This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10 CCEVS-VR-VID-10980-2019	Strong Customer Authentication pour Apple Pay sur Apple Watch avec S7 exécutant watchOS 8.5.1 (Version 8.5.1 (build 19T252)) ANSSI-CC-2023/17
name	Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10	Strong Customer Authentication pour Apple Pay sur Apple Watch avec S7 exécutant watchOS 8.5.1 (Version 8.5.1 (build 19T252))
category	Network and Network-Related Devices and Systems	Mobility
scheme	US	FR
status	archived	active
not_valid_after	12.11.2021	27.03.2028
not_valid_before	12.11.2019	27.03.2023
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-ci.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/certificat-cc-2023_17.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-vr.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cc-2023_17fr.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-st.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cible-cc-2023_17en.pdf
manufacturer	Palo Alto Networks, Inc.	Apple Inc.
manufacturer_web	https://www.paloaltonetworks.com/	https://www.apple.com/
security_level	{}	EAL2+, ADV_FSP.3, ALC_FLR.3
dgst	a8e03915b8738eb7	cb2e15c281fc9c89
heuristics/cert_id	CCEVS-VR-VID-10980-2019	ANSSI-CC-2023/17
heuristics/cert_lab	US	[]
heuristics/cpe_matches	{}	cpe:2.3:o:apple:watchos:8.5:::::::*
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	CVE-2024-27801, CVE-2022-32847, CVE-2023-32416, CVE-2023-38592, CVE-2024-23215, CVE-2023-41073, CVE-2023-40400, CVE-2024-54542, CVE-2024-44225, CVE-2022-32816, CVE-2024-44254, CVE-2024-23226, CVE-2023-32390, CVE-2024-40850, CVE-2022-46690, CVE-2023-35993, CVE-2024-40784, CVE-2023-32402, CVE-2023-41982, CVE-2023-41074, CVE-2024-54514, CVE-2024-27821, CVE-2022-43454, CVE-2024-23296, CVE-2024-54551, CVE-2024-27808, CVE-2025-24117, CVE-2024-40822, CVE-2022-32821, CVE-2024-44198, CVE-2023-27929, CVE-2022-32894, CVE-2024-54530, CVE-2024-23207, CVE-2023-42890, CVE-2024-27830, CVE-2024-23293, CVE-2024-44297, CVE-2023-42946, CVE-2024-27851, CVE-2024-40774, CVE-2023-42947, CVE-2023-34425, CVE-2025-24137, CVE-2024-27826, CVE-2024-44240, CVE-2023-32361, CVE-2023-41254, CVE-2024-40818, CVE-2023-32357, CVE-2022-32866, CVE-2022-32899, CVE-2024-44233, CVE-2022-32879, CVE-2024-23289, CVE-2022-32817, CVE-2023-27942, CVE-2023-38606, CVE-2024-40779, CVE-2024-54523, CVE-2024-40788, CVE-2022-32908, CVE-2022-26700, CVE-2022-1622, CVE-2024-54494, CVE-2022-42842, CVE-2024-23231, CVE-2022-42811, CVE-2022-32913, CVE-2024-27814, CVE-2023-32381, CVE-2024-54538, CVE-2023-40520, CVE-2023-38133, CVE-2023-32396, CVE-2023-32394, CVE-2023-23524, CVE-2022-32810, CVE-2024-54560, CVE-2024-27820, CVE-2022-32819, CVE-2023-32354, CVE-2024-23263, CVE-2023-40429, CVE-2024-44273, CVE-2022-42867, CVE-2023-41976, CVE-2024-23235, CVE-2023-23512, CVE-2024-23280, CVE-2023-40412, CVE-2023-42878, CVE-2022-32857, CVE-2025-24161, CVE-2024-23287, CVE-2024-54486, CVE-2023-27954, CVE-2024-27804, CVE-2024-54522, CVE-2023-23517, CVE-2024-40812, CVE-2024-54508, CVE-2023-41968, CVE-2023-23496, CVE-2024-44212, CVE-2022-42863, CVE-2023-38572, CVE-2024-23210, CVE-2023-28202, CVE-2023-40528, CVE-2022-37434, CVE-2023-42834, CVE-2022-32844, CVE-2023-40408, CVE-2025-24129, CVE-2024-0258, CVE-2024-40782, CVE-2024-27863, CVE-2022-32911, CVE-2022-23308, CVE-2023-40413, CVE-2022-46693, CVE-2022-48618, CVE-2022-32813, CVE-2024-23211, CVE-2022-32839, CVE-2022-32883, CVE-2023-42848, CVE-2024-54534, CVE-2025-24160, CVE-2023-32433, CVE-2024-27805, CVE-2023-42950, CVE-2023-28181, CVE-2024-27834, CVE-2024-23201, CVE-2023-41988, CVE-2023-32407, CVE-2024-44269, CVE-2022-42817, CVE-2023-40414, CVE-2023-32734, CVE-2024-23297, CVE-2023-41990, CVE-2024-27840, CVE-2023-39434, CVE-2024-40835, CVE-2022-42801, CVE-2022-42803, CVE-2022-46689, CVE-2022-32825, CVE-2022-46696, CVE-2023-41070, CVE-2024-44244, CVE-2024-23290, CVE-2023-32423, CVE-2023-42898, CVE-2022-46694, CVE-2023-23503, CVE-2022-32790, CVE-2023-40447, CVE-2023-32434, CVE-2024-54479, CVE-2024-54517, CVE-2024-27811, CVE-2024-54499, CVE-2024-23288, CVE-2023-42953, CVE-2022-26765, CVE-2022-40304, CVE-2024-23246, CVE-2022-42823, CVE-2023-42942, CVE-2024-23225, CVE-2025-24086, CVE-2022-32925, CVE-2024-44170, CVE-2024-54497, CVE-2022-48610, CVE-2022-26981, CVE-2024-23208, CVE-2024-27815, CVE-2022-40303, CVE-2023-27956, CVE-2023-38580, CVE-2024-23213, CVE-2022-42813, CVE-2023-27932, CVE-2022-32824, CVE-2023-32389, CVE-2022-42843, CVE-2022-26709, CVE-2023-27933, CVE-2022-42825, CVE-2023-41984, CVE-2022-32793, CVE-2022-42837, CVE-2022-32858, CVE-2023-36495, CVE-2024-40785, CVE-2024-44282, CVE-2022-42808, CVE-2023-32388, CVE-2022-32854, CVE-2022-32788, CVE-2022-32823, CVE-2024-27806, CVE-2023-27961, CVE-2023-32400, CVE-2024-44155, CVE-2024-23217, CVE-2025-24126, CVE-2024-27832, CVE-2022-26764, CVE-2024-23250, CVE-2023-32384, CVE-2023-32424, CVE-2023-38599, CVE-2023-27969, CVE-2022-46691, CVE-2022-32924, CVE-2022-42865, CVE-2023-42949, CVE-2024-23286, CVE-2024-54510, CVE-2023-41997, CVE-2023-28191, CVE-2023-32413, CVE-2024-44285, CVE-2022-32926, CVE-2023-38600, CVE-2024-44239, CVE-2024-44234, CVE-2025-24163, CVE-2023-23537, CVE-2023-42937, CVE-2023-28204, CVE-2023-40420, CVE-2023-42865, CVE-2022-32928, CVE-2023-38590, CVE-2024-40809, CVE-2022-26702, CVE-2022-32914, CVE-2022-32903, CVE-2025-24085, CVE-2022-46699, CVE-2022-42798, CVE-2023-32417, CVE-2024-23212, CVE-2022-46705, CVE-2024-44232, CVE-2023-37450, CVE-2024-54502, CVE-2023-23511, CVE-2024-44191, CVE-2022-32888, CVE-2023-35990, CVE-2022-26714, CVE-2022-32944, CVE-2023-40409, CVE-2022-32832, CVE-2023-42846, CVE-2024-40793, CVE-2023-32408, CVE-2024-27880, CVE-2023-42852, CVE-2023-27963, CVE-2022-26710, CVE-2023-40410, CVE-2023-40396, CVE-2023-35074, CVE-2022-32840, CVE-2023-40452, CVE-2024-23291, CVE-2023-41061, CVE-2023-34352, CVE-2024-40857, CVE-2022-32841, CVE-2023-38611, CVE-2022-32826, CVE-2023-32399, CVE-2022-32792, CVE-2022-42849, CVE-2024-27838, CVE-2023-41071, CVE-2024-54527, CVE-2023-23527, CVE-2024-40813, CVE-2023-42899, CVE-2023-23499, CVE-2023-32403, CVE-2023-23505, CVE-2023-40417, CVE-2024-40776, CVE-2024-44144, CVE-2023-40399, CVE-2024-23206, CVE-2023-42957, CVE-2023-23535, CVE-2022-42859, CVE-2024-23239, CVE-2022-42795, CVE-2023-28185, CVE-2024-40815, CVE-2025-24131, CVE-2023-38565, CVE-2024-44176, CVE-2022-32932, CVE-2023-32392, CVE-2023-40432, CVE-2023-27931, CVE-2022-46695, CVE-2022-32889, CVE-2022-42845, CVE-2024-27800, CVE-2024-27810, CVE-2023-23504, CVE-2022-32864, CVE-2022-46698, CVE-2023-32368, CVE-2024-54512, CVE-2023-32428, CVE-2022-42824, CVE-2024-54467, CVE-2023-42883, CVE-2022-46700, CVE-2024-54658, CVE-2024-40799, CVE-2024-27828, CVE-2024-27859, CVE-2022-46692, CVE-2023-32373, CVE-2023-23502, CVE-2023-42862, CVE-2024-44274, CVE-2023-32432, CVE-2023-32372, CVE-2023-27930, CVE-2023-27937, CVE-2024-23251, CVE-2022-26706, CVE-2024-44169, CVE-2024-54526, CVE-2022-26716, CVE-2024-23218, CVE-2023-38598, CVE-2022-32845, CVE-2024-54518, CVE-2022-48503, CVE-2022-32787, CVE-2023-42914, CVE-2023-42936, CVE-2023-40427, CVE-2023-40454, CVE-2023-32412, CVE-2023-41174, CVE-2024-40789, CVE-2024-44255, CVE-2024-44302, CVE-2023-42849, CVE-2022-32875, CVE-2024-44192, CVE-2023-40419, CVE-2023-38593, CVE-2022-32870, CVE-2022-42799, CVE-2023-27928, CVE-2023-32409, CVE-2024-54525, CVE-2023-32425, CVE-2022-32820, CVE-2024-44278, CVE-2024-40806, CVE-2023-40395, CVE-2023-40424, CVE-2023-23519, CVE-2023-23500, CVE-2025-24123, CVE-2022-32907, CVE-2023-32441, CVE-2023-41981, CVE-2024-23204, CVE-2023-32376, CVE-2024-44183, CVE-2022-26763, CVE-2024-44194, CVE-2024-40795, CVE-2024-40824, CVE-2024-23278, CVE-2022-42800, CVE-2023-35984, CVE-2022-26719, CVE-2024-23284, CVE-2023-42866, CVE-2022-32835, CVE-2022-26726, CVE-2024-44296, CVE-2024-54468, CVE-2024-44290, CVE-2023-32404, CVE-2024-23271, CVE-2022-26768, CVE-2024-23265, CVE-2022-26771, CVE-2022-26711, CVE-2025-24158, CVE-2024-44187, CVE-2023-41065, CVE-2022-32814, CVE-2022-32815, CVE-2022-26757, CVE-2023-42893, CVE-2023-32352, CVE-2022-32898, CVE-2023-32398, CVE-2023-32393, CVE-2024-27823, CVE-2023-38136, CVE-2022-26766, CVE-2025-24124, CVE-2024-54500, CVE-2024-27816, CVE-2022-42864, CVE-2024-27884, CVE-2024-44215, CVE-2021-36690, CVE-2022-32940, CVE-2023-32445, CVE-2025-24159, CVE-2023-23518, CVE-2022-32891, CVE-2024-54543, CVE-2023-42839, CVE-2024-54501, CVE-2023-38594, CVE-2022-42866, CVE-2025-24162, CVE-2023-40456, CVE-2024-23282, CVE-2023-38604, CVE-2024-54478, CVE-2022-2294, CVE-2023-32420, CVE-2023-32391, CVE-2023-40403, CVE-2024-54513, CVE-2024-40777, CVE-2024-40787, CVE-2024-40805, CVE-2024-44185, CVE-2022-26717, CVE-2024-40829, CVE-2022-32881, CVE-2022-22675, CVE-2024-54535, CVE-2023-38596, CVE-2024-44171, CVE-2024-54505, CVE-2023-41068, CVE-2023-42888, CVE-2024-54541, CVE-2024-40780, CVE-2024-27856, CVE-2022-42852, CVE-2024-23254, CVE-2023-38595, CVE-2022-32923, CVE-2023-40448, CVE-2025-24149, CVE-2023-42823, CVE-2025-24107, CVE-2024-40836, CVE-2022-32947, CVE-2023-32438, CVE-2024-23223
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, AGD_PRE.1	ASE_INT.1, AVA_VAN.2, ASE_ECD.1, ASE_TSS.1, ASE_SPD.1, ALC_DEL.1, ALC_FLR.3, AGD_OPE.1, AGD_PRE.1, ALC_CMS.2, ADV_TDS.1, ATE_FUN.1, ATE_COV.1, ADV_ARC.1, ASE_OBJ.2, ASE_REQ.2, ALC_CMC.2, ATE_IND.2, ADV_FSP.3, ASE_CCL.1
heuristics/extracted_versions	8.1.10	8.5.1
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	{}
heuristics/report_references/directly_referencing	{}	{}
heuristics/report_references/indirectly_referenced_by	{}	{}
heuristics/report_references/indirectly_referencing	{}	{}
heuristics/scheme_data	category: Network Device certification_date: 12.11.2019 evaluation_facility: Leidos Common Criteria Testing Laboratory expiration_date: 12.11.2021 id: CCEVS-VR-VID10980 product: Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10 scheme: US url: https://www.niap-ccevs.org/product/10980 vendor: Palo Alto Networks, Inc.
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	{}
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	{}
heuristics/protection_profiles	{}	{}
maintenance_updates
protection_profiles
protection_profile_links	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.1.pdf	{}
pdf_data/cert_filename	st_vid10980-ci.pdf	certificat-cc-2023_17.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id	US: CCEVS-VR-VID10980-2019: 1	FR: ANSSI-CC-2023/17: 2
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level		EAL: EAL2: 2
pdf_data/cert_keywords/cc_sar		ADV: ADV_FSP.3: 1 ALC: ALC_FLR.3: 1
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility	Leidos: Leidos: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/CreationDate: D:20191119111952-05'00' /ModDate: D:20191119111952-05'00' /Producer: iText 2.1.0 (by lowagie.com) pdf_file_size_bytes: 180256 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	st_vid10980-vr.pdf	anssi-cc-2023_17fr.pdf
pdf_data/report_frontpage	FR: US: cert_id: CCEVS-VR-VID10980-2019 cert_item: for Palo Alto Networks Panorama v8.1.10 cert_lab: US NIAP	FR: US:
pdf_data/report_keywords/cc_cert_id	US: CCEVS-VR-VID10980-2019: 1	FR: ANSSI-CC-2023/17: 2
pdf_data/report_keywords/cc_protection_profile_id
pdf_data/report_keywords/cc_security_level		EAL: EAL2: 3 EAL7: 1 ITSEC: ITSEC E6 Elevé: 1
pdf_data/report_keywords/cc_sar	ADV: ADV_FSP.1: 1 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.1: 1 ALC_CMS.1: 1 ATE: ATE_IND.1: 1 AVA: AVA_VAN.1: 1	ADV: ADV_FSP.3: 1 ALC: ALC_FLR: 1 ALC_FLR.3: 2
pdf_data/report_keywords/cc_sfr
pdf_data/report_keywords/cc_claims
pdf_data/report_keywords/vendor
pdf_data/report_keywords/eval_facility	Leidos: Leidos: 6
pdf_data/report_keywords/symmetric_crypto		DES: DES: DES: 1
pdf_data/report_keywords/asymmetric_crypto
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function
pdf_data/report_keywords/crypto_scheme
pdf_data/report_keywords/crypto_protocol	IPsec: IPsec: 1 SSH: SSH: 7 SSHv2: 1 TLS: TLS: TLS: 9 VPN: VPN: 3
pdf_data/report_keywords/randomness	RNG: RBG: 1
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name		IBM: SE: 1
pdf_data/report_keywords/os_name
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id	FIPS: FIPS 140-2: 1	CC: CCMB-2017-04-001: 1 CCMB-2017-04-002: 1 CCMB-2017-04-003: 1
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process	OutOfScope: e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed: 1 out of scope: 2 protocol and can be used to build a management interface. This feature is not tested and is out of scope. Stateful inspection filtering, VPN gateway, IPS/IDS threat prevention, URL filtering (PAN- DB: 1
pdf_data/report_metadata	/CreationDate: D:20191119084910-05'00' /ModDate: D:20191119084910-05'00' pdf_file_size_bytes: 584095 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 20
pdf_data/st_filename	st_vid10980-st.pdf	anssi-cible-cc-2023_17en.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id
pdf_data/st_keywords/cc_protection_profile_id
pdf_data/st_keywords/cc_security_level		EAL: EAL 2: 1 EAL2: 1
pdf_data/st_keywords/cc_sar	ADV: ADV_FSP.1: 1 AGD: AGD_OPE: 1 AGD_PRE: 1 ALC: ALC_CMC.1: 1 ALC_CMS.1: 1 ASE: ASE_CCL: 1 ASE_ECD: 1 ASE_INT: 1 ASE_OBJ: 1 ASE_REQ: 1 ASE_SPD: 1 ASE_TSS: 1 ATE: ATE_IND.1: 1 AVA: AVA_VAN.1: 1	ADV: ADV_ARC.1: 3 ADV_FSP.1: 2 ADV_FSP.2: 4 ADV_FSP.3: 2 ADV_TDS.1: 4 AGD: AGD_OPE.1: 4 AGD_PRE.1: 4 ALC: ALC_CMC.2: 2 ALC_CMS.2: 2 ALC_DEL.1: 2 ALC_FLR.3: 3 ASE: ASE_CCL.1: 2 ASE_ECD.1: 3 ASE_INT.1: 2 ASE_OBJ.2: 2 ASE_REQ.1: 2 ASE_REQ.2: 2 ASE_SPD.1: 1 ASE_TSS.1: 2 ATE: ATE_COV.1: 4 ATE_FUN.1: 3 ATE_IND.2: 1 AVA: AVA_VAN.2: 2
pdf_data/st_keywords/cc_sfr	FAU: FAU_GEN: 2 FAU_GEN.1: 4 FAU_GEN.1.1: 1 FAU_GEN.1.2: 1 FAU_GEN.2: 3 FAU_GEN.2.1: 1 FAU_STG_EXT: 1 FAU_STG_EXT.1: 3 FAU_STG_EXT.1.1: 1 FAU_STG_EXT.1.2: 1 FAU_STG_EXT.1.3: 1 FCS: FCS_CKM: 3 FCS_CKM.1: 5 FCS_CKM.1.1: 1 FCS_CKM.2: 6 FCS_CKM.2.1: 1 FCS_CKM.4: 3 FCS_CKM.4.1: 1 FCS_COP: 19 FCS_COP.1: 4 FCS_RBG_EXT: 1 FCS_RBG_EXT.1: 5 FCS_RBG_EXT.1.1: 1 FCS_RBG_EXT.1.2: 1 FCS_SSHC_EXT.1.5: 1 FCS_SSHS_EXT: 1 FCS_SSHS_EXT.1: 3 FCS_SSHS_EXT.1.1: 1 FCS_SSHS_EXT.1.2: 1 FCS_SSHS_EXT.1.3: 1 FCS_SSHS_EXT.1.4: 1 FCS_SSHS_EXT.1.5: 2 FCS_SSHS_EXT.1.6: 1 FCS_SSHS_EXT.1.7: 1 FCS_SSHS_EXT.1.8: 1 FCS_TLSC_EXT: 2 FCS_TLSC_EXT.1: 3 FCS_TLSC_EXT.1.1: 2 FCS_TLSC_EXT.1.2: 1 FCS_TLSC_EXT.1.3: 1 FCS_TLSC_EXT.1.4: 1 FCS_TLSC_EXT.2: 2 FCS_TLSC_EXT.2.1: 1 FCS_TLSC_EXT.2.2: 1 FCS_TLSC_EXT.2.3: 1 FCS_TLSC_EXT.2.4: 1 FCS_TLSC_EXT.2.5: 1 FCS_TLSS_EXT: 2 FCS_TLSS_EXT.1: 3 FCS_TLSS_EXT.1.1: 1 FCS_TLSS_EXT.1.2: 1 FCS_TLSS_EXT.1.3: 1 FCS_TLSS_EXT.2: 2 FCS_TLSS_EXT.2.1: 1 FCS_TLSS_EXT.2.2: 1 FCS_TLSS_EXT.2.3: 1 FCS_TLSS_EXT.2.4: 1 FCS_TLSS_EXT.2.5: 1 FCS_TLSS_EXT.2.6: 1 FIA: FIA_AFL: 1 FIA_AFL.1: 6 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_PMG_EXT: 1 FIA_PMG_EXT.1: 3 FIA_PMG_EXT.1.1: 1 FIA_UAU: 1 FIA_UAU.7: 3 FIA_UAU.7.1: 1 FIA_UAU_EXT: 1 FIA_UAU_EXT.2: 2 FIA_UAU_EXT.2.1: 1 FIA_UIA_EXT: 1 FIA_UIA_EXT.1: 5 FIA_UIA_EXT.1.1: 1 FIA_UIA_EXT.1.2: 1 FMT: FMT_MOF: 4 FMT_MOF.1: 1 FMT_MTD: 4 FMT_MTD.1: 1 FMT_SMF: 1 FMT_SMF.1: 3 FMT_SMF.1.1: 1 FMT_SMR: 1 FMT_SMR.2: 3 FMT_SMR.2.1: 1 FMT_SMR.2.2: 1 FMT_SMR.2.3: 1 FPT: FPT_APW_EXT: 1 FPT_APW_EXT.1: 3 FPT_APW_EXT.1.1: 1 FPT_APW_EXT.1.2: 1 FPT_SKP_EXT: 1 FPT_SKP_EXT.1: 3 FPT_SKP_EXT.1.1: 1 FPT_STM_EXT: 1 FPT_STM_EXT.1: 4 FPT_STM_EXT.1.1: 1 FPT_STM_EXT.1.2: 1 FPT_TST_EXT: 1 FPT_TST_EXT.1: 2 FPT_TST_EXT.1.1: 1 FPT_TUD_EXT: 1 FPT_TUD_EXT.1: 3 FPT_TUD_EXT.1.1: 1 FPT_TUD_EXT.1.2: 1 FPT_TUD_EXT.1.3: 1 FTA: FTA_SSL: 2 FTA_SSL.3: 3 FTA_SSL.3.1: 1 FTA_SSL.4: 2 FTA_SSL.4.1: 1 FTA_SSL_EXT: 1 FTA_SSL_EXT.1: 3 FTA_SSL_EXT.1.1: 1 FTA_TAB: 1 FTA_TAB.1: 4 FTA_TAB.1.1: 1 FTP: FTP_ITC: 1 FTP_ITC.1: 4 FTP_ITC.1.1: 1 FTP_ITC.1.2: 1 FTP_ITC.1.3: 1 FTP_TRP: 4 FTP_TRP.1: 3	FDP: FDP_ACC: 20 FDP_ACC.1: 11 FDP_ACC.2: 4 FDP_ACC.2.1: 1 FDP_ACC.2.2: 1 FDP_ACF: 16 FDP_ACF.1: 12 FDP_ACF.1.1: 1 FDP_ACF.1.2: 1 FDP_ACF.1.3: 1 FDP_ACF.1.4: 1 FDP_DAU.1: 4 FDP_DAU.1.1: 1 FDP_DAU.1.2: 1 FDP_ETC: 7 FDP_ETC.2: 2 FDP_ETC.2.1: 2 FDP_ETC.2.2: 2 FDP_ETC.2.3: 2 FDP_ETC.2.4: 2 FDP_IFC.1: 8 FDP_ITC: 5 FDP_ITC.1.1: 1 FDP_ITC.1.2: 1 FDP_ITC.1.3: 1 FDP_RIP.1: 9 FDP_RIP.1.1: 1 FDP_SDI.1: 9 FDP_SDI.1.1: 1 FDP_UCT: 10 FDP_UCT.1: 1 FDP_UCT.1.1: 1 FDP_UIT: 10 FDP_UIT.1: 2 FDP_UIT.1.1: 1 FDP_UIT.1.2: 1 FIA: FIA_AFL: 8 FIA_AFL.1: 5 FIA_ATD.1: 5 FIA_ATD.1.1: 2 FIA_SOS.2: 3 FIA_SOS.2.1: 1 FIA_SOS.2.2: 1 FIA_UAU.1: 2 FIA_UAU.2: 8 FIA_UAU.2.1: 1 FIA_UAU.5: 5 FIA_UAU.5.1: 1 FIA_UAU.5.2: 1 FIA_UAU.6: 11 FIA_UAU.6.1: 2 FIA_UID.1: 1 FIA_UID.2: 6 FIA_UID.2.1: 1 FMT: FMT_MSA.1: 6 FMT_MSA.1.1: 2 FMT_MSA.3: 11 FMT_MSA.3.1: 1 FMT_MSA.3.2: 1 FMT_MTD.1: 4 FMT_MTD.1.1: 1 FMT_MTD.3: 4 FMT_MTD.3.1: 1 FMT_SMF.1: 7 FMT_SMF.1.1: 1 FMT_SMR.1: 10 FMT_SMR.1.1: 1 FMT_SMR.1.2: 1 FPR: FPR_UNO.1: 12 FPR_UNO.1.1: 1 FPT: FPT_ITC.1: 4 FPT_ITC.1.1: 1 FPT_RPL: 8 FPT_RPL.1: 6 FTP: FTP_ITC: 14 FTP_ITC.1: 7 FTP_ITC.1.1: 1 FTP_ITC.1.2: 1 FTP_ITC.1.3: 1 FTP_TRP.1: 4
pdf_data/st_keywords/cc_claims	A: A.PHYSICAL_PROTECTION: 1 OE: OE.ADMIN_CREDENTIALS_SECURE: 1 OE.NO_GENERAL_PURPOSE: 1 OE.NO_THRU_TRAFFIC_PROTECTION: 1 OE.PHYSICAL: 1 OE.RESIDUAL_INFORMATION: 1 OE.TRUSTED_ADMIN: 1 OE.UPDATES: 1	A: A.CDCVM: 3 A.DEVICE_AUTH: 3 A.IPHONE_USER: 3 A.PERSO: 3 D: D.OS: 16 D.SEP_SE: 3 OE: OE.CDCVM: 3 OT: OT.-: 1 T: T.CORRUPT: 2 T.PHYSICAL: 2 T.RECOVER: 2 T.REPLAY: 2 T.SILENT: 2 T.SKIMMING: 2 T.USURP: 2
pdf_data/st_keywords/vendor	Broadcom: Broadcom: 2 Microsoft: Microsoft: 1
pdf_data/st_keywords/eval_facility
pdf_data/st_keywords/symmetric_crypto	AES_competition: AES: AES: 33 AES-256: 5 DES: 3DES: 3DES: 1 constructions: MAC: HMAC: 9 HMAC-SHA-256: 7 HMAC-SHA-384: 4 HMAC-SHA-512: 4	AES_competition: AES: AES: 1
pdf_data/st_keywords/asymmetric_crypto	ECC: ECC: ECC: 6 ECDH: ECDH: 2 ECDHE: 1 ECDSA: ECDSA: 21 FF: DH: DH: 7 DHE: 1 Diffie-Hellman: 8 DSA: DSA: 4 RSA: RSA 2048: 2 RSA-2048: 1
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function	SHA: SHA1: SHA-1: 4 SHA2: SHA-256: 6 SHA-384: 4 SHA-512: 4 SHA256: 17
pdf_data/st_keywords/crypto_scheme	MAC: MAC: 2	MAC: MAC: 1
pdf_data/st_keywords/crypto_protocol	IKE: IKE: 1 IPsec: IPsec: 3 SSH: SSH: 44 SSHv2: 7 TLS: SSL: SSL: 5 SSL 2.0: 4 SSL 3.0: 4 TLS: TLS: 78 TLS 1.0: 4 TLS 1.1: 4 TLS 1.2: 6 TLS1.1: 1 TLS1.2: 1 TLSv1.1: 3 TLSv1.2: 6 VPN: VPN: 4	TLS: TLS: TLS: 3
pdf_data/st_keywords/randomness	PRNG: DRBG: 14 RNG: RBG: 4 RNG: 6
pdf_data/st_keywords/cipher_mode	CBC: CBC: 8 CCM: CCM: 4 CTR: CTR: 7 GCM: GCM: 12
pdf_data/st_keywords/ecc_curve	NIST: P-256: 18 P-384: 12 P-521: 10 secp256r1: 7 secp384r1: 7 secp521r1: 3
pdf_data/st_keywords/crypto_engine
pdf_data/st_keywords/tls_cipher_suite	TLS: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 7 TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 7 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 7 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 5 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 7 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 7 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 5 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 7 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 5 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 5 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 5 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 5 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 5 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 5 TLS_RSA_WITH_AES_128_CBC_SHA: 7 TLS_RSA_WITH_AES_128_CBC_SHA256: 7 TLS_RSA_WITH_AES_256_CBC_SHA: 7
pdf_data/st_keywords/crypto_library
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name		IBM: SE: 4
pdf_data/st_keywords/os_name
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id	FIPS: FIPS 140-2: 2 FIPS 186-4: 3 FIPS PUB 186-4: 18 ISO: ISO/IEC 14888-: 1 ISO/IEC 14888-3: 1 ISO/IEC 18031:2011: 4 ISO/IEC 9796-2: 2 NIST: NIST SP 800-56A: 2 SP 800-90A: 2 PKCS: PKCS #1: 2 PKCS#12: 2 RFC: RFC 2818: 3 RFC 2986: 2 RFC 3268: 28 RFC 3526: 3 RFC 4253: 2 RFC 4346: 4 RFC 4492: 24 RFC 5246: 30 RFC 5280: 5 RFC 5289: 44 RFC 5759: 1 RFC 6125: 3 RFC 6960: 1 RFC 8017: 2 X509: X.509: 8	FIPS: FIPS 140-2: 1 FIPS 140-3: 1
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process	OutOfScope: e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed. The: 1 extent specified by the security functional requirements: TLS, HTTPS, SSH. The features below are out of scope. Table 2 Excluded Features Feature Description Telnet and HTTP Management Protocols Telnet and HTTP: 1 out of scope: 3 protocol and can be used to build a management interface. This feature is not tested and is out of scope. Stateful inspection filtering, VPN gateway, IPS/IDS threat prevention, URL filtering (PAN- DB: 1	OutOfScope: Element of the device is separately certified according to the Common Criteria and is therefore out of scope of this evaluation. Note: In the evaluated configuration the cryptographic modules are supplied by: 1 out of scope: 2 *to return to its User. Note: Defending against device re-use after phys- ical compromise is out of scope. D.User_Passcode D.Card_Data D.Unlock_Secret D.SEP_iPhone* T.RECOVER Card Recovery An attacker**: 1
pdf_data/st_metadata	/CreationDate: D:20191119084329-05'00' /ModDate: D:20191119084329-05'00' pdf_file_size_bytes: 1492668 pdf_hyperlinks: https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=412, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=418, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=407, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=405, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=421, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=435, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=422, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=406, file:///C:/Users/beaverg/Desktop/CCTL%20Projects/Palo%20Alto%20Panorama/Received%20from%20Vendor/updates.paloaltonetworks.com, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=409, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=408, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=420, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=433, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=417, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=411, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=410, https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/technical-documentation/81/vm-series/vm-series-deployment/vm-series-deployment.pdf, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=419, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=434, https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/technical-documentation/81/panorama/panorama-admin/panorama-admin.pdf pdf_is_encrypted: False pdf_number_of_pages: 56
state/cert/convert_garbage	True	False
state/cert/convert_ok	True	True
state/cert/download_ok	True	True
state/cert/extract_ok	True	False
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	False
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	True
state/st/download_ok	True	True
state/st/extract_ok	True	False
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different