| name |
genuscreen 8.0 |
Digital Tachograph DTCO 1381 Release 4.1a |
| category |
Boundary Protection Devices and Systems |
Other Devices and Systems |
| scheme |
DE |
DE |
| status |
active |
active |
| not_valid_after |
05.04.2028 |
14.01.2030 |
| not_valid_before |
06.04.2023 |
14.01.2025 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1194c_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1158V3c_pdf.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1194a_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1158V3a_pdf.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1194b_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1158V3b_pdf.pdf |
| manufacturer |
genua GmbH |
Continental Automotive Technologies GmbH |
| manufacturer_web |
https://www.genua.de |
https://www.continental-automotive.com |
| security_level |
ASE_TSS.2, EAL4+, ALC_PAM.1, ALC_FLR.2, AVA_VAN.4 |
AVA_VAN.5, EAL4+, ATE_DPT.2 |
| dgst |
700b0783f3fe80bb |
c15eaa996b434551 |
| heuristics/cert_id |
BSI-DSZ-CC-1194-2023 |
BSI-DSZ-CC-1158-V3-2025 |
| heuristics/cert_lab |
BSI |
BSI |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ALC_CMC.4, ADV_TAT.1, ASE_SPD.1, ALC_CMS.4, ASE_CCL.1, ASE_REQ.2, ALC_FLR.2, AGD_PRE.1, ADV_IMP.1, AGD_OPE.1, ALC_PAM.1, AVA_VAN.4, ALC_LCD.1, ALC_DEL.1, ALC_DVS.1, ASE_TSS.2, ASE_ECD.1, ATE_IND.2, ADV_FSP.4, ADV_ARC.1, ADV_TDS.3, ASE_INT.1, ATE_FUN.1, ATE_COV.2, ASE_OBJ.2, ATE_DPT.1, ALC_TAT.1 |
ALC_LCD.1, ALC_DEL.1, ADV_TDS.3, ALC_DVS.1, ATE_FUN.1, AVA_VAN.5, ALC_CMC.4, AGD_PRE.1, ADV_IMP.1, AGD_OPE.1, ALC_TAT.1, ALC_CMS.4, ATE_DPT.2, ADV_FSP.4, ADV_ARC.1 |
| heuristics/extracted_versions |
8.0 |
4.1 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
BSI-DSZ-CC-1158-V4-2025 |
| heuristics/report_references/directly_referencing |
BSI-DSZ-CC-1142-2020 |
BSI-DSZ-CC-1158-V2-2023, NSCIB-CC-2200060-02-CR |
| heuristics/report_references/indirectly_referenced_by |
{} |
BSI-DSZ-CC-1158-V4-2025 |
| heuristics/report_references/indirectly_referencing |
BSI-DSZ-CC-1142-2020 |
BSI-DSZ-CC-0559-2012, BSI-DSZ-CC-0827-V2-2014, BSI-DSZ-CC-0376-2006, BSI-DSZ-CC-0791-2012, NSCIB-CC-2200060-02-CR, BSI-DSZ-CC-1158-V2-2023, BSI-DSZ-CC-0827-2013, BSI-DSZ-CC-0827-V7-2018, BSI-DSZ-CC-0827-V4-2016, BSI-DSZ-CC-0632-2011, BSI-DSZ-CC-0827-V8-2020, BSI-DSZ-CC-0827-V5-2017, NSCIB-CC-0173264-CR3, BSI-DSZ-CC-0936-2015, BSI-DSZ-CC-0878-2013, BSI-DSZ-CC-0827-V3-2015, BSI-DSZ-CC-0827-V9-2024, BSI-DSZ-CC-0269-2006, BSI-DSZ-CC-0827-V6-2017, BSI-DSZ-CC-0395-2007, BSI-DSZ-CC-1069-2018, BSI-DSZ-CC-1015-2017, BSI-DSZ-CC-1158-2020, BSI-DSZ-CC-0827 |
| heuristics/scheme_data |
- category: Network and Network related Devices and Systems
- cert_id: BSI-DSZ-CC-1194-2023
- certification_date: 06.04.2023
- enhanced:
- applicant: genua GmbH Domagkstrasse 7 85551 Kirchheim
- assurance_level: EAL4+,AVA_VAN.4,ASE_TSS.2,ALC_PAM.1
- cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1194c_pdf.pdf?__blob=publicationFile&v=1
- certification_date: 06.04.2023
- description: The TOE makes VPN and firewall functionality available and easy to manage. It protects networks at the border to the Internet by filtering incoming and outgoing data traffic. It protects the data flowing between several protected networks against unauthorised inspection and modification. It consists of software on a number (at least 2) of machines (genuscreen appliances) that work as network filters, hereafter called firewall components, and another machine to manage this network of firewall components. This machine, the management system (genucenter management system), is a central component.
- entries: [frozendict({'id': 'BSI-DSZ-CC-1194-2023-MA-01 (Ausstellungsdatum / Certification Date 17.11.2023) Assurance Continuity Maintenance Report with partial re-evaluation applying ALC_PAM for patch management Assurance Continuity / Maintanance Report', 'description': 'and firewall functionality available and easy to manage. It consists only of software and documentation. It protects networks at the border to the Internet by filtering incoming and outgoing data traffic. It also protects the data flowing between several protected networks against unauthorised inspection and modification.'}), frozendict({'id': 'BSI-DSZ-CC-1194-2023', 'description': 'Certificate'})]
- evaluation_facility: secuvera GmbH
- expiration_date: 05.04.2028
- product: genuscreen 8.0
- report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1194a_pdf.pdf?__blob=publicationFile&v=1
- target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1194b_pdf.pdf?__blob=publicationFile&v=1
- product: genuscreen 8.0
- url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1194.html
- vendor: genua GmbH
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
d3d381970c60f694 |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0094V2b_pdf.pdf |
| pdf_data/cert_filename |
1194c_pdf.pdf |
1158V3c_pdf.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1158-V3-2025: 1
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP-0094-V2-2021: 1
|
| pdf_data/cert_keywords/cc_security_level |
- EAL:
- EAL 2: 1
- EAL 4: 2
- EAL 4 augmented: 1
- EAL 5: 1
|
- EAL:
- EAL 2: 1
- EAL 4: 1
- EAL 4 augmented: 1
- EAL 5: 1
|
| pdf_data/cert_keywords/cc_sar |
- ALC:
- ALC_FLR: 1
- ALC_FLR.2: 1
- ALC_PAM.1: 1
- ASE:
- AVA:
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /Keywords: Common Criteria, Certification, Zertifizierung, BSI-DSZ-CC-1194-2023, firewall and VPN gateway, genuscreen 8.0, genua GmbH
- /Subject: Common Criteria, Certification, Zertifizierung, BSI-DSZ-CC-1194-2023, firewall and VPN gateway, genuscreen 8.0, genua GmbH
- /Title: Certificate BSI-DSZ-CC-1194-2023 for genuscreen 8.0 from genua GmbH
- pdf_file_size_bytes: 325879
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: Federal Office for Information Security
- /Subject: Digital Tachograph DTCO 1381, Release 4.1a from Continental Automotive Technologies GmbH
- /Title: Certification Report BSI-DSZ-CC-1158-V3-2025
- pdf_file_size_bytes: 233271
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
1194a_pdf.pdf |
1158V3a_pdf.pdf |
| pdf_data/report_frontpage |
- DE:
- cc_security_level: Common Criteria Part 3 extended EAL 4 augmented by ALC_FLR.2, ASE_TSS.2, AVA_VAN.4 and ALC_PAM.1
- cc_version: Product specific Security Target Common Criteria Part 2 extended
- cert_id: BSI-DSZ-CC-1194-2023
- cert_item: genuscreen 8.0
- cert_lab: BSI
- developer: genua GmbH
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
- ref_protection_profiles: None
|
- DE:
- cc_security_level: Common Criteria Part 3 conformant EAL 4 augmented by ATE_DPT.2 and AVA_VAN.5 valid until: 13 January 2030
- cc_version: PP conformant Common Criteria Part 2 extended
- cert_id: BSI-DSZ-CC-1158-V3-2025
- cert_item: Digital Tachograph DTCO 1381, Release 4.1a
- cert_lab: BSI
- developer: Continental Automotive Technologies GmbH
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
- ref_protection_profiles: Digital Tachograph - Vehicle Unit (VU PP) Version 1.15, 6 June 2021, BSI-CC-PP-0094-V2-2021
|
| pdf_data/report_keywords/cc_cert_id |
- DE:
- BSI-DSZ-CC-1142-2020: 3
- BSI-DSZ-CC-1194-2023: 15
|
- DE:
- BSI-DSZ-CC-1158-V2-2023: 3
- BSI-DSZ-CC-1158-V3-2025: 17
- NL:
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP- 0094-V2-2021: 1
- BSI-CC-PP-0094-V2-2021: 3
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 1: 1
- EAL 2: 3
- EAL 4: 8
- EAL 4 augmented: 3
- EAL 5: 3
- EAL 5+: 1
- EAL 6: 1
|
- EAL:
- EAL 1: 1
- EAL 2: 3
- EAL 4: 5
- EAL 4 augmented: 3
- EAL 5: 4
- EAL 5+: 1
- EAL 6: 1
- EAL4: 1
- EAL4+: 1
|
| pdf_data/report_keywords/cc_sar |
- ALC:
- ALC_FLR: 3
- ALC_FLR.2: 5
- ALC_PAM.1: 5
- ASE:
- AVA:
|
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.1: 1
- ALC_FLR: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ATE:
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
- A:
- A.ADMIN: 2
- A.HANET: 2
- A.INIT: 2
- A.LOCAL: 2
- A.NOEVIL: 2
- A.PHYSEC: 3
- A.REMOTE_AUTH: 2
- A.REST: 2
- A.SINGEN: 2
- A.TIMESTMP: 2
|
|
| pdf_data/report_keywords/vendor |
|
- Infineon:
- Infineon Technologies AG: 1
|
| pdf_data/report_keywords/eval_facility |
|
- DeutscheTelekom:
- Deutsche Telekom Security: 3
- TUV:
- TÜV Informationstechnik: 1
|
| pdf_data/report_keywords/symmetric_crypto |
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
- IKE:
- IPsec:
- SSH:
- TLS:
- VPN:
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
- BSI:
- BSI 7148: 1
- BSI TR-02102: 1
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- BSI:
- AIS 20: 2
- AIS 32: 1
- AIS 34: 1
- AIS 38: 1
- AIS 46: 1
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18045: 4
- X509:
|
- BSI:
- AIS 20: 2
- AIS 25: 2
- AIS 26: 2
- AIS 31: 2
- AIS 32: 1
- AIS 34: 2
- AIS 35: 1
- AIS 36: 3
- AIS 37: 2
- AIS 38: 2
- AIS 40: 1
- AIS 46: 1
- AIS 49: 2
- AIS 50: 1
- FIPS:
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18045: 4
- ISO/IEC 9797-1: 1
- NIST:
- SP 800-38A: 1
- SP 800-38B: 1
- PKCS:
- RFC:
- RFC 5480: 1
- RFC 5639: 1
- RFC 5869: 1
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
- ConfidentialDocument:
- being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
- for genuscreen 8.0 from genua GmbH, Version 3, Date: 30.03.2023, secuvera GmbH (confidential document) [8] Guidance documentation for the TOE, genuscreen Installations- und Konfigurationshandbuch: 1
- OutOfScope:
- L2TP VPN, MOBIKE VPN, Dynamic Routing, genucenter HA, Remote Maintenance, getimagesfromcpt) are out of scope of the evaluated configuration. 18 / 26 BSI-DSZ-CC-1194-2023 Certification Report All information: 1
- components were installed on physical hardware, the installation of the TOE on virtual machines is out of scope of the evaluated configuration. For the operational configuration the genuscreens and the: 1
- out of scope: 2
|
- ConfidentialDocument:
- 18 December 2024, Evaluation Technical Report BSI-DSZ-CC-1158-V3, Deutsche Telekom Security GmbH, (confidential document) [8] Digital Tachograph - Vehicle Unit (VU PP) Version 1.15, 6 June 2021, BSI-CC-PP- 0094-V2-2021: 1
- being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
- list for the TOE, Version 1.66, 11 December 2024, Konfigurationsliste, Continental AG (confidential document) 7 specifically • AIS 20, Version 3, Funktionalitätsklassen und Evaluationsmethodologie für: 1
|
| pdf_data/report_metadata |
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /Keywords: Common Criteria, Certification, Zertifizierung, BSI-DSZ-CC-1194-2023, firewall and VPN gateway, genuscreen 8.0, genua GmbH
- /Subject: Common Criteria, Certification, Zertifizierung, BSI-DSZ-CC-1194-2023, firewall and VPN gateway, genuscreen 8.0, genua GmbH
- /Title: Certification Report BSI-DSZ-CC-1194-2023 for genuscreen 8.0 from genua GmbH
- pdf_file_size_bytes: 525558
- pdf_hyperlinks: http://www.commoncriteriaportal.org/, https://www.bsi.bund.de/zertifizierungsreporte, https://www.sogis.eu/, https://www.bsi.bund.de/, https://www.bsi.bund.de/AIS, http://www.commoncriteriaportal.org/cc/, https://www.bsi.bund.de/zertifizierung, https://www.commoncriteriaportal.org/
- pdf_is_encrypted: False
- pdf_number_of_pages: 26
|
- /Author: Federal Office for Information Security
- /Keywords: "Common Criteria, Certification, Zertifizierung, Continental, Digital Tachograph, DTCO, Vehicle Unit"
- /Subject: Common Criteria, Certification, Zertifizierung, Continental, Digital Tachograph, DTCO, Vehicle Unit
- /Title: Certification Report BSI-DSZ-CC-1158-V3-2025
- pdf_file_size_bytes: 641185
- pdf_hyperlinks: http://www.commoncriteriaportal.org/, https://www.bsi.bund.de/zertifizierungsreporte, https://www.sogis.eu/, https://www.bsi.bund.de/, https://www.bsi.bund.de/AIS, http://www.commoncriteriaportal.org/cc/, https://www.bsi.bund.de/zertifizierung, https://www.commoncriteriaportal.org/
- pdf_is_encrypted: False
- pdf_number_of_pages: 30
|
| pdf_data/st_filename |
1194b_pdf.pdf |
1158V3b_pdf.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP-0093: 1
- BSI-CC-PP-0094-V2: 1
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL4: 4
- EAL4 augmented: 1
|
- EAL:
- EAL 4: 3
- EAL 4 augmented: 1
- EAL4: 12
- EAL4 augmented: 4
- EAL6: 1
- EAL6 augmented: 1
- EAL6+: 1
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC: 1
- ADV_ARC.1: 4
- ADV_FSP: 1
- ADV_FSP.1: 1
- ADV_FSP.2: 2
- ADV_FSP.4: 2
- ADV_IMP: 1
- ADV_IMP.1: 3
- ADV_INT: 2
- ADV_SPM: 2
- ADV_TAT.1: 1
- ADV_TDS: 1
- ADV_TDS.1: 1
- ADV_TDS.2: 1
- ADV_TDS.3: 2
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 3
- AGD_PRE: 1
- AGD_PRE.1: 3
- ALC:
- ALC_CMC: 1
- ALC_CMC.4: 1
- ALC_CMS: 1
- ALC_CMS.4: 1
- ALC_DEL: 3
- ALC_DEL.1: 1
- ALC_DVS: 1
- ALC_DVS.1: 2
- ALC_FLR: 1
- ALC_FLR.2: 4
- ALC_LCD: 1
- ALC_LCD.1: 2
- ALC_PAM: 30
- ALC_PAM.1: 52
- ALC_TAT: 1
- ALC_TAT.1: 1
- ASE:
- ASE_CCL: 1
- ASE_CCL.1: 1
- ASE_ECD: 1
- ASE_ECD.1: 3
- ASE_INT: 1
- ASE_INT.1: 1
- ASE_OBJ: 1
- ASE_OBJ.2: 1
- ASE_REQ: 1
- ASE_REQ.1: 2
- ASE_REQ.2: 1
- ASE_SPD: 1
- ASE_SPD.1: 1
- ASE_TSS: 1
- ASE_TSS.2: 4
- ATE:
- ATE_COV: 1
- ATE_COV.1: 1
- ATE_COV.2: 1
- ATE_DPT: 1
- ATE_DPT.1: 2
- ATE_FUN: 1
- ATE_FUN.1: 4
- ATE_IND: 1
- ATE_IND.2: 1
- AVA:
|
- ADV:
- ADV_ARC.1: 2
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 2
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ATE:
- ATE_DPT.1: 1
- ATE_DPT.2: 8
- ATE_FUN.1: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN: 17
- FAU_GEN.1: 5
- FAU_GEN.2: 1
- FAU_SAR: 10
- FAU_SAR.1: 3
- FAU_SAR.3: 1
- FAU_UPD: 1
- FCS:
- FCS_CKM: 87
- FCS_CKM.1: 20
- FCS_CKM.4: 23
- FCS_COP: 70
- FCS_COP.1: 22
- FCS_RNG: 1
- FCS_RNG.1: 20
- FCS_RNG.1.1: 2
- FCS_RNG.1.2: 2
- FDP:
- FDP_IFC: 43
- FDP_IFC.1: 31
- FDP_IFC.2: 2
- FDP_IFF: 34
- FDP_IFF.1: 37
- FDP_ITC.1: 2
- FDP_ITT: 21
- FDP_ITT.1: 3
- FIA:
- FIA_ATD: 5
- FIA_ATD.1: 1
- FIA_SOS: 5
- FIA_SOS.1: 1
- FIA_UAU: 10
- FIA_UAU.2: 1
- FIA_UAU.6: 1
- FIA_UID: 5
- FIA_UID.1: 3
- FIA_UID.2: 2
- FMT:
- FMT_MOF: 5
- FMT_MOF.1: 1
- FMT_MSA: 122
- FMT_MSA.1: 24
- FMT_MSA.2: 3
- FMT_MSA.3: 18
- FMT_SMF: 39
- FMT_SMF.1: 22
- FMT_SMR: 6
- FMT_SMR.1: 25
- FPT:
- FPT_ITT: 8
- FPT_ITT.1: 2
- FPT_STM.1: 4
- FPT_TEE: 7
- FPT_TEE.1: 2
- FPT_TRC: 6
- FPT_TRC.1.1: 1
- FPT_TRC.1.2: 1
- FPT_UPD: 31
|
- FAU:
- FAU_GEN: 6
- FAU_GEN.1: 12
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_SAR: 2
- FAU_SAR.1: 5
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_STG: 3
- FAU_STG.1: 9
- FAU_STG.1.1: 1
- FAU_STG.1.2: 1
- FAU_STG.3: 1
- FAU_STG.4: 5
- FAU_STG.4.1: 1
- FCO:
- FCO_NRO: 1
- FCO_NRO.1: 6
- FCO_NRO.1.1: 1
- FCO_NRO.1.2: 1
- FCO_NRO.1.3: 1
- FCS:
- FCS_CKM: 4
- FCS_CKM.1: 48
- FCS_CKM.1.1: 2
- FCS_CKM.2: 22
- FCS_CKM.2.1: 2
- FCS_CKM.4: 39
- FCS_CKM.4.1: 2
- FCS_COP: 2
- FCS_COP.1: 53
- FCS_COP.1.1: 8
- FCS_RNG: 8
- FCS_RNG.1: 31
- FCS_RNG.1.1: 8
- FCS_RNG.1.2: 8
- FDP:
- FDP_ACC: 6
- FDP_ACC.1: 85
- FDP_ACC.1.1: 6
- FDP_ACF: 6
- FDP_ACF.1: 68
- FDP_ACF.1.1: 12
- FDP_ACF.1.2: 7
- FDP_ACF.1.3: 6
- FDP_ACF.1.4: 6
- FDP_ETC: 5
- FDP_ETC.2: 7
- FDP_ETC.2.1: 1
- FDP_ETC.2.2: 1
- FDP_ETC.2.3: 1
- FDP_ETC.2.4: 1
- FDP_IFC: 1
- FDP_IFC.1: 8
- FDP_ITC: 6
- FDP_ITC.1: 25
- FDP_ITC.1.1: 1
- FDP_ITC.1.2: 1
- FDP_ITC.1.3: 1
- FDP_ITC.2: 36
- FDP_ITC.2.1: 1
- FDP_ITC.2.2: 1
- FDP_ITC.2.3: 1
- FDP_ITC.2.4: 1
- FDP_ITC.2.5: 2
- FDP_ITT: 1
- FDP_ITT.1: 5
- FDP_ITT.1.1: 1
- FDP_RIP: 3
- FDP_RIP.1: 8
- FDP_RIP.1.1: 1
- FDP_SDI: 1
- FDP_SDI.1: 3
- FDP_SDI.2: 22
- FDP_SDI.2.1: 3
- FDP_SDI.2.2: 3
- FIA:
- FIA_AFL: 1
- FIA_AFL.1: 29
- FIA_AFL.1.1: 6
- FIA_AFL.1.2: 4
- FIA_ATD: 2
- FIA_ATD.1: 19
- FIA_ATD.1.1: 3
- FIA_SOS.2: 1
- FIA_UAU: 8
- FIA_UAU.1: 28
- FIA_UAU.1.1: 2
- FIA_UAU.1.2: 2
- FIA_UAU.2: 13
- FIA_UAU.2.1: 2
- FIA_UAU.3: 7
- FIA_UAU.3.1: 1
- FIA_UAU.3.2: 1
- FIA_UAU.5: 8
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
- FIA_UAU.6: 5
- FIA_UAU.6.1: 1
- FIA_UID: 2
- FIA_UID.1: 13
- FIA_UID.2: 14
- FIA_UID.2.1: 1
- FMT:
- FMT_MOF: 1
- FMT_MOF.1: 31
- FMT_MOF.1.1: 5
- FMT_MSA: 9
- FMT_MSA.1: 17
- FMT_MSA.1.1: 1
- FMT_MSA.3: 55
- FMT_MSA.3.1: 6
- FMT_MSA.3.2: 6
- FMT_MTD: 3
- FMT_MTD.1: 9
- FMT_MTD.1.1: 1
- FMT_SMF: 9
- FMT_SMF.1: 19
- FMT_SMF.1.1: 1
- FMT_SMR: 14
- FMT_SMR.1: 33
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_FLS: 2
- FPT_FLS.1: 4
- FPT_FLS.1.1: 1
- FPT_PHP: 3
- FPT_PHP.1: 1
- FPT_PHP.2: 5
- FPT_PHP.2.1: 1
- FPT_PHP.2.2: 1
- FPT_PHP.2.3: 2
- FPT_PHP.3: 5
- FPT_PHP.3.1: 1
- FPT_STM: 3
- FPT_STM.1: 10
- FPT_STM.1.1: 1
- FPT_TDC: 2
- FPT_TDC.1: 26
- FPT_TDC.1.1: 3
- FPT_TDC.1.2: 3
- FPT_TST: 2
- FPT_TST.1: 6
- FPT_TST.1.1: 2
- FPT_TST.1.2: 1
- FPT_TST.1.3: 2
- FTP:
- FTP_ITC: 3
- FTP_ITC.1: 26
- FTP_ITC.1.1: 4
- FTP_ITC.1.2: 4
- FTP_ITC.1.3: 4
- FTP_TRP.1: 2
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMIN: 3
- A.HANET: 3
- A.INIT: 3
- A.LOCAL: 3
- A.NOEVIL: 3
- A.PHYSEC: 3
- A.REMOTE_AUTH: 3
- A.REST: 3
- A.SINGEN: 4
- A.TIMESTMP: 3
- O:
- O.AUDREC: 5
- O.AUTH: 10
- O.AVAIL: 7
- O.CONFID: 13
- O.INTEG: 11
- O.MEDIAT: 4
- O.NOREPLAY: 13
- O.PATCH: 3
- OE:
- OE.ADMIN: 2
- OE.CERTKEYS: 3
- OE.HANET: 5
- OE.INIT: 7
- OE.LOCAL: 1
- OE.NOEVIL: 3
- OE.PHYSEC: 4
- OE.REMOTE_AUTH: 2
- OE.REST: 3
- OE.SINGEN: 4
- OE.TIMESTMP: 6
- T:
- T.MEDIAT: 3
- T.MMODIFY: 3
- T.MODIFY: 3
- T.MSNIFF: 3
- T.NOAUTH: 3
- T.SELPRO: 3
- T.SNIFF: 3
|
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- constructions:
- MAC:
- HMAC: 4
- HMAC-SHA-256: 1
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA2:
- SHA-256: 2
- SHA-384: 3
- SHA-512: 2
|
- SHA:
- SHA1:
- SHA2:
- SHA-2: 1
- SHA-256: 2
- SHA-384: 2
- SHA-512: 2
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- IKE:
- IKE: 83
- IKEv1: 10
- IKEv2: 20
- IPsec:
- SSH:
- TLS:
- VPN:
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
- Brainpool:
- brainpoolP256r1: 1
- brainpoolP384r1: 1
- brainpoolP512r1: 1
- NIST:
- NIST P-256: 1
- NIST P-384: 1
- NIST P-521: 1
- P-256: 1
- P-384: 1
- P-521: 1
- secp256r1: 1
- secp384r1: 1
- secp521r1: 1
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Physical tampering: 1
- malfunction: 1
- physical tampering: 7
- other:
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- BSI:
- AIS 20: 1
- AIS 31: 1
- AIS20: 2
- AIS31: 1
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
- ISO:
- PKCS:
- RFC:
- RFC 2104: 1
- RFC 2409: 1
- RFC 2460: 1
- RFC 3414: 1
- RFC 3602: 1
- RFC 4109: 1
- RFC 4253: 1
- RFC 4301: 1
- RFC 4306: 1
- RFC 4307: 1
- RFC 4344: 1
- RFC 4418: 1
- RFC 4754: 1
- RFC 4868: 1
- RFC 5114: 1
- RFC 5280: 1
- RFC 5590: 1
- RFC 5639: 1
- RFC 5656: 1
- RFC 5903: 1
- RFC 6040: 1
- RFC 6151: 1
- RFC 6239: 1
- RFC 6353: 1
- RFC 6668: 1
- RFC 6818: 1
- RFC 6960: 1
- RFC 7296: 1
- RFC 7427: 1
- RFC 7617: 1
- RFC2104: 4
- RFC2409: 2
- RFC2460: 1
- RFC3414: 1
- RFC3602: 4
- RFC4253: 2
- RFC4301: 1
- RFC4307: 1
- RFC4344: 1
- RFC4418: 4
- RFC4754: 2
- RFC4868: 4
- RFC5114: 2
- RFC5280: 1
- RFC5639: 3
- RFC5903: 3
- RFC6239: 3
- RFC6353: 1
- RFC6960: 1
- RFC7296: 2
- RFC8017: 2
- X509:
|
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-09-001: 1
- CCMB-2017-09-002: 1
- CCMB-2017-09-003: 1
- CCMB-2017-09-004: 1
- FIPS:
- FIPS PUB 180-4: 1
- FIPS PUB 186-4: 1
- FIPS PUB 197: 2
- FIPS PUB 46-3: 1
- ISO:
- NIST:
- SP 800-38A: 1
- SP 800-38B: 1
- RFC:
- RFC 3447: 1
- RFC 5480: 1
- RFC 5639: 1
- RFC 5869: 1
- RFC 8017: 1
- RFC3447: 1
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- 10 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen appliance is out of scope. 1.4.11.11 No getimagesfromcpt The command line tool getimagesfromcpt must not be used to install: 1
- a smartcard to perform cryptographic operations for IPsec usage. However, usage of the smartcard is out of scope for this TOE. The smartcard can however be used as an entropy source both for genuscreen and: 1
- can, however, be used in certified configurations. If cryptographic functions are used, they are out of scope of the TOE. 1.4.10 Secure Initialisation of genuscreen (Firewall Component) To guarantee that all: 1
- hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all: 1
- out of scope: 4
|
- OutOfScope:
- 30 RSA Generated by ERCA; inserted in VU by manufacturer at the end of the manufacturing phase Out of scope for this ST Not applicable VU non- volatile memory Card.PK (condition al, possibly multiple) Card: 1
- 33 ECC Generated by ERCA; inserted in VU by manufacturer at the end of the manufacturing phase Out of scope for this ST Not applicable VU non- volatile memory (conditional; only present if existing at time: 1
- 33) ECC Generated by MSCA ; obtained by VU in MSCA- _Card certificate during mutual authentication Out of scope for this ST Not applicable VU non- volatile memory (conditional, possibly multiple) VUEGF.P K: 1
- 33. ECC Generated by ERCA; inserted in VU by manufacturer at the end of the manufacturing phase Out of scope for this ST Not applicable VU non- volatile memory EUR.PK (previous) The previous public key of: 1
- 33. ECC Generated by MSCA ; obtained by VU in MSCA_VU-EGF certificate during coupling to an EGF Out of scope for this ST Not applicable VU non- volatile memory (conditional, possibly multiple) DTCO1381 R4.1a: 1
- C as part of the EUR.Link.C; obtained by VU du- ring mutual authentication towards such card or EGF Out of scope for this ST Not applicable VU general nonvo-latile memory (con-ditional; only if the VU has: 1
- MACs for the data integrity control of user data records AES Generated by the VU manufacturer Out of scope of this ST Made unavailable when the VU has reached end of life VU non- volatile memory DTCO1381: 1
- Note: as explained in Annex 1C [54], Appendix 11, section 12.2, a VU contains only one Km-vu. Out of scope for this ST Made unavailable when the VU has reached end of life VU non- volatile Memory Km-wc: 1
- Out of scope: 18
- and session key ECC Generated by card or card manufac- turer; obtained by VU in card certi- Out of scope for this ST Not applicable VU non- volatile memory (conditional, DTCO1381 R4.1a, Security Target: 1
- by card or card manufacturer; obtained by VU in card certificate during mutual authentication Out of scope for this ST Not applicable VU non- volatile memory MS.PK (condition al, Public key of an MSCA other: 1
- for update file To ensure confidentiality of the update file AES Generated by the VU manufacturer Out of scope of this ST Made unavailable when the VU has reached end of life Not permanently stored CBC- MAC: 1
- foreign) MSCA; obtained by VU in Out of scope for this ST Not applicable VU non- volatile memory DTCO1381 R4.1a, Security Target Rev: 1
- key generations). However, a VU will retrieve only one of these keys during the pairing process. Out of scope for this ST Made unavailable at the latest by end of calibration phase Not permanently stored; only: 1
- obtained by VU in EGF certificate during mutual authentication as part of the coupling process Out of scope for this ST Not applicable VU non- volatile memory (conditional, possibly multiple) MSCA _Card.PK: 1
- of the underlying elliptic curve and the CBC- MAC key itself AES Generated by the VU manufacturer Out of scope of this ST Made unavailable when the VU has reached end of life VU non- volatile memory Kvu: 1
- received from VU manufacturer; inserted by VU manufacturer at the end of the manufacturing phase Out of scope for this ST Made unavailable when the VU has reached end of life VU non- volatile memory 38 Note: 1
- received from VU manufacturer; inserted by VU manufacturer at the end of the manufacturing phase Out of scope for this ST Made unavailable when the VU has reached end of life VU non- volatile memory TK: 1
- the MSCA Used by VU to perform verification of RSA Generated by (foreign) MSCA; obtained by VU in Out of scope for this ST Not applicable VU non- volatile memory DTCO1381 R4.1a, Security Target Rev. 1.6 p u b: 1
- under Km) at the end of the manufac-turing phase; obtained and decrypted by VU during pairing Out of scope for this ST Made unavailable at the latest by end of calibration phase Not permanently stored; only: 1
|
| pdf_data/st_metadata |
- /Author: genua GmbH
- /Keywords: firewall, and, VPN, gateway
- /Subject: Common Criteria certification
- /Title: genuscreen 8.0 Security Target
- pdf_file_size_bytes: 402456
- pdf_hyperlinks: http://www.ietf.org/rfc/rfc6960.txt, http://www.ietf.org/rfc/rfc7296.txt, http://www.ietf.org/rfc/rfc4418.txt, http://www.ietf.org/rfc/rfc5639.txt, http://www.ietf.org/rfc/rfc2104.txt, http://www.ietf.org/rfc/rfc4868.txt, http://www.ietf.org/rfc/rfc5656.txt, http://dx.doi.org/10.6028/NIST.FIPS.186-4, http://www.ietf.org/rfc/rfc4307.txt, https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_Functionality_classes_for_random_number_generators_e.pdf?__blob=publicationFile, http://www.ietf.org/rfc/rfc6239.txt, http://www.ietf.org/rfc/rfc5903.txt, http://www.ietf.org/rfc/rfc6353.txt, https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_pdf.html, http://www.ietf.org/rfc/rfc4754.txt, http://www.ietf.org/rfc/rfc3602.txt, http://www.ecc-brainpool.org/download/Domain-parameters.pdf, http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf, http://www.ietf.org/rfc/rfc4253.txt, http://www.ietf.org/rfc/rfc3414.txt, http://www.ietf.org/rfc/rfc4344.txt, http://www.ietf.org/rfc/rfc4301.txt, https://tools.ietf.org/html/draft-miller-secsh-umac-01, http://www.ietf.org/rfc/rfc2460.txt, https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_20_pdf.html, http://dx.doi.org/10.6028/NIST.FIPS.180-4, http://dx.doi.org/10.17487/RFC8017, http://www.ietf.org/rfc/rfc5280.txt, http://www.ietf.org/rfc/rfc5114.txt, http://dx.doi.org/10.6028/NIST.SP.800-38D, http://dx.doi.org/10.6028/NIST.SP.800-38A, https://doi.org/10.17487/RFC8017, http://www.ietf.org/rfc/rfc2409.txt
- pdf_is_encrypted: False
- pdf_number_of_pages: 83
|
- pdf_file_size_bytes: 1596747
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 129
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |