| name |
AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0) |
CyberArk Privileged Account Security Solution v9.1 |
| category |
Other Devices and Systems |
Other Devices and Systems |
| scheme |
MY |
CA |
| status |
archived |
archived |
| not_valid_after |
01.09.2019 |
29.06.2020 |
| not_valid_before |
16.01.2012 |
29.06.2015 |
| cert_link |
|
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-303%20CT%20v1.0e.docx |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C023-CR-v1a.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-303%20CR%20v1.0e.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Authentic%20Venture%20EAL1%20Security%20Target%20(AssetCentral)%20v1.1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-303%20ST%20v1.8.pdf |
| manufacturer |
Authentic Venture Sdn Bhd |
CyberArk Software, Ltd |
| manufacturer_web |
https://www.ventures.com.my |
https://www.cyberark.com/ |
| security_level |
EAL1 |
EAL2+, ALC_FLR.2 |
| dgst |
b7e122dade348c21 |
24aefada2d601608 |
| heuristics/cert_id |
ISCB-5-RPT-C023-CR-v1a |
383-4-303 |
| heuristics/cert_lab |
[] |
CANADA |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_CCL.1, AGD_PRE.1, ALC_CMC.1, AGD_OPE.1, ATE_IND.1, ASE_INT.1, ASE_ECD.1, ASE_OBJ.1, ASE_REQ.1, ALC_CMS.1, ASE_TSS.1, AVA_VAN.1, ADV_FSP.1 |
ASE_CCL.1, ATE_FUN.1, ASE_OBJ.2, ALC_CMS.2, ASE_INT.1, ASE_REQ.2, AGD_PRE.1, ATE_IND.2, ASE_ECD.1, AVA_VAN.2, ADV_TDS.1, ALC_FLR.2, ASE_SPD.1, ALC_CMC.2, ASE_TSS.2, ADV_FSP.2, ATE_COV.1, AGD_OPE.1, ALC_DEL.1, ADV_ARC.1 |
| heuristics/extracted_versions |
4.0.0, 5.0, 4.0 |
9.1 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- cert_no: 2012-001-C023
- certification_date: 16.01.2012
- developer: Authentic Venture Sdn Bhd
- enhanced:
- assurance_level: EAL1
- category: Other Devices and Systems
- cert_id: C023
- certification_date: 16.01.2012
- developer: Khairun Nisa Aziz Block U, UPM-MTDC,Incubation Center One,University Putra Malaysia,43400 Serdang,Selangor MALAYSIA URL: http://www.ventures.com.myEmail: [email protected]:+ 603 8941 2739Fax:+ 603 8941 8651
- expiration_date: 16.01.2017
- mutual_recognition: CCRA
- product: AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0)
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C023/ISCB-5-RPT-C023-CR-v1a.pdf
- scope: AssetCentral 4.0.0 is an automated asset management system. It automates the protection of managed systems against unauthorized software or hardware installations and removal, and having unlicensed software-related vulnerabilities. It allows users to monitor compliance throughout an organisation for their IT asset. AssetCentral comprises a server component and agents, known as AssetXplorer agents, which are deployed on computers throughout the enterprise. AssetXplorer agents send information about each computer to AssetCentral Server. AssetCentral Server consolidates all the information and allows administrators and custom-role users to view them through a web interface. AssetXplorer is part of the TOE. The security features within the scope of the evaluation includes: Auditing – provides auditing capabilities. Identification and Authentication – provides identification and authentication of human users of the TOE. It also provides identification of AssetXplorer that are installed in managed devices. Security Management - provides security management through the use of the Web Administration Interface. Through the enforcement of the AssetCentral Access Control Policy, the ability to manage various security attributes is controlled. User Data Protection - provides its own access control between subjects and objects covered by the AssetCentral Access Control Policy. Secure Communications - able to protect the user data from disclosure and modification when the scanned data is sent from AssetXplorer to AssetCentral Server.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C023/Authentic%20Venture%20EAL1%20Security%20Target%20(AssetCentral)%20v1.1.pdf
- type: Automated asset management system
- expiration_date: 16.01.2017
- level: EAL1
- product: AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0)
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/154
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
|
383-4-303 CT v1.0e.docx |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
ISCB-5-RPT-C023-CR-v1a.pdf |
383-4-303 CR v1.0e.pdf |
| pdf_data/report_frontpage |
|
- CA:
- cert_id: 383-4-303-CR
- cert_lab: CANADA
|
| pdf_data/report_keywords/cc_cert_id |
- MY:
- ISCB-5-RPT-C023-CR-v1a: 29
|
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 2: 1
- EAL 2 augmented: 1
- EAL 2+: 3
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 1
- FAU_GEN.2: 1
- FAU_SAR.1: 1
- FAU_SAR.2: 1
- FDP:
- FDP_ACC.1: 1
- FDP_ACF.1: 1
- FIA:
- FIA_ATD.1: 1
- FIA_UAU.2: 1
- FIA_UID.2: 1
- FMT:
- FMT_MOF.1: 1
- FMT_MSA.1: 1
- FMT_MSA.3: 1
- FMT_SMF.1: 1
- FMT_SMR.1: 1
- FPT:
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
|
- /Author: Clark, Cory P.
- /CreationDate: D:20150709103617-04'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20150709103617-04'00'
- /Producer: Microsoft® Word 2010
- /Title: 383-4-XXX CR vxe
- pdf_file_size_bytes: 288617
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 14
|
| pdf_data/st_filename |
Authentic Venture EAL1 Security Target (AssetCentral) v1.1.pdf |
383-4-303 ST v1.8.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL2: 5
- EAL2 augmented: 1
- EAL2+: 2
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 2
- AGD_PRE.1: 2
- ALC:
- ALC_CMC.1: 2
- ALC_CMS.1: 2
- ASE:
- ASE_CCL: 2
- ASE_CCL.1: 2
- ASE_ECD.1: 2
- ASE_INT: 2
- ASE_INT.1: 2
- ASE_OBJ: 2
- ASE_OBJ.1: 2
- ASE_REQ: 2
- ASE_REQ.1: 2
- ASE_TSS: 2
- ASE_TSS.1: 2
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.2: 1
- ADV_TDS.1: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.2: 1
- ALC_CMS.2: 1
- ALC_DEL.1: 1
- ALC_FLR.1: 1
- ALC_FLR.2: 3
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ASE_TSS.2: 1
- ATE:
- ATE_COV.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 8
- FAU_GEN.1.1: 3
- FAU_GEN.1.2: 1
- FAU_GEN.2: 4
- FAU_GEN.2.1: 1
- FAU_SAR.1: 7
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 3
- FAU_SAR.2.1: 1
- FDP:
- FDP_ACC: 1
- FDP_ACC.1: 10
- FDP_ACF.1: 5
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FDP_IFC.1: 2
- FDP_IFF: 2
- FIA:
- FIA_ATD.1: 5
- FIA_ATD.1.1: 1
- FIA_UAU: 1
- FIA_UAU.1: 1
- FIA_UAU.2: 3
- FIA_UAU.2.1: 1
- FIA_UID: 1
- FIA_UID.1: 6
- FIA_UID.2: 5
- FIA_UID.2.1: 1
- FMT:
- FMT_MOF.1: 5
- FMT_MOF.1.1: 1
- FMT_MSA.1: 7
- FMT_MSA.1.1: 1
- FMT_MSA.3: 7
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_SMF.1: 10
- FMT_SMF.1.1: 1
- FMT_SMR.1: 10
- FMT_SMR.1.1: 1
- FPT:
- FPT_ITT.1: 3
- FPT_ITT.1.1: 1
- FPT_STM.1: 2
- FTP:
|
- FAU:
- FAU_GEN.1: 9
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 6
- FAU_GEN.2.1: 1
- FAU_SAR.1: 8
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 6
- FAU_SAR.2.1: 1
- FAU_SAR.3: 6
- FAU_SAR.3.1: 1
- FAU_STG.1: 6
- FCS:
- FCS_CKM.1: 8
- FCS_CKM.1.1: 1
- FCS_CKM.4: 9
- FCS_CKM.4.1: 1
- FCS_COP.1: 8
- FCS_COP.1.1: 1
- FDP:
- FDP_ACC.1: 23
- FDP_ACF.1: 24
- FIA:
- FIA_UAU.1: 1
- FIA_UAU.2: 6
- FIA_UAU.2.1: 1
- FIA_UID.1: 12
- FIA_UID.2: 9
- FIA_UID.2.1: 1
- FMT:
- FMT_MOF.1: 14
- FMT_MSA.1: 18
- FMT_MSA.3: 20
- FMT_SMF.1: 14
- FMT_SMF.1.1: 1
- FMT_SMR.1: 19
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_APW: 1
- FPT_APW_EXT: 1
- FPT_APW_EXT.1: 11
- FPT_APW_EXT.1.1: 2
- FPT_APW_EXT.1.2: 2
- FPT_FLS.1: 8
- FPT_FLS.1.1: 1
- FPT_FLT.1.1: 1
- FPT_ITT.1: 6
- FPT_ITT.1.1: 1
- FPT_STM.1: 2
- FRU:
- FTA:
- FTA_SSL.3: 6
- FTA_SSL.3.1: 1
- FTA_TAB.1: 6
- FTA_TAB.1.1: 1
- FTA_TSE.1: 6
- FTA_TSE.1.1: 1
|
| pdf_data/st_keywords/cc_claims |
- OE:
- OE.ADMIN: 1
- OE.COMMUNICATION: 2
- OE.INSTALL: 1
- OE.LOCAL: 1
- OE.NETWORK: 1
- OE.PATCH: 1
- OE.PHYSICAL: 1
- OE.TIMESTAMP: 1
|
- A:
- A.ACCESS: 2
- A.HARDEN: 2
- A.INSTALL: 2
- A.INTERNAL_SERVICES: 2
- A.PHYSICAL: 2
- A.PROTECT: 2
- A.TIMESTAMP: 2
- A.TRUSTED_ADMIN: 2
- O:
- O.ACCESS: 4
- O.AUDIT: 4
- O.AUDIT_REVIEW: 4
- O.AUDIT_STORAGE: 4
- O.BANNER: 4
- O.CRYPTO: 4
- O.FAIL_SECURE: 4
- O.PERMISSIONS: 4
- O.PROTECT_COMM: 4
- O.ROBUST_ACCESS: 5
- O.TOE_ADMIN: 4
- O.USER_AUTHEN: 4
- O.VAULT: 4
- OE:
- OE.HARDENED: 3
- OE.INTERNAL_SERVICES: 3
- OE.NETWORK: 3
- OE.OS: 3
- OE.PROTECT: 3
- OE.TIME: 3
- OE.TRUSTED_ADMIN: 5
- T:
- T.ADMIN_ERROR: 2
- T.AUDIT_COMPROMISE: 2
- T.DATA_COMPROMISE: 2
- T.DISASTER: 2
- T.MASQUERADE: 2
- T.UNAUTHORIZED: 2
- T.UNIDENTIFIED: 2
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
- AES_competition:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- FIPS:
- FIPS 140-2: 9
- FIPS PUB 180-4: 1
- FIPS PUB 197: 1
- FIPS PUB 198-1: 1
- FIPS1: 1
- NIST:
- NIST SP 800-90: 1
- SP 800-90: 3
- PKCS:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /Author: Nunni Zainal Abidin (stratsec)
- /CreationDate: D:20111125105310+08'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20111125105310+08'00'
- /Producer: Microsoft® Word 2010
- /Subject: Security Target
- /Title: AssetCentral
- pdf_file_size_bytes: 564770
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 27
|
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
True |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |