| name |
Privileged Access Security-Digital Vault Server (EPV) version 10.4 |
LGMS Security Assessment Report Generator (LGMS Reporter) v1.0.0 |
| category |
Other Devices and Systems |
Other Devices and Systems |
| scheme |
US |
MY |
| status |
archived |
archived |
| not_valid_after |
30.09.2021 |
24.12.2024 |
| not_valid_before |
30.09.2019 |
24.12.2019 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11004-ci.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-CERT-C106-CERTIFICATE-v1.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11004-vr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C106-CR-V1.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11004-st.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ST-2019%20LGMS%20Security%20Assessment%20Report%20Generator%20Security%20Target-v2.0.pdf |
| manufacturer |
CyberArk Software, Ltd |
LE Global Services Sdn Bhd |
| manufacturer_web |
https://www.cyberark.com/ |
https://www.lgms.global |
| security_level |
{} |
EAL2 |
| dgst |
76a3eb7f8d979d48 |
1fc0ca2718acb33f |
| heuristics/cert_id |
CCEVS-VR-11004-2019 |
ISCB-5-RPT-C106-CR-v1 |
| heuristics/cert_lab |
US |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ADV_FSP.1, AVA_VAN.1, ASE_TSS.1, ASE_REQ.1, ASE_OBJ.1, AGD_OPE.1, ASE_SPD.1, ALC_TSU_EXT.1, ASE_INT.1, ALC_CMC.1, ALC_CMS.1, ASE_ECD.1, ASE_CCL.1, ATE_IND.1, AGD_PRE.1 |
ADV_ARC.1, ATE_COV.1, AVA_VAN.2, ASE_TSS.1, ADV_TDS.1, AGD_OPE.1, ATE_IND.2, ALC_DEL.1, ASE_INT.1, ASE_REQ.2, ASE_CCL.1, ALC_CMC.2 |
| heuristics/extracted_versions |
10.4 |
1.0.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
1aeebf1c5963b606 |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp_app_v1.2.pdf |
{} |
| pdf_data/cert_filename |
st_vid11004-ci.pdf |
ISCB-5-CERT-C106-CERTIFICATE-v1.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11004-2019: 1
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20191009160535-04'00'
- /ModDate: D:20191009160535-04'00'
- /Producer: iText 2.1.0 (by lowagie.com)
- pdf_file_size_bytes: 181228
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /AAPL:Keywords: []
- /CreationDate: D:20200106085800Z00'00'
- /Creator: Word
- /Keywords:
- /ModDate: D:20200106085800Z00'00'
- /Producer: macOS Version 10.14.6 (Build 18G95) Quartz PDFContext
- /Title: Microsoft Word - ISCB-5-CERT-C106-CERTIFICATE-v1.docx
- pdf_file_size_bytes: 271097
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
st_vid11004-vr.pdf |
ISCB-5-RPT-C106-CR-V1.pdf |
| pdf_data/report_frontpage |
- US:
- cert_id: CCEVS-VR-11004-2019
- cert_item: CyberArk Privileged Access Security – Digital Vault Server Including Enterprise Password Vault (EPV) v10.4
- cert_lab: US NIAP
|
|
| pdf_data/report_keywords/cc_cert_id |
|
- MY:
- ISCB-5-RPT-C106-CR-V1: 27
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
- A:
- A.PLATFORM: 1
- A.PROPER_ADMIN: 1
- A.PROPER_USER: 1
- T:
- T.LOCAL_ATTACK: 1
- T.NETWORK_ATTACK: 1
- T.NETWORK_EAVESDROP: 1
- T.PHYSICAL_ACCESS: 1
|
- A:
- A.ADMIN: 1
- A.PHY: 1
- A.TIMESTAMP: 1
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- CC:
- CCMB-2012-09-001: 1
- CCMB-2012-09-002: 1
- CCMB-2012-09-003: 1
- CCMB-2012-09-004: 1
|
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- OutOfScope:
- by LE Global Services Sdn Bhd. The platform, virtual machine and SQL database of the TOE are out of scope. Users are able to access to TOE upon successful authentication through web browser and perform the: 1
- out of scope: 1
|
| pdf_data/report_metadata |
- /CreationDate: D:20191009150014-04'00'
- /ModDate: D:20191009150014-04'00'
- pdf_file_size_bytes: 850932
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 18
|
- /CreationDate: D:20200106044235Z00'00'
- /Creator: Word
- /ModDate: D:20200106044235Z00'00'
- /Producer: macOS Version 10.15 (Build 19A583) Quartz PDFContext
- /Title: Microsoft Word - ISCB-5-RPT-C106-CR-V1.docx
- pdf_file_size_bytes: 678518
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 28
|
| pdf_data/st_filename |
st_vid11004-st.pdf |
ST-2019 LGMS Security Assessment Report Generator Security Target-v2.0.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ALC_TSU_EXT.1: 2
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_REQ.1: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 1
- ADV_TDS.1: 1
- AGD:
- ALC:
- ALC_CMC.2: 1
- ALC_DEL.1: 1
- ASE:
- ASE_CCL: 2
- ASE_CCL.1: 1
- ASE_ECD: 3
- ASE_INT: 2
- ASE_INT.1: 1
- ASE_OBJ: 2
- ASE_REQ: 4
- ASE_REQ.2: 1
- ASE_SPD: 2
- ASE_TSS.1: 1
- ATE:
- ATE_COV.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FCS:
- FCS_CKM: 1
- FCS_CKM.1: 6
- FCS_CKM.1.1: 1
- FCS_CKM.2: 5
- FCS_CKM.2.1: 1
- FCS_CKM_EXT.1: 5
- FCS_CKM_EXT.1.1: 1
- FCS_COP.1: 19
- FCS_COP.1.1: 4
- FCS_DTLS_EXT.1: 1
- FCS_RBG_EXT: 1
- FCS_RBG_EXT.1: 6
- FCS_RBG_EXT.1.1: 1
- FCS_RBG_EXT.2: 4
- FCS_RBG_EXT.2.1: 1
- FCS_RBG_EXT.2.2: 1
- FCS_STO_EXT.1: 8
- FCS_STO_EXT.1.1: 2
- FCS_TLSC_EXT: 1
- FCS_TLSC_EXT.1: 2
- FCS_TLSC_EXT.1.1: 1
- FCS_TLSC_EXT.1.2: 1
- FCS_TLSC_EXT.4: 1
- FCS_TLSS_EXT.1: 5
- FCS_TLSS_EXT.1.1: 4
- FCS_TLSS_EXT.1.2: 1
- FCS_TLSS_EXT.1.3: 1
- FCS_TLSS_EXT.1.4: 1
- FCS_TLSS_EXT.1.5: 1
- FCS_TLSS_EXT.1.6: 1
- FDP:
- FDP_DAR_EXT.1: 8
- FDP_DAR_EXT.1.1: 1
- FDP_DEC_EXT.1: 6
- FDP_DEC_EXT.1.1: 1
- FDP_DEC_EXT.1.2: 1
- FDP_NET: 1
- FDP_NET_EXT.1: 4
- FDP_NET_EXT.1.1: 1
- FMT:
- FMT_CFG_EXT.1: 6
- FMT_CFG_EXT.1.1: 1
- FMT_CFG_EXT.1.2: 2
- FMT_MEC_EXT.1: 7
- FMT_MEC_EXT.1.1: 2
- FMT_SMF.1: 6
- FMT_SMF.1.1: 2
- FPR:
- FPR_ANO_EXT.1: 6
- FPR_ANO_EXT.1.1: 1
- FPT:
- FPT_AEX_EXT.1: 6
- FPT_AEX_EXT.1.1: 1
- FPT_AEX_EXT.1.2: 1
- FPT_AEX_EXT.1.3: 2
- FPT_AEX_EXT.1.4: 2
- FPT_AEX_EXT.1.5: 1
- FPT_API_EXT.1: 6
- FPT_API_EXT.1.1: 1
- FPT_API_EXT.2: 1
- FPT_IDV_EXT.1: 1
- FPT_LIB_EXT.1: 6
- FPT_LIB_EXT.1.1: 1
- FPT_TUD_EXT.1: 6
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.1.3: 1
- FPT_TUD_EXT.1.4: 1
- FPT_TUD_EXT.1.5: 2
- FPT_TUD_EXT.1.6: 1
- FTP:
- FTP_DIT_EXT.1: 5
- FTP_DIT_EXT.1.1: 1
|
- FAU:
- FAU_GEN.1: 8
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 7
- FAU_GEN.2.1: 1
- FDP:
- FDP_ACC.1: 9
- FDP_ACC.1.1: 1
- FDP_ACF.1: 7
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FIA:
- FIA_AFL.1: 7
- FIA_AFL.1.1: 1
- FIA_ATD.1: 6
- FIA_ATD.1.1: 1
- FIA_SOS.1: 6
- FIA_SOS.1.1: 1
- FIA_UAU.1: 6
- FIA_UAU.1.1: 1
- FIA_UAU.1.2: 1
- FIA_UID.1: 10
- FIA_UID.1.1: 1
- FIA_UID.1.2: 1
- FMT:
- FMT_MSA.1: 7
- FMT_MSA.1.1: 1
- FMT_MSA.3: 8
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_SMF.1: 8
- FMT_SMF.1.1: 1
- FMT_SMR.1: 10
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FTP:
- FTP_TRP.1: 6
- FTP_TRP.1.1: 1
- FTP_TRP.1.2: 1
- FTP_TRP.1.3: 1
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.PLATFORM: 3
- A.PROPER_ADMIN: 3
- A.PROPER_USER: 3
- O:
- O.B: 1
- O.INTEGRITY: 3
- O.MANAGEMENT: 5
- O.PROTECTED_COMMS: 5
- O.PROTECTED_STORAGE: 3
- O.QUALITY: 5
- OE:
- OE.PLATFORM: 3
- OE.PROPER_ADMIN: 3
- OE.PROPER_USER: 3
- T:
- T.LOCAL_ATTACK: 2
- T.NETWORK_ATTACK: 5
- T.NETWORK_EAVESDROP: 4
- T.PHYSICAL_ACCESS: 2
|
- A:
- A.ADMIN: 3
- A.PHY: 3
- A.TIMESTAMP: 2
- O:
- O.AUTHENTICATE: 5
- O.MAL_UPLOAD: 4
- O.SEC_ACCESS: 5
- O.SEC_PROTOCOL: 4
- OE:
- OE.PHY: 3
- OE.TRUSTED_ADMIN: 3
- OE.TRUSTED_TIMESTAMP: 3
- T:
- T.BROKEN_ACCESS: 3
- T.BROKEN_AUTH: 4
- T.MAL_INTERCEPTION: 3
- T.MAL_UPLOAD: 4
|
| pdf_data/st_keywords/vendor |
- Microsoft:
- Microsoft: 11
- Microsoft Corporation: 2
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- constructions:
|
|
| pdf_data/st_keywords/asymmetric_crypto |
- ECC:
- FF:
- DH:
- DH: 1
- DHE: 1
- Diffie-Hellman: 3
- DSA:
- RSA:
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA2:
- SHA-256: 4
- SHA-384: 5
- SHA256: 2
- SHA384: 2
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- SSH:
- TLS:
- SSL:
- SSL: 2
- SSL 2.0: 1
- SSL 3.0: 1
- TLS:
- TLS: 46
- TLS 1.0: 1
- TLS 1.1: 1
- TLS 1.2: 1
- TLS v1.2: 4
- TLSv1.2: 1
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
- TLS:
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 2
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 2
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 2
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 2
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- FIPS PUB 186-4: 4
- FIPS5: 1
- NIST:
- NIST SP 800-38A: 1
- NIST SP 800-38D: 1
- NIST SP 800-57: 1
- SP 800-90: 1
- SP 800-90A: 1
- RFC:
- RFC 5246: 1
- RFC 5280: 5
- RFC 5289: 4
- RFC 5759: 2
- RFC5280: 1
- RFC5759: 1
- X509:
|
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- by LE Global Services Sdn Bhd. The platform, virtual machine and SQL database of the TOE are out of scope. Users are able to access to TOE upon successful authentication through web browser and perform the: 1
- out of scope: 1
|
| pdf_data/st_metadata |
- /Author: Corsec Security, Inc.
- /CreationDate: D:20190926213100-04'00'
- /Creator: Microsoft® Word for Office 365
- /ModDate: D:20190926213100-04'00'
- /Producer: Microsoft® Word for Office 365
- /Subject: <TOE Name>
- /Title: Security Target
- pdf_file_size_bytes: 883994
- pdf_hyperlinks: http://www.corsec.com/, https://csrc.nist.gov/projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/HMAC#3645, https://www.cyberark.com/product-security/, https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/Component#1945, mailto:[email protected], https://csrc.nist.gov/projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/AES#5487, https://csrc.nist.gov/projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/RSA#2948, https://docs.oracle.com/javase/7/docs/technotes/tools/windows/jarsigner.html#CCHFIDAB, https://support.cyberark.com/, https://csrc.nist.gov/projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/SHS#4404, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=11441, http://www.cyberark.com/, https://csrc.nist.gov/projects/Cryptographic-Algorithm-Validation-Program/Validation/Validation-List/DRBG#2162
- pdf_is_encrypted: False
- pdf_number_of_pages: 46
|
- /CreationDate: D:20191210064800Z00'00'
- /Creator: Word
- /ModDate: D:20191210064800Z00'00'
- /Producer: macOS Version 10.15.1 (Build 19B88) Quartz PDFContext
- /Title: Microsoft Word - ST-2019 LGMS Security Assessment Report Generator Security Target-v2.0.docx
- pdf_file_size_bytes: 2698829
- pdf_hyperlinks: {}
- pdf_is_encrypted: True
- pdf_number_of_pages: 27
|
| state/cert/convert_garbage |
True |
True |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |