| name |
SDoT Security Gateway, Version 6.2i |
Juniper Networks Junos OS 22.3R1 for MX240, MX480, MX960, EX9204, EX9208 and EX9214 with MACsec |
| category |
Boundary Protection Devices and Systems |
Network and Network-Related Devices and Systems |
| scheme |
DE |
AU |
| status |
active |
active |
| not_valid_after |
27.09.2026 |
30.08.2029 |
| not_valid_before |
27.09.2021 |
30.08.2024 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129c_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/AISEP_Certificate_2024_152_EFT-T035_Junos%20OS%2022.3R1%20for%20MX240,%20MX480,%20MX960,%20EX9204,%20EX9208%20and%20EX9214%20with%20MACsec_os.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129a_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/AISEP-CC-CR-2024-EFT-T035-CR-V1.0.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129b_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Juniper%20Junos%2022.3R1%20for%20MX%20and%20EX%20Series%20with%20MACsec%20v1.1%20(2).pdf |
| manufacturer |
INFODAS Gesellschaft für Systementwicklung und informationsverarbeitung mbH |
Juniper Networks, Inc. |
| manufacturer_web |
https://www.infodas.de |
https://www.juniper.net/ |
| security_level |
EAL4+, ALC_FLR.2 |
{} |
| dgst |
4cd38b96efa2ca6b |
96fde064a9932f2c |
| heuristics/cert_id |
BSI-DSZ-CC-1129-2021 |
Certificate Number: 2024/152 |
| heuristics/cert_lab |
BSI |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_TSS.1, ASE_SPD.1, ASE_INT.1, ASE_OBJ.2, ALC_FLR.2, ASE_CCL.1, ASE_ECD.1, ASE_REQ.2 |
{} |
| heuristics/extracted_versions |
6.2 |
22.3 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
51ed84742f89c3f7, 89f2a255423f4a20 |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_MACSEC_V1.0.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf |
| pdf_data/cert_filename |
1129c_pdf.pdf |
AISEP_Certificate_2024_152_EFT-T035_Junos OS 22.3R1 for MX240, MX480, MX960, EX9204, EX9208 and EX9214 with MACsec_os.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
- AU:
- Certificate Number: 2024/152: 1
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
- EAL:
- EAL 2: 1
- EAL 4: 1
- EAL 4 augmented: 1
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /CreationDate: D:20211004123245+02'00'
- /Creator: Writer
- /Keywords: "Common Criteria, Certification, Zertifizierung, Security Gateway, Infodas"
- /ModDate: D:20211004142015+02'00'
- /Producer: LibreOffice 6.3
- /Subject: Certificate BSI-DSZ-CC-1129-2021
- /Title: Certificate
- pdf_file_size_bytes: 250309
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /CreationDate: D:20250115235547+11'00'
- /ModDate: D:20250115235547+11'00'
- pdf_file_size_bytes: 146466
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
1129a_pdf.pdf |
AISEP-CC-CR-2024-EFT-T035-CR-V1.0.pdf |
| pdf_data/report_frontpage |
- DE:
- cc_security_level: Common Criteria Part 3 conformant EAL 4 augmented by ALC_FLR.2
- cc_version: Product specific Security Target Common Criteria Part 2 extended
- cert_id: BSI-DSZ-CC-1129-2021
- cert_item: SDoT Security Gateway Version 6.2i
- cert_lab: BSI
- developer: INFODAS GmbH
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
- ref_protection_profiles: None
|
|
| pdf_data/report_keywords/cc_cert_id |
|
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 1: 1
- EAL 2: 2
- EAL 2+: 1
- EAL 4: 5
- EAL 4 augmented: 3
- EAL 5: 1
|
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
- OE:
- OE.ACCESS: 1
- OE.AUDIT_ENFORCE: 1
- OE.BOOT: 1
- OE.DEDICATED_ADMIN_NET: 1
- OE.DIFF_NET: 1
- OE.HIGH_AVAILABILITY: 1
- OE.HIGH_PROTECTION: 1
- OE.HSM: 1
- OE.NTP_SERVER: 1
- OE.PKI: 1
- OE.ROLE_SEPARATION: 1
- OE.TRUSTW_ONLY: 1
- OE.TRUSTW_STAFF: 1
- OE.USER_IDENT: 1
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
- AES_competition:
- constructions:
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
- SHA:
- SHA2:
- SHA-2: 5
- SHA-256: 2
- SHA-384: 3
- SHA-512: 2
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
- TLS:
- TLS:
- TLS: 7
- TLS1.2: 1
- TLSv1.2: 2
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
- Brainpool:
- brainpoolP256r1: 3
- brainpoolP384r1: 1
- brainpoolP512r1: 3
- NIST:
- secp256r1: 3
- secp384r1: 1
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
- BSI:
- BSI 7148: 1
- BSI TR-02102: 1
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- BSI:
- AIS 1: 1
- AIS 14: 1
- AIS 19: 1
- AIS 23: 1
- AIS 32: 1
- AIS 35: 2
- FIPS:
- FIPS180-4: 8
- FIPS186-4: 5
- FIPS197: 3
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18045: 4
- RFC:
- RFC2104: 3
- RFC3447: 2
- RFC5246: 3
- RFC5288: 2
- RFC5758: 2
- RFC6234: 3
- X509:
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
- ConfidentialDocument:
- BSI-DSZ-CC-1129-2021, Version 2, 06.07.2021, SDoT Security Gateway Security Target, INFODAS GmbH (confidential document) [7] Evaluation Technical Report, Version 4, 20.09.2021, Final Evaluation Technical Report, atsec: 1
- being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
- sanitised public document) [9] Configuration list for the TOE, 19.07.2021, Main Configuration List (confidential document) [10] SDoT Security Gateway - Produktinformation - Anforderungen an den sicheren Betrieb Product: 1
|
|
| pdf_data/report_metadata |
- /Author: INFODAS GmbH
- /CreationDate: D:20211004123112+02'00'
- /Creator: Writer
- /Keywords: Common Criteria, Certification, Zertifizierung, Security Gateway, Infodas
- /ModDate: D:20211007093339+02'00'
- /Producer: LibreOffice 6.3
- /Subject: Certification Report BSI-DSZ-CC-1129-2021
- /Title: Certification Report
- pdf_file_size_bytes: 789261
- pdf_hyperlinks: http://www.commoncriteriaportal.org/cc/, https://www.sogis.eu/, https://www.bsi.bund.de/AIS, http://www.commoncriteriaportal.org/, http://www.ietf.org/rfc/rfc6234.txt, https://csrc.nist.gov/publications/detail/fips/197/final, https://www.bsi.bund.de/zertifizierung, https://csrc.nist.gov/publications/detail/sp/800-38d/final, https://www.bsi.bund.de/zertifizierungsreporte, https://www.bsi.bund.de/
- pdf_is_encrypted: False
- pdf_number_of_pages: 28
|
|
| pdf_data/st_filename |
1129b_pdf.pdf |
|
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL4: 5
- EAL4 augmented: 3
- EAL4+: 1
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC: 1
- ADV_FSP: 1
- ADV_IMP: 1
- ADV_TDS: 1
- AGD:
- ALC:
- ALC_CMC: 1
- ALC_CMS: 1
- ALC_DEL: 1
- ALC_DVS: 1
- ALC_FLR: 1
- ALC_FLR.2: 3
- ALC_LCD: 1
- ALC_TAT: 1
- ASE:
- ASE_CCL: 1
- ASE_CCL.1: 2
- ASE_ECD: 1
- ASE_ECD.1: 2
- ASE_INT: 1
- ASE_INT.1: 3
- ASE_OBJ: 1
- ASE_OBJ.2: 2
- ASE_REQ: 1
- ASE_REQ.2: 2
- ASE_SPD: 1
- ASE_SPD.1: 2
- ASE_TSS: 1
- ASE_TSS.1: 2
- ATE:
- ATE_COV: 1
- ATE_DPT: 1
- ATE_FUN: 1
- ATE_IND: 1
- AVA:
|
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_ARP: 1
- FAU_ARP.1: 9
- FAU_ARP.1.1: 1
- FAU_GEN: 2
- FAU_GEN.1: 17
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 8
- FAU_GEN.2.1: 1
- FAU_SAA: 1
- FAU_SAA.1: 9
- FAU_SAA.1.1: 1
- FAU_SAA.1.2: 1
- FAU_SAR: 1
- FAU_SAR.1: 9
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 9
- FAU_SAR.2.1: 1
- FAU_STG: 1
- FAU_STG.1: 6
- FAU_STG.2: 11
- FAU_STG.2.1: 1
- FAU_STG.2.2: 1
- FAU_STG.2.3: 1
- FAU_STG.3: 9
- FAU_STG.3.1: 1
- FAU_STG.4: 7
- FAU_STG.4.1: 1
- FCO:
- FCS:
- FCS_CKM: 12
- FCS_CKM.1: 15
- FCS_CKM.2: 8
- FCS_CKM.4: 22
- FCS_CKM.4.1: 1
- FCS_COP: 47
- FCS_COP.1: 7
- FDP:
- FDP_ACC: 39
- FDP_ACC.1: 17
- FDP_ACF: 40
- FDP_ACF.1: 38
- FDP_IFC: 38
- FDP_IFC.1: 19
- FDP_IFF: 53
- FDP_IFF.1: 40
- FDP_IFF.3: 8
- FDP_IFF.3.1: 1
- FDP_ITC.1: 14
- FDP_ITC.2: 15
- FIA:
- FIA_ATD.1: 1
- FIA_UAU: 1
- FIA_UAU.1: 1
- FIA_UAU.2: 8
- FIA_UAU.2.1: 1
- FIA_UID: 1
- FIA_UID.1: 1
- FIA_UID.2: 17
- FIA_UID.2.1: 1
- FMT:
- FMT_MSA: 1
- FMT_MSA.1: 11
- FMT_MSA.1.1: 1
- FMT_MSA.3: 22
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_MTD: 31
- FMT_MTD.1: 7
- FMT_MTD.3: 7
- FMT_MTD.3.1: 1
- FMT_SMF: 2
- FMT_SMF.1: 26
- FMT_SMF.1.1: 1
- FMT_SMR: 1
- FMT_SMR.1: 12
- FMT_SMR.2: 11
- FMT_SMR.2.1: 1
- FMT_SMR.2.2: 1
- FMT_SMR.2.3: 1
- FPT:
- FPT_INC: 4
- FPT_INC.1: 13
- FPT_INC.1.1: 2
- FPT_INC.1.2: 2
- FPT_INC.1.3: 2
- FPT_STM: 1
- FPT_STM.1: 11
- FPT_STM.1.1: 1
- FPT_TDC: 1
- FPT_TDC.1: 7
- FPT_TDC.1.1: 1
- FPT_TDC.1.2: 1
- FPT_TST: 1
- FTP:
- FTP_TRP: 2
- FTP_TRP.1: 8
- FTP_TRP.1.1: 1
- FTP_TRP.1.2: 1
- FTP_TRP.1.3: 1
|
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ACCESS: 4
- A.AUDIT: 5
- A.BOOT: 6
- A.DEDICATED_ADMIN: 1
- A.DEDICATED_ADMIN_NET: 5
- A.DIFF_NET: 5
- A.HIGH_AVAILABILITY: 5
- A.HIGH_AVAILABILLITY: 1
- A.HIGH_PROTECTION: 4
- A.HSM: 6
- A.LABEL_MAN: 1
- A.NTP_SERVER: 5
- A.PKI: 5
- A.ROLE_SEPARATION: 4
- A.TRUSTW_ONLY: 4
- A.TRUSTW_STAFF: 5
- A.USER_IDENT: 5
- OE:
- OE.ACCESS: 4
- OE.AUDIT_ENFORCE: 5
- OE.BOOT: 5
- OE.DEDICATED_ADMIN_NET: 3
- OE.DIFF_NET: 7
- OE.HIGH_AVAILABILITY: 5
- OE.HIGH_PROTECTION: 8
- OE.HSM: 2
- OE.LABEL_MAN: 1
- OE.NTP_SERVER: 5
- OE.PKI: 5
- OE.ROLE_SEPARATION: 5
- OE.TRUSTW_ONLY: 4
- OE.TRUSTW_STAFF: 6
- OE.USER_IDENT: 2
- OSP:
- OSP.AUDIT: 5
- OSP.CONFIG_AUDIT: 5
- OSP.DUAL_CONTROL: 4
- OSP.FLOW_CONTROL: 5
- OSP.PROTOCOLS: 6
- OT:
- OT.AUDIT: 10
- OT.AUDIT_CHANGE_LOG: 8
- OT.AUDIT_LOG_AVAILABILITY: 10
- OT.AUDIT_PROTECT: 8
- OT.BANDWIDTH: 6
- OT.DEFAULT: 4
- OT.FILTER: 16
- OT.FOUR_EYES: 6
- OT.INIT: 10
- OT.LABELS: 12
- OT.PRE_FILTER: 6
- OT.PROTECTION: 6
- OT.PROTOCOLS: 11
- OT.PROTOCOL_DENY: 11
- OT.ROLE_SEPARATION: 13
- OT.SANITISED_DATA: 9
- OT.SECURE_CHANNEL: 8
- OT.USER_AUTHENTICATION: 11
- OT.WARNING: 10
- T:
- T.AUDIT_ACCESS: 7
- T.AUDIT_COLLAPSE: 6
- T.AUDIT_CONTROL: 5
- T.AUTH: 6
- T.INSERT: 6
- T.MALICIOUS_CODE: 8
- T.MISCONFIG: 6
- T.REVEAL_TO_LOW: 15
- T.WRONG_LABEL: 6
|
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- constructions:
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA2:
- SHA-2: 1
- SHA-256: 1
- SHA-384: 1
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- Brainpool:
- brainpoolP256r1: 1
- brainpoolP384r1: 1
- brainpoolP512r1: 1
- NIST:
- secp256r1: 1
- secp384r1: 1
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- BSI:
- CC:
- CCMB-2017-04-002: 3
- CCMB-2017-04-003: 2
- CCMB-2017-04-004: 1
- FIPS:
- FIPS 180-4: 1
- FIPS 197: 1
- PKCS:
- RFC:
- RFC 2104: 2
- RFC 3447: 1
- RFC 3986: 1
- RFC3986: 1
|
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /Author: INFODAS GmbH
- /CreationDate: D:20210906121952+02'00'
- /Creator: Microsoft® Word für Microsoft 365
- /ModDate: D:20210906121952+02'00'
- /Producer: Microsoft® Word für Microsoft 365
- /Subject: Security Target
- /Title: Security Target Lite
- pdf_file_size_bytes: 1989754
- pdf_hyperlinks: http://www.w3.org/TR/xmldsig-core1/, http://www.w3.org/TR/xml/, http://www.xmlspif.org/
- pdf_is_encrypted: False
- pdf_number_of_pages: 105
|
|
| state/cert/convert_garbage |
False |
True |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
False |
| state/st/download_ok |
True |
False |
| state/st/extract_ok |
True |
False |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |