This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10 CCEVS-VR-VID-10980-2019	NXP JCOP 3 P60 NSCIB-CC-98209-CR5
name	Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10	NXP JCOP 3 P60
category	Network and Network-Related Devices and Systems	ICs, Smart Cards and Smart Card-Related Devices and Systems
scheme	US	NL
status	archived	active
not_valid_after	12.11.2021	23.07.2026
not_valid_before	12.11.2019	23.07.2021
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-ci.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-certificate%2021-98209.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-vr.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Certification%20Report%20NSCIB-CC-98209-CR5%20-%20version%203.0%20(2022-10-14).pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-st.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-98209_5-STLite.pdf
manufacturer	Palo Alto Networks, Inc.	NXP Semiconductors Germany GmbH, Business Unit Security and Connectivity
manufacturer_web	https://www.paloaltonetworks.com/	https://www.nxp.com
security_level	{}	ALC_FLR.1, EAL5+, AVA_VAN.5, ASE_TSS.2, ALC_DVS.2
dgst	a8e03915b8738eb7	64acdcfcacb7c475
heuristics/cert_id	CCEVS-VR-VID-10980-2019	NSCIB-CC-98209-CR5
heuristics/cert_lab	US
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, AGD_PRE.1	ALC_FLR.1, AVA_VAN.5, ALC_DVS.2, AGD_OPE.1, ASE_TSS.2
heuristics/extracted_versions	8.1.10	3
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	{}
heuristics/report_references/directly_referencing	{}	BSI-DSZ-CC-1059-V4-2021
heuristics/report_references/indirectly_referenced_by	{}	{}
heuristics/report_references/indirectly_referencing	{}	BSI-DSZ-CC-1059-V3-2019, BSI-DSZ-CC-1059-2018, BSI-DSZ-CC-1059-V4-2021, BSI-DSZ-CC-0973-2016, BSI-DSZ-CC-0973-V2-2016, BSI-DSZ-CC-1059-V2-2019
heuristics/scheme_data	category: Network Device certification_date: 12.11.2019 evaluation_facility: Leidos Common Criteria Testing Laboratory expiration_date: 12.11.2021 id: CCEVS-VR-VID10980 product: Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10 scheme: US url: https://www.niap-ccevs.org/product/10980 vendor: Palo Alto Networks, Inc.	cert_id: NSCIB-CC-21-98209-CR cert_link: https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/07/nscib-certificate-21-98209.pdf level: EAL5 augmented with ASE_TSS.2, ALC_FLR.1, ALC_DVS.2 and AVA_VAN.5 maintenance_link: https://www.tuv-nederland.nl/assets/files/cerfiticaten/2019/11/mr-nscib-cc-98209-ma-5dd7dcdbd533d.pdf manufacturer: NXP Semiconductors GmbH manufacturer_link: https:\\www.nxp.com product: NXP JCOP 3 P60 report_link: https://www.tuv-nederland.nl/assets/files/cerfiticaten/2022/10/certification-report-nscib-cc-98209-cr5---version-3.0-2022-10-14.pdf scheme: NSCIB target_link: https://www.tuv-nederland.nl/assets/files/cerfiticaten/2019/11/st-lite-jcop3_p60_v3.9.pdf
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	{}
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	{}
heuristics/protection_profiles	{}	9399bd94f9925b16
maintenance_updates
protection_profiles
protection_profile_links	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.1.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/ANSSI-CC-profil_PP-2010-03en.pdf
pdf_data/cert_filename	st_vid10980-ci.pdf	NSCIB-certificate 21-98209.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id	US: CCEVS-VR-VID10980-2019: 1	FR: ANSSI-PP-2010/03-M01: 1 NL: CC-21-98209: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level		EAL: EAL 7: 1 EAL2: 1
pdf_data/cert_keywords/cc_sar		ALC: ALC_DVS.2: 1 ALC_FLR: 1 ALC_FLR.1: 1 ALC_FLR.3: 1 ASE: ASE_TSS.2: 1 AVA: AVA_VAN.5: 1
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims		R: R.L: 1
pdf_data/cert_keywords/vendor		NXP: NXP Semiconductors: 1
pdf_data/cert_keywords/eval_facility	Leidos: Leidos: 1	BrightSight: Brightsight: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name		JCOP: JCOP 3: 1
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id		ISO: ISO/IEC 15408-1: 1 ISO/IEC 15408-2: 1 ISO/IEC 15408-3: 1 ISO/IEC 18045: 2
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/CreationDate: D:20191119111952-05'00' /ModDate: D:20191119111952-05'00' /Producer: iText 2.1.0 (by lowagie.com) pdf_file_size_bytes: 180256 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1	/CreationDate: D:20210727111523+01'00' /Creator: C458-M /ModDate: D:20210727131658+02'00' /Producer: KONICA MINOLTA bizhub C458 /Title: C458-M&S21072711150 pdf_file_size_bytes: 81273 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	st_vid10980-vr.pdf	Certification Report NSCIB-CC-98209-CR5 - version 3.0 (2022-10-14).pdf
pdf_data/report_frontpage	NL: US: cert_id: CCEVS-VR-VID10980-2019 cert_item: for Palo Alto Networks Panorama v8.1.10 cert_lab: US NIAP	NL: cert_id: NSCIB-CC-98209-CR5 cert_item: JCOP 3 P60 cert_lab: Brightsight B.V. developer: NXP Semiconductors GmbH US:
pdf_data/report_keywords/cc_cert_id	US: CCEVS-VR-VID10980-2019: 1	DE: BSI-DSZ-CC-1059-V4-2021: 2 FR: ANSSI-PP-2010/03-M01: 1 NL: NSCIB-CC-15-67206-CR3: 1 NSCIB-CC-67206-CR5: 1 NSCIB-CC-98209-CR5: 14
pdf_data/report_keywords/cc_protection_profile_id
pdf_data/report_keywords/cc_security_level		EAL: EAL 5: 1 EAL 5 augmented: 1 EAL4: 1 EAL5: 1 EAL5 augmented: 1 EAL5+: 3 EAL6+: 1
pdf_data/report_keywords/cc_sar	ADV: ADV_FSP.1: 1 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.1: 1 ALC_CMS.1: 1 ATE: ATE_IND.1: 1 AVA: AVA_VAN.1: 1	ADV: ADV_IMP: 1 ALC: ALC_DVS.2: 2 ALC_FLR.1: 2 ASE: ASE_TSS.2: 2 AVA: AVA_VAN: 1 AVA_VAN.5: 3
pdf_data/report_keywords/cc_sfr
pdf_data/report_keywords/cc_claims
pdf_data/report_keywords/vendor		NXP: NXP: 5 NXP Semiconductors: 6
pdf_data/report_keywords/eval_facility	Leidos: Leidos: 6	BrightSight: Brightsight: 3
pdf_data/report_keywords/symmetric_crypto		AES_competition: AES: AES: 3 DES: 3DES: 3DES: 2 Triple-DES: 2 DES: DES: 3 constructions: MAC: CBC-MAC: 1 CMAC: 2 HMAC: 1
pdf_data/report_keywords/asymmetric_crypto		ECC: ECC: ECC: 7 ECDH: ECDH: 1 ECDSA: ECDSA: 1 FF: DH: Diffie-Hellman: 1 RSA: RSA-CRT: 2
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function		SHA: SHA1: SHA-1: 2 SHA2: SHA-224: 2 SHA-256: 2 SHA-384: 2 SHA-512: 2
pdf_data/report_keywords/crypto_scheme		MAC: MAC: 3
pdf_data/report_keywords/crypto_protocol	IPsec: IPsec: 1 SSH: SSH: 7 SSHv2: 1 TLS: TLS: TLS: 9 VPN: VPN: 3	PACE: PACE: 1
pdf_data/report_keywords/randomness	RNG: RBG: 1	RNG: RNG: 1 TRNG: TRNG: 1
pdf_data/report_keywords/cipher_mode		CBC: CBC: 3 ECB: ECB: 3
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine		SmartMX: SmartMX2: 2
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis		FI: DFA: 1 SCA: side-channel: 1 other: JIL: 1 JIL-AM: 2
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name		JCOP: JCOP 3: 15
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id	FIPS: FIPS 140-2: 1	BSI: AIS 20: 2 ISO: ISO/IEC 14443: 8 ISO/IEC 7816: 8 SCP: SCP03: 2
pdf_data/report_keywords/javacard_version		GlobalPlatform: Global Platform (version 2.2.1: 1 Global Platform 2.2.1: 2 JavaCard: Java Card 3.0.4: 1
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process	OutOfScope: e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed: 1 out of scope: 2 protocol and can be used to build a management interface. This feature is not tested and is out of scope. Stateful inspection filtering, VPN gateway, IPS/IDS threat prevention, URL filtering (PAN- DB: 1
pdf_data/report_metadata	/CreationDate: D:20191119084910-05'00' /ModDate: D:20191119084910-05'00' pdf_file_size_bytes: 584095 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 20	/Author: Microsoft Office User /CreationDate: D:20221014153402+02'00' /Creator: Microsoft® Word 2019 /ModDate: D:20221014153402+02'00' /Producer: Microsoft® Word 2019 /Title: Certification Report pdf_file_size_bytes: 368477 pdf_hyperlinks: https://www.sogis.eu/, mailto:[email protected], http://www.tuv.com/nl, http://www.commoncriteriaportal.org/ pdf_is_encrypted: False pdf_number_of_pages: 14
pdf_data/st_filename	st_vid10980-st.pdf	NSCIB-CC-98209_5-STLite.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id		DE: BSI-DSZ-CC-1059: 1 NL: NSCIB-CC-67206-CR3: 1 NSCIB-CC-98209: 2
pdf_data/st_keywords/cc_protection_profile_id		BSI: BSI-CC-PP-0055: 1 BSI-PP-0055: 1 BSI-PP-0084: 1 BSI-PP-0084-2014: 1
pdf_data/st_keywords/cc_security_level		EAL: EAL5: 9 EAL5 augmented: 4
pdf_data/st_keywords/cc_sar	ADV: ADV_FSP.1: 1 AGD: AGD_OPE: 1 AGD_PRE: 1 ALC: ALC_CMC.1: 1 ALC_CMS.1: 1 ASE: ASE_CCL: 1 ASE_ECD: 1 ASE_INT: 1 ASE_OBJ: 1 ASE_REQ: 1 ASE_SPD: 1 ASE_TSS: 1 ATE: ATE_IND.1: 1 AVA: AVA_VAN.1: 1	ADV: ADV_ARC: 1 AGD: AGD_OPE.1: 2 ALC: ALC_DVS.2: 4 ALC_FLR.1: 4 ASE: ASE_CCL: 2 ASE_ECD: 1 ASE_INT: 2 ASE_REQ: 2 ASE_SPD: 2 ASE_TSS: 2 ASE_TSS.2: 3 AVA: AVA_VAN.5: 5
pdf_data/st_keywords/cc_sfr	FAU: FAU_GEN: 2 FAU_GEN.1: 4 FAU_GEN.1.1: 1 FAU_GEN.1.2: 1 FAU_GEN.2: 3 FAU_GEN.2.1: 1 FAU_STG_EXT: 1 FAU_STG_EXT.1: 3 FAU_STG_EXT.1.1: 1 FAU_STG_EXT.1.2: 1 FAU_STG_EXT.1.3: 1 FCS: FCS_CKM: 3 FCS_CKM.1: 5 FCS_CKM.1.1: 1 FCS_CKM.2: 6 FCS_CKM.2.1: 1 FCS_CKM.4: 3 FCS_CKM.4.1: 1 FCS_COP: 19 FCS_COP.1: 4 FCS_RBG_EXT: 1 FCS_RBG_EXT.1: 5 FCS_RBG_EXT.1.1: 1 FCS_RBG_EXT.1.2: 1 FCS_SSHC_EXT.1.5: 1 FCS_SSHS_EXT: 1 FCS_SSHS_EXT.1: 3 FCS_SSHS_EXT.1.1: 1 FCS_SSHS_EXT.1.2: 1 FCS_SSHS_EXT.1.3: 1 FCS_SSHS_EXT.1.4: 1 FCS_SSHS_EXT.1.5: 2 FCS_SSHS_EXT.1.6: 1 FCS_SSHS_EXT.1.7: 1 FCS_SSHS_EXT.1.8: 1 FCS_TLSC_EXT: 2 FCS_TLSC_EXT.1: 3 FCS_TLSC_EXT.1.1: 2 FCS_TLSC_EXT.1.2: 1 FCS_TLSC_EXT.1.3: 1 FCS_TLSC_EXT.1.4: 1 FCS_TLSC_EXT.2: 2 FCS_TLSC_EXT.2.1: 1 FCS_TLSC_EXT.2.2: 1 FCS_TLSC_EXT.2.3: 1 FCS_TLSC_EXT.2.4: 1 FCS_TLSC_EXT.2.5: 1 FCS_TLSS_EXT: 2 FCS_TLSS_EXT.1: 3 FCS_TLSS_EXT.1.1: 1 FCS_TLSS_EXT.1.2: 1 FCS_TLSS_EXT.1.3: 1 FCS_TLSS_EXT.2: 2 FCS_TLSS_EXT.2.1: 1 FCS_TLSS_EXT.2.2: 1 FCS_TLSS_EXT.2.3: 1 FCS_TLSS_EXT.2.4: 1 FCS_TLSS_EXT.2.5: 1 FCS_TLSS_EXT.2.6: 1 FIA: FIA_AFL: 1 FIA_AFL.1: 6 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_PMG_EXT: 1 FIA_PMG_EXT.1: 3 FIA_PMG_EXT.1.1: 1 FIA_UAU: 1 FIA_UAU.7: 3 FIA_UAU.7.1: 1 FIA_UAU_EXT: 1 FIA_UAU_EXT.2: 2 FIA_UAU_EXT.2.1: 1 FIA_UIA_EXT: 1 FIA_UIA_EXT.1: 5 FIA_UIA_EXT.1.1: 1 FIA_UIA_EXT.1.2: 1 FMT: FMT_MOF: 4 FMT_MOF.1: 1 FMT_MTD: 4 FMT_MTD.1: 1 FMT_SMF: 1 FMT_SMF.1: 3 FMT_SMF.1.1: 1 FMT_SMR: 1 FMT_SMR.2: 3 FMT_SMR.2.1: 1 FMT_SMR.2.2: 1 FMT_SMR.2.3: 1 FPT: FPT_APW_EXT: 1 FPT_APW_EXT.1: 3 FPT_APW_EXT.1.1: 1 FPT_APW_EXT.1.2: 1 FPT_SKP_EXT: 1 FPT_SKP_EXT.1: 3 FPT_SKP_EXT.1.1: 1 FPT_STM_EXT: 1 FPT_STM_EXT.1: 4 FPT_STM_EXT.1.1: 1 FPT_STM_EXT.1.2: 1 FPT_TST_EXT: 1 FPT_TST_EXT.1: 2 FPT_TST_EXT.1.1: 1 FPT_TUD_EXT: 1 FPT_TUD_EXT.1: 3 FPT_TUD_EXT.1.1: 1 FPT_TUD_EXT.1.2: 1 FPT_TUD_EXT.1.3: 1 FTA: FTA_SSL: 2 FTA_SSL.3: 3 FTA_SSL.3.1: 1 FTA_SSL.4: 2 FTA_SSL.4.1: 1 FTA_SSL_EXT: 1 FTA_SSL_EXT.1: 3 FTA_SSL_EXT.1.1: 1 FTA_TAB: 1 FTA_TAB.1: 4 FTA_TAB.1.1: 1 FTP: FTP_ITC: 1 FTP_ITC.1: 4 FTP_ITC.1.1: 1 FTP_ITC.1.2: 1 FTP_ITC.1.3: 1 FTP_TRP: 4 FTP_TRP.1: 3	FAU: FAU_ARP.1: 20 FAU_ARP.1.1: 1 FAU_GEN: 1 FAU_SAA.1: 3 FAU_SAS: 3 FAU_SAS.1: 7 FAU_SAS.1.1: 2 FCO: FCO_NRO: 1 FCO_NRO.1: 1 FCO_NRO.2: 8 FCO_NRO.2.1: 2 FCO_NRO.2.2: 1 FCO_NRO.2.3: 2 FCS: FCS_CKM.1: 16 FCS_CKM.1.1: 4 FCS_CKM.2: 9 FCS_CKM.2.1: 1 FCS_CKM.3: 7 FCS_CKM.3.1: 1 FCS_CKM.4: 16 FCS_CKM.4.1: 4 FCS_COP.1: 14 FCS_COP.1.1: 16 FCS_RNG: 3 FCS_RNG.1: 11 FCS_RNG.1.1: 2 FCS_RNG.1.2: 2 FDP: FDP_ACC.1: 65 FDP_ACC.1.1: 3 FDP_ACC.2: 16 FDP_ACC.2.1: 4 FDP_ACC.2.2: 3 FDP_ACF.1: 49 FDP_ACF.1.1: 6 FDP_ACF.1.2: 8 FDP_ACF.1.3: 7 FDP_ACF.1.4: 9 FDP_IFC: 2 FDP_IFC.1: 37 FDP_IFC.1.1: 1 FDP_IFC.2: 13 FDP_IFC.2.1: 1 FDP_IFC.2.2: 1 FDP_IFF: 1 FDP_IFF.1: 22 FDP_IFF.1.1: 2 FDP_IFF.1.2: 3 FDP_IFF.1.3: 3 FDP_IFF.1.4: 3 FDP_IFF.1.5: 3 FDP_ITC: 1 FDP_ITC.1: 8 FDP_ITC.2: 19 FDP_ITC.2.1: 1 FDP_ITC.2.2: 1 FDP_ITC.2.3: 1 FDP_ITC.2.4: 1 FDP_ITC.2.5: 1 FDP_RIP.1: 69 FDP_RIP.1.1: 8 FDP_ROL.1: 19 FDP_ROL.1.1: 2 FDP_ROL.1.2: 3 FDP_SDI.1: 1 FDP_SDI.2: 7 FDP_SDI.2.1: 1 FDP_SDI.2.2: 1 FDP_UIT: 1 FDP_UIT.1: 5 FDP_UIT.1.1: 1 FDP_UIT.1.2: 1 FIA: FIA_AFL.1: 9 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_ATD.1: 8 FIA_ATD.1.1: 1 FIA_UAU.1: 17 FIA_UAU.1.1: 2 FIA_UAU.1.2: 2 FIA_UAU.4: 7 FIA_UAU.4.1: 1 FIA_UID: 1 FIA_UID.1: 37 FIA_UID.1.1: 2 FIA_UID.1.2: 2 FIA_UID.2: 5 FIA_UID.2.1: 1 FIA_USB.1: 5 FIA_USB.1.1: 1 FIA_USB.1.2: 1 FIA_USB.1.3: 1 FMT: FMT_MSA: 5 FMT_MSA.1: 73 FMT_MSA.1.1: 8 FMT_MSA.2: 4 FMT_MSA.2.1: 2 FMT_MSA.3: 69 FMT_MSA.3.1: 10 FMT_MSA.3.2: 9 FMT_MTD.1: 7 FMT_MTD.1.1: 1 FMT_MTD.3: 6 FMT_MTD.3.1: 1 FMT_SMF: 2 FMT_SMF.1: 69 FMT_SMF.1.1: 7 FMT_SMR: 2 FMT_SMR.1: 74 FMT_SMR.1.1: 5 FMT_SMR.1.2: 5 FPR: FPR_UNO.1: 10 FPR_UNO.1.1: 1 FPT: FPT_FLS.1: 42 FPT_FLS.1.1: 5 FPT_PHP.3: 5 FPT_PHP.3.1: 1 FPT_RCV.2: 1 FPT_RCV.3: 6 FPT_RCV.3.1: 2 FPT_RCV.3.2: 2 FPT_RCV.3.3: 2 FPT_RCV.3.4: 1 FPT_TDC.1: 6 FPT_TDC.1.1: 1 FPT_TDC.1.2: 1 FTP: FTP_ITC: 1 FTP_ITC.1: 16 FTP_ITC.1.1: 1 FTP_ITC.1.2: 1 FTP_ITC.1.3: 1 FTP_TRP.1: 4
pdf_data/st_keywords/cc_claims	A: A.PHYSICAL_PROTECTION: 1 OE: OE.ADMIN_CREDENTIALS_SECURE: 1 OE.NO_GENERAL_PURPOSE: 1 OE.NO_THRU_TRAFFIC_PROTECTION: 1 OE.PHYSICAL: 1 OE.RESIDUAL_INFORMATION: 1 OE.TRUSTED_ADMIN: 1 OE.UPDATES: 1	A: A.APPLET: 8 A.APPS-: 1 A.APPS-PROVIDER: 9 A.DELETION: 1 A.PROCESS-SEC-IC: 9 A.USE_DIAG: 10 A.USE_KEYS: 10 A.VERIFICATION: 8 A.VERIFICATION-AUTHORITY: 10 D: D.ADMIN_CONF_DATA: 1 D.API_: 1 D.API_DATA: 2 D.APP_: 3 D.APP_CODE: 5 D.APP_C_: 1 D.APP_C_DATA: 4 D.APP_I_: 2 D.APP_I_DATA: 4 D.APP_KEYS: 9 D.APSD_KEYS: 3 D.CARD_MNGT_DATA: 3 D.CRYPTO: 6 D.GP_CODE: 1 D.ISD_KEYS: 4 D.JCS_: 1 D.JCS_CODE: 3 D.JCS_DATA: 4 D.PERSO_CONF_DATA: 1 D.PIN: 10 D.SEC_DATA: 6 D.TSF_KEYS: 2 D.VASD_KEYS: 3 O: O.APPLET: 16 O.CODE_PKG: 12 O.CONFIG-ITEM: 7 O.CONFIG-SERVICE: 2 O.DELETION: 4 O.EXT-MEM: 1 O.EXT_: 4 O.EXT_MEM_IN: 2 O.EXT_MEM_IN-STANCE: 2 O.EXT_MEM_INSTANCE: 4 O.INSTALL: 3 O.JAVAOBJECT: 54 O.LOAD: 4 O.NON_: 1 O.NON_SB_: 1 O.NON_SB_SFR: 3 O.PUF: 1 O.REMOTE: 1 O.SB_SFR: 5 OE: OE.APPLET: 8 OE.APPS-PROVIDER: 6 OE.CARD-MANAGEMENT: 3 OE.CODE-EVIDENCE: 21 OE.KEY-: 1 OE.KEY-CHANGE: 6 OE.PROCESS_SEC_IC: 6 OE.SCP: 12 OE.SECURITY-DOMAINS: 6 OE.USE_DIAG: 7 OE.USE_KEYS: 7 OE.VERIFICATION: 29 OE.VERIFICATION-AUTHORITY: 5 OE.VERIFICATION_AUTHORITY: 1 OP: OP.ARRAY_ACCESS: 4 OP.CREATE: 7 OP.CREATE_EXT_MEM_: 1 OP.CREATE_EXT_MEM_INSTANCE: 2 OP.DELETE_: 2 OP.DELETE_AP-: 1 OP.DELETE_APPLET: 2 OP.DELETE_PCKG: 2 OP.DELETE_PCKG_APPLET: 3 OP.INSTANCE_: 2 OP.INSTANCE_FIELD: 2 OP.INVK_: 2 OP.INVK_INTER-: 1 OP.INVK_INTERFACE: 4 OP.INVK_VIRTUAL: 6 OP.JAVA: 5 OP.MODIFY_CON-: 1 OP.MODIFY_CONFIG_: 1 OP.MODIFY_CONFIG_ITEM: 2 OP.PUT: 6 OP.READ_: 1 OP.READ_CON-FIG_ITEM: 1 OP.READ_CONFIG_ITEM: 2 OP.READ_EXT_: 1 OP.READ_EXT_MEM: 2 OP.SB_AC-CESS: 1 OP.SB_ACCESS: 3 OP.SB_ACCESS_SFR: 4 OP.SECURE_: 1 OP.SECURE_CARD: 3 OP.THROW: 5 OP.TYPE_ACCESS: 5 OP.USE_CONFIG_ITEM: 3 OP.WRITE_EXT_: 1 OP.WRITE_EXT_MEM: 2 OSP: OSP.KEY-CHANGE: 9 OSP.PROCESS-TOE: 9 OSP.SECURE-BOX: 9 OSP.SECURITY-DOMAINS: 9 OSP.VERIFICATION: 7 OT: OT.ALARM: 18 OT.APPLI-AUTH: 15 OT.CARD-: 2 OT.CARD-MANAGEMENT: 33 OT.CIPHER: 9 OT.COMM_AUTH: 11 OT.COMM_CONFIDENTIALITY: 9 OT.COMM_INTEGRITY: 9 OT.CONFIG-LIMIT: 9 OT.DOMAIN-RIGHTS: 12 OT.EXT-MEM: 17 OT.FIREWALL: 14 OT.GLOBAL_ARRAYS_CONFID: 8 OT.GLOBAL_ARRAYS_INTEG: 8 OT.IDENTIFICATION: 10 OT.KEY-MNGT: 6 OT.NATIVE: 12 OT.OBJ-DELETION: 7 OT.OPERATE: 29 OT.PIN-MNGT: 9 OT.REALLOCATION: 9 OT.RESOURCES: 7 OT.RND: 10 OT.SCP: 54 OT.SEC_BOX_FW: 9 OT.SID: 18 OT.TRANSACTION: 7 R: R.JAVA: 12 SA: SA.ALARM: 3 SA.CARD-MANAGEMENT: 2 SA.CIPHER: 3 SA.CONFID-APPLI-DATA: 3 SA.CONFID-JCS-CODE: 3 SA.CONFID-JCS-DATA: 3 SA.DELETION: 2 SA.EXE-: 1 SA.EXE-APPLI-CODE: 4 SA.EXE-JCS-CODE: 3 SA.EXT-MNGT: 2 SA.FIREWALL: 3 SA.INSTALL: 3 SA.INTEG-APPLI-CODE: 4 SA.INTEG-APPLI-DATA: 4 SA.INTEG-JCS-CODE: 3 SA.INTEG-JCS-DATA: 3 SA.KEY-MNGT: 3 SA.NATIVE: 5 SA.OBJ-DELETION: 4 SA.OPERATE: 3 SA.PIN-MNGT: 3 SA.RESOURCES: 4 SA.SCP: 6 SA.SID: 4 SA.TRANSACTION: 3 SA.VERIFICATION: 4 T: T.COM_EXPLOIT: 8 T.CONFID-APPLI-DATA: 6 T.CONFID-JCS-CODE: 6 T.CONFID-JCS-DATA: 6 T.CONFIG: 8 T.DELETION: 2 T.EXE-CODE: 12 T.EXE-CODE-REMOTE: 1 T.INSTALL: 2 T.INTEG-APPLI-: 1 T.INTEG-APPLI-CODE: 13 T.INTEG-APPLI-DATA: 16 T.INTEG-JCS-CODE: 7 T.INTEG-JCS-DATA: 6 T.LIFE_CYCLE: 7 T.NATIVE: 6 T.OBJ-DELETION: 6 T.OS_OPERATE: 8 T.PHYSICAL: 6 T.RESOURCES: 6 T.RND: 8 T.SID: 13 T.UNAUTHORIZED_CARD_MNGT: 9
pdf_data/st_keywords/vendor	Broadcom: Broadcom: 2 Microsoft: Microsoft: 1	NXP: NXP: 154 NXP Semiconductors: 22
pdf_data/st_keywords/eval_facility
pdf_data/st_keywords/symmetric_crypto	AES_competition: AES: AES: 33 AES-256: 5 DES: 3DES: 3DES: 1 constructions: MAC: HMAC: 9 HMAC-SHA-256: 7 HMAC-SHA-384: 4 HMAC-SHA-512: 4	AES_competition: AES: AES: 15 DES: 3DES: 3DES: 3 TDES: 1 Triple-DES: 1 TripleDES: 1 DES: DES: 4 constructions: MAC: CBC-MAC: 4 CMAC: 3
pdf_data/st_keywords/asymmetric_crypto	ECC: ECC: ECC: 6 ECDH: ECDH: 2 ECDHE: 1 ECDSA: ECDSA: 21 FF: DH: DH: 7 DHE: 1 Diffie-Hellman: 8 DSA: DSA: 4 RSA: RSA 2048: 2 RSA-2048: 1	ECC: ECC: ECC: 5 ECDH: ECDH: 1 ECDSA: ECDSA: 1 FF: DH: Diffie-Hellman: 4 RSA: RSA-CRT: 2
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function	SHA: SHA1: SHA-1: 4 SHA2: SHA-256: 6 SHA-384: 4 SHA-512: 4 SHA256: 17	SHA: SHA1: SHA-1: 1 SHA2: SHA-224: 1 SHA-256: 1 SHA-384: 1 SHA-512: 1
pdf_data/st_keywords/crypto_scheme	MAC: MAC: 2	KA: Key Agreement: 1 MAC: MAC: 9
pdf_data/st_keywords/crypto_protocol	IKE: IKE: 1 IPsec: IPsec: 3 SSH: SSH: 44 SSHv2: 7 TLS: SSL: SSL: 5 SSL 2.0: 4 SSL 3.0: 4 TLS: TLS: 78 TLS 1.0: 4 TLS 1.1: 4 TLS 1.2: 6 TLS1.1: 1 TLS1.2: 1 TLSv1.1: 3 TLSv1.2: 6 VPN: VPN: 4	PACE: PACE: 1
pdf_data/st_keywords/randomness	PRNG: DRBG: 14 RNG: RBG: 4 RNG: 6	RNG: RND: 18 RNG: 21
pdf_data/st_keywords/cipher_mode	CBC: CBC: 8 CCM: CCM: 4 CTR: CTR: 7 GCM: GCM: 12	CBC: CBC: 5 CCM: CCM: 48 ECB: ECB: 2
pdf_data/st_keywords/ecc_curve	NIST: P-256: 18 P-384: 12 P-521: 10 secp256r1: 7 secp384r1: 7 secp521r1: 3
pdf_data/st_keywords/crypto_engine		SmartMX: SmartMX2: 3
pdf_data/st_keywords/tls_cipher_suite	TLS: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 7 TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 7 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 7 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 5 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 7 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 7 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 5 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 7 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 5 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 5 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 5 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 5 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 5 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 5 TLS_RSA_WITH_AES_128_CBC_SHA: 7 TLS_RSA_WITH_AES_128_CBC_SHA256: 7 TLS_RSA_WITH_AES_256_CBC_SHA: 7
pdf_data/st_keywords/crypto_library		Generic: Crypto Library ..........7: 1 Crypto Library 1.3.1.3: 1
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis		FI: DFA: 2 Fault Injection: 2 Physical Tampering: 3 fault injection: 1 malfunction: 3 physical tampering: 2 SCA: DPA: 4 SPA: 2 physical probing: 3 side channel: 2 side-channel: 1 timing attack: 1 timing attacks: 1
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name		JCOP: JCOP 3: 283 JCOP3: 4
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id	FIPS: FIPS 140-2: 2 FIPS 186-4: 3 FIPS PUB 186-4: 18 ISO: ISO/IEC 14888-: 1 ISO/IEC 14888-3: 1 ISO/IEC 18031:2011: 4 ISO/IEC 9796-2: 2 NIST: NIST SP 800-56A: 2 SP 800-90A: 2 PKCS: PKCS #1: 2 PKCS#12: 2 RFC: RFC 2818: 3 RFC 2986: 2 RFC 3268: 28 RFC 3526: 3 RFC 4253: 2 RFC 4346: 4 RFC 4492: 24 RFC 5246: 30 RFC 5280: 5 RFC 5289: 44 RFC 5759: 1 RFC 6125: 3 RFC 6960: 1 RFC 8017: 2 X509: X.509: 8	BSI: AIS 20: 2 CC: CCMB-2012-09-001: 1 CCMB-2012-09-002: 1 CCMB-2012-09-003: 1 CCMB-2012-09-004: 1 FIPS: FIPS 197: 2 ICAO: ICAO: 5 ISO: ISO/IEC 14443: 2 ISO/IEC 14888-3: 1 PKCS: PKCS1: 1 SCP: SCP01: 1 SCP02: 1 SCP03: 1
pdf_data/st_keywords/javacard_version		GlobalPlatform: GlobalPlatform 2.2.1: 1 JavaCard: Java Card 3.0.4: 1
pdf_data/st_keywords/javacard_api_const		ALG: AES: ALG_AES_BLOCK_128_CBC_: 1 ALG_AES_BLOCK_128_ECB_NOPAD: 1 ALG_AES_CMAC16: 1 ALG_AES_MAC_128_NOPAD: 1 DES: ALG_DES_CBC_ISO9797_M1: 1 ALG_DES_CBC_NOPAD: 1 ALG_DES_ECB_ISO9797_: 1 ALG_DES_ECB_ISO9797_M2: 1 ALG_DES_ECB_NOPAD: 1 ALG_DES_MAC8_ISO9797_1_M1_ALG3: 1 ALG_DES_MAC8_ISO9797_1_M2_: 1 ALG_DES_MAC8_ISO9797_M1: 1 ALG_DES_MAC8_ISO9797_M2: 1 EC: ALG_EC_SVDP_DH: 1 ALG_EC_SVDP_DHC: 1 ALG_EC_SVDP_DHC_PLAIN: 1 ALG_EC_SVDP_DH_PLAIN: 1 ECDSA: ALG_ECDSA_SHA_: 1 ALG_ECDSA_SHA_256: 2 ALG_ECDSA_SHA_384: 1 ALG_ECDSA_SHA_512: 1 RNG: ALG_PSEUDO_RANDOM: 1 ALG_SECURE_RANDOM: 1 RSA: ALG_RSA_NOPAD: 1 ALG_RSA_PKCS1_OAEP: 1 ALG_RSA_SHA_: 1 ALG_RSA_SHA_224_PKCS1_PSS: 1 ALG_RSA_SHA_256_ISO9796: 1 ALG_RSA_SHA_256_PKCS1: 1 ALG_RSA_SHA_256_PKCS1_PSS: 1 ALG_RSA_SHA_384_PKCS1: 1 ALG_RSA_SHA_512_PKCS1: 1 ALG_RSA_SHA_512_PKCS1_PSS: 1 ALG_RSA_SHA_ISO9796: 1 ALG_RSA_SHA_PKCS1: 1 SHA: ALG_SHA_224: 2 ALG_SHA_256: 2 ALG_SHA_384: 3 ALG_SHA_512: 2 misc: CIPHER_ECDSA: 1 LENGTH_AES_128: 2 LENGTH_AES_192: 2 LENGTH_AES_256: 3 LENGTH_DES3_2KEY: 2 LENGTH_DES3_3KEY: 1 LENGTH_EC_: 2 LENGTH_EC_FP_160: 4 LENGTH_EC_FP_192: 3 LENGTH_EC_FP_224: 3 LENGTH_EC_FP_256: 5 LENGTH_EC_FP_320: 3 LENGTH_EC_FP_384: 3 LENGTH_EC_FP_521: 3 LENGTH_RSA_1024: 1 LENGTH_RSA_2048: 1 LENGTH_RSA_4096: 2 LENGTH_SHA: 1 LENGTH_SHA_224: 1 LENGTH_SHA_256: 1 LENGTH_SHA_384: 1 PAD_PKCS1_OAEP: 1 SIG_CIPHER_RSA: 1 TYPE_ACCESS: 5
pdf_data/st_keywords/javacard_packages		java: java.lang: 1 javacard: javacard.framework: 2 javacard.security: 3 javacardx: javacardx.crypto: 1
pdf_data/st_keywords/certification_process	OutOfScope: e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed. The: 1 extent specified by the security functional requirements: TLS, HTTPS, SSH. The features below are out of scope. Table 2 Excluded Features Feature Description Telnet and HTTP Management Protocols Telnet and HTTP: 1 out of scope: 3 protocol and can be used to build a management interface. This feature is not tested and is out of scope. Stateful inspection filtering, VPN gateway, IPS/IDS threat prevention, URL filtering (PAN- DB: 1	OutOfScope: 134 NXP Semiconductors JCOP 3 P60 Security Target Lite Figure 1. Component of the TOE 1 MIFARE is out of scope of the certified Micro Controller. Figure 1.1 also shows applets and the Secure Box Native Library: 1 Controller, called MC FW including MIFARE implementations, where the MIFARE implementations are out of scope of the certified Micro Controller. • Software for implementing cryptographic operations on the: 1 out of scope: 2
pdf_data/st_metadata	/CreationDate: D:20191119084329-05'00' /ModDate: D:20191119084329-05'00' pdf_file_size_bytes: 1492668 pdf_hyperlinks: https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=412, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=418, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=407, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=405, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=421, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=435, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=422, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=406, file:///C:/Users/beaverg/Desktop/CCTL%20Projects/Palo%20Alto%20Panorama/Received%20from%20Vendor/updates.paloaltonetworks.com, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=409, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=408, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=420, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=433, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=417, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=411, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=410, https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/technical-documentation/81/vm-series/vm-series-deployment/vm-series-deployment.pdf, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=419, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=434, https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/technical-documentation/81/panorama/panorama-admin/panorama-admin.pdf pdf_is_encrypted: False pdf_number_of_pages: 56	/Author: NXP B.V. /CreationDate: D:20210723103654+01'00' /Creator: DITA Open Toolkit 3.3.1 /Keywords: ASE, JCOP, Common Criteria, EAL5 augmented /Producer: Apache FOP Version 2.3 /Subject: JCOP 3 P60 /Title: Security Target Lite pdf_file_size_bytes: 1283021 pdf_hyperlinks: http://csrc.nist.gov/publications/fips/%20fips197/fips-%20197.pdf pdf_is_encrypted: False pdf_number_of_pages: 134
state/cert/convert_garbage	True	True
state/cert/convert_ok	True	True
state/cert/download_ok	True	True
state/cert/extract_ok	True	True
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	True
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	True
state/st/download_ok	True	True
state/st/extract_ok	True	True
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different