| name |
MQAssure™/AppShield v1.2_CR6 Integrated with MQAssure™/IAM v1.0_CR6 |
Appliporter Security Kitt 01-00 |
| category |
Access Control Devices and Systems |
Other Devices and Systems |
| scheme |
MY |
JP |
| status |
archived |
archived |
| not_valid_after |
11.04.2016 |
07.10.2013 |
| not_valid_before |
11.04.2011 |
28.04.2005 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C005-CR-v1a.pdf |
https://www.commoncriteriaportal.org/files/epfiles/c0025_ecvr.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/MQAssure_AppShield_1.2_Security_Target_EAL4_1.21.pdf |
https://www.commoncriteriaportal.org/files/epfiles/ |
| manufacturer |
MagnaQuest Solutions Sdn Bhd |
Hitachi, Ltd. |
| manufacturer_web |
https://www.magnaquest.com |
|
| security_level |
EAL4 |
EAL2 |
| dgst |
7080fd6cdf564f88 |
7d08cdfa6d2cb535 |
| heuristics/cert_id |
ISCB-5-RPT-C005-CR-v1a |
JISEC-CC-CRP-C0025 |
| heuristics/cert_lab |
[] |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ADV_TDS.3, AVA_VAN.3, ASE_CCL.1, ATE_FUN.1, ASE_OBJ.2, ASE_INT.1, ALC_CMC.4, ASE_REQ.2, AGD_PRE.1, ATE_IND.2, ASE_ECD.1, ADV_IMP.1, ALC_LCD.1, ATE_DPT.2, ASE_SPD.1, ATE_COV.2, ALC_DVS.1, ALC_TAT.1, AGD_OPE.1, ALC_CMS.4, ALC_DEL.1, ASE_TSS.1, ADV_FSP.4, ADV_ARC.1 |
{} |
| heuristics/extracted_versions |
1.0, 1.2 |
00, 01 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- cert_no: 2011-007-C005
- certification_date: 11.04.2011
- developer: MagnaQuest Solutions Sdn. Bhd
- enhanced:
- assurance_level: EAL4
- category: Access Control Devices and System
- cert_id: C005
- certification_date: 11.04.2011
- developer: Ramdas Nemani A-2-07 & A-2-09SME Technopreneur Centre1,2270 Jalan Usahawan 2,63000 Cyberjaya, Selangor DE,MALAYSIA URL: http://www.magnaquest.comEmail: [email protected]: +60 (3) 8318 2964Fax: +60 (3) 8319 2534
- expiration_date: 11.04.2016
- mutual_recognition: CCRA
- product: MQAssureTM/AppShield v1.2_CR6 integrated with MQAssureTM/IAM v1.0_CR6
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C005/ISCB-5-RPT-C005-CR-v1a.pdf
- scope: The Target of Evaluation (TOE) is a software product, which comprises of MQAssure™/AppShield v1.2_CR6 integrated with MQAssure™/IAM v1.0_CR6. The MQAssureTM/AppShield v1.2_CR6 (hereafter referred as Appshield) combined with MQAssureTM/IAM v1.0_CR6 (hereafter referred as IAM) is an access control software for web applications. The TOE controls access to web filtering applications by enforcing authentication and authorisation using multifactor authentication schemes. It is also capable of session control, and request validation based on its core engine policy and rules. IAM or Identity and Access Management is the core engine of the TOE. It is a centralised identity and access management platform that provides the back bone for the AppShield security functionality. In the overall infrastructure, AppShield acts as a policy enforcement agent for the web applications. The security features within the scope of the evaluation for IAM includes: Multifactor User Authentication which includes MyKad-Biometric, iKey-PIN or password. TOE Administration which provides a web based GUI console for the administrator to configure and manage the TOE. Security Audit which generates audit records for relevant authentication events and access events to various objects. The security features within the scope of the evaluation for AppShield includes: Access Control which enforces access control policy decision made by the IAM. HTTP request validation which protects the web applications from common input tampering attacks.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C005/MQAssure_AppShield_1.2_Security_Target_EAL4_1.21.pdf
- type: Access Control Software for Web Applications
- expiration_date: 11.04.2016
- level: EAL4
- product: MQAssureTM/AppShield v1.2_CR6 integrated with MQAssureTM/IAM v1.0_CR6
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/71
|
- cert_id: JISEC-CC-CRP-C0025
- certification_date: 01.04.2005
- claim: EAL2
- enhanced:
- assurance_level: EAL2
- description: PRODUCT DESCRIPTION " Appliporter " is basic software used to construct the electronic application system. That has the function to provide the electronic application system that adds an authentication and integrity of an electronic document using a digital certificate. " Appliporter Security Kit" is composed of the function module of the following library/utility that offers the security function in the module that composes " Appliporter ". - Session management service. - Receipt management service. - Delivery service. - Application operation support service (log management). - Session management service operation management function. - Receipt management service operation management function. - Delivery service operation management function.
- evaluation_facility: Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)
- product: Appliporter Security Kit
- product_type: IT Product (Basic software of electronic application)
- toe_version: 01-00
- vendor: Hitachi, Ltd.
- expiration_date: 01.10.2013
- supplier: Hitachi, Ltd.
- toe_japan_link: https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0025_it4022.html
- toe_japan_name: Appliporter Security Kit 01-00
- toe_overseas_link: None
- toe_overseas_name: -----
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
ISCB-5-RPT-C005-CR-v1a.pdf |
c0025_ecvr.pdf |
| pdf_data/report_frontpage |
|
|
| pdf_data/report_keywords/cc_cert_id |
- MY:
- ISCB-5-RPT-C005-CR-v1a: 33
|
- JP:
- Certification No. C0025: 1
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
- ITSC:
- Information Technology Security Center: 1
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
- RFC:
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
- /Author: ISCB Department
- /Category: PUBLIC
- /Caveat: FINAL
- /Classification: PUBLIC
- /Company: CyberSecurity Malaysia
- /CreationDate: D:20110414172127+08'00'
- /Creator: Acrobat PDFMaker 8.1 for Word
- /Developer: MagnaQuest Solutions Sdn Bhd
- /Document Type: REPORT
- /Identifier: ISCB-5-RPT-C005-CR-v1a
- /Index: MyCB_TMP_011
- /Keywords: MyCB_TMP_011
- /ModDate: D:20110414172137+08'00'
- /Phase: Released
- /Producer: Acrobat Distiller 8.1.0 (Windows)
- /Project Code: C005
- /Released: 11 April 2011
- /ST Title: Security Target for the MQAssureTM/AppShield v1.2 Integrated with MQAssureTM/IAM v1.0
- /ST Version: v1.21
- /SourceModified: D:20110414092101
- /Sponsor: MagnaQuest Solutions Sdn Bhd
- /Subject: MQAssure™/AppShield v1.2_CR6 integrated with MQAssure™/IAM v1.0_CR6
- /TOE Name & Version: MQAssure™/AppShield v1.2_CR6 integrated with MQAssure™/IAM v1.0_CR6
- /Title: C005 Certification Report
- /Version: v1a
- pdf_file_size_bytes: 596718
- pdf_hyperlinks: mailto:[email protected], http://www.cybersecurity.my/mycc
- pdf_is_encrypted: True
- pdf_number_of_pages: 33
|
- /CreationDate: D:20050502180053+09'00'
- /ModDate: D:20050502180053+09'00'
- /Producer: Acrobat Distiller 6.0.1 (Windows)
- /Title: untitled
- pdf_file_size_bytes: 12618
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/st_filename |
MQAssure_AppShield_1.2_Security_Target_EAL4_1.21.pdf |
|
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.1: 1
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.2: 1
- ATE_DPT.2: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_ARP.1: 7
- FAU_ARP.1.1: 1
- FAU_GEN.1: 9
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 4
- FAU_GEN.2.1: 1
- FAU_SAA.1: 6
- FAU_SAA.1.1: 1
- FAU_SAA.1.2: 1
- FAU_SAR.1: 6
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 4
- FAU_SAR.2.1: 1
- FDP:
- FDP_ACC.1: 7
- FDP_ACC.1.1: 1
- FDP_ACF.1: 5
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FIA:
- FIA_AFL.1: 5
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 2
- FIA_ATD.1: 7
- FIA_ATD.1.1: 1
- FIA_SOS.1: 4
- FIA_SOS.1.1: 1
- FIA_UAU.1: 2
- FIA_UAU.2: 4
- FIA_UAU.2.1: 1
- FIA_UAU.5: 6
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
- FIA_UAU.6: 5
- FIA_UAU.6.1: 1
- FIA_UID.1: 5
- FIA_UID.2: 8
- FIA_UID.2.1: 1
- FMT:
- FMT_MSA.1: 6
- FMT_MSA.1.1: 1
- FMT_MSA.3: 5
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_SAE.1: 5
- FMT_SAE.1.1: 1
- FMT_SAE.1.2: 1
- FMT_SMF.1: 6
- FMT_SMF.1.1: 1
- FMT_SMR.1: 8
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FTA:
- FTA_MCS.1: 3
- FTA_MCS.1.1: 1
- FTA_MCS.1.2: 1
- FTA_SSL.3: 6
- FTA_SSL.3.1: 1
- FTA_TAH.1: 5
- FTA_TAH.1.1: 1
- FTA_TAH.1.2: 1
- FTA_TAH.1.3: 1
- FTA_TSE.1: 7
- FTA_TSE.1.1: 1
|
|
| pdf_data/st_keywords/cc_claims |
- A:
- A: 1
- A.FIREWALL: 2
- A.IAM_DATA: 2
- A.IAM_PROTECT: 2
- A.MAIL_SERVER: 2
- A.NO_EVIL: 2
- A.PHYS_SEC: 2
- A.TIME_STAMP: 2
- A.TRANS_PROTECT: 2
- O:
- O.ACC_CONTROL: 6
- O.ALERT: 4
- O.AUDIT: 6
- O.AUTH_MECH: 5
- O.FILTER: 7
- O.LOCKOUT: 5
- O.RESTRICT_AUTH: 5
- O.SECURE_CONFIG: 5
- OE:
- OE.FIREWALL: 2
- OE.IAM_DATA: 2
- OE.IAM_PROTECT: 2
- OE.MAIL_SERVER: 2
- OE.NO_EVIL: 2
- OE.PHYS_SEC: 2
- OE.TIME_STAMP: 2
- OE.TRANS_PROTECT: 2
- T:
- T.DATA_ACCESS: 2
- T.RECONFIG: 2
- T.USER_PARAM: 2
- T.WEAK_PASS: 2
- T.WEB_ATTACK: 2
|
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /Author: zarina
- /Company: Microsoft
- /CreationDate: D:20110414172302+08'00'
- /Creator: Acrobat PDFMaker 8.1 for Word
- /ModDate: D:20110414172319+08'00'
- /Producer: Acrobat Distiller 8.1.0 (Windows)
- /SourceModified: D:20110330044814
- /Title:
- pdf_file_size_bytes: 622066
- pdf_hyperlinks: {}
- pdf_is_encrypted: True
- pdf_number_of_pages: 43
|
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
False |
| state/st/download_ok |
True |
False |
| state/st/extract_ok |
True |
False |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |