| name |
Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10 |
IDentity Applet v3.4-p2/eIDAS on NXP JCOP 4 P71 |
| category |
Network and Network-Related Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
US |
IT |
| status |
archived |
active |
| not_valid_after |
12.11.2021 |
17.02.2028 |
| not_valid_before |
12.11.2019 |
17.02.2023 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-ci.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cr_FP_idapplet34p2_eidas_v1.0_en.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-vr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cr_idapplet34p2_eidas_v1.0_en.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10980-st.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_idapplet34p2_eidas_v1.06.pdf |
| manufacturer |
Palo Alto Networks, Inc. |
ID&Trust Ltd. |
| manufacturer_web |
https://www.paloaltonetworks.com/ |
https://www.idandtrust.com/ |
| security_level |
{} |
ALC_DVS.2, EAL4+, ATE_DPT.2, AVA_VAN.5 |
| dgst |
a8e03915b8738eb7 |
f4860d3dac1ba5ba |
| heuristics/cert_id |
CCEVS-VR-VID-10980-2019 |
OCSI/CERT/CCL/11/2022/RC |
| heuristics/cert_lab |
US |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, AGD_PRE.1 |
AVA_COMP.1, ASE_INT.1, ASE_COMP.1, ALC_DVS.2, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ALC_FLR.1, ALC_TAT.1, ASE_SPD.1, ATE_DPT.2, AVA_VAN.5, ALC_DEL.1, ADV_COMP.1, ALC_LCD.1, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ASE_TSS.2, ASE_REQ.2, ATE_COMP.1, ALC_COMP.1, ADV_FSP.4, ATE_IND.2, ASE_CCL.1, ADV_SPM.1 |
| heuristics/extracted_versions |
8.1.10 |
3.4 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
OCSI/CERT/SYS/08/2016/RC, NSCIB-CC-180212-CR5 |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
BSI-DSZ-CC-1136-2021, OCSI/CERT/SYS/08/2016/RC, BSI-DSZ-CC-1136-V2-2022, BSI-DSZ-CC-1136-V3-2022, NSCIB-CC-180212-CR5 |
| heuristics/scheme_data |
- category: Network Device
- certification_date: 12.11.2019
- evaluation_facility: Leidos Common Criteria Testing Laboratory
- expiration_date: 12.11.2021
- id: CCEVS-VR-VID10980
- product: Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10
- scheme: US
- url: https://www.niap-ccevs.org/product/10980
- vendor: Palo Alto Networks, Inc.
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
BSI-DSZ-CC-1136-V3-2022 |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
BSI-DSZ-CC-1136-V3-2022 |
| heuristics/protection_profiles |
{} |
002505d0c2b4718a, b380aabf93b29692, d918b28fd7bb5d79, a33327d40f253f46, 64065d44659bf9ef |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0059b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0068_V2b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0086b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0087b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0056_V2b_pdf.pdf |
| pdf_data/cert_filename |
st_vid10980-ci.pdf |
cr_FP_idapplet34p2_eidas_v1.0_en.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID10980-2019: 1
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20191119111952-05'00'
- /ModDate: D:20191119111952-05'00'
- /Producer: iText 2.1.0 (by lowagie.com)
- pdf_file_size_bytes: 180256
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: t.inzerilli
- /CreationDate: D:20230221182151+01'00'
- /ModDate: D:20230221182151+01'00'
- /Producer: Microsoft: Print To PDF
- /Title: Certification Report "IDentity Applet v3.4/eIDAS on NXP JCOP 4 P71".pdf
- pdf_file_size_bytes: 132541
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
st_vid10980-vr.pdf |
cr_idapplet34p2_eidas_v1.0_en.pdf |
| pdf_data/report_frontpage |
- US:
- cert_id: CCEVS-VR-VID10980-2019
- cert_item: for Palo Alto Networks Panorama v8.1.10
- cert_lab: US NIAP
|
|
| pdf_data/report_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID10980-2019: 1
|
- DE:
- IT:
- OCSI/CERT/CCL/11/2022/RC: 34
- OCSI/CERT/SYS/08/2016/RC: 1
- NL:
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP-0056-V2-2012: 3
- BSI-CC-PP-0059-2009-MA-01: 3
- BSI-CC-PP-0068-V2-2011-MA-01: 3
- BSI-CC-PP-0086: 3
- BSI-CC-PP-0087: 5
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL2: 4
- EAL4: 11
- EAL4 augmented: 1
- EAL4+: 1
- EAL6: 2
- EAL6 augmented: 2
- EAL6+: 1
|
| pdf_data/report_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 1
- ADV_COMP.1: 1
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_COMP.1: 1
- ALC_DEL.1: 1
- ALC_DVS.2: 7
- ALC_FLR: 1
- ALC_FLR.1: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_COMP.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ASE_TSS.2: 2
- ATE:
- ATE_COMP: 1
- ATE_COMP.1: 1
- ATE_COV.2: 1
- ATE_DPT.2: 7
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
- AVA_COMP: 1
- AVA_COMP.1: 1
- AVA_VAN.5: 7
|
| pdf_data/report_keywords/cc_sfr |
|
- FAU:
- FCS:
- FIA:
- FMT:
- FMT_LIM: 1
- FMT_LIM.1: 1
- FMT_LIM.2: 1
- FPT:
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
- Gemalto:
- NXP:
- NXP: 21
- NXP Semiconductors: 4
|
| pdf_data/report_keywords/eval_facility |
|
- CCLab:
- CCLab Software Laboratory: 5
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
- BSI:
- BSI TR-03105: 1
- BSI TR-03110: 4
- BSI TR-03110-2: 1
- BSI TR-03110-3: 1
- BSI TR-03117: 1
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
- ICAO:
- ISO:
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
- OutOfScope:
- e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed: 1
- out of scope: 2
- protocol and can be used to build a management interface. This feature is not tested and is out of scope. Stateful inspection filtering, VPN gateway, IPS/IDS threat prevention, URL filtering (PAN- DB: 1
|
|
| pdf_data/report_metadata |
- /CreationDate: D:20191119084910-05'00'
- /ModDate: D:20191119084910-05'00'
- pdf_file_size_bytes: 584095
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 20
|
- /Author: OCSI
- /CreationDate: D:20230217155106+01'00'
- /Creator: Microsoft® Word per Microsoft 365
- /ModDate: D:20230217155106+01'00'
- /Producer: Microsoft® Word per Microsoft 365
- /Title: Certification Report "IDentity Applet v3.4/eIDAS on NXP JCOP 4 P71"
- pdf_file_size_bytes: 669524
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 34
|
| pdf_data/st_filename |
st_vid10980-st.pdf |
st_idapplet34p2_eidas_v1.06.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1136-V3-2022: 2
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP-0055: 1
- BSI-CC-PP-0056-: 2
- BSI-CC-PP-0056-V2-2012: 1
- BSI-CC-PP-0059-2009-MA-01: 1
- BSI-CC-PP-0068-: 1
- BSI-CC-PP-0068-V2-2011-MA-: 1
- BSI-CC-PP-0068-V2-2011-MA-01: 1
- BSI-CC-PP-0084-2014: 1
- BSI-CC-PP-0086: 1
- BSI-CC-PP-0086-2015: 1
- BSI-CC-PP-0087: 3
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 4: 2
- EAL 6: 2
- EAL 6+: 1
- EAL4: 18
- EAL4 augmented: 8
- EAL4+: 1
- EAL6+: 1
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ASE:
- ASE_CCL: 1
- ASE_ECD: 1
- ASE_INT: 1
- ASE_OBJ: 1
- ASE_REQ: 1
- ASE_SPD: 1
- ASE_TSS: 1
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 5
- ADV_FSP.4: 2
- ADV_IMP.1: 2
- ADV_SPM.1: 1
- ADV_TDS.3: 4
- AGD:
- AGD_OPE.1: 2
- AGD_PRE.1: 4
- ALC:
- ALC_DEL.1: 2
- ALC_DVS.2: 11
- ALC_FLR.1: 3
- ASE:
- ATE:
- ATE_DPT.1: 1
- ATE_DPT.2: 12
- ATE_FUN.1: 2
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN: 2
- FAU_GEN.1: 4
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 3
- FAU_GEN.2.1: 1
- FAU_STG_EXT: 1
- FAU_STG_EXT.1: 3
- FAU_STG_EXT.1.1: 1
- FAU_STG_EXT.1.2: 1
- FAU_STG_EXT.1.3: 1
- FCS:
- FCS_CKM: 3
- FCS_CKM.1: 5
- FCS_CKM.1.1: 1
- FCS_CKM.2: 6
- FCS_CKM.2.1: 1
- FCS_CKM.4: 3
- FCS_CKM.4.1: 1
- FCS_COP: 19
- FCS_COP.1: 4
- FCS_RBG_EXT: 1
- FCS_RBG_EXT.1: 5
- FCS_RBG_EXT.1.1: 1
- FCS_RBG_EXT.1.2: 1
- FCS_SSHC_EXT.1.5: 1
- FCS_SSHS_EXT: 1
- FCS_SSHS_EXT.1: 3
- FCS_SSHS_EXT.1.1: 1
- FCS_SSHS_EXT.1.2: 1
- FCS_SSHS_EXT.1.3: 1
- FCS_SSHS_EXT.1.4: 1
- FCS_SSHS_EXT.1.5: 2
- FCS_SSHS_EXT.1.6: 1
- FCS_SSHS_EXT.1.7: 1
- FCS_SSHS_EXT.1.8: 1
- FCS_TLSC_EXT: 2
- FCS_TLSC_EXT.1: 3
- FCS_TLSC_EXT.1.1: 2
- FCS_TLSC_EXT.1.2: 1
- FCS_TLSC_EXT.1.3: 1
- FCS_TLSC_EXT.1.4: 1
- FCS_TLSC_EXT.2: 2
- FCS_TLSC_EXT.2.1: 1
- FCS_TLSC_EXT.2.2: 1
- FCS_TLSC_EXT.2.3: 1
- FCS_TLSC_EXT.2.4: 1
- FCS_TLSC_EXT.2.5: 1
- FCS_TLSS_EXT: 2
- FCS_TLSS_EXT.1: 3
- FCS_TLSS_EXT.1.1: 1
- FCS_TLSS_EXT.1.2: 1
- FCS_TLSS_EXT.1.3: 1
- FCS_TLSS_EXT.2: 2
- FCS_TLSS_EXT.2.1: 1
- FCS_TLSS_EXT.2.2: 1
- FCS_TLSS_EXT.2.3: 1
- FCS_TLSS_EXT.2.4: 1
- FCS_TLSS_EXT.2.5: 1
- FCS_TLSS_EXT.2.6: 1
- FIA:
- FIA_AFL: 1
- FIA_AFL.1: 6
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_PMG_EXT: 1
- FIA_PMG_EXT.1: 3
- FIA_PMG_EXT.1.1: 1
- FIA_UAU: 1
- FIA_UAU.7: 3
- FIA_UAU.7.1: 1
- FIA_UAU_EXT: 1
- FIA_UAU_EXT.2: 2
- FIA_UAU_EXT.2.1: 1
- FIA_UIA_EXT: 1
- FIA_UIA_EXT.1: 5
- FIA_UIA_EXT.1.1: 1
- FIA_UIA_EXT.1.2: 1
- FMT:
- FMT_MOF: 4
- FMT_MOF.1: 1
- FMT_MTD: 4
- FMT_MTD.1: 1
- FMT_SMF: 1
- FMT_SMF.1: 3
- FMT_SMF.1.1: 1
- FMT_SMR: 1
- FMT_SMR.2: 3
- FMT_SMR.2.1: 1
- FMT_SMR.2.2: 1
- FMT_SMR.2.3: 1
- FPT:
- FPT_APW_EXT: 1
- FPT_APW_EXT.1: 3
- FPT_APW_EXT.1.1: 1
- FPT_APW_EXT.1.2: 1
- FPT_SKP_EXT: 1
- FPT_SKP_EXT.1: 3
- FPT_SKP_EXT.1.1: 1
- FPT_STM_EXT: 1
- FPT_STM_EXT.1: 4
- FPT_STM_EXT.1.1: 1
- FPT_STM_EXT.1.2: 1
- FPT_TST_EXT: 1
- FPT_TST_EXT.1: 2
- FPT_TST_EXT.1.1: 1
- FPT_TUD_EXT: 1
- FPT_TUD_EXT.1: 3
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.1.3: 1
- FTA:
- FTA_SSL: 2
- FTA_SSL.3: 3
- FTA_SSL.3.1: 1
- FTA_SSL.4: 2
- FTA_SSL.4.1: 1
- FTA_SSL_EXT: 1
- FTA_SSL_EXT.1: 3
- FTA_SSL_EXT.1.1: 1
- FTA_TAB: 1
- FTA_TAB.1: 4
- FTA_TAB.1.1: 1
- FTP:
- FTP_ITC: 1
- FTP_ITC.1: 4
- FTP_ITC.1.1: 1
- FTP_ITC.1.2: 1
- FTP_ITC.1.3: 1
- FTP_TRP: 4
- FTP_TRP.1: 3
|
- FAU:
- FAU_ARP.1: 2
- FAU_SAS: 18
- FAU_SAS.1: 4
- FCO:
- FCS:
- FCS_CKM: 148
- FCS_CKM.1: 25
- FCS_CKM.1.1: 5
- FCS_CKM.2: 10
- FCS_CKM.4: 24
- FCS_COP: 124
- FCS_COP.1: 42
- FCS_COP.1.1: 25
- FCS_RND: 21
- FCS_RND.1: 3
- FCS_RNG.1: 5
- FDP:
- FDP_ACC: 56
- FDP_ACC.1: 16
- FDP_ACC.2: 4
- FDP_ACF: 66
- FDP_ACF.1: 50
- FDP_IFC.1: 4
- FDP_IFC.2: 3
- FDP_IFF.1: 5
- FDP_ITC.1: 13
- FDP_ITC.2: 15
- FDP_RIP: 32
- FDP_RIP.1: 13
- FDP_ROL.1: 2
- FDP_SDI: 16
- FDP_SDI.1: 2
- FDP_SDI.2: 9
- FDP_UCT: 20
- FDP_UCT.1: 1
- FDP_UIT: 20
- FDP_UIT.1: 3
- FIA:
- FIA_AFL: 54
- FIA_AFL.1: 12
- FIA_API: 63
- FIA_API.1: 8
- FIA_ATD.1: 2
- FIA_UAU: 158
- FIA_UAU.1: 15
- FIA_UAU.4: 4
- FIA_UAU.5: 11
- FIA_UAU.6: 3
- FIA_UID: 54
- FIA_UID.1: 19
- FIA_UID.2: 1
- FIA_USB.1: 2
- FMT:
- FMT_LIM: 63
- FMT_LIM.1: 7
- FMT_LIM.2: 7
- FMT_MOF: 9
- FMT_MOF.1: 1
- FMT_MSA: 50
- FMT_MSA.1: 15
- FMT_MSA.2: 2
- FMT_MSA.3: 17
- FMT_MTD: 256
- FMT_MTD.1: 24
- FMT_MTD.3: 3
- FMT_SMF: 51
- FMT_SMF.1: 36
- FMT_SMR: 39
- FMT_SMR.1: 50
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPR:
- FPT:
- FPT_EMS: 39
- FPT_EMS.1: 13
- FPT_FLS: 25
- FPT_FLS.1: 8
- FPT_ITC: 2
- FPT_PHP: 36
- FPT_PHP.1: 2
- FPT_PHP.3: 3
- FPT_RCV.3: 1
- FPT_TDC.1: 1
- FPT_TST: 33
- FPT_TST.1: 5
- FTP:
- FTP_ITC: 34
- FTP_ITC.1: 13
- FTP_TRP.1: 2
|
| pdf_data/st_keywords/cc_claims |
- A:
- OE:
- OE.ADMIN_CREDENTIALS_SECURE: 1
- OE.NO_GENERAL_PURPOSE: 1
- OE.NO_THRU_TRAFFIC_PROTECTION: 1
- OE.PHYSICAL: 1
- OE.RESIDUAL_INFORMATION: 1
- OE.TRUSTED_ADMIN: 1
- OE.UPDATES: 1
|
- A:
- OE:
- OE.APPLET: 1
- OE.CODE-EVIDENCE: 1
- OE.HID_VAD: 2
- OE.KEY-CHANGE: 1
- OE.PROCESS_SEC_IC: 1
- OE.SECURITY-: 1
- OE.USE_DIAG: 1
- OE.USE_KEYS: 1
- OE.VERIFICATION: 1
- OE.VERIFICATION-: 1
- OSP:
- OSP.KEY-CHANGE: 1
- OSP.PROCESS-TOE: 1
- OSP.SECURE-BOX: 1
- OSP.SECURITY-DOMAINS: 1
- OSP.VERIFICATION: 1
- OT:
- OT.ALARM: 1
- OT.APPLI-AUTH: 1
- OT.ATTACK-COUNTER: 1
- OT.CARD-CONFIGURATION: 1
- OT.CARD-MANAGEMENT: 1
- OT.CIPHER: 1
- OT.COMM_AUTH: 2
- OT.COMM_CONFIDENTIALITY: 1
- OT.COMM_INTEGRITY: 1
- OT.DOMAIN-RIGHTS: 1
- OT.EXT-MEM: 1
- OT.FIREWALL: 1
- OT.GLOBAL_ARRAYS_CONFID: 1
- OT.IDENTIFICATION: 1
- OT.KEY-MNGT: 1
- OT.NATIVE: 1
- OT.OBJ-DELETION: 1
- OT.OPERATE: 1
- OT.PIN-MNGT: 1
- OT.REALLOCATION: 1
- OT.RESOURCES: 1
- OT.RESTRICTED-MODE: 1
- OT.RND: 1
- OT.RNG: 1
- OT.SCP: 3
- OT.SEC_BOX_FW: 1
- OT.SENSITIVE_RESULT_INTEG: 1
- OT.SID: 1
- OT.SID_MODULE: 1
- OT.TRANSACTION: 1
|
| pdf_data/st_keywords/vendor |
|
- Infineon:
- Infineon Technologies AG: 1
- NXP:
- NXP: 7
- NXP Semiconductors: 3
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- DES:
- constructions:
- MAC:
- HMAC: 9
- HMAC-SHA-256: 7
- HMAC-SHA-384: 4
- HMAC-SHA-512: 4
|
- AES_competition:
- DES:
- 3DES:
- 3DES: 8
- TDES: 3
- Triple-DES: 8
- TripleDES: 5
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
- ECC:
- FF:
- DH:
- DH: 7
- DHE: 1
- Diffie-Hellman: 8
- DSA:
- RSA:
|
- ECC:
- FF:
- RSA:
- RSA 2048: 1
- RSA-CRT: 3
- RSA-PSS: 1
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-256: 6
- SHA-384: 4
- SHA-512: 4
- SHA256: 17
|
- SHA:
- SHA1:
- SHA2:
- SHA-224: 3
- SHA-256: 7
- SHA-384: 2
- SHA-512: 2
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- IKE:
- IPsec:
- SSH:
- TLS:
- SSL:
- SSL: 5
- SSL 2.0: 4
- SSL 3.0: 4
- TLS:
- TLS: 78
- TLS 1.0: 4
- TLS 1.1: 4
- TLS 1.2: 6
- TLS1.1: 1
- TLS1.2: 1
- TLSv1.1: 3
- TLSv1.2: 6
- VPN:
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- NIST:
- P-256: 18
- P-384: 12
- P-521: 10
- secp256r1: 7
- secp384r1: 7
- secp521r1: 3
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
- TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 7
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 7
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 7
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 5
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 7
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 7
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 5
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 7
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 5
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 5
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 5
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 5
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 5
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 5
- TLS_RSA_WITH_AES_128_CBC_SHA: 7
- TLS_RSA_WITH_AES_128_CBC_SHA256: 7
- TLS_RSA_WITH_AES_256_CBC_SHA: 7
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 1
- malfunction: 1
- physical tampering: 3
- SCA:
- DPA: 1
- SPA: 1
- timing attacks: 1
|
| pdf_data/st_keywords/technical_report_id |
|
- BSI:
- BSI 586: 1
- BSI TR-03110: 5
- BSI TR-03117: 1
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
- EF:
- EF.ChipSecurity: 1
- EF.DG14: 1
- EF.DG15: 1
- EF.SOD: 1
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- FIPS 140-2: 2
- FIPS 186-4: 3
- FIPS PUB 186-4: 18
- ISO:
- ISO/IEC 14888-: 1
- ISO/IEC 14888-3: 1
- ISO/IEC 18031:2011: 4
- ISO/IEC 9796-2: 2
- NIST:
- NIST SP 800-56A: 2
- SP 800-90A: 2
- PKCS:
- RFC:
- RFC 2818: 3
- RFC 2986: 2
- RFC 3268: 28
- RFC 3526: 3
- RFC 4253: 2
- RFC 4346: 4
- RFC 4492: 24
- RFC 5246: 30
- RFC 5280: 5
- RFC 5289: 44
- RFC 5759: 1
- RFC 6125: 3
- RFC 6960: 1
- RFC 8017: 2
- X509:
|
- CC:
- CCMB-2017-04-001: 2
- CCMB-2017-04-002: 2
- CCMB-2017-04-003: 2
- CCMB-2017-04-004: 1
- ICAO:
- ISO:
- ISO/IEC 14443: 2
- ISO/IEC 18013: 2
- PKCS:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- e., stateful inspection filtering, IPsec VPN gateway, IPS/IDS threat prevention) are not evaluated (out of scope). Only the secure communication channels from Panorama to firewalls and Wildfires are claimed. The: 1
- extent specified by the security functional requirements: TLS, HTTPS, SSH. The features below are out of scope. Table 2 Excluded Features Feature Description Telnet and HTTP Management Protocols Telnet and HTTP: 1
- out of scope: 3
- protocol and can be used to build a management interface. This feature is not tested and is out of scope. Stateful inspection filtering, VPN gateway, IPS/IDS threat prevention, URL filtering (PAN- DB: 1
|
- OutOfScope:
- 741 • OT.SEC_BOX_FW 742 • OT.SENSITIVE_RESULT_INTEG 743 cannot be mapped because these are out of scope. 744 The objectives for the operational environment can be mapped as follows: 745 Objective from: 1
- none common user data EAC2 protected data EAC2 protected data Other terminals than the above are out of scope of this ST. In particular, terminals using Basic 250 Access Control (BAC) may be functionally: 1
- out of scope: 2
|
| pdf_data/st_metadata |
- /CreationDate: D:20191119084329-05'00'
- /ModDate: D:20191119084329-05'00'
- pdf_file_size_bytes: 1492668
- pdf_hyperlinks: https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=412, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=418, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=407, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=405, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=421, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=435, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=422, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=406, file:///C:/Users/beaverg/Desktop/CCTL%20Projects/Palo%20Alto%20Panorama/Received%20from%20Vendor/updates.paloaltonetworks.com, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=409, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=408, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=420, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=433, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=417, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=411, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD_ID=410, https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/technical-documentation/81/vm-series/vm-series-deployment/vm-series-deployment.pdf, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=419, https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?td_id=434, https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/technical-documentation/81/panorama/panorama-admin/panorama-admin.pdf
- pdf_is_encrypted: False
- pdf_number_of_pages: 56
|
- /Author: David Lovasz
- /CreationDate: D:20230202101616+01'00'
- /Creator: Microsoft® Word for Microsoft 365
- /ModDate: D:20230202101616+01'00'
- /Producer: Microsoft® Word for Microsoft 365
- /Title: IDENTITY APPLET V3.4/EIDAS - SECURITY TARGET
- pdf_file_size_bytes: 4679764
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 191
|
| state/cert/convert_garbage |
True |
True |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |