| name |
PacStar 451/453/455 Series with Cisco ASAv 9.12 |
Waterfall Unidirectional Security Gateway WF-500, Version 2.0 |
| category |
Network and Network-Related Devices and Systems |
Boundary Protection Devices and Systems |
| scheme |
US |
NL |
| status |
archived |
active |
| not_valid_after |
09.04.2023 |
24.03.2028 |
| not_valid_before |
09.04.2021 |
24.03.2023 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11123-ci.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-23-0618820-cert.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11123-vr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0618820-CR-1.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11123-st.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0618820-STv3.pdf |
| manufacturer |
Pacific Star Communications, Inc. (dba PacStar) |
Waterfall Security Solutions Ltd. |
| manufacturer_web |
https://www.pacstar.com |
https://www.waterfallsecurity.com |
| security_level |
{} |
ALC_FLR.2, ALC_DVS.2, EAL4+, AVA_VAN.5 |
| dgst |
589042dad19cdf72 |
c891270d230bb586 |
| heuristics/cert_id |
CCEVS-VR-VID-11123-2021 |
NSCIB-CC-0618820-CR |
| heuristics/cert_lab |
US |
|
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, AGD_PRE.1 |
ASE_INT.1, ALC_DVS.2, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ASE_TSS.1, ALC_TAT.1, ASE_SPD.1, AVA_VAN.5, ALC_DEL.1, ALC_LCD.1, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ATE_DPT.1, ALC_FLR.2, ASE_REQ.2, ADV_FSP.4, ATE_IND.2, ASE_CCL.1 |
| heuristics/extracted_versions |
9.12 |
2.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- category: Firewall, Network Device, Virtual Private Network
- certification_date: 09.04.2021
- evaluation_facility: Gossamer Security Solutions
- expiration_date: 09.04.2023
- id: CCEVS-VR-VID11123
- product: PacStar 451/453/455 Series with Cisco ASAv 9.12
- scheme: US
- url: https://www.niap-ccevs.org/product/11123
- vendor: Pacific Star Communications, Inc. (dba PacStar)
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
cf18fa171ef6e928, fa0610a54305df78 |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.1.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_CPP_FW_v1.3.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_VPNGW_V1.0.pdf |
{} |
| pdf_data/cert_filename |
st_vid11123-ci.pdf |
NSCIB-CC-23-0618820-cert.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11123-2021: 1
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
- EAL:
- EAL2: 1
- EAL4: 2
- EAL4 augmented: 1
|
| pdf_data/cert_keywords/cc_sar |
|
- ALC:
- ALC_DVS.2: 1
- ALC_FLR.2: 1
- ALC_FLR.3: 2
- AVA:
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
- BrightSight:
- SGS:
- SGS: 1
- SGS Brightsight: 1
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
- ISO:
- ISO/IEC 15408-1: 1
- ISO/IEC 15408-2: 1
- ISO/IEC 15408-3: 1
- ISO/IEC 18045: 2
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20210414122703-04'00'
- /ModDate: D:20210414122703-04'00'
- /Producer: iText 2.1.0 (by lowagie.com)
- pdf_file_size_bytes: 180359
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: kruitr
- /CreationDate: D:20230331124350+02'00'
- /Creator: Bullzip PDF Printer (11.10.0.2761)
- /ModDate: D:20230331124510+02'00'
- /Producer: PDF Printer / www.bullzip.com / FPG / TUV Rheinland Service GmbH
- /Title: Microsoft Word - NSCIB-CC-23-0618820-cert.doc
- pdf_file_size_bytes: 268471
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
st_vid11123-vr.pdf |
NSCIB-CC-0618820-CR-1.pdf |
| pdf_data/report_frontpage |
- NL:
- US:
- cert_id: CCEVS-VR-VID11123-2021
- cert_item: PacStar 451/453/455 Series with Cisco ASAv 9.12
- cert_lab: US NIAP
|
- NL:
- cert_id: NSCIB-CC-0618820-CR
- cert_item: Waterfall Unidirectional Security Gateway WF-500, Version 2.0
- cert_lab: SGS Brightsight B.V.
- developer: Waterfall Security Solutions, Ltd
- US:
|
| pdf_data/report_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11123-2021: 1
|
- NL:
- NSCIB-CC-0618820-CR: 11
- NSCIB-CC-17-119023: 1
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 4: 1
- EAL4: 2
- EAL4 augmented: 1
- EAL4+: 2
|
| pdf_data/report_keywords/cc_sar |
|
- ALC:
- ALC_DVS.2: 2
- ALC_FLR.2: 2
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
- BrightSight:
- SGS:
- SGS: 2
- SGS Brightsight: 2
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- OutOfScope:
- and WF-500-Standard-Split, and the host agents exist in the same cabinet. However, those agents are out of scope of the TOE as well. The TOE has been evaluated by SGS Brightsight B.V. located in Delft, The: 1
- out of scope: 1
|
| pdf_data/report_metadata |
- /CreationDate: D:20220119145546-05'00'
- /ModDate: D:20220119145546-05'00'
- pdf_file_size_bytes: 600514
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 16
|
|
| pdf_data/st_filename |
st_vid11123-st.pdf |
NSCIB-CC-0618820-STv3.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 4: 3
- EAL 4 augmented: 1
- EAL4: 12
- EAL4 augmented: 1
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 10
- AGD_PRE: 1
- AGD_PRE.1: 6
- ALC:
- ALC_CMC: 1
- ALC_CMC.1: 4
- ALC_CMS: 1
- ALC_CMS.1: 5
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 6
- ADV_FSP.1: 2
- ADV_FSP.2: 2
- ADV_FSP.4: 8
- ADV_IMP.1: 5
- ADV_TDS.1: 1
- ADV_TDS.2: 1
- ADV_TDS.3: 8
- AGD:
- AGD_OPE.1: 6
- AGD_PRE.1: 6
- ALC:
- ALC_CMC.4: 2
- ALC_CMS.4: 2
- ALC_DEL.1: 2
- ALC_DVS.1: 2
- ALC_DVS.2: 9
- ALC_FLR.2: 7
- ALC_LCD.1: 4
- ALC_TAT.1: 3
- ASE:
- ASE_CCL.1: 2
- ASE_ECD.1: 6
- ASE_INT.1: 3
- ASE_OBJ.2: 3
- ASE_REQ.1: 2
- ASE_REQ.2: 3
- ASE_SPD.1: 2
- ASE_TSS.1: 2
- ATE:
- ATE_COV.1: 1
- ATE_COV.2: 4
- ATE_DPT.1: 4
- ATE_FUN.1: 8
- ATE_IND.2: 2
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FCS:
- FCS_CKM.1: 5
- FCS_CKM.2: 6
- FCS_CKM.4: 1
- FCS_COP: 8
- FCS_NTP_EXT.1: 1
- FCS_NTP_EXT.1.4: 1
- FCS_RBG_EXT.1: 3
- FCS_RBG_EXT.1.2: 1
- FCS_SSHC_EXT.1: 2
- FCS_SSHC_EXT.1.5: 1
- FCS_SSHS_EXT.1: 4
- FCS_SSHS_EXT.1.1: 1
- FCS_SSHS_EXT.1.5: 3
- FCS_SSHS_EXT.1.7: 1
- FCS_TLSC_EXT.1.1: 3
- FCS_TLSC_EXT.2: 3
- FCS_TLSC_EXT.2.1: 1
- FCS_TLSS_EXT: 1
- FCS_TLSS_EXT.1: 3
- FCS_TLSS_EXT.2: 1
- FDP:
- FIA:
- FIA_AFL.1: 7
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_PMG_EXT.1: 1
- FIA_UAU.1: 1
- FIA_UAU_EXT.2.1: 1
- FMT:
- FPT:
- FPT_APW_EXT.1: 2
- FPT_ITT: 1
- FPT_STM_EXT.1: 1
- FPT_TUD_EXT.1: 3
- FPT_TUD_EXT.1.3: 1
- FTA:
- FTA_SSL.3: 3
- FTA_SSL_EXT: 1
- FTA_SSL_EXT.1: 2
- FTA_TAB.1: 1
- FTP:
- FTP_ITC: 1
- FTP_ITC.1: 7
- FTP_TRP: 2
- FTP_TUD.1: 1
|
- FDP:
- FDP_IFC.1: 1
- FDP_IFC.2: 8
- FDP_IFC.2.1: 1
- FDP_IFC.2.2: 1
- FDP_IFF.1: 8
- FDP_IFF.1.1: 1
- FDP_IFF.1.2: 1
- FDP_IFF.1.3: 1
- FDP_IFF.1.4: 1
- FDP_IFF.1.5: 1
- FMT:
|
| pdf_data/st_keywords/cc_claims |
- A:
- OE:
- OE.ADMIN_CREDENTIALS_SECURE: 1
- OE.CONNECTIONS: 1
- OE.NO_GENERAL_PURPOSE: 1
- OE.NO_THRU_TRAFFIC_PROTECTION: 1
- OE.PHYSICAL: 1
- OE.RESIDUAL_INFORMATION: 1
- OE.TRUSTED_ADMIN: 1
- OE.UPDATES: 1
|
- A:
- A.ADMIN: 3
- A.NETWORK: 4
- A.PHYSICAL: 4
- O:
- OE:
- T:
- T.HACK_HIGH: 1
- T.HACK_LOW: 3
- T.LEAKAGE: 2
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 14
- AES-: 2
- AES-256: 1
- constructions:
- MAC:
- HMAC: 3
- HMAC-SHA-256: 8
- HMAC-SHA-384: 6
- HMAC-SHA-512: 4
- miscellaneous:
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-256: 4
- SHA-384: 4
- SHA-512: 6
- SHA256: 4
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- IKE:
- IPsec:
- SSH:
- TLS:
- SSL:
- SSL: 2
- SSL 2.0: 1
- SSL 3.0: 1
- TLS:
- TLS: 42
- TLS 1.0: 1
- TLS 1.1: 2
- TLS 1.2: 2
- TLS v1.2: 5
- TLS1.1: 1
- TLS1.2: 1
- TLSv1.1: 2
- TLSv1.2: 5
- VPN:
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- NIST:
- P-256: 12
- P-348: 2
- P-384: 6
- P-521: 8
- secp256r1: 3
- secp384r1: 3
- secp521r1: 3
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
- TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 2
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 4
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 3
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- FIPS 140-2: 3
- FIPS PUB 186-4: 8
- ISO:
- ISO/IEC 18031:2011: 1
- ISO/IEC 9796-2: 1
- NIST:
- NIST SP 800-56A: 1
- SP 800-90: 1
- PKCS:
- RFC:
- RFC 1305: 1
- RFC 2460: 5
- RFC 2818: 1
- RFC 2986: 2
- RFC 3268: 4
- RFC 3513: 2
- RFC 3526: 3
- RFC 3602: 3
- RFC 4106: 2
- RFC 4253: 1
- RFC 4301: 1
- RFC 4303: 3
- RFC 4346: 3
- RFC 4443: 2
- RFC 4868: 1
- RFC 4945: 1
- RFC 5246: 7
- RFC 5280: 5
- RFC 5282: 1
- RFC 5289: 4
- RFC 5735: 2
- RFC 5759: 1
- RFC 5996: 2
- RFC 6125: 1
- RFC 6960: 1
- RFC 768: 5
- RFC 791: 5
- RFC 792: 2
- RFC 793: 5
- X509:
|
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- including ECDSA-based and DH-based schemes. The RSA-based implementation is vendor affirmation (out of scope) and the KAS ECC and FFC. Scheme SFR Services RSA FCS_TLSS_EXT.1, FCS_IPSEC_EXT.1, FCS_SSHS_EXT.1: 1
- out of scope: 1
|
- OutOfScope:
- fiber optic cable and relays the data to a server equipped with Waterfall software. Agent Host (out of scope of the TOE) TX & RX Agent Host Modules: is a normal PC, it can transmit data to the TX for: 1
- out of scope: 1
|
| pdf_data/st_metadata |
|
- /Author: Waterfall Security Solutions
- /CreationDate: D:20230324114901+01'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20230324114901+01'00'
- /Producer: Microsoft® Word 2010
- /Subject: WF-500 V2
- /Title: Waterfall Unidirectional Security Gateway
- pdf_file_size_bytes: 1808722
- pdf_hyperlinks: http://www.waterfall-security.com/, https://waterfall-security.com/company/legal
- pdf_is_encrypted: False
- pdf_number_of_pages: 32
|
| state/cert/convert_garbage |
True |
False |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |