This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Cisco Aggregation Services Router 9000 (ASR9K) running IOS-XR 7.11 CCEVS-VR-VID-11484-2025	IPCOM EX Series Firmware Security Component V1.0.00 JISEC-CC-CRP-C0088
name	Cisco Aggregation Services Router 9000 (ASR9K) running IOS-XR 7.11	IPCOM EX Series Firmware Security Component V1.0.00
category	Network and Network-Related Devices and Systems	Boundary Protection Devices and Systems
scheme	US	JP
status	active	archived
not_valid_after	14.12.2026	07.01.2013
not_valid_before	23.01.2025	22.03.2007
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11484-ci.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11484-vr.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0088_ecvr.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11484-st.pdf
manufacturer	Cisco Systems, Inc.	Fujitsu Limited
manufacturer_web	https://www.cisco.com	https://www.fujitsu.com/
security_level	{}	EAL1
dgst	6ce5c5cdca5d92fe	bd0bcbdf2f54de16
heuristics/cert_id	CCEVS-VR-VID-11484-2025	JISEC-CC-CRP-C0088
heuristics/cert_lab	US	[]
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ASE_TSS.1, ADV_FSP.1, ALC_CMC.1, ASE_INT.1, ASE_SPD.1, ASE_OBJ.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ASE_REQ.1, ASE_CCL.1, ASE_ECD.1, AGD_PRE.1	{}
heuristics/extracted_versions	7.11	1.0.00
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	{}
heuristics/report_references/directly_referencing	{}	{}
heuristics/report_references/indirectly_referenced_by	{}	{}
heuristics/report_references/indirectly_referencing	{}	{}
heuristics/scheme_data	category: Network Device, Network Encryption cert_link: https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33041 certification_date: 23.01.2025 evaluation_facility: Lightship Security USA, Inc. expiration_date: id: CCEVS-VR-VID11484-2025 product: Cisco Aggregation Services Router 9000 (ASR9K) running IOS-XR 7.11 report_link: https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33043 scheme: US target_link: https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33042 url: https://www.niap-ccevs.org/product/11484 vendor: Cisco Systems, Inc.	cert_id: JISEC-CC-CRP-C0330 certification_date: 01.11.2011 claim: EAL1+ ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1 enhanced: assurance_level: EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1 cc_version: 3.1 description: PRODUCT DESCRIPTION Description of TOE The TOE is a firewall module within the firmware of the integrated network server IPCOM EX. It is located at a boundary point of multiple networks, and provides "IP packet filtering" with which IP packet data received from a network can be delivered to other networks or discarded according to predefined rules (filtering rules). In addition to "IP packet filtering", the TOE provides security functions including "configuration management" that allows only an identified and authenticated administrator to configure the settings for the security function, and "operational assistance management" that records events for the audit trail, such as discarding or passing the IP packet data. TOE security functionality The main security functions of the TOE are as follows: - IP packet filtering Passes or discards the IP packet data sent and received among the multiple LAN interfaces according to the filtering rules set by the system administrator. - Configuration management Allows only a valid administrator that has been identified and authenticated to set or change the information of the TOE configuration definition, such as filtering rules or network settings. - Operational assistance management Stores or backs up the IP packet process records received from "configuration management" or "IP packet filtering", and the audit records that are the TOE behavior results. evaluation_facility: Information Technology Security Center Evaluation Department product: IPCOM EX Series Firmware Security Component product_type: Firewall module protection_profile: none toe_version: V2.0.01 vendor: Fujitsu Limited expiration_date: 01.12.2016 supplier: Fujitsu Limited toe_japan_link: https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0330_it1351.html toe_japan_name: IPCOM EX Series Firmware Security Component V2.0.01 toe_overseas_link: None toe_overseas_name: -----
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	{}
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	{}
heuristics/protection_profiles	51ed84742f89c3f7, 89f2a255423f4a20	{}
maintenance_updates
protection_profiles
protection_profile_links	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_MACSEC_V1.0.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf	{}
pdf_data/cert_filename	st_vid11484-ci.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id	US: CCEVS-VR-VID11484-2025: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor	Cisco: Cisco: 1 Cisco Systems, Inc: 1
pdf_data/cert_keywords/eval_facility	Lightship: Lightship Security: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/Producer: WeasyPrint 62.3 /Title: VID11484-FINAL CERT pdf_file_size_bytes: 136674 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	st_vid11484-vr.pdf	c0088_ecvr.pdf
pdf_data/report_frontpage	US: cert_id: CCEVS-VR-VID11484-2025 cert_item: for the Cisco Aggregation Services Router 9000 (ASR9K) running IOS-XR 7.11 cert_lab: US NIAP	US:
pdf_data/report_keywords/cc_cert_id	US: CCEVS-VR-VID11484-2025: 1	JP: Certification No. C0088: 1
pdf_data/report_keywords/cc_protection_profile_id
pdf_data/report_keywords/cc_security_level
pdf_data/report_keywords/cc_sar
pdf_data/report_keywords/cc_sfr	FCS: FCS_CKM.1: 2 FCS_CKM.2: 1 FCS_COP: 8 FCS_MKA_EXT.1: 1 FCS_RBG_EXT.1: 1 FTP: FTP_ITC.1: 2
pdf_data/report_keywords/cc_claims
pdf_data/report_keywords/vendor	Cisco: Cisco: 55 Cisco Systems, Inc: 2
pdf_data/report_keywords/eval_facility	Lightship: Lightship Security: 6	ITSC: Information Technology Security Center: 1
pdf_data/report_keywords/symmetric_crypto	AES_competition: AES: AES: 3 constructions: MAC: CMAC: 1 HMAC: 2
pdf_data/report_keywords/asymmetric_crypto	ECC: ECDSA: ECDSA: 1
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function	SHA: SHA1: SHA1: 2 SHA2: SHA-256: 2 SHA-384: 2 SHA-512: 2
pdf_data/report_keywords/crypto_scheme	KA: Key Agreement: 2
pdf_data/report_keywords/crypto_protocol	SSH: SSH: 19 SSHv2: 6 TLS: TLS: TLS: 13
pdf_data/report_keywords/randomness	PRNG: DRBG: 1
pdf_data/report_keywords/cipher_mode	CBC: CBC: 1 GCM: GCM: 2
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library	OpenSSL: OpenSSL: 4
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name	IBM: SE: 1
pdf_data/report_keywords/os_name
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id	CC: CCMB-2017-04-001: 1 CCMB-2017-04-002: 1 CCMB-2017-04-003: 1 CCMB-2017-04-004: 1 FIPS: FIPS 186-4: 2 ISO: ISO/IEC 18031:2011: 2 PKCS: PKCS#1: 1 RFC: RFC 5280: 1 X509: X.509: 2
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process
pdf_data/report_metadata	/Author: Chris Thorpe /CreationDate: D:20250130123846-05'00' /Creator: Microsoft® Word 2019 /ModDate: D:20250130123846-05'00' /Producer: Microsoft® Word 2019 pdf_file_size_bytes: 508963 pdf_hyperlinks: https://www.cisa.gov/known-exploited-vulnerabilities-catalog, https://www.openssl.org/news/vulnerabilities.html pdf_is_encrypted: False pdf_number_of_pages: 31	/CreationDate: D:20070323205356+09'00' /ModDate: D:20070323205356+09'00' /Producer: Acrobat Distiller 6.0 (Windows) /Title: untitled pdf_file_size_bytes: 13167 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/st_filename	st_vid11484-st.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id
pdf_data/st_keywords/cc_protection_profile_id
pdf_data/st_keywords/cc_security_level
pdf_data/st_keywords/cc_sar	ADV: ADV_FSP.1: 2 AGD: AGD_OPE.1: 2 AGD_PRE.1: 2 ALC: ALC_CMC.1: 2 ALC_CMS.1: 2 ASE: ASE_CCL.1: 1 ASE_ECD.1: 1 ASE_INT.1: 1 ASE_OBJ.1: 1 ASE_REQ.1: 1 ASE_SPD.1: 1 ASE_TSS.1: 1 ATE: ATE_IND.1: 2 AVA: AVA_VAN: 1 AVA_VAN.1: 2
pdf_data/st_keywords/cc_sfr	FAU: FAU_GEN: 3 FAU_GEN.1: 7 FAU_GEN.1.1: 1 FAU_GEN.1.2: 1 FAU_GEN.2: 4 FAU_GEN.2.1: 1 FAU_STG_EXT.1: 4 FAU_STG_EXT.1.1: 1 FAU_STG_EXT.1.2: 1 FAU_STG_EXT.1.3: 1 FCS: FCS_CKM.1: 6 FCS_CKM.1.1: 1 FCS_CKM.2: 5 FCS_CKM.2.1: 1 FCS_CKM.4: 5 FCS_CKM.4.1: 1 FCS_COP: 36 FCS_COP.1: 6 FCS_MKA_EXT.1: 3 FCS_MKA_EXT.1.1: 1 FCS_MKA_EXT.1.2: 1 FCS_MKA_EXT.1.3: 1 FCS_MKA_EXT.1.4: 1 FCS_MKA_EXT.1.5: 1 FCS_MKA_EXT.1.6: 1 FCS_MKA_EXT.1.7: 3 FCS_NTP_EXT.1.4: 1 FCS_RBG_EXT.1: 6 FCS_RBG_EXT.1.1: 1 FCS_RBG_EXT.1.2: 1 FCS_SNMP_EXT.1: 1 FCS_SSHS_EXT.1: 7 FCS_SSHS_EXT.1.1: 1 FCS_SSHS_EXT.1.2: 1 FCS_SSHS_EXT.1.3: 1 FCS_SSHS_EXT.1.4: 1 FCS_SSHS_EXT.1.5: 1 FCS_SSHS_EXT.1.6: 1 FCS_SSHS_EXT.1.7: 1 FCS_SSHS_EXT.1.8: 1 FCS_TLSC_EXT.1: 5 FCS_TLSC_EXT.1.1: 1 FCS_TLSC_EXT.1.2: 1 FCS_TLSC_EXT.1.3: 1 FCS_TLSC_EXT.1.4: 1 FCS_TLSC_EXT.2.3: 1 FIA: FIA_AFL.1: 8 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_AFL_EXT.1: 1 FIA_PMG_EXT.1: 5 FIA_PMG_EXT.1.1: 1 FIA_PSK_EXT.1: 5 FIA_PSK_EXT.1.1: 1 FIA_PSK_EXT.1.2: 1 FIA_UAU.7: 3 FIA_UAU.7.1: 1 FIA_UAU_EXT.2: 4 FIA_UAU_EXT.2.1: 1 FIA_UIA_EXT.1: 4 FIA_UIA_EXT.1.1: 1 FIA_UIA_EXT.1.2: 1 FMT: FMT_MOF: 5 FMT_MTD: 9 FMT_MTD.1: 1 FMT_SMF: 4 FMT_SMF.1: 5 FMT_SMF.1.1: 1 FMT_SMR.2: 4 FMT_SMR.2.1: 1 FMT_SMR.2.2: 1 FMT_SMR.2.3: 1 FMT_SNMP_EXT.1: 1 FPT: FPT_APW_EXT.1: 3 FPT_APW_EXT.1.1: 1 FPT_APW_EXT.1.2: 1 FPT_CAK_EXT.1: 3 FPT_CAK_EXT.1.1: 1 FPT_DDP_EXT.1: 1 FPT_FLS.1: 3 FPT_FLS.1.1: 1 FPT_RPL: 2 FPT_RPL.1: 6 FPT_RPL.1.1: 1 FPT_RPL.1.2: 1 FPT_RPL_EXT.1: 2 FPT_SKP_EXT: 1 FPT_SKP_EXT.1: 3 FPT_SKP_EXT.1.1: 1 FPT_STM_EXT.1: 5 FPT_STM_EXT.1.1: 1 FPT_STM_EXT.1.2: 1 FPT_TST_EXT: 1 FPT_TST_EXT.1: 3 FPT_TST_EXT.1.1: 1 FPT_TUD_EXT.1: 4 FPT_TUD_EXT.1.1: 1 FPT_TUD_EXT.1.2: 1 FPT_TUD_EXT.1.3: 1 FTA: FTA_SSL.3: 5 FTA_SSL.4: 3 FTA_SSL.4.1: 1 FTA_SSL_EXT.1: 4 FTA_SSL_EXT.1.1: 1 FTA_TAB.1: 6 FTP: FTP_ITC: 3 FTP_ITC.1: 9 FTP_ITC.1.1: 1 FTP_ITC.1.2: 1 FTP_TRP: 5 FTP_TRP.1: 4
pdf_data/st_keywords/cc_claims	A: A.ADMIN_CREDENTIALS_SECURE: 1 A.LIMITED_FUNCTIONALITY: 1 A.NO_THRU_TRAFFIC_PROTECTION: 1 A.PHYSICAL_PROTECTION: 1 A.REGULAR_UPDATES: 1 A.RESIDUAL_INFORMATION: 1 A.TRUSTED_ADMINISTRATOR: 1 O: O.AUTHENTICATION_MACSEC: 1 O.AUTHORIZED_ADMINISTRATION: 1 O.CRYPTOGRAPHIC_FUNCTIONS_MACSEC: 1 O.PORT_FILTERING_MACSEC: 1 O.REPLAY_DETECTION: 1 O.SYSTEM_MONITORING_MACSEC: 1 O.TSF_INTEGRITY: 1 OE: OE.ADMIN_CREDENTIALS_SECURE: 1 OE.NO_GENERAL_PURPOSE: 1 OE.NO_THRU_TRAFFIC_PROTECTION: 1 OE.PHYSICAL: 1 OE.RESIDUAL_INFORMATION: 1 OE.TRUSTED_ADMIN: 1 OE.UPDATES: 1 T: T.DATA_INTEGRITY: 1 T.NETWORK_ACCESS: 1 T.PASSWORD_CRACKING: 1 T.SECURITY_FUNCTIONALITY_COMPROMISE: 1 T.SECURITY_FUNCTIONALITY_FAILURE: 1 T.UNAUTHORIZED_ADMINISTRATOR_ACCESS: 1 T.UNDETECTED_ACTIVITY: 1 T.UNTRUSTED_COMMUNICATION_CHANNELS: 1 T.UNTRUSTED_MACSEC_COMMUNICATION_CHANNELS: 1 T.UPDATE_COMPROMISE: 1 T.WEAK_AUTHENTICATION_ENDPOINTS: 1 T.WEAK_CRYPTOGRAPHY: 1
pdf_data/st_keywords/vendor	Cisco: Cisco: 46 Cisco Systems: 1 Cisco Systems, Inc: 3
pdf_data/st_keywords/eval_facility
pdf_data/st_keywords/symmetric_crypto	AES_competition: AES: AES: 33 AES-: 1 constructions: MAC: CMAC: 8 HMAC: 11 HMAC-SHA-256: 2 HMAC-SHA-384: 2 HMAC-SHA-512: 1
pdf_data/st_keywords/asymmetric_crypto	ECC: ECC: ECC: 2 ECDSA: ECDSA: 1 FF: DH: DH: 2 Diffie-Hellman: 2
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function	SHA: SHA1: SHA-1: 1 SHA1: 3 SHA2: SHA-256: 4 SHA-384: 4 SHA-512: 6 SHA2: 1
pdf_data/st_keywords/crypto_scheme	KA: Key Agreement: 10 MAC: MAC: 16
pdf_data/st_keywords/crypto_protocol	IPsec: IPsec: 1 SSH: SSH: 51 SSHv2: 20 TLS: DTLS: DTLS: 1 SSL: SSL: 1 SSL 2.0: 1 SSL 3.0: 1 TLS: TLS: 49 TLS 1.0: 1 TLS 1.1: 1 TLS 1.2: 1 TLS v1.2: 1 TLSv1.2: 1
pdf_data/st_keywords/randomness	PRNG: DRBG: 5 RNG: RBG: 2 RNG: 3
pdf_data/st_keywords/cipher_mode	CBC: CBC: 4 GCM: GCM: 12
pdf_data/st_keywords/ecc_curve	NIST: P-256: 4 P-384: 2 P-521: 4
pdf_data/st_keywords/crypto_engine
pdf_data/st_keywords/tls_cipher_suite	TLS: TLS_RSA_WITH_AES_128_CBC_SHA: 2 TLS_RSA_WITH_AES_256_CBC_SHA: 2
pdf_data/st_keywords/crypto_library
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id	FIPS: FIPS 140-2: 2 FIPS 186-4: 2 FIPS PUB 140-2: 1 FIPS PUB 180-3: 2 FIPS PUB 186-3: 2 FIPS PUB 186-4: 8 FIPS PUB 198-1: 1 FIPS140-2: 1 ISO: ISO/IEC 10116: 2 ISO/IEC 18031:2011: 4 ISO/IEC 18033-3: 1 ISO/IEC 19772: 2 ISO/IEC 9796-2: 1 ISO/IEC 9797-: 2 NIST: NIST SP 800-38B: 1 NIST SP 800-38F: 3 NIST SP 800-56A: 1 NIST SP 800-90A: 2 PKCS: PKCS #1: 1 PKCS#1: 1 RFC: RFC 3268: 4 RFC 3447: 2 RFC 4253: 1 RFC 5077: 1 RFC 5246: 1 RFC 5280: 6 RFC 6125: 1 X509: X.509: 6
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process
pdf_data/st_metadata	/Author: Cisco CC TME /CreationDate: D:20250120095306-08'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20250120095306-08'00' /Producer: Microsoft® Word for Microsoft 365 /Title: ST pdf_file_size_bytes: 1493219 pdf_hyperlinks: https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0636, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0632, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0635, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0738, http://www.cisco.com/en/US/partner/docs/general/whatsnew/whatsnew.html, http://www.cisco.com/, http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html pdf_is_encrypted: False pdf_number_of_pages: 65
state/cert/convert_garbage	True	False
state/cert/convert_ok	True	False
state/cert/download_ok	True	False
state/cert/extract_ok	True	False
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	True
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	False
state/st/download_ok	True	False
state/st/extract_ok	True	False
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different