| name |
Entrust nShield Solo XC Hardware Security Module v12.60.15 |
Valari Web Application Firewall v10.3.11 |
| category |
Products for Digital Signatures |
Boundary Protection Devices and Systems |
| scheme |
NL |
MY |
| status |
active |
archived |
| not_valid_after |
17.03.2026 |
24.11.2022 |
| not_valid_before |
17.03.2021 |
24.11.2017 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-certificate%2021-0368256.pdf |
|
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256-CR-1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C083-CR-v1.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256-ST-1.1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Valari_Security_Target_0.5.pdf |
| manufacturer |
Entrust, Inc. |
Kaapagam Technologies Sdn. Bhd. |
| manufacturer_web |
https://www.entrust.com |
https://www.kaapagamtech.com/ |
| security_level |
EAL4+, AVA_VAN.5, ALC_FLR.2 |
EAL2 |
| dgst |
5267a9b98b878ef1 |
572478fcd6b79542 |
| heuristics/cert_id |
NSCIB-CC-0368256-CR |
ISCB-3-RPT-C083-CR-v1 |
| heuristics/cert_lab |
|
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ATE_IND.2, ALC_FLR.2, AVA_VAN.5 |
ASE_CCL.1, ATE_FUN.1, ASE_OBJ.2, ALC_CMS.2, ASE_INT.1, ASE_REQ.2, AGD_PRE.1, ATE_IND.2, ASE_ECD.1, AVA_VAN.2, ADV_TDS.1, ASE_SPD.1, ALC_CMC.2, ADV_FSP.2, ATE_COV.1, AGD_OPE.1, ALC_DEL.1, ASE_TSS.1, ADV_ARC.1 |
| heuristics/extracted_versions |
12.60.15 |
10.3.11 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
|
- cert_no: 2017-009-C083
- certification_date: 24.11.2017
- developer: Kaapagam Technologies Sdn Bhd.
- enhanced:
- assurance_level: EAL2
- category: Boundary Protection Devices and Systems
- cert_id: C083
- certification_date: 24.11.2017
- developer: B15-15, I-SOVO@I-City No. 6, Persiaran Multimedia, Section 7 40000 Shah Alam, Selangor Darul Ehsan URL: Valari Web Application Firewall Email: [email protected] Phone: +603 8992 3172
- expiration_date: 24.11.2022
- mutual_recognition: CCRA
- product: Valari Web Application Firewall v10.3.11
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C083/ISCB-5-RPT-C083-CR-v1.pdf
- scope: The TOE is designed to secure web applications from the attacks and provide a security layer by proxy-ing all HTTP(S) traffic and shield web servers and databases from direct access of the attackers irrespective of the underlying application vulnerabilities. The TOE primary features include: Identification and Authentication: The TOE enables audit functionality to tracks all activities within the TOE boundary network inclusive of its own operations as TOE Application Server. User Data Protection: The TOE protects the web application from external network intrusions by using information flow control between internal and external network. The TOE will log all HTTP requests and responses before allowing or rejecting the HTTP requests. Security Management: TOE functions can be managed through command-line interface. The TOE only allows limited user access to run a limited set of commands. These do not affect the running mode of the TOE. Security Audit: The TOE will generate audit records for HTTP Request and responses. Each audited events will be recorded along with date and time of event, source IP, account user who performed the event, event name, system filename related to event and other event details.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C083/Valari_Security_Target_0.5.pdf
- type: Boundary Protection Devices and Systems
- expiration_date: 24.11.2022
- level: EAL2
- product: Valari Web Application Firewall v10.3.11
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/58
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
ee319f4a624019b0 |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/ANSSI-CC-PP-2016_05 PP.pdf |
{} |
| pdf_data/cert_filename |
NSCIB-certificate 21-0368256.pdf |
|
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- FR:
- ANSSI-CC-PP-2016/05-M01: 1
- NL:
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
- ANSSI:
- ANSSI-CC-PP-2016/05-M01: 1
|
|
| pdf_data/cert_keywords/cc_security_level |
- EAL:
- EAL2: 1
- EAL4: 1
- EAL4 augmented: 1
- EAL7: 1
|
|
| pdf_data/cert_keywords/cc_sar |
- ALC:
- ALC_FLR.2: 1
- ALC_FLR.3: 1
- AVA:
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
- ISO:
- ISO/IEC 15408-2: 1
- ISO/IEC 15408-3: 1
- ISO/IEC 18045: 2
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20210614114037+01'00'
- /Creator: C458-M
- /ModDate: D:20210614123528+02'00'
- /Producer: KONICA MINOLTA bizhub C458
- /Title: C458-M&S21061411400
- pdf_file_size_bytes: 210038
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
|
| pdf_data/report_filename |
NSCIB-CC-0368256-CR-1.0.pdf |
ISCB-5-RPT-C083-CR-v1.pdf |
| pdf_data/report_frontpage |
- NL:
- cert_id: NSCIB-CC-0368256-CR
- cert_item: nShield Solo XC Hardware Security Module v12.60.15
- cert_lab: Brightsight B.V
- developer: nCipher Security Limited (an Entrust company
|
|
| pdf_data/report_keywords/cc_cert_id |
- FR:
- ANSSI-CC-PP-2016/05-M01: 1
- NL:
|
- MY:
- ISCB-3-RPT-C083-CR-v1: 33
|
| pdf_data/report_keywords/cc_protection_profile_id |
- ANSSI:
- ANSSI-CC-PP-2016/05-M01: 1
|
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 4: 1
- EAL 4 augmented: 1
- EAL4: 2
- EAL4 augmented: 1
- EAL4+: 2
|
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
- FI:
- other:
- JIL: 1
- JIL-AAPHD: 1
- JIL-AMHD: 1
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
|
- /Author: ISCB Department
- /CreationDate: D:20171204082900+00'00'
- /Creator: Microsoft Word
- /Keywords: MyCB_TMP_002
- /ModDate: D:20171204082900+00'00'
- /Subject: Valari Web Application Firewall v10.3.11
- /Title: C083 Certification Report
- pdf_file_size_bytes: 983010
- pdf_hyperlinks: mailto:[email protected], http://www.cybersecurity.my/mycc
- pdf_is_encrypted: False
- pdf_number_of_pages: 34
|
| pdf_data/st_filename |
NSCIB-CC-0368256-ST-1.1.pdf |
Valari_Security_Target_0.5.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
- ANSSI:
- ANSSI-CC-PP-: 1
- ANSSI-CC-PP-2016/05-: 1
|
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL4: 59
- EAL4 augmented: 3
|
|
| pdf_data/st_keywords/cc_sar |
|
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.2: 1
- ADV_TDS.1: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.2: 1
- ALC_CMS.2: 1
- ALC_DEL.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 10
- FAU_GEN.1.1: 2
- FAU_GEN.1.2: 1
- FAU_GEN.2: 5
- FAU_GEN.2.1: 1
- FAU_STG.1: 1
- FAU_STG.2: 5
- FAU_STG.2.1: 1
- FAU_STG.2.2: 1
- FAU_STG.2.3: 1
- FCS:
- FCS_CKM.1: 11
- FCS_CKM.1.1: 1
- FCS_CKM.2: 1
- FCS_CKM.4: 11
- FCS_CKM.4.1: 1
- FCS_COP.1: 10
- FCS_COP.1.1: 1
- FCS_RNG: 12
- FCS_RNG.1: 5
- FDP:
- FDP_ACC: 15
- FDP_ACC.1: 10
- FDP_ACF: 14
- FDP_ACF.1: 12
- FDP_IFC: 10
- FDP_IFC.1: 7
- FDP_IFF: 9
- FDP_IFF.1: 10
- FDP_ITC.1: 2
- FDP_ITC.2: 2
- FDP_RIP.1: 6
- FDP_RIP.1.1: 1
- FDP_SDI.1: 1
- FDP_SDI.2: 6
- FDP_SDI.2.1: 1
- FDP_SDI.2.2: 1
- FIA:
- FIA_AFL.1: 6
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_UAU: 13
- FIA_UAU.1: 9
- FIA_UAU.1.1: 1
- FIA_UAU.1.2: 1
- FIA_UAU.6: 2
- FIA_UID.1: 14
- FIA_UID.1.1: 1
- FIA_UID.1.2: 1
- FMT:
- FMT_MSA: 22
- FMT_MSA.1: 5
- FMT_MSA.3: 9
- FMT_MTD: 12
- FMT_MTD.1: 2
- FMT_SMF.1: 11
- FMT_SMF.1.1: 1
- FMT_SMR.1: 18
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_FLS.1: 6
- FPT_FLS.1.1: 1
- FPT_PHP.1: 4
- FPT_PHP.1.1: 1
- FPT_PHP.1.2: 1
- FPT_PHP.3: 4
- FPT_PHP.3.1: 1
- FPT_STM.1: 7
- FPT_STM.1.1: 1
- FPT_TST_EXT.1: 9
- FPT_TST_EXT.1.1: 1
- FTP:
|
- FAU:
- FAU_GEN: 3
- FAU_GEN.1: 3
- FAU_GEN.1.1: 1
- FAU_GEN.3: 15
- FAU_GEN.3.1: 2
- FAU_GEN.3.2: 2
- FAU_SAR.1: 7
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.3: 6
- FAU_SAR.3.1: 1
- FAU_STG.1: 7
- FAU_STG.1.1: 1
- FAU_STG.1.2: 1
- FCS:
- FDP:
- FDP_ACC.1: 2
- FDP_IFC.1: 9
- FDP_IFC.1.1: 1
- FDP_IFF.1: 8
- FDP_IFF.1.1: 2
- FDP_IFF.1.2: 1
- FDP_IFF.1.3: 1
- FDP_IFF.1.4: 1
- FDP_IFF.1.5: 1
- FIA:
- FIA_ATD.1: 6
- FIA_ATD.1.1: 1
- FIA_UAU.1: 1
- FIA_UAU.2: 7
- FIA_UAU.2.1: 1
- FIA_UID.1: 6
- FIA_UID.2: 11
- FIA_UID.2.1: 1
- FMT:
- FMT_MOF.1: 6
- FMT_MOF.1.1: 2
- FMT_MSA: 3
- FMT_MSA.1: 8
- FMT_MSA.1.1: 1
- FMT_MSA.3: 3
- FMT_MSA.5: 12
- FMT_MSA.5.1: 2
- FMT_MTD.1: 6
- FMT_MTD.1.1: 1
- FMT_SMF.1: 11
- FMT_SMF.1.1: 1
- FMT_SMR.1: 14
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_STM.1: 3
- FPT_STM.2: 1
|
| pdf_data/st_keywords/cc_claims |
- OT:
- OT.A: 1
- OT.D: 2
- OT.RNG: 3
- R:
|
- A:
- A.ADMIN: 2
- A.CONFIGRULE: 2
- A.CONN: 2
- A.FLOW: 2
- A.KEY: 2
- A.PHY: 2
- A.TIME: 1
- A.TIMEBACK: 1
- O:
- O.ACCESSLOG: 3
- O.AUDIT: 3
- O.CONFIG: 4
- O.EXPLOIT: 3
- O.NOAUTH: 3
- OE:
- OE.ADMIN: 2
- OE.CONFIGRULE: 2
- OE.CONN: 3
- OE.FLOW: 2
- OE.KEY: 3
- OE.PHY: 2
- OE.TIMEBACK: 2
- T:
- T.ACCESSLOG: 2
- T.AUDIT: 2
- T.CONFIG: 2
- T.EXPLOIT: 2
- T.NOAUTH: 2
- T.REMOTE: 2
|
| pdf_data/st_keywords/vendor |
- Microsoft:
- Microsoft: 1
- Microsoft Corporation: 1
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- DES:
- constructions:
- MAC:
- CBC-MAC: 2
- CMAC: 3
- HMAC: 2
- HMAC-SHA-224: 1
- HMAC-SHA-256: 1
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-224: 1
- SHA-384: 1
- SHA-512: 1
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- Brainpool:
- brainpoolP160r1: 1
- brainpoolP192r1: 1
- brainpoolP192t1: 1
- brainpoolP224r1: 3
- brainpoolP224t1: 1
- brainpoolP256r1: 3
- brainpoolP256t1: 3
- brainpoolP320r1: 3
- brainpoolP320t1: 3
- brainpoolP384r1: 3
- brainpoolP384t1: 3
- brainpoolP512r1: 3
- brainpoolP512t1: 3
- NIST:
- B-163: 1
- B-233: 3
- B-283: 3
- B-409: 3
- B-571: 3
- K-163: 1
- K-233: 3
- K-283: 3
- K-409: 3
- K-571: 3
- NIST P-192: 1
- NIST P-224: 2
- P-192: 1
- P-224: 4
- P-256: 6
- P-384: 6
- P-521: 6
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
- FI:
- Malfunction: 2
- physical tampering: 2
- SCA:
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- BSI:
- AIS 20: 1
- AIS 31: 9
- AIS31: 2
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- FIPS:
- FIPS 140-2: 6
- FIPS 180-4: 1
- FIPS 186-4: 2
- FIPS 197: 2
- FIPS 198-1: 1
- ISO:
- NIST:
- NIST SP 800-22: 1
- NIST SP 800-90A: 3
- SP 800-108: 1
- SP 800-38A: 1
- SP 800-38B: 1
- SP 800-38C: 1
- SP 800-38D: 1
- SP 800-38F: 1
- SP 800-56A: 2
- SP 800-67: 1
- SP 800-90A: 3
- PKCS:
- PKCS #1: 1
- PKCS#1: 2
- PKCS#11: 2
- RFC:
|
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- Impath, out of scope) with a remote Hardserver (typically on an application server or PC: 1
- for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries: 1
- out of scope: 3
- support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 3 Configuration 1: TOE in Connect XC 8 of 55 nShield Solo XC HSM Security: 1
- support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 4 Configuration 2: TOE in host server 1.3.3 Usage and major security features of: 1
|
|
| pdf_data/st_metadata |
|
- /Author: AD
- /CreationDate: D:20171102074055Z00'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20171102074055Z00'00'
- /Producer: Mac OS X 10.11.4 Quartz PDFContext
- /Subject: Valari Security Target
- pdf_file_size_bytes: 525664
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 35
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
True |
False |
| state/cert/download_ok |
True |
False |
| state/cert/extract_ok |
True |
False |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |