| name |
AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0) |
IBM WebSphere MQ 6.0.1.1 |
| category |
Other Devices and Systems |
Other Devices and Systems |
| scheme |
MY |
US |
| status |
archived |
archived |
| not_valid_after |
01.09.2019 |
06.09.2012 |
| not_valid_before |
16.01.2012 |
02.10.2006 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C023-CR-v1a.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10117-vr.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Authentic%20Venture%20EAL1%20Security%20Target%20(AssetCentral)%20v1.1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10117-st.pdf |
| manufacturer |
Authentic Venture Sdn Bhd |
IBM United Kingdom Limited |
| manufacturer_web |
https://www.ventures.com.my |
https://www.ibm.com/uk/ |
| security_level |
EAL1 |
EAL4+, ALC_FLR.2 |
| dgst |
b7e122dade348c21 |
b2ecacee578355b5 |
| heuristics/cert_id |
ISCB-5-RPT-C023-CR-v1a |
CCEVS-VR-0031-2006 |
| heuristics/cert_lab |
[] |
US |
| heuristics/cpe_matches |
{} |
cpe:2.3:a:ibm:websphere_application_server:6.0.1.1:*:*:*:*:*:*:*, cpe:2.3:a:ibm:websphere_mq:6.0.1.1:*:*:*:*:*:*:*, cpe:2.3:a:ibm:websphere_mq:6.0:*:*:*:*:*:*:* |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
CVE-2010-3271, CVE-2010-0769, CVE-2011-1316, CVE-2014-4770, CVE-2011-1309, CVE-2010-0775, CVE-2007-3263, CVE-2007-1608, CVE-2014-4816, CVE-2011-0314, CVE-2010-0777, CVE-2007-3960, CVE-2009-1901, CVE-2013-0542, CVE-2008-5413, CVE-2007-5799, CVE-2010-1650, CVE-2016-3013, CVE-2006-4223, CVE-2011-1311, CVE-2009-0896, CVE-2009-0900, CVE-2008-4284, CVE-2010-0774, CVE-2011-1224, CVE-2006-4136, CVE-2007-6705, CVE-2009-1900, CVE-2010-0770, CVE-2007-3262, CVE-2007-4833, CVE-2010-0776, CVE-2007-3265, CVE-2007-3264, CVE-2009-0217, CVE-2006-5324, CVE-2010-0782, CVE-2008-0740, CVE-2009-0433, CVE-2011-1315, CVE-2008-0741, CVE-2009-0905, CVE-2009-0434, CVE-2009-1899, CVE-2008-4679, CVE-2008-2550, CVE-2007-6679, CVE-2007-5798, CVE-2009-2747, CVE-2010-2637, CVE-2011-1307, CVE-2011-1318, CVE-2016-3052, CVE-2009-1898, CVE-2009-0436, CVE-2008-5411, CVE-2015-0176, CVE-2009-0439, CVE-2011-1314, CVE-2007-1944, CVE-2009-3160, CVE-2007-6044, CVE-2012-2162, CVE-2011-1308, CVE-2010-0768, CVE-2006-5323, CVE-2006-4222, CVE-2009-0504, CVE-2005-3498 |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_CCL.1, AGD_PRE.1, ALC_CMC.1, AGD_OPE.1, ATE_IND.1, ASE_INT.1, ASE_ECD.1, ASE_OBJ.1, ASE_REQ.1, ALC_CMS.1, ASE_TSS.1, AVA_VAN.1, ADV_FSP.1 |
AVA_MSU.2, ATE_FUN.1, ADV_RCR.1, ADV_LLD.1, ATE_IND.2, AVA_VLA.2, ATE_DPT.1, AGD_USR.1, ADV_IMP.1, ALC_LCD.1, ALC_FLR.2, ADV_HLD.2, ATE_COV.2, ALC_DVS.1, ALC_TAT.1, ADV_FSP.2, AGD_ADM.1, AVA_SOF.1, ADV_SPM.1 |
| heuristics/extracted_versions |
4.0.0, 5.0, 4.0 |
6.0.1.1 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- cert_no: 2012-001-C023
- certification_date: 16.01.2012
- developer: Authentic Venture Sdn Bhd
- enhanced:
- assurance_level: EAL1
- category: Other Devices and Systems
- cert_id: C023
- certification_date: 16.01.2012
- developer: Khairun Nisa Aziz Block U, UPM-MTDC,Incubation Center One,University Putra Malaysia,43400 Serdang,Selangor MALAYSIA URL: http://www.ventures.com.myEmail: [email protected]:+ 603 8941 2739Fax:+ 603 8941 8651
- expiration_date: 16.01.2017
- mutual_recognition: CCRA
- product: AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0)
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C023/ISCB-5-RPT-C023-CR-v1a.pdf
- scope: AssetCentral 4.0.0 is an automated asset management system. It automates the protection of managed systems against unauthorized software or hardware installations and removal, and having unlicensed software-related vulnerabilities. It allows users to monitor compliance throughout an organisation for their IT asset. AssetCentral comprises a server component and agents, known as AssetXplorer agents, which are deployed on computers throughout the enterprise. AssetXplorer agents send information about each computer to AssetCentral Server. AssetCentral Server consolidates all the information and allows administrators and custom-role users to view them through a web interface. AssetXplorer is part of the TOE. The security features within the scope of the evaluation includes: Auditing – provides auditing capabilities. Identification and Authentication – provides identification and authentication of human users of the TOE. It also provides identification of AssetXplorer that are installed in managed devices. Security Management - provides security management through the use of the Web Administration Interface. Through the enforcement of the AssetCentral Access Control Policy, the ability to manage various security attributes is controlled. User Data Protection - provides its own access control between subjects and objects covered by the AssetCentral Access Control Policy. Secure Communications - able to protect the user data from disclosure and modification when the scanned data is sent from AssetXplorer to AssetCentral Server.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C023/Authentic%20Venture%20EAL1%20Security%20Target%20(AssetCentral)%20v1.1.pdf
- type: Automated asset management system
- expiration_date: 16.01.2017
- level: EAL1
- product: AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0)
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/154
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
ISCB-5-RPT-C023-CR-v1a.pdf |
st_vid10117-vr.pdf |
| pdf_data/report_frontpage |
|
- US:
- cert_id: CCEVS-VR-06-0031
- cert_item: IBM UK Ltd IBM WebSphere MQ Version 6.0.1.1
- cert_lab: US NIAP
|
| pdf_data/report_keywords/cc_cert_id |
- MY:
- ISCB-5-RPT-C023-CR-v1a: 29
|
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 4: 7
- EAL 4 augmented: 2
- EAL4: 2
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 1
- FAU_GEN.2: 1
- FAU_SAR.1: 1
- FAU_SAR.2: 1
- FDP:
- FDP_ACC.1: 1
- FDP_ACF.1: 1
- FIA:
- FIA_ATD.1: 1
- FIA_UAU.2: 1
- FIA_UID.2: 1
- FMT:
- FMT_MOF.1: 1
- FMT_MSA.1: 1
- FMT_MSA.3: 1
- FMT_SMF.1: 1
- FMT_SMR.1: 1
- FPT:
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
|
|
| pdf_data/st_filename |
Authentic Venture EAL1 Security Target (AssetCentral) v1.1.pdf |
st_vid10117-st.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL4: 51
- EAL4 augmented: 2
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 2
- AGD_PRE.1: 2
- ALC:
- ALC_CMC.1: 2
- ALC_CMS.1: 2
- ASE:
- ASE_CCL: 2
- ASE_CCL.1: 2
- ASE_ECD.1: 2
- ASE_INT: 2
- ASE_INT.1: 2
- ASE_OBJ: 2
- ASE_OBJ.1: 2
- ASE_REQ: 2
- ASE_REQ.1: 2
- ASE_TSS: 2
- ASE_TSS.1: 2
- ATE:
- AVA:
|
- ACM:
- ACM_AUT.1: 1
- ACM_CAP.4: 1
- ACM_SCP.2: 1
- ADO:
- ADO_DEL.2: 1
- ADO_IGS.1: 1
- ADV:
- ADV_FSP.2: 1
- ADV_HLD.2: 1
- ADV_IMP.1: 1
- ADV_LLD.1: 1
- ADV_RCR.1: 1
- ADV_SPM.1: 1
- AGD:
- AGD_ADM.1: 1
- AGD_USR.1: 1
- ALC:
- ALC_DVS.1: 1
- ALC_FLR.2: 3
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ATE:
- ATE_COV.2: 1
- ATE_DPT.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
- AVA_MSU.2: 1
- AVA_SOF.1: 1
- AVA_VLA.2: 1
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 8
- FAU_GEN.1.1: 3
- FAU_GEN.1.2: 1
- FAU_GEN.2: 4
- FAU_GEN.2.1: 1
- FAU_SAR.1: 7
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 3
- FAU_SAR.2.1: 1
- FDP:
- FDP_ACC: 1
- FDP_ACC.1: 10
- FDP_ACF.1: 5
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FDP_IFC.1: 2
- FDP_IFF: 2
- FIA:
- FIA_ATD.1: 5
- FIA_ATD.1.1: 1
- FIA_UAU: 1
- FIA_UAU.1: 1
- FIA_UAU.2: 3
- FIA_UAU.2.1: 1
- FIA_UID: 1
- FIA_UID.1: 6
- FIA_UID.2: 5
- FIA_UID.2.1: 1
- FMT:
- FMT_MOF.1: 5
- FMT_MOF.1.1: 1
- FMT_MSA.1: 7
- FMT_MSA.1.1: 1
- FMT_MSA.3: 7
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_SMF.1: 10
- FMT_SMF.1.1: 1
- FMT_SMR.1: 10
- FMT_SMR.1.1: 1
- FPT:
- FPT_ITT.1: 3
- FPT_ITT.1.1: 1
- FPT_STM.1: 2
- FTP:
|
- FAU:
- FAU_GEN: 1
- FAU_GEN.1: 2
- FAU_GEN.2: 3
- FAU_GEN.2.1: 3
- FAU_SAR: 1
- FAU_SAR.2: 2
- FAU_SAR.2.1: 2
- FAU_STG: 1
- FAU_STG.1: 3
- FAU_STG.1.1: 2
- FAU_STG.1.2: 3
- FCS:
- FCS_COP: 1
- FCS_COP.1: 4
- FCS_COP.1.1: 8
- FDP:
- FDP_ACC: 1
- FDP_ACC.1: 3
- FDP_ACC.1.1: 3
- FDP_ACF: 1
- FDP_ACF.1: 3
- FDP_ACF.1.1: 2
- FDP_ACF.1.2: 3
- FDP_ACF.1.3: 2
- FDP_ACF.1.4: 3
- FIA:
- FIA_ATD: 1
- FIA_ATD.1: 2
- FIA_ATD.1.1: 2
- FIA_UAU.2: 3
- FIA_UAU.2.1: 1
- FIA_UID: 1
- FIA_UID.1: 3
- FIA_UID.2: 6
- FIA_UID.2.1: 2
- FMT:
- FMT_MSA: 1
- FMT_MSA.1: 7
- FMT_MSA.1.1: 2
- FMT_MSA.3: 2
- FMT_MTD: 1
- FMT_MTD.1: 5
- FMT_MTD.1.1: 3
- FMT_SMF.1: 3
- FMT_SMF.1.1: 2
- FMT_SMR: 1
- FMT_SMR.1: 5
- FMT_SMR.1.1: 2
- FMT_SMR.1.2: 2
- FPT:
- FPT_ITT: 1
- FPT_ITT.1: 3
- FPT_ITT.1.1: 2
- FPT_RVM: 1
- FPT_RVM.1: 3
- FPT_RVM.1.1: 2
- FPT_SEP.1: 4
- FPT_SEP.1.1: 2
- FPT_SEP.1.2: 1
- FPT_STM: 1
- FPT_STM.1: 4
- FPT_STM.1.1: 2
- FTP:
|
| pdf_data/st_keywords/cc_claims |
- OE:
- OE.ADMIN: 1
- OE.COMMUNICATION: 2
- OE.INSTALL: 1
- OE.LOCAL: 1
- OE.NETWORK: 1
- OE.PATCH: 1
- OE.PHYSICAL: 1
- OE.TIMESTAMP: 1
|
- A:
- A.ADMIN: 3
- A.OS: 4
- A.PROTECT: 3
- O:
- O.ACCESS: 7
- O.ACCOUNT: 4
- O.ADMIN: 8
- O.AUDIT: 5
- O.CONFIG: 8
- O.IDENTIFY: 6
- O.MANAGE: 7
- O.OS: 7
- O.PROTECT: 4
- O.RECOVER: 3
- O.ROLE: 5
- O.TIME: 6
- O.TOE_PROTECTION: 4
- T:
- T.ACCESS_RES: 3
- T.ACCESS_TOE: 3
- T.ACCOUNT: 3
- T.CHANNEL: 3
- T.OS: 3
- T.ROLE: 3
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
- TLS:
- TLS_RSA_WITH_3DES_EDE_CBC_SHA: 1
- TLS_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_RSA_WITH_DES_CBC_SHA: 1
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- FIPS:
- FIPS 140-2: 15
- FIPS 180-2: 3
- FIPS 186-2: 1
- FIPS 197: 1
- FIPS 198: 1
- FIPS 46-3: 2
- FIPS 81: 2
- FIPS140-2: 9
- FIPS180-2: 3
- FIPS186-2: 1
- FIPS197: 1
- FIPS198: 1
- FIPS46-3: 2
- FIPS81: 2
- RFC:
- RFC 1319: 1
- RFC 1321: 2
- RFC 2246: 1
- RFC 2313: 4
- RFC 2437: 4
- RFC1319: 1
- RFC1321: 2
- RFC2313: 4
- RFC2437: 4
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /Author: Nunni Zainal Abidin (stratsec)
- /CreationDate: D:20111125105310+08'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20111125105310+08'00'
- /Producer: Microsoft® Word 2010
- /Subject: Security Target
- /Title: AssetCentral
- pdf_file_size_bytes: 564770
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 27
|
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |