Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Governikus – Teil der Virtuellen Poststelle des Bundes (Basis) Version 3.3.1.3
BSI-DSZ-CC-0654-2011 		NetApp Storage Encryption (NSE) Running ONTAP 9.14.1
CCEVS-VR-VID-11477-2024
name Governikus – Teil der Virtuellen Poststelle des Bundes (Basis) Version 3.3.1.3 NetApp Storage Encryption (NSE) Running ONTAP 9.14.1
category Products for Digital Signatures Other Devices and Systems
scheme DE US
status archived active
not_valid_after 01.09.2019 18.11.2026
not_valid_before 15.04.2011 18.11.2024
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11477-ci.pdf
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0654a_pdf.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11477-vr.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0654b_pdf.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11477-st.pdf
manufacturer Bremen online services GmbH and Co. KG NetApp, Inc.
manufacturer_web https://www.bos-bremen.de/ https://www.netapp.com/
security_level AVA_VLA.4, ADO_DEL.2, ALC_TAT.1, ADV_IMP.1, AVA_MSU.3, EAL3+, ADV_LLD.1 {}
dgst a75468dfc0148f91 ebcbec6fc7d39ca6
heuristics/cert_id BSI-DSZ-CC-0654-2011 CCEVS-VR-VID-11477-2024
heuristics/cert_lab BSI US
heuristics/cpe_matches {} cpe:2.3:a:netapp:ontap_9:-:*:*:*:*:*:*:*
heuristics/related_cves {} CVE-2022-42915, CVE-2024-26458, CVE-2024-26461, CVE-2024-38475, CVE-2023-27535
heuristics/extracted_sars AVA_VLA.4, ADV_IMP.1, ADV_LLD.1, ADV_SPM.1, AGD_USR.1, ATE_DPT.1, AVA_SOF.1, AGD_ADM.1, ALC_TAT.1, ATE_COV.2, ADV_RCR.1, ADV_FSP.1, ATE_FUN.1, ATE_IND.2, AVA_MSU.3, ALC_DVS.1, ADV_HLD.2 ATE_IND.1, ALC_CMS.1, ALC_CMC.1, ASE_ECD.1, ASE_INT.1, AVA_VAN.1, ASE_SPD.1, ASE_TSS.1, ASE_OBJ.1, ADV_FSP.1, AGD_PRE.1, ATE_FUN.1, ASE_CCL.1, ASE_REQ.1, AGD_OPE.1
heuristics/extracted_versions 3.3.1.3 9.14.1
heuristics/report_references/directly_referencing BSI-DSZ-CC-0564-2009 {}
heuristics/report_references/indirectly_referencing BSI-DSZ-CC-0564-2009 {}
heuristics/protection_profiles {} 52d782dbb1cd05bd
protection_profile_links {} https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_FDE_AA_V2.0E.pdf
pdf_data/cert_filename st_vid11477-ci.pdf
pdf_data/cert_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11477-2024: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility
  • Leidos:
    • Leidos: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata
  • /Producer: WeasyPrint 62.3
  • /Title: VID11477-FINAL CERT
  • pdf_file_size_bytes: 136132
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename 0654a_pdf.pdf st_vid11477-vr.pdf
pdf_data/report_frontpage
  • DE:
    • cert_id: BSI-DSZ-CC-0654-2011
    • cert_item: Governikus-Teil
    • cert_lab: BSI
    • developer: Virtuellen Poststelle des Bundes (Basis), Version 3.3.1.3 der bremen online services GmbH & Co. KG
    • match_rules: ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)']
  • US:
  • DE:
  • US:
    • cert_id: CCEVS-VR-VID11477-2024
    • cert_item: for NetApp Storage Encryption (NSE) Running ONTAP 9.14.1
    • cert_lab: US NIAP
pdf_data/report_keywords/cc_cert_id
  • DE:
    • BSI-DSZ-CC-0562: 1
    • BSI-DSZ-CC-0563: 1
    • BSI-DSZ-CC-0564-2009: 3
    • BSI-DSZ-CC-0654-2011: 21
  • US:
    • CCEVS-VR-VID11477-2024: 1
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 3: 5
    • EAL 4: 4
    • EAL1: 6
    • EAL2: 3
    • EAL3: 4
    • EAL4: 8
    • EAL5: 6
    • EAL5+: 1
    • EAL6: 4
    • EAL7: 4
pdf_data/report_keywords/cc_sar
  • ACM:
    • ACM_AUT: 2
    • ACM_CAP: 2
    • ACM_CAP.3: 1
    • ACM_SCP: 2
    • ACM_SCP.1: 1
  • ADO:
    • ADO_DEL: 2
    • ADO_DEL.2: 5
    • ADO_IGS: 2
    • ADO_IGS.1: 1
  • ADV:
    • ADV_FSP: 2
    • ADV_HLD: 2
    • ADV_IMP: 2
    • ADV_IMP.1: 4
    • ADV_INT: 2
    • ADV_LLD: 2
    • ADV_LLD.1: 4
    • ADV_RCR: 2
    • ADV_SPM: 2
  • AGD:
    • AGD_ADM: 2
    • AGD_USR: 2
  • ALC:
    • ALC_DVS: 2
    • ALC_DVS.1: 1
    • ALC_FLR: 2
    • ALC_LCD: 1
    • ALC_TAT: 2
    • ALC_TAT.1: 5
  • APE:
    • APE_DES: 1
    • APE_ENV: 1
    • APE_INT: 1
    • APE_OBJ: 1
    • APE_REQ: 1
    • APE_SRE: 1
  • ASE:
    • ASE_DES: 1
    • ASE_ENV: 1
    • ASE_INT: 1
    • ASE_OBJ: 1
    • ASE_PPC: 1
    • ASE_REQ: 1
    • ASE_SRE: 1
    • ASE_TSS: 1
  • ATE:
    • ATE_COV: 2
    • ATE_DPT: 2
    • ATE_FUN: 2
    • ATE_IND: 2
  • AVA:
    • AVA_CCA: 2
    • AVA_MSU: 2
    • AVA_MSU.3: 5
    • AVA_SOF: 3
    • AVA_VLA: 3
    • AVA_VLA.2: 1
    • AVA_VLA.3: 1
    • AVA_VLA.4: 6
  • ADV:
    • ADV_FSP.1: 1
  • ALC:
    • ALC_CMC.1: 1
    • ALC_CMS.1: 1
  • ATE:
    • ATE_FUN.1: 1
  • AVA:
    • AVA_VAN.1: 1
pdf_data/report_keywords/vendor
  • Microsoft:
    • Microsoft: 1
pdf_data/report_keywords/eval_facility
  • Leidos:
    • Leidos: 6
pdf_data/report_keywords/symmetric_crypto
  • AES_competition:
    • E2:
      • E2: 1
pdf_data/report_keywords/hash_function
  • RIPEMD:
    • RIPEMD-160: 1
  • SHA:
    • SHA1:
      • SHA-1: 2
    • SHA2:
      • SHA-224: 2
      • SHA-256: 2
      • SHA-384: 1
      • SHA-512: 2
pdf_data/report_keywords/crypto_protocol
  • SSH:
    • SSH: 5
pdf_data/report_keywords/randomness
  • PRNG:
    • DRBG: 1
  • RNG:
    • RBG: 1
pdf_data/report_keywords/technical_report_id
  • BSI:
    • BSI 7125: 2
    • BSI 7148: 1
    • BSI 7149: 1
pdf_data/report_keywords/standard_id
  • BSI:
    • AIS 34: 3
    • AIS 38: 1
  • ISO:
    • ISO/IEC 15408:2005: 4
  • NIST:
    • NIST SP 800-132: 1
    • NIST SP 800-38F: 1
pdf_data/report_keywords/certification_process
  • OutOfScope:
    • not tested in the evaluated configuration. System Manager GUI The System Manager GUI is considered out of scope and all management is performed via the command line interface. VMware Virtualization VMware: 1
    • out of scope: 1
pdf_data/report_metadata
  • /Author: Bundesamt für Sicherheit in der Informationstechnik
  • /CreationDate: D:20110526144842+02'00'
  • /Creator: Writer
  • /Keywords: "Common Criteria, Certification, Zertifizierung, VPS"
  • /ModDate: D:20110526145204+02'00'
  • /Producer: OpenOffice.org 3.2
  • /Subject: Virtuelle Poststelle des Bundes, Basiskomponente
  • /Title: Zertifizierungsreport BSI-DSZ-CC-0654-2011
  • pdf_file_size_bytes: 1098470
  • pdf_hyperlinks: http://www.bsi.bund.de/
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 40
pdf_data/st_filename 0654b_pdf.pdf st_vid11477-st.pdf
pdf_data/st_keywords/cc_security_level
  • EAL:
    • EAL3: 3
    • EAL3+: 12
pdf_data/st_keywords/cc_sar
  • ACM:
    • ACM_CAP.3: 4
    • ACM_SCP.1: 4
  • ADO:
    • ADO_DEL: 1
    • ADO_DEL.2: 6
    • ADO_IGS.1: 4
  • ADV:
    • ADV_FSP.1: 4
    • ADV_HLD.2: 3
    • ADV_IMP.1: 5
    • ADV_LLD.1: 4
    • ADV_RCR.1: 5
    • ADV_SPM: 1
    • ADV_SPM.1: 2
  • AGD:
    • AGD_ADM.1: 4
    • AGD_USR.1: 4
  • ALC:
    • ALC_DVS.1: 4
    • ALC_TAT.1: 5
  • ATE:
    • ATE_COV.2: 4
    • ATE_DPT.1: 3
    • ATE_FUN.1: 4
    • ATE_IND.2: 4
  • AVA:
    • AVA_MSU: 1
    • AVA_MSU.3: 6
    • AVA_SOF.1: 3
    • AVA_VLA: 1
    • AVA_VLA.4: 8
  • ADV:
    • ADV_FSP.1: 11
  • AGD:
    • AGD_OPE.1: 12
    • AGD_PRE.1: 8
  • ALC:
    • ALC_CMC.1: 6
    • ALC_CMS.1: 7
  • ASE:
    • ASE_CCL.1: 1
    • ASE_ECD.1: 1
    • ASE_INT.1: 1
    • ASE_OBJ.1: 1
    • ASE_REQ.1: 1
    • ASE_SPD.1: 1
    • ASE_TSS.1: 2
  • ATE:
    • ATE_IND.1: 7
  • AVA:
    • AVA_VAN.1: 8
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_ARP.1: 9
    • FAU_ARP.1.1: 1
    • FAU_SAA.1: 4
    • FAU_SAA.3: 10
    • FAU_SAA.3.1: 1
    • FAU_SAA.3.2: 1
    • FAU_SAA.3.3: 1
  • FCO:
    • FCO_NRO.1: 12
    • FCO_NRO.1.1: 1
    • FCO_NRO.1.2: 1
    • FCO_NRO.1.3: 1
  • FCS:
    • FCS_CKM: 1
    • FCS_CKM.1: 8
    • FCS_CKM.4: 20
    • FCS_CKM.4.1: 1
    • FCS_COP.1: 51
    • FCS_ITC.1: 5
  • FDP:
    • FDP_ACC.1: 44
    • FDP_ACF.1: 35
    • FDP_IFC.1: 12
    • FDP_ITC: 1
    • FDP_ITC.1: 26
    • FDP_ITC.1.1: 1
    • FDP_ITC.1.2: 1
    • FDP_ITC.1.3: 1
  • FIA:
    • FIA_UID.1: 9
    • FIA_UID.2: 20
    • FIA_UID.2.1: 1
  • FMT:
    • FMT_MSA: 1
    • FMT_MSA.1: 32
    • FMT_MSA.2: 27
    • FMT_MSA.2.1: 1
    • FMT_MSA.3: 28
    • FMT_MSA.4: 1
    • FMT_SMR: 1
    • FMT_SMR.1: 38
  • FTA:
    • FTA_TAB.1: 9
    • FTA_TAB.1.1: 1
  • FCS:
    • FCS_AFA_EXT: 4
    • FCS_AFA_EXT.1: 7
    • FCS_AFA_EXT.1.1: 2
    • FCS_AFA_EXT.2: 6
    • FCS_AFA_EXT.2.1: 1
    • FCS_CKM.1: 9
    • FCS_CKM.1.1: 1
    • FCS_CKM.4: 16
    • FCS_CKM.4.1: 2
    • FCS_CKM_EXT.4: 16
    • FCS_CKM_EXT.4.1: 2
    • FCS_COP.1: 45
    • FCS_COP.1.1: 9
    • FCS_KDF_EXT: 4
    • FCS_KDF_EXT.1: 7
    • FCS_KDF_EXT.1.1: 1
    • FCS_KYC_EXT: 4
    • FCS_KYC_EXT.1: 4
    • FCS_KYC_EXT.1.1: 1
    • FCS_KYC_EXT.1.2: 1
    • FCS_KYC_EXT.2: 2
    • FCS_PCC_EXT: 4
    • FCS_PCC_EXT.1: 8
    • FCS_PCC_EXT.1.1: 1
    • FCS_RBG_EXT: 1
    • FCS_RBG_EXT.1: 12
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 1
    • FCS_SNI_EXT: 2
    • FCS_SNI_EXT.1: 7
    • FCS_SNI_EXT.1.1: 1
    • FCS_SNI_EXT.1.2: 1
    • FCS_SNI_EXT.1.3: 1
    • FCS_VAL_EXT: 2
    • FCS_VAL_EXT.1: 9
    • FCS_VAL_EXT.1.1: 1
    • FCS_VAL_EXT.1.2: 1
    • FCS_VAL_EXT.1.3: 1
  • FMT:
    • FMT_MOF: 2
    • FMT_MOF.1: 6
    • FMT_MOF.1.1: 1
    • FMT_SMF: 4
    • FMT_SMF.1: 4
    • FMT_SMF.1.1: 1
    • FMT_SMR: 4
    • FMT_SMR.1: 3
    • FMT_SMR.1.1: 1
    • FMT_SMR.1.2: 1
  • FPT:
    • FPT_KYP_EXT: 4
    • FPT_KYP_EXT.1: 5
    • FPT_KYP_EXT.1.1: 2
    • FPT_PWR_EXT: 8
    • FPT_PWR_EXT.1: 8
    • FPT_PWR_EXT.1.1: 1
    • FPT_PWR_EXT.2: 4
    • FPT_PWR_EXT.2.1: 1
    • FPT_TST_EXT: 4
    • FPT_TST_EXT.1: 6
    • FPT_TST_EXT.1.1: 1
    • FPT_TUD_EXT: 4
    • FPT_TUD_EXT.1: 4
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 1
pdf_data/st_keywords/cc_claims
  • A:
    • A.DIR: 5
    • A.PKI: 5
    • A.SAK: 5
  • OE:
    • OE.DIR: 7
    • OE.PKI: 15
    • OE.SAK: 5
  • OE:
    • OE.INITIAL_DRIVE_STATE: 1
    • OE.PASSPHRASE_STRENGTH: 1
    • OE.PHYSICAL: 1
    • OE.PLATFORM_STATE: 1
    • OE.POWER_DOWN: 1
    • OE.SINGLE_USE_ET: 1
    • OE.STRONG_ENVIRONMENT_CRYPTO: 1
    • OE.TRAINED_USERS: 1
    • OE.TRUSTED_CHANNEL: 1
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 8
      • AES-128: 1
      • AES-256: 5
  • constructions:
    • MAC:
      • HMAC: 5
      • HMAC-SHA-512: 6
pdf_data/st_keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 1
    • ECDSA:
      • ECDSA: 1
  • RSA:
    • RSA 3072: 1
pdf_data/st_keywords/hash_function
  • RIPEMD:
    • RIPEMD-160: 9
  • SHA:
    • SHA1:
      • SHA-1: 4
    • SHA2:
      • SHA-224: 4
      • SHA-256: 4
      • SHA-384: 3
      • SHA-512: 4
  • PBKDF:
    • PBKDF2: 5
  • SHA:
    • SHA2:
      • SHA-256: 9
      • SHA-384: 5
      • SHA-512: 9
pdf_data/st_keywords/crypto_scheme
  • MAC:
    • MAC: 2
pdf_data/st_keywords/crypto_protocol
  • TLS:
    • SSL:
      • SSL: 1
  • SSH:
    • SSH: 2
pdf_data/st_keywords/randomness
  • PRNG:
    • DRBG: 19
  • RNG:
    • RBG: 4
    • RNG: 1
pdf_data/st_keywords/cipher_mode
  • CBC:
    • CBC: 4
  • CCM:
    • CCM: 1
  • GCM:
    • GCM: 1
  • XEX:
    • XEX: 1
  • XTS:
    • XTS: 2
pdf_data/st_keywords/crypto_library
  • Generic:
    • Crypto Library v2.24: 1
  • OpenSSL:
    • OpenSSL: 1
pdf_data/st_keywords/standard_id
  • BSI:
    • AIS 27: 2
    • AIS27: 4
  • ISO:
    • ISO/IEC 10118-3: 1
    • ISO/IEC 15408: 2
  • PKCS:
    • PKCS#1: 3
  • X509:
    • X.509: 3
  • FIPS:
    • FIPS 186-4: 1
    • FIPS PUB 186-4: 2
  • ISO:
    • ISO/IEC 10118: 2
    • ISO/IEC 18031:2011: 1
    • ISO/IEC 18033-3: 1
    • ISO/IEC 9796-2: 2
  • NIST:
    • NIST SP 800-132: 5
    • NIST SP 800-38F: 2
    • NIST SP 800-90A: 3
  • PKCS:
    • PKCS #1: 2
pdf_data/st_keywords/certification_process
  • OutOfScope:
    • not tested in the evaluated configuration. System Manager GUI The System Manager GUI is considered out of scope and all management is performed via the command line interface. VMware Virtualization VMware: 1
    • out of scope: 2
    • to the security functional requirements specified in this Security Target. The features below are out of scope. Feature Description SnapLock NetApp SnapLock is the WORM (write once, read many) compliance: 1
pdf_data/st_metadata
state/cert/convert_garbage False True
state/cert/convert_ok False True
state/cert/download_ok False True
state/cert/extract_ok False True
state/cert/pdf_hash Different Different
state/cert/txt_hash Different Different
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different