| name |
Palo Alto Networks WF-500 with WildFire 9.0 |
NetApp Storage Encryption (NSE) Running ONTAP 9.14.1 |
| category |
Network and Network-Related Devices and Systems |
Other Devices and Systems |
| scheme |
US |
US |
| status |
archived |
active |
| not_valid_after |
20.07.2022 |
18.11.2026 |
| not_valid_before |
20.07.2020 |
18.11.2024 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11024-ci.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11477-ci.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11024-vr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11477-vr.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11024-st.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11477-st.pdf |
| manufacturer |
Palo Alto Networks, Inc. |
NetApp, Inc. |
| manufacturer_web |
https://www.paloaltonetworks.com/ |
https://www.netapp.com/ |
| security_level |
{} |
{} |
| dgst |
a81e3f016f5ea5e4 |
ebcbec6fc7d39ca6 |
| heuristics/cert_id |
CCEVS-VR-VID-11024-2019 |
CCEVS-VR-VID-11477-2024 |
| heuristics/cert_lab |
US |
US |
| heuristics/cpe_matches |
{} |
cpe:2.3:a:netapp:ontap_9:-:*:*:*:*:*:*:* |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
CVE-2023-27535, CVE-2022-42915 |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ALC_TSU_EXT.1, AGD_PRE.1 |
ASE_TSS.1, ADV_FSP.1, ALC_CMC.1, ASE_INT.1, ASE_SPD.1, ASE_OBJ.1, ATE_FUN.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ASE_REQ.1, ASE_CCL.1, ASE_ECD.1, AGD_PRE.1 |
| heuristics/extracted_versions |
9.0 |
9.14.1 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- category: Network Device
- certification_date: 20.07.2020
- evaluation_facility: Leidos Common Criteria Testing Laboratory
- expiration_date: 20.07.2022
- id: CCEVS-VR-VID11081
- product: Palo Alto Networks WF-500 with WildFire 9.0
- scheme: US
- url: https://www.niap-ccevs.org/product/11081
- vendor: Palo Alto Networks, Inc.
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
52d782dbb1cd05bd |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_FDE_AA_V2.0E.pdf |
| pdf_data/cert_filename |
st_vid11024-ci.pdf |
st_vid11477-ci.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11024-2020: 1
|
- US:
- CCEVS-VR-VID11477-2024: 1
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20200228095911-05'00'
- /ModDate: D:20200228095911-05'00'
- /Producer: iText 2.1.0 (by lowagie.com)
- pdf_file_size_bytes: 181696
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Producer: WeasyPrint 62.3
- /Title: VID11477-FINAL CERT
- pdf_file_size_bytes: 136132
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
st_vid11024-vr.pdf |
st_vid11477-vr.pdf |
| pdf_data/report_frontpage |
- US:
- cert_id: CCEVS-VR-VID11024-2019
- cert_item: for the Venafi Trust Protection Platform v19.2
- cert_lab: US NIAP
|
- US:
- cert_id: CCEVS-VR-VID11477-2024
- cert_item: for NetApp Storage Encryption (NSE) Running ONTAP 9.14.1
- cert_lab: US NIAP
|
| pdf_data/report_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11024-2019: 1
|
- US:
- CCEVS-VR-VID11477-2024: 1
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
|
| pdf_data/report_keywords/cc_sar |
|
- ADV:
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ATE:
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
- A:
- A.PROPER_ADMIN: 1
- A.PROPER_USER: 1
- T:
- T.LOCAL_ATTACK: 1
- T.NETWORK_ATTACK: 1
- T.NETWORK_EAVESDROP: 1
- T.PHYSICAL_ACCESS: 1
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- NIST:
- NIST SP 800-132: 1
- NIST SP 800-38F: 1
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- OutOfScope:
- not tested in the evaluated configuration. System Manager GUI The System Manager GUI is considered out of scope and all management is performed via the command line interface. VMware Virtualization VMware: 1
- out of scope: 1
|
| pdf_data/report_metadata |
- /CreationDate: D:20200227162648-05'00'
- /ModDate: D:20200227162648-05'00'
- pdf_file_size_bytes: 805289
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 20
|
|
| pdf_data/st_filename |
st_vid11024-st.pdf |
st_vid11477-st.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 2
- AGD_PRE.1: 2
- ALC:
- ALC_CMC.1: 2
- ALC_CMS.1: 2
- ALC_TSU_EXT.1: 2
- ATE:
- AVA:
|
- ADV:
- AGD:
- AGD_OPE.1: 12
- AGD_PRE.1: 8
- ALC:
- ALC_CMC.1: 6
- ALC_CMS.1: 7
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_REQ.1: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 2
- ATE:
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FCS:
- FCS_CKM.1: 4
- FCS_CKM.1.1: 1
- FCS_CKM.2: 4
- FCS_CKM.2.1: 1
- FCS_CKM_EXT.1: 4
- FCS_CKM_EXT.1.1: 1
- FCS_COP.1: 5
- FCS_COP.1.1: 2
- FCS_RBG_EXT.1: 6
- FCS_RBG_EXT.1.1: 1
- FCS_SSHC_EXT.1: 3
- FCS_SSHC_EXT.1.1: 2
- FCS_SSHC_EXT.1.2: 1
- FCS_SSHC_EXT.1.3: 1
- FCS_SSHC_EXT.1.4: 1
- FCS_SSHC_EXT.1.5: 1
- FCS_SSHC_EXT.1.6: 1
- FCS_SSHC_EXT.1.7: 1
- FCS_SSHC_EXT.1.8: 1
- FCS_SSHS_EXT.1.1: 1
- FCS_SSH_EXT.1: 3
- FCS_SSH_EXT.1.1: 1
- FCS_STO_EXT.1: 6
- FCS_STO_EXT.1.1: 1
- FDP:
- FDP_DAR_EXT.1: 4
- FDP_DAR_EXT.1.1: 1
- FDP_DEC_EXT.1: 4
- FDP_DEC_EXT.1.1: 1
- FDP_DEC_EXT.1.2: 1
- FDP_NET_EXT.1: 3
- FDP_NET_EXT.1.1: 1
- FMT:
- FMT_CFG_EXT.1: 4
- FMT_CFG_EXT.1.1: 1
- FMT_CFG_EXT.1.2: 1
- FMT_MEC_EXT.1: 5
- FMT_MEC_EXT.1.1: 1
- FMT_SMF.1: 4
- FMT_SMF.1.1: 1
- FPR:
- FPT:
- FPT_AEX_EXT.1: 4
- FPT_AEX_EXT.1.1: 1
- FPT_AEX_EXT.1.2: 1
- FPT_AEX_EXT.1.3: 2
- FPT_AEX_EXT.1.4: 1
- FPT_AEX_EXT.1.5: 1
- FPT_API_EXT.1: 4
- FPT_API_EXT.1.1: 1
- FPT_IDV_EXT.1: 4
- FPT_IDV_EXT.1.1: 1
- FPT_LIB_EXT.1: 4
- FPT_LIB_EXT.1.1: 1
- FPT_TUD_EXT.1: 5
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.1.3: 1
- FPT_TUD_EXT.1.4: 1
- FPT_TUD_EXT.1.5: 1
- FPT_TUD_EXT.2: 4
- FPT_TUD_EXT.2.1: 1
- FPT_TUD_EXT.2.2: 1
- FTP:
- FTP_DIT_EXT.1: 4
- FTP_DIT_EXT.1.1: 1
|
- FCS:
- FCS_AFA_EXT: 4
- FCS_AFA_EXT.1: 7
- FCS_AFA_EXT.1.1: 2
- FCS_AFA_EXT.2: 6
- FCS_AFA_EXT.2.1: 1
- FCS_CKM.1: 9
- FCS_CKM.1.1: 1
- FCS_CKM.4: 16
- FCS_CKM.4.1: 2
- FCS_CKM_EXT.4: 16
- FCS_CKM_EXT.4.1: 2
- FCS_COP.1: 45
- FCS_COP.1.1: 9
- FCS_KDF_EXT: 4
- FCS_KDF_EXT.1: 7
- FCS_KDF_EXT.1.1: 1
- FCS_KYC_EXT: 4
- FCS_KYC_EXT.1: 4
- FCS_KYC_EXT.1.1: 1
- FCS_KYC_EXT.1.2: 1
- FCS_KYC_EXT.2: 2
- FCS_PCC_EXT: 4
- FCS_PCC_EXT.1: 8
- FCS_PCC_EXT.1.1: 1
- FCS_RBG_EXT: 1
- FCS_RBG_EXT.1: 12
- FCS_RBG_EXT.1.1: 1
- FCS_RBG_EXT.1.2: 1
- FCS_SNI_EXT: 2
- FCS_SNI_EXT.1: 7
- FCS_SNI_EXT.1.1: 1
- FCS_SNI_EXT.1.2: 1
- FCS_SNI_EXT.1.3: 1
- FCS_VAL_EXT: 2
- FCS_VAL_EXT.1: 9
- FCS_VAL_EXT.1.1: 1
- FCS_VAL_EXT.1.2: 1
- FCS_VAL_EXT.1.3: 1
- FMT:
- FMT_MOF: 2
- FMT_MOF.1: 6
- FMT_MOF.1.1: 1
- FMT_SMF: 4
- FMT_SMF.1: 4
- FMT_SMF.1.1: 1
- FMT_SMR: 4
- FMT_SMR.1: 3
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_KYP_EXT: 4
- FPT_KYP_EXT.1: 5
- FPT_KYP_EXT.1.1: 2
- FPT_PWR_EXT: 8
- FPT_PWR_EXT.1: 8
- FPT_PWR_EXT.1.1: 1
- FPT_PWR_EXT.2: 4
- FPT_PWR_EXT.2.1: 1
- FPT_TST_EXT: 4
- FPT_TST_EXT.1: 6
- FPT_TST_EXT.1.1: 1
- FPT_TUD_EXT: 4
- FPT_TUD_EXT.1: 4
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.1.3: 1
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.PROPER_ADMIN: 1
- A.PROPER_USER: 1
- O:
- O.INTEGRITY: 1
- O.MANAGEMENT: 1
- O.PROTECTED_COMMS: 1
- O.PROTECTED_STORAGE: 1
- O.QUALITY: 1
- OE:
- OE.PLATFORM: 1
- OE.PROPER_ADMIN: 1
- OE.PROPER_USER: 1
- T:
- T.LOCAL_ATTACK: 1
- T.NETWORK_ATTACK: 1
- T.NETWORK_EAVESDROP: 1
- T.PHYSICAL_ACCESS: 1
|
- OE:
- OE.INITIAL_DRIVE_STATE: 1
- OE.PASSPHRASE_STRENGTH: 1
- OE.PHYSICAL: 1
- OE.PLATFORM_STATE: 1
- OE.POWER_DOWN: 1
- OE.SINGLE_USE_ET: 1
- OE.STRONG_ENVIRONMENT_CRYPTO: 1
- OE.TRAINED_USERS: 1
- OE.TRUSTED_CHANNEL: 1
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- DES:
- constructions:
|
- AES_competition:
- AES:
- AES: 8
- AES-128: 1
- AES-256: 5
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
- PBKDF:
- SHA:
- SHA2:
- SHA-256: 9
- SHA-384: 5
- SHA-512: 9
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- NIST:
- P-256: 5
- P-384: 4
- P-521: 4
- curve P-256: 1
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- NIST:
- PKCS:
- RFC:
- RFC 4251: 1
- RFC 4253: 1
- RFC 5280: 4
- RFC 5759: 1
- X509:
|
- FIPS:
- FIPS 186-4: 1
- FIPS PUB 186-4: 2
- ISO:
- ISO/IEC 10118: 2
- ISO/IEC 18031:2011: 1
- ISO/IEC 18033-3: 1
- ISO/IEC 9796-2: 2
- NIST:
- NIST SP 800-132: 5
- NIST SP 800-38F: 2
- NIST SP 800-90A: 3
- PKCS:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- not tested in the evaluated configuration. System Manager GUI The System Manager GUI is considered out of scope and all management is performed via the command line interface. VMware Virtualization VMware: 1
- out of scope: 2
- to the security functional requirements specified in this Security Target. The features below are out of scope. Feature Description SnapLock NetApp SnapLock is the WORM (write once, read many) compliance: 1
|
| pdf_data/st_metadata |
- /Author: Acumen Security, LLC.
- /CreationDate: D:20200818111048-04'00'
- /Creator: Microsoft® Word for Microsoft 365
- /ModDate: D:20200818111048-04'00'
- /Producer: Microsoft® Word for Microsoft 365
- pdf_file_size_bytes: 627334
- pdf_hyperlinks: https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0416, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0444, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0435, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0332, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0427, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0437, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0445, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0240, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0495, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0434, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0471, https://customerportal.venafi.com/, https://www.niap-ccevs.org/Documents_and_Guidance/view_tds.cfm, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0446, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0331, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0465, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0420
- pdf_is_encrypted: False
- pdf_number_of_pages: 27
|
|
| state/cert/convert_garbage |
True |
True |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |