| name |
Hewlett Packard Enterprise HSR6600 Series, HSR6800 Series, and MSR1000 Series routers, all with Comware V7.1 |
StoneGate Firewall v5.2.5 |
| category |
Network and Network-Related Devices and Systems |
Boundary Protection Devices and Systems |
| scheme |
MY |
SE |
| status |
archived |
archived |
| not_valid_after |
22.04.2021 |
01.09.2019 |
| not_valid_before |
22.04.2016 |
24.01.2012 |
| cert_link |
|
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/CCRA%20Certificate%20StoneGate%205.2.5.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C070-CR-v1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/CCRA%20Certification%20Report%20StoneGate.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/HP%20HSR-MSR%20Routers%20EAL3%20ST%20v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/CCRA%20StoneGate525_ST.pdf |
| manufacturer |
Hewlett Packard Enterprise |
Stonesoft Corporation |
| manufacturer_web |
https://www.hpe.com/ |
https://www.stonesoft.com/ |
| security_level |
ALC_FLR.2, EAL3+ |
EAL4+, ALC_FLR.1 |
| dgst |
9fbd666e2a4e9776 |
ae5e85a0f50e2ef0 |
| heuristics/cert_id |
ISCB-5-RPT-C070-CR-v1 |
CSEC2011001 |
| heuristics/cert_lab |
[] |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ALC_FLR.2 |
ADV_TDS.3, AVA_VAN.3, ASE_CCL.1, ATE_FUN.1, ASE_OBJ.2, ASE_INT.1, ALC_CMC.4, ASE_REQ.2, AGD_PRE.1, ATE_IND.2, ATE_DPT.1, ASE_ECD.1, ALC_FLR.1, ADV_IMP.1, ALC_LCD.1, ASE_SPD.1, ATE_COV.2, ALC_DVS.1, ALC_TAT.1, AGD_OPE.1, ALC_CMS.4, ALC_DEL.1, ASE_TSS.1, ADV_FSP.4, ADV_ARC.1 |
| heuristics/extracted_versions |
7.1 |
5.2.5 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- cert_no: 2016-001-C070
- certification_date: 22.04.2016
- developer: Hewlett Packard Enterprise
- enhanced:
- assurance_level: EAL3+ALC_FLR.2
- category: Network and Network-Related Devices and Systems
- cert_id: C070
- certification_date: 22.04.2016
- developer: HP EnterpriseTel: +1 512 432-2947Cell: +1 512 632-6308VoIP: +1 512 319-5317Email: [email protected] Tandem Blvd.Austin, TX 78728 – USA URL: http://www.hpe.com/
- expiration_date: 22.04.2021
- mutual_recognition: CCRA
- product: Hewlett Packard Enterprise HSR6600 Series, HSR6800 Series, and MSR1000 Series Routers, all with Comware V7.1
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C070/ISCB-5-RPT-C070-CR-v1.pdf
- scope: The TOE is comprised of the HP HSR6600 Series (2 devices), HSR6800 Series (3 devices) and MSR1000 Series (2 devices) Routers, all with Comware V7.1 software. Each router is a stand-alone network appliance that provides layer 2 switching and layer 3 routing and service functions. The following security functions are implemented by the TOE: Security Audit: The TOE is able to generate audit records of security-relevant events occurring on the TOE. Cryptographic Support: The TOE implements cryptographic algorithms that provide key management, random bit generation, data encryption and decryption, digital signature generation and verification, and secure hashing and key-hashing features in support of higher level cryptographic protocols, including IPsec and SSHv2. User Data Protection: The TOE provides firewall capabilities that allow for the definition of firewall rules, collectively known as access control lists (ACLs), which are applied to applicable network traffic as it is received and which would pass through the TOE between connected networks. Identification and Authentication: The TOE requires administrators to be successfully identified and authenticated before they can access any security management functions available in the TOE. Security Management: The TOE provides a command line interface (CLI) to access its security management functions. TSF Protection: The TOE implements a number of self-tests that it performs when it starts up, to ensure its cryptographic functions operate properly and that the Comware and TSF executable files have not been modified. TOE Access: The TOE will terminate interactive sessions after a period of inactivity configurable by an administrator. Trusted Channel/Path: The TOE protects interactive communication with administrators using SSHv2 for CLI access. Using SSHv2, both integrity and disclosure protection is ensured.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C070/HP%20HSR-MSR%20Routers%20EAL3%20ST%20v1.0.pdf
- type: Network and Network related Devices and Systems
- expiration_date: 22.04.2021
- level: EAL3+ALC_FLR.2
- product: Hewlett Packard Enterprise HSR6600 Series, HSR6800 Series, and MSR1000 Series Routers, all with Comware V7.1
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/115
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
|
CCRA Certificate StoneGate 5.2.5.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
- /CreationDate: D:20120124131428+01'00'
- /ModDate: D:20230313141311+01'00'
- pdf_file_size_bytes: 1252285
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
ISCB-5-RPT-C070-CR-v1.pdf |
CCRA Certification Report StoneGate.pdf |
| pdf_data/report_frontpage |
|
|
| pdf_data/report_keywords/cc_cert_id |
- MY:
- ISCB-5-RPT-C070-CR-v1: 33
|
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 3: 3
- EAL3: 4
- EAL3+: 2
|
|
| pdf_data/report_keywords/cc_sar |
|
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.1: 1
- ALC_FLR.1: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.2: 1
- ATE_DPT.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
- FAU:
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2.1: 1
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FIA:
- FMT:
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FTA:
- FTA_SSL.3.1: 1
- FTA_SSL.4.1: 1
|
|
| pdf_data/report_keywords/cc_claims |
|
- A:
- A.ADMINTRUSTED: 1
- A.ADMIN_ACCESS: 1
- A.MEDIAT_SUPPORT: 1
- A.TIME: 1
- A.USER_AUTH: 1
- T:
- T.AUDIT_UNDETECTED: 1
- T.MEDIAT: 1
- T.NODE_FAILURE: 1
- T.SELPRO: 1
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- FIPS:
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
- CC:
- CCMB-2009-07-001: 1
- CCMB-2009-07-002: 1
- CCMB-2009-07-003: 1
- CCMB-2009-07-004: 1
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
- /Author: idsafairis
- /CreationDate: D:20160426144556+08'00'
- /Creator: PScript5.dll Version 5.2.2
- /ModDate: D:20160426144808+08'00'
- /Producer: Acrobat Distiller 11.0 (Windows)
- /Title: Microsoft Word - ISCB-5-RPT-C070-CR-v1.docx
- pdf_file_size_bytes: 446526
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 34
|
- /Ansvarigt Område/enhet: CSEC
- /Author: Jerry Johansson
- /C-datum: 2008
- /CSECID:
- /Company: ORGNAME
- /CreationDate: D:20120123183309+01'00'
- /Creator: Acrobat PDFMaker 10.1 för Word
- /Current Version: 7.0
- /DDocBinder: Scheme (CB)
- /DDocCabinet: QMS
- /DDocID: 2005-03-05-64D6-T9YR
- /DDocLastModDate: 2006-03-16 10:56:39
- /DDocLibrary: https://haddock.fmv.se/domdoc/CSECLib.nsf
- /DDocRevision: 3,7
- /DDocTitle: 035 CB General Document - Template
- /Datum, skapat: -
- /Deluppdragsbenämning:
- /Document responsible: Certification Manager
- /Dokument Status: Aktiv
- /Dokumentansvarig: Jerry Johansson
- /Dokumentansvarigs enhet: KC Ledsyst
- /Dokumentbeteckning:
- /Dokumentdatum: 2012-01-24
- /Dokumenttitel: Certification Report StoneGate FW/VPN 5.2.5
- /Dokumenttyp: CB
- /FMV_beteckning: 11FMV3127-87:1
- /Fastställarens roll: Head of CSEC
- /Fastställt av: Dag Ströman
- /Fastställt av1: Dag Ströman
- /Format:
- /Giltigt från: -
- /Infoklass: HEMLIG/
- /Information Management:
- /Informationsklass:
- /Keywords:
- /Klassificeringsnr: 25 550
- /MallVersion: 7.0
- /ModDate: D:20120126091448+01'00'
- /Paragraf:
- /Platina: 1
- /Producer: Adobe PDF Library 10.0
- /Referens ID:
- /Sekr. gäller tom.: -
- /SourceModified: D:20120123173245
- /Stämpel: 0
- /Subject: 11FMV3127-87:1
- /Title: Certification Report StoneGate FW/VPN 5.2.5
- /Uncontrolled: 0.000000
- /Uppdragsbenämning:
- /Utgåva: 1.0
- /_dlc_DocId:
- /_dlc_DocIdItemGuid: 302905eb-20f8-4118-b864-a57035b1bd0f
- /_dlc_DocIdUrl: http://sharepoint.fmv.se/projekt/CSEC/_layouts/DocIdRedir.aspx?ID=FMVID-291-15, FMVID-291-15
- pdf_file_size_bytes: 137695
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 15
|
| pdf_data/st_filename |
|
CCRA StoneGate525_ST.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL4: 3
- EAL4 augmented: 1
|
| pdf_data/st_keywords/cc_sar |
|
|
| pdf_data/st_keywords/cc_sfr |
|
- FAU:
- FAU_GEN: 1
- FAU_GEN.1: 9
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_SEL.1: 6
- FAU_SEL.1.1: 1
- FAU_STG: 16
- FAU_STG.1: 8
- FAU_STG.1.1: 1
- FAU_STG.1.2: 1
- FAU_STG.4: 2
- FCS:
- FDP:
- FDP_ACC.1: 2
- FDP_IFC.1: 10
- FDP_IFC.1.1: 1
- FDP_IFF.1: 8
- FDP_IFF.1.1: 3
- FDP_IFF.1.2: 4
- FDP_IFF.1.3: 3
- FDP_IFF.1.4: 1
- FDP_IFF.1.5: 4
- FIA:
- FMT:
- FMT_MSA.1: 8
- FMT_MSA.1.1: 1
- FMT_MSA.2: 6
- FMT_MSA.2.1: 1
- FMT_MSA.3: 7
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_MTD.1: 9
- FMT_MTD.1.1: 1
- FMT_SMF.1: 9
- FMT_SMF.1.1: 1
- FMT_SMR.1: 9
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_FLS.1: 8
- FPT_FLS.1.1: 1
- FPT_STM.1: 1
- FRU:
- FRU_FLT.2: 6
- FRU_FLT.2.1: 1
|
| pdf_data/st_keywords/cc_claims |
|
- A:
- A.ADMINTRUSTED: 2
- A.ADMIN_ACCESS: 2
- A.AUDITMAN: 2
- A.AUDIT_SUPPORT: 2
- A.MEDIAT_SUPPORT: 2
- A.OPERATING_ENVIRONMENT: 2
- A.TIME: 3
- A.USER_AUTH: 2
- O:
- O.AUDIT: 8
- O.HIGHAVAILABILITY: 5
- O.MEDIAT: 6
- O.NETADDRHIDE: 5
- O.SECFUN: 9
- OE:
- OE.ADMINTRUSTED: 2
- OE.ADMIN_ACCESS: 3
- OE.AUDITMAN: 3
- OE.AUDIT_SUPPORT: 3
- OE.MEDIAT_SUPPORT: 4
- OE.OPERATING_ENVIRONMENT: 2
- OE.TIME: 4
- OE.USER_AUTH: 3
- T:
- T.AUDIT_UNDETECTD: 1
- T.AUDIT_UNDETECTED: 4
- T.MEDIAT: 5
- T.MEDIATE: 1
- T.NODE_FAILURE: 2
- T.SELPRO: 3
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
- IKE:
- IPsec:
- SSH:
- TLS:
- VPN:
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- RFC:
- RFC 1631: 1
- RFC 2616: 2
- RFC 821: 1
- RFC 959: 3
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- of Security Functions: Administrators access the firewall engine through the Management Server (out of scope) which provides the interface for managing the security policy and authentication attributes, the: 1
- out of scope: 1
|
| pdf_data/st_metadata |
|
- /Author: Rasma
- /CreationDate: D:20111010103230Z
- /Creator: PScript5.dll Version 5.2.2
- /ModDate: D:20120126091508+01'00'
- /Producer: AFPL Ghostscript 8.54
- /Title: Microsoft Word - StoneGate-ST.doc
- pdf_file_size_bytes: 258994
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 33
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
True |
| state/cert/download_ok |
False |
True |
| state/cert/extract_ok |
False |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
False |
True |
| state/st/download_ok |
False |
True |
| state/st/extract_ok |
False |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |