIA: FIA_AFL.1: 6 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_ATD.1: 5 FIA_ATD.1.1: 1 FIA_SOS.1: 5 FIA_SOS.1.1: 1 FIA_UAU.2: 6 FIA_UAU.2.1: 1 FIA_UAU.4: 4 FIA_UAU.4.1: 1 FIA_UID.1: 4 FIA_UID.2: 6 FIA_UID.2.1: 1 FMT: FMT_MOF.1: 5 FMT_MOF.1.1: 1 FMT_MSA.1: 4 FMT_MSA.1.1: 1 FMT_MSA.3: 7 FMT_MSA.3.1: 1 FMT_MSA.3.2: 1 FMT_SAE.1: 3 FMT_SAE.1.1: 1 FMT_SAE.1.2: 1 FMT_SMF.1: 7 FMT_SMF.1.1: 2 FMT_SMR.1: 13 FMT_SMR.1.1: 1 FMT_SMR.1.2: 1 FPT: FPT_STM.1: 3 FTA: FTA_MCS: 10 FTA_MCS.1.1: 2 FTA_MCS.1.2: 2 FTA_SSL.3: 5 FTA_SSL.3.1: 1 FTP: FTP_ITC.1: 5 FTP_ITC.1.1: 1 FTP_ITC.1.2: 1 FTP_ITC.1.3: 1 FTP_TRP.1: 5 FTP_TRP.1.1: 1 FTP_TRP.1.2: 1 FTP_TRP.1.3: 1	FAU: FAU_GEN: 2 FAU_GEN.1: 3 FAU_GEN.1.1: 1 FAU_GEN.1.2: 2 FAU_GEN.2: 3 FAU_GEN.2.1: 1 FAU_STG_EXT: 1 FAU_STG_EXT.1: 3 FAU_STG_EXT.1.1: 1 FAU_STG_EXT.1.2: 1 FAU_STG_EXT.1.3: 1 FCS: FCS_CKM: 5 FCS_CKM.1: 5 FCS_CKM.1.1: 1 FCS_CKM.2: 6 FCS_CKM.2.1: 1 FCS_CKM.4: 3 FCS_CKM.4.1: 1 FCS_COP: 19 FCS_COP.1: 4 FCS_NTP_EXT.1: 1 FCS_NTP_EXT.1.4: 1 FCS_RBG_EXT: 1 FCS_RBG_EXT.1: 5 FCS_RBG_EXT.1.1: 1 FCS_RBG_EXT.1.2: 1 FCS_SSHS_EXT: 1 FCS_SSHS_EXT.1: 3 FCS_SSHS_EXT.1.1: 1 FCS_SSHS_EXT.1.2: 2 FCS_SSHS_EXT.1.3: 1 FCS_SSHS_EXT.1.4: 1 FCS_SSHS_EXT.1.5: 1 FCS_SSHS_EXT.1.6: 1 FCS_SSHS_EXT.1.7: 1 FCS_SSHS_EXT.1.8: 1 FCS_TLSC_EXT: 2 FCS_TLSC_EXT.1: 3 FCS_TLSC_EXT.1.1: 1 FCS_TLSC_EXT.1.2: 1 FCS_TLSC_EXT.1.3: 1 FCS_TLSC_EXT.1.4: 1 FCS_TLSC_EXT.2: 2 FCS_TLSC_EXT.2.1: 1 FCS_TLSC_EXT.2.3: 1 FCS_TLSS_EXT: 1 FCS_TLSS_EXT.1: 9 FCS_TLSS_EXT.1.1: 2 FCS_TLSS_EXT.1.2: 2 FCS_TLSS_EXT.1.3: 2 FCS_TLSS_EXT.1.4: 2 FCS_TLSS_EXT.2: 3 FCS_TLSS_EXT.2.1: 1 FCS_TLSS_EXT.2.2: 1 FCS_TLSS_EXT.2.3: 1 FIA: FIA_AFL: 1 FIA_AFL.1: 9 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_PMG_EXT: 1 FIA_PMG_EXT.1: 3 FIA_PMG_EXT.1.1: 1 FIA_UAU: 1 FIA_UAU.7: 3 FIA_UAU.7.1: 1 FIA_UAU_EXT: 1 FIA_UAU_EXT.2: 2 FIA_UAU_EXT.2.1: 1 FIA_UIA_EXT: 1 FIA_UIA_EXT.1: 5 FIA_UIA_EXT.1.1: 1 FIA_UIA_EXT.1.2: 1 FMT: FMT_MOF: 4 FMT_MOF.1: 1 FMT_MTD: 4 FMT_MTD.1: 1 FMT_SMF: 1 FMT_SMF.1: 3 FMT_SMF.1.1: 2 FMT_SMR: 1 FMT_SMR.2: 3 FMT_SMR.2.1: 1 FMT_SMR.2.2: 1 FMT_SMR.2.3: 1 FPT: FPT_APW_EXT: 1 FPT_APW_EXT.1: 3 FPT_APW_EXT.1.1: 1 FPT_APW_EXT.1.2: 1 FPT_SKP_EXT: 1 FPT_SKP_EXT.1: 3 FPT_SKP_EXT.1.1: 1 FPT_STM_EXT: 1 FPT_STM_EXT.1: 4 FPT_STM_EXT.1.1: 1 FPT_STM_EXT.1.2: 2 FPT_TST_EXT: 1 FPT_TST_EXT.1: 3 FPT_TST_EXT.1.1: 1 FPT_TUD_EXT: 1 FPT_TUD_EXT.1: 3 FPT_TUD_EXT.1.1: 1 FPT_TUD_EXT.1.2: 1 FPT_TUD_EXT.1.3: 1 FTA: FTA_SSL: 2 FTA_SSL.3: 3 FTA_SSL.3.1: 1 FTA_SSL.4: 2 FTA_SSL.4.1: 1 FTA_SSL_EXT: 1 FTA_SSL_EXT.1: 3 FTA_SSL_EXT.1.1: 1 FTA_TAB: 1 FTA_TAB.1: 4 FTA_TAB.1.1: 1 FTP: FTP_ITC: 1 FTP_ITC.1: 5 FTP_ITC.1.1: 1 FTP_ITC.1.2: 1 FTP_ITC.1.3: 1 FTP_TRP: 4 FTP_TRP.1: 3
pdf_data/st_keywords/cc_claims	A: A.ADMIN_CREDENTIALS_SECU: 1 A.ADMIN_CREDENTIALS_SECURE: 2 A.COMPONENTS_RUNNING: 3 A.ENVIRONMENT_ACL: 3 A.LIMITED_FUNCTIONALITY: 3 A.NETWORK_SEGREGATION: 3 A.PHYSICAL_PROTECTION: 3 A.RESIDUAL_INFORMATION: 3 A.TIME: 3 A.TRUSTED_ADMINISTRATOR: 3 O: O.AUDIT: 5 O.COMMUNICA: 1 O.COMMUNICATI: 1 O.COMMUNICATION: 5 O.IDAUTH: 8 OE: OE.ADMIN_CRE: 1 OE.ADMIN_CREDENTI: 2 OE.ADMIN_CREDENTIALS_SEC: 2 OE.COMPONEN: 1 OE.COMPONENTS_RU: 1 OE.COMPONENTS_RUNNING: 1 OE.ENVIRONM: 1 OE.ENVIRONMENT_AC: 1 OE.ENVIRONMENT_ACL: 1 OE.LIMITED_FU: 1 OE.LIMITED_FUNCTIO: 1 OE.LIMITED_FUNCTIONALITY: 1 OE.NETWORK_: 1 OE.NETWORK_SEGRE: 1 OE.NETWORK_SEGREGATION: 1 OE.NETWOR_SEGREG: 1 OE.NETWOR_SEGREGATION: 1 OE.PHYSICAL: 4 OE.RESIDUAL_I: 1 OE.RESIDUAL_INFOR: 3 OE.RESIDUAL_INFORMATION: 3 OE.TIME: 7 OE.TRUSTED_A: 1 OE.TRUSTED_ADMIN: 4 OSP: OSP: 1 OSP.AUDIT: 4 T: T.UNAUTHORIZED_: 2 T.UNAUTHORIZED_ADMINISTR: 1 T.UNTRUSTED_COMMUNICATI: 2 T.UNTRUSTED_COMMUNICATION_CHANNELS: 1 T.WEAK_AUTHENTICATION_E: 2 T.WEAK_AUTHENTICATION_ENDPOINTS: 1 T.WEAK_CRYPTOGRAPHY: 3	A: A.COMPONENTS_RUNNING: 1 A.PHYSICAL_PROTECTION: 1 OE: OE.ADMIN_CREDENTIALS_SECURE: 1 OE.COMPONENTS_RUNNING: 1 OE.NO_GENERAL_PURPOSE: 1 OE.NO_THRU_TRAFFIC_PROTECTION: 1 OE.PHYSICAL: 1 OE.RESIDUAL_INFORMATION: 1 OE.TRUSTED_ADMIN: 1 OE.UPDATES: 1 OE.VM_CONFIGURATION: 1
pdf_data/st_keywords/vendor	Huawei: Huawei: 23 Huawei Technologies Co: 3 Microsoft: Microsoft: 2	Broadcom: Broadcom: 2 Microsoft: Microsoft: 3
pdf_data/st_keywords/eval_facility
pdf_data/st_keywords/symmetric_crypto	AES_competition: AES: AES: 7 constructions: MAC: HMAC: 4	AES_competition: AES: AES: 35 AES-256: 4 DES: 3DES: 3DES: 1 constructions: MAC: HMAC: 10 HMAC-SHA-256: 8 HMAC-SHA-384: 3 HMAC-SHA-512: 5
pdf_data/st_keywords/asymmetric_crypto	ECC: ECC: ECC: 1	ECC: ECC: ECC: 6 ECDH: ECDH: 4 ECDHE: 6 ECDSA: ECDSA: 23 FF: DH: DH: 7 DHE: 4 Diffie-Hellman: 7 DSA: DSA: 4 RSA: RSA 2048: 2 RSA-2048: 1
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function	SHA: SHA2: SHA256: 3 SHA384: 1	SHA: SHA1: SHA-1: 4 SHA2: SHA-256: 8 SHA-384: 5 SHA-512: 4
pdf_data/st_keywords/crypto_scheme	MAC: MAC: 1	KA: Key Agreement: 1 MAC: MAC: 3
pdf_data/st_keywords/crypto_protocol	SSH: SSH: 45 TLS: SSL: SSL: 12 TLS: TLS: 33 TLS1.2: 1 VPN: VPN: 1	IKE: IKE: 1 IPsec: IPsec: 5 SSH: SSH: 49 SSHv2: 7 TLS: DTLS: DTLS: 1 SSL: SSL: 4 SSL 2.0: 4 SSL 3.0: 4 TLS: TLS: 86 TLS 1.0: 4 TLS 1.1: 3 TLS 1.2: 4 TLSv1.1: 3 TLSv1.2: 6 VPN: VPN: 4
pdf_data/st_keywords/randomness		PRNG: DRBG: 14 RNG: RBG: 3 RNG: 6
pdf_data/st_keywords/cipher_mode	CBC: CBC: 2 GCM: GCM: 1	CBC: CBC: 7 CCM: CCM: 4 CTR: CTR: 6 GCM: GCM: 11
pdf_data/st_keywords/ecc_curve		NIST: P-256: 24 P-384: 16 P-521: 14 secp256r1: 6 secp384r1: 6 secp521r1: 3
pdf_data/st_keywords/crypto_engine
pdf_data/st_keywords/tls_cipher_suite		TLS: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 4 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 4 TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 4 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 4 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 2 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 4 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 6 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 2 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 4 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 6 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 2 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 2 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 6 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 2 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 2 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 6
pdf_data/st_keywords/crypto_library
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id		FIPS: FIPS 186-4: 3 FIPS PUB 186-4: 18 ISO: ISO/IEC 14888-3: 2 ISO/IEC 18031:2011: 4 ISO/IEC 9796-2: 2 NIST: SP 800-135: 2 SP 800-90A: 2 PKCS: PKCS #1: 2 PKCS#12: 2 RFC: RFC 2818: 2 RFC 2986: 2 RFC 3268: 8 RFC 3447: 2 RFC 3526: 8 RFC 3986: 2 RFC 4253: 1 RFC 4346: 3 RFC 4492: 8 RFC 5077: 5 RFC 5246: 12 RFC 5280: 5 RFC 5289: 36 RFC 5759: 1 RFC 6125: 4 RFC 7919: 1 X509: X.509: 10
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process		OutOfScope: If it is stored via External HSM (operational environment), it is protected by the HSM and is out of scope. The TOE also zeroizes (i.e., overwrites) non-persistent cryptographic keys as soon as their: 1 e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed. The: 1 extent specified by the security functional requirements: TLS, HTTPS, SSH. The features below are out of scope. Table 2 Excluded Features Feature Description Telnet and HTTP Management Protocols Telnet and HTTP: 1 operational environment), it is protected by the HSM and is out of scope. The TOE also zeroizes (i.e: 1 out of scope: 3
pdf_data/st_metadata	/Author: /CreationDate: /Creator: /Keywords: /ModDate: /Producer: /Subject: /Title: /Trapped: pdf_file_size_bytes: 497609 pdf_hyperlinks: https://support.huawei.com/carrier/navi?coltype=software, mailto:[email protected] pdf_is_encrypted: False pdf_number_of_pages: 40	/Author: Quang Trinh /CreationDate: D:20230601105236-04'00' /Creator: Microsoft® Word for Microsoft 365 /Keywords: Quang Trinh; Panorama; CC /ModDate: D:20230601105236-04'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: Security Target /Title: Palo Alto Networks Panorama 10.1 ST pdf_file_size_bytes: 1321505 pdf_hyperlinks: https://www.paloaltonetworks.com/company/trademarks.html, https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/pan-os/10-2/pan-os-panorama-api/pan-os-panorama-api.pdf, http://www.paloaltonetworks.com/, https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/panorama/10-2/panorama-admin/panorama-admin.pdf, https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/vm-series/10-2/vm-series-deployment/vm-series-deployment.pdf, file:///C:/Users/beaverg/Desktop/CCTL%20Projects/Palo%20Alto%20Panorama/Received%20from%20Vendor/updates.paloaltonetworks.com pdf_is_encrypted: False pdf_number_of_pages: 56
state/cert/convert_garbage	False	True
state/cert/convert_ok	True	True
state/cert/download_ok	True	True
state/cert/extract_ok	True	True
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	True
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	True
state/st/download_ok	True	True
state/st/extract_ok	True	True
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different