Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv
CCEVS-VR-VID-11292-2023 		ID-ONE Cosmo V9 Essential version 3 (Cosmo V9)
NSCIB-CC-200833-CR
name Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv ID-ONE Cosmo V9 Essential version 3 (Cosmo V9)
category Other Devices and Systems ICs, Smart Cards and Smart Card-Related Devices and Systems
scheme US NL
not_valid_after 13.02.2025 14.12.2023
not_valid_before 13.02.2023 14.12.2018
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11292-ci.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Signed%20certificate%20CC-18-200833.pdf
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11292-vr.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/[CR]%20NSCIB-CC-200833-CR.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11292-st.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/[ST-Lite]%20FQR%20110%208959%20Ed%203.0%20-%20ID%20One%20Cosmo%20V9%20Essential%20Public%20Security%20Target.pdf
manufacturer Cisco Systems, Inc. Idemia
manufacturer_web https://www.cisco.com https://www.idemia.com
security_level {} ALC_DVS.2, EAL5+, AVA_VAN.5
dgst c019dbfd05176482 3f27923299d501ca
heuristics/cert_id CCEVS-VR-VID-11292-2023 NSCIB-CC-200833-CR
heuristics/cert_lab US
heuristics/extracted_sars ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, AGD_PRE.1 ASE_INT.1, ALC_DVS.2, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ALC_FLR.1, ASE_TSS.1, ASE_SPD.1, ALC_CMS.5, AVA_VAN.5, ALC_DEL.1, ALC_LCD.1, ADV_FSP.5, AGD_OPE.1, AGD_PRE.1, ATE_FUN.1, ATE_DPT.3, ADV_ARC.1, ASE_OBJ.2, ALC_TAT.2, ADV_TDS.4, ASE_REQ.2, ASE_CCL.1
heuristics/extracted_versions 7.0 3
heuristics/report_references/directly_referenced_by {} NSCIB-CC-200716-CR2
heuristics/report_references/indirectly_referenced_by {} NSCIB-CC-200716-CR2
heuristics/scheme_data
  • category: Firewall, Network Device, Virtual Private Network, Wireless Monitoring
  • certification_date: 13.02.2023
  • evaluation_facility: Gossamer Security Solutions
  • expiration_date: 13.02.2025
  • id: CCEVS-VR-VID11292
  • product: Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv
  • scheme: US
  • url: https://www.niap-ccevs.org/product/11292
  • vendor: Cisco Systems, Inc.
heuristics/st_references/directly_referencing {} BSI-DSZ-CC-0945-V2-2018
heuristics/st_references/indirectly_referencing {} BSI-DSZ-CC-0945-V2-2018
heuristics/protection_profiles 6448a1802bb874d8, bde3d7587cf42e78, 89f2a255423f4a20 9399bd94f9925b16
maintenance_updates
protection_profile_links https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_IPS_v1.0.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_CPP_FW_v1.4e.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/ANSSI-CC-profil_PP-2010-03en.pdf
pdf_data/cert_filename st_vid11292-ci.pdf Signed certificate CC-18-200833.pdf
pdf_data/cert_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11292-2023: 1
  • FR:
    • ANSSI-PP-2010/03-M01: 1
  • NL:
    • CC-18-200833: 1
pdf_data/cert_keywords/cc_security_level
  • EAL:
    • EAL7: 1
pdf_data/cert_keywords/cc_sar
  • ALC:
    • ALC_DVS.2: 1
  • AVA:
    • AVA_VAN.5: 1
pdf_data/cert_keywords/vendor
  • Cisco:
    • Cisco: 1
    • Cisco Systems, Inc: 1
  • Idemia:
    • Idemia: 1
pdf_data/cert_keywords/eval_facility
  • Gossamer:
    • Gossamer Security: 1
  • BrightSight:
    • Brightsight: 1
pdf_data/cert_keywords/crypto_protocol
  • VPN:
    • VPN: 1
pdf_data/cert_keywords/standard_id
  • ISO:
    • ISO/IEC 15408: 2
    • ISO/IEC 18045: 2
pdf_data/cert_metadata
  • /CreationDate: D:20230214165013-05'00'
  • /ModDate: D:20230214165013-05'00'
  • /Producer: iText 2.1.0 (by lowagie.com)
  • pdf_file_size_bytes: 181490
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
  • /CreationDate: D:20181214152613+01'00'
  • /Creator: BHC364e
  • /ModDate: D:20181214142726+01'00'
  • /Producer: KONICA MINOLTA bizhub C364e
  • /Title: BHC364e-20181214152613
  • pdf_file_size_bytes: 198723
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename st_vid11292-vr.pdf [CR] NSCIB-CC-200833-CR.pdf
pdf_data/report_frontpage
  • NL:
  • US:
    • cert_id: CCEVS-VR-VID11292-2023
    • cert_item: Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv
    • cert_lab: US NIAP
  • NL:
    • cert_id: NSCIB-CC-200833-CR
    • cert_item: ID-ONE Cosmo V9 Essential version 3 (Cosmo V9
    • cert_lab: Brightsight
    • developer: Idemia
  • US:
pdf_data/report_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11292-2023: 1
  • FR:
    • ANSSI-PP-2010/03-M01: 1
  • NL:
    • NSCIB-CC-200833-CR: 12
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 5: 1
    • EAL 5 augmented: 1
    • EAL 6: 1
    • EAL 6 augmented: 1
    • EAL4: 1
    • EAL5: 2
    • EAL5 augmented: 1
    • EAL5+: 2
    • EAL6: 1
    • EAL6 augmented: 1
    • EAL6+: 1
pdf_data/report_keywords/cc_sar
  • ALC:
    • ALC_DVS.2: 2
    • ALC_FLR.1: 1
  • AVA:
    • AVA_VAN: 1
    • AVA_VAN.5: 6
pdf_data/report_keywords/vendor
  • Cisco:
    • Cisco: 45
    • Cisco Systems, Inc: 3
  • Idemia:
    • Idemia: 3
  • Infineon:
    • Infineon Technologies AG: 1
  • Oberthur:
    • Oberthur Technologies: 1
pdf_data/report_keywords/eval_facility
  • Gossamer:
    • Gossamer Security: 4
  • BrightSight:
    • Brightsight: 2
pdf_data/report_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 3
  • DES:
    • 3DES:
      • 3DES: 2
      • Triple-DES: 2
    • DES:
      • DES: 3
  • constructions:
    • MAC:
      • CBC-MAC: 1
      • HMAC: 2
pdf_data/report_keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 5
    • ECDH:
      • ECDH: 3
    • ECDSA:
      • ECDSA: 3
  • FF:
    • DH:
      • Diffie-Hellman: 1
  • RSA:
    • RSA-CRT: 2
pdf_data/report_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 2
    • SHA2:
      • SHA-224: 2
      • SHA-384: 2
      • SHA-512: 2
pdf_data/report_keywords/crypto_scheme
  • MAC:
    • MAC: 1
pdf_data/report_keywords/crypto_protocol
  • IPsec:
    • IPsec: 14
  • SSH:
    • SSH: 4
    • SSHv2: 5
  • TLS:
    • TLS:
      • TLS: 12
      • TLSv1.2: 1
  • VPN:
    • VPN: 25
pdf_data/report_keywords/randomness
  • RNG:
    • RNG: 1
pdf_data/report_keywords/cipher_mode
  • CBC:
    • CBC: 1
  • ECB:
    • ECB: 1
pdf_data/report_keywords/side_channel_analysis
  • FI:
    • DFA: 1
  • other:
    • JIL: 3
    • JIL-AM: 2
pdf_data/report_keywords/standard_id
  • SCP:
    • SCP03: 2
pdf_data/report_keywords/javacard_version
  • JavaCard:
    • Java Card 3.0.5: 2
pdf_data/report_keywords/certification_process
  • OutOfScope:
    • beyond the scope of this Common Criteria evaluation. Clustering This feature is not tested and is out of scope. The services in the table above are disabled in the evaluated configuration. Cisco FTD (NGFW) 7.0: 1
    • out of scope: 1
pdf_data/report_metadata
  • /Author: comptont
  • /CreationDate: D:20230214162414-05'00'
  • /Creator: Microsoft® Word for Microsoft 365
  • /ModDate: D:20230214162414-05'00'
  • /Producer: Microsoft® Word for Microsoft 365
  • pdf_file_size_bytes: 327303
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 21
pdf_data/st_filename st_vid11292-st.pdf [ST-Lite] FQR 110 8959 Ed 3.0 - ID One Cosmo V9 Essential Public Security Target.pdf
pdf_data/st_keywords/cc_cert_id
  • DE:
    • BSI-DSZ-CC-0945-V2-2018: 2
pdf_data/st_keywords/cc_protection_profile_id
  • ANSSI:
    • ANSSI-CC-PP-2010/03_M01: 1
  • BSI:
    • BSI-CC-PP-0084-2014: 1
pdf_data/st_keywords/cc_security_level
  • EAL:
    • EAL4+: 2
    • EAL5: 5
    • EAL5 augmented: 1
    • EAL5+: 5
    • EAL6: 1
    • EAL6 augmented: 1
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_FSP.1: 2
  • AGD:
    • AGD_OPE.1: 3
    • AGD_PRE.1: 2
  • ALC:
    • ALC_CMC.1: 2
    • ALC_CMS.1: 2
  • ATE:
    • ATE_IND.1: 2
  • AVA:
    • AVA_VAN: 1
    • AVA_VAN.1: 5
  • ADV:
    • ADV_ARC.1: 6
    • ADV_FSP.1: 3
    • ADV_FSP.2: 2
    • ADV_FSP.4: 2
    • ADV_FSP.5: 8
    • ADV_IMP.1: 9
    • ADV_TDS.1: 2
    • ADV_TDS.3: 4
    • ADV_TDS.4: 8
  • AGD:
    • AGD_OPE: 2
    • AGD_OPE.1: 8
    • AGD_PRE: 6
    • AGD_PRE.1: 6
  • ALC:
    • ALC_CMC.4: 1
    • ALC_CMS.1: 1
    • ALC_CMS.5: 1
    • ALC_DEL.1: 1
    • ALC_DVS: 1
    • ALC_DVS.1: 2
    • ALC_DVS.2: 12
    • ALC_LCD.1: 3
    • ALC_TAT.1: 2
    • ALC_TAT.2: 3
  • ASE:
    • ASE_CCL.1: 1
    • ASE_ECD.1: 4
    • ASE_INT.1: 5
    • ASE_OBJ.2: 3
    • ASE_REQ.1: 2
    • ASE_REQ.2: 2
    • ASE_SPD.1: 2
    • ASE_TSS.1: 1
  • ATE:
    • ATE_COV.1: 2
    • ATE_COV.2: 3
    • ATE_DPT.1: 2
    • ATE_DPT.3: 1
    • ATE_FUN.1: 6
  • AVA:
    • AVA_VAN: 1
    • AVA_VAN.5: 14
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_GEN: 4
    • FAU_GEN.1: 10
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 1
    • FAU_GEN.2: 5
    • FAU_GEN.2.1: 1
    • FAU_GEN_EXT.1: 5
    • FAU_GEN_EXT.1.1: 1
    • FAU_SAR.1: 4
    • FAU_SAR.1.1: 1
    • FAU_SAR.1.2: 1
    • FAU_SAR.2: 4
    • FAU_SAR.2.1: 1
    • FAU_SAR.3: 4
    • FAU_SAR.3.1: 1
    • FAU_STG: 3
    • FAU_STG.1: 4
    • FAU_STG_EXT.1: 5
    • FAU_STG_EXT.1.1: 1
    • FAU_STG_EXT.1.2: 1
    • FAU_STG_EXT.1.3: 1
    • FAU_STG_EXT.4: 5
    • FAU_STG_EXT.4.1: 1
    • FAU_STG_EXT.5: 5
    • FAU_STG_EXT.5.1: 1
  • FCO:
    • FCO_CPC_EXT.1: 5
    • FCO_CPC_EXT.1.1: 1
    • FCO_CPC_EXT.1.2: 1
    • FCO_CPC_EXT.1.3: 1
  • FCS:
    • FCS_CKM: 5
    • FCS_CKM.1: 11
    • FCS_CKM.1.1: 2
    • FCS_CKM.2: 7
    • FCS_CKM.2.1: 2
    • FCS_CKM.4: 7
    • FCS_CKM.4.1: 1
    • FCS_COP: 27
    • FCS_COP.1: 4
    • FCS_NTP_EXT.1: 5
    • FCS_NTP_EXT.1.1: 1
    • FCS_NTP_EXT.1.2: 2
    • FCS_NTP_EXT.1.3: 1
    • FCS_NTP_EXT.1.4: 3
    • FCS_RBG_EXT.1: 10
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 1
    • FCS_SSHC_EXT.1: 1
    • FCS_SSHS_EXT.1: 15
    • FCS_SSHS_EXT.1.1: 2
    • FCS_SSHS_EXT.1.2: 2
    • FCS_SSHS_EXT.1.3: 2
    • FCS_SSHS_EXT.1.4: 2
    • FCS_SSHS_EXT.1.5: 2
    • FCS_SSHS_EXT.1.6: 2
    • FCS_SSHS_EXT.1.7: 2
    • FCS_SSHS_EXT.1.8: 3
    • FCS_TLSC_EXT.1: 11
    • FCS_TLSC_EXT.1.1: 1
    • FCS_TLSC_EXT.1.2: 3
    • FCS_TLSC_EXT.1.3: 1
    • FCS_TLSC_EXT.1.4: 1
    • FCS_TLSC_EXT.2: 9
    • FCS_TLSC_EXT.2.1: 2
    • FCS_TLSC_EXT.2.3: 2
    • FCS_TLSS_EXT.1: 12
    • FCS_TLSS_EXT.1.1: 1
    • FCS_TLSS_EXT.1.2: 1
    • FCS_TLSS_EXT.1.3: 2
    • FCS_TLSS_EXT.1.4: 1
  • FDP:
    • FDP_RIP.2: 5
    • FDP_RIP.2.1: 1
  • FIA:
    • FIA_AFL.1: 10
    • FIA_AFL.1.1: 1
    • FIA_AFL.1.2: 1
    • FIA_PMG_EXT.1: 5
    • FIA_PMG_EXT.1.1: 1
    • FIA_PSK_EXT.1: 5
    • FIA_PSK_EXT.1.1: 1
    • FIA_PSK_EXT.1.2: 1
    • FIA_PSK_EXT.1.3: 1
    • FIA_PSK_EXT.1.4: 1
    • FIA_UAU.7: 5
    • FIA_UAU.7.1: 1
    • FIA_UAU_EXT.2: 6
    • FIA_UAU_EXT.2.1: 1
    • FIA_UIA_EXT.1: 6
    • FIA_UIA_EXT.1.1: 1
    • FIA_UIA_EXT.1.2: 1
  • FMT:
    • FMT_MOF: 5
    • FMT_MOF.1: 1
    • FMT_MTD: 10
    • FMT_MTD.1: 2
    • FMT_SMF: 15
    • FMT_SMF.1: 9
    • FMT_SMF.1.1: 1
    • FMT_SMR.2: 5
    • FMT_SMR.2.1: 1
    • FMT_SMR.2.2: 1
    • FMT_SMR.2.3: 1
  • FPT:
    • FPT_APW_EXT.1: 5
    • FPT_APW_EXT.1.1: 1
    • FPT_APW_EXT.1.2: 1
    • FPT_FLS: 5
    • FPT_FLS.1: 1
    • FPT_ITT: 8
    • FPT_ITT.1: 11
    • FPT_ITT.1.1: 1
    • FPT_SKP_EXT.1: 6
    • FPT_SKP_EXT.1.1: 1
    • FPT_STM_EXT.1: 6
    • FPT_STM_EXT.1.1: 1
    • FPT_STM_EXT.1.2: 2
    • FPT_TST_EXT: 1
    • FPT_TST_EXT.1: 5
    • FPT_TST_EXT.1.1: 1
    • FPT_TST_EXT.3: 5
    • FPT_TST_EXT.3.1: 1
    • FPT_TST_EXT.3.2: 1
    • FPT_TUD_EXT.1: 5
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 1
  • FTA:
    • FTA_SSL: 4
    • FTA_SSL.3: 7
    • FTA_SSL.3.1: 1
    • FTA_SSL.4: 4
    • FTA_SSL.4.1: 1
    • FTA_SSL_EXT: 1
    • FTA_SSL_EXT.1: 5
    • FTA_SSL_EXT.1.1: 1
    • FTA_TAB.1: 7
    • FTA_TAB.1.1: 1
    • FTA_TSE.1: 5
    • FTA_TSE.1.1: 1
    • FTA_VCM_EXT.1: 5
    • FTA_VCM_EXT.1.1: 1
  • FTP:
    • FTP_ITC: 8
    • FTP_ITC.1: 12
    • FTP_ITC.1.1: 2
    • FTP_ITC.1.2: 1
    • FTP_ITC.1.3: 1
    • FTP_TRP: 8
    • FTP_TRP.1: 3
  • FAU:
    • FAU_ARP.1: 21
    • FAU_ARP.1.1: 1
    • FAU_GEN: 1
    • FAU_GEN.1: 2
    • FAU_SAA.1: 3
    • FAU_STG.2: 11
    • FAU_STG.2.1: 1
    • FAU_STG.2.2: 1
    • FAU_STG.2.3: 1
  • FCO:
    • FCO_NRO: 18
    • FCO_NRO.2: 8
  • FCS:
    • FCS_CKM: 28
    • FCS_CKM.1: 25
    • FCS_CKM.1.1: 1
    • FCS_CKM.2: 14
    • FCS_CKM.2.1: 1
    • FCS_CKM.3: 12
    • FCS_CKM.3.1: 1
    • FCS_CKM.4: 24
    • FCS_CKM.4.1: 1
    • FCS_COP: 34
    • FCS_COP.1: 18
    • FCS_COP.1.1: 1
    • FCS_RNG: 11
    • FCS_RNG.1: 5
    • FCS_RNG.1.1: 1
    • FCS_RNG.1.2: 1
  • FDP:
    • FDP_ACC: 84
    • FDP_ACC.1: 24
    • FDP_ACC.2: 13
    • FDP_ACF: 69
    • FDP_ACF.1: 34
    • FDP_IFC: 31
    • FDP_IFC.1: 21
    • FDP_IFC.2: 2
    • FDP_IFF: 25
    • FDP_IFF.1: 16
    • FDP_ITC: 31
    • FDP_ITC.1: 10
    • FDP_ITC.2: 16
    • FDP_RIP: 131
    • FDP_RIP.1: 10
    • FDP_ROL: 17
    • FDP_ROL.1: 8
    • FDP_SDI: 8
    • FDP_SDI.2: 10
    • FDP_SDI.2.1: 1
    • FDP_SDI.2.2: 1
    • FDP_UCT: 13
    • FDP_UCT.1: 1
    • FDP_UIT: 21
    • FDP_UIT.1: 4
  • FIA:
    • FIA_AFL: 42
    • FIA_AFL.1: 8
    • FIA_ATD: 11
    • FIA_ATD.1: 2
    • FIA_UAU: 68
    • FIA_UAU.1: 11
    • FIA_UAU.4: 2
    • FIA_UAU.7: 2
    • FIA_UID: 35
    • FIA_UID.1: 16
    • FIA_UID.2: 1
    • FIA_USB: 10
    • FIA_USB.1: 3
  • FMT:
    • FMT_MOF: 12
    • FMT_MOF.1: 1
    • FMT_MSA: 229
    • FMT_MSA.1: 20
    • FMT_MSA.2: 5
    • FMT_MSA.3: 27
    • FMT_MTD: 41
    • FMT_MTD.1: 4
    • FMT_MTD.2: 2
    • FMT_MTD.3: 1
    • FMT_SMF: 70
    • FMT_SMF.1: 31
    • FMT_SMF.1.1: 1
    • FMT_SMR: 68
    • FMT_SMR.1: 57
    • FMT_SMR.1.1: 1
    • FMT_SMR.1.2: 1
    • FMT_SMR.2: 6
  • FPR:
    • FPR_UNO: 21
    • FPR_UNO.1: 13
    • FPR_UNO.1.1: 1
  • FPT:
    • FPT_FLS: 52
    • FPT_FLS.1: 21
    • FPT_FLS.1.1: 2
    • FPT_PHP: 9
    • FPT_PHP.3: 1
    • FPT_RCV: 30
    • FPT_RCV.3: 7
    • FPT_RCV.4: 1
    • FPT_TDC: 8
    • FPT_TDC.1: 12
    • FPT_TDC.1.1: 1
    • FPT_TDC.1.2: 1
    • FPT_TST: 1
    • FPT_TST.1: 14
    • FPT_TST.1.1: 1
    • FPT_TST.1.2: 1
    • FPT_TST.1.3: 1
  • FRU:
    • FRU_FLT: 9
    • FRU_FLT.1: 1
  • FTP:
    • FTP_ITC: 17
    • FTP_ITC.1: 7
    • FTP_TRP.1: 4
pdf_data/st_keywords/cc_claims
  • A:
    • A.ADMIN_CREDENTIALS_: 1
    • A.COMPONENTS_RUNNING: 1
    • A.CONNECTIONS: 2
    • A.LIMITED_FUNCTIONALITY: 2
    • A.NO_THRU_TRAFFIC_PROTECTION: 1
    • A.PHYSICAL_PROTECTION: 1
    • A.REGULAR_UPDATES: 1
    • A.RESIDUAL_INFORMATION: 1
    • A.TRUSTED_ADMINSTRATOR: 1
    • A.VS_CORRECT_CONFIGURATION: 1
    • A.VS_ISOLATON: 1
    • A.VS_REGULAR_UPDATES: 1
    • A.VS_TRUSTED_ADMINISTRATOR: 1
  • O:
    • O.ADDRESS_FILTERING: 1
    • O.AUTHENTICATION: 1
    • O.CRYPTOGRAPHIC_FUNCTIONS: 1
    • O.FAIL_SECURE: 1
    • O.IPS_ANALYZE: 1
    • O.IPS_REACT: 1
    • O.PORT_FILTERING: 1
    • O.RESIDUAL_INFORMATION: 1
    • O.STATEFUL_TRAFFIC_FILTERING: 1
    • O.SYSTEM_MONITORING: 2
    • O.TOE_ADMINISTRATION: 2
  • OE:
    • OE.ADMIN_CREDENTIALS_: 1
    • OE.COMPONENTS_RUNNING: 1
    • OE.CONNECTIONS: 3
    • OE.NO_GENERAL_PURPOSE: 1
    • OE.NO_THRU_TRAFFIC_PROTECTION: 1
    • OE.PHYSICAL: 1
    • OE.RESIDUAL_INFORMATION: 1
    • OE.TRUSTED_ADMIN: 1
    • OE.UPDATES: 1
    • OE.VM_CONFIGURATION: 1
  • T:
    • T.DATA_INTEGRITY: 1
    • T.MALICIOUS_TRAFFIC: 1
    • T.NETWORK_ACCESS: 2
    • T.NETWORK_DISCLOSURE: 2
    • T.NETWORK_DOS: 1
    • T.NETWORK_MISUSE: 3
    • T.PASSWORD_CRACKING: 1
    • T.REPLAY_ATTACK: 1
    • T.SECURITY_FUNCTIONALITY_: 2
    • T.UNAUTHORIZED_: 1
    • T.UNDETECTED_ACTIVITY: 1
    • T.UNTRUSTED_COMMUNICATIONS: 1
    • T.UPDATE_COMPROMISE: 1
    • T.WEAK_AUTHENTICATION_: 1
    • T.WEAK_CRYPTOGRAPHY: 1
  • A:
    • A.APPLET: 5
    • A.DELETION: 3
    • A.VERIFICATION: 5
  • D:
    • D.API_DATA: 3
    • D.APP_CODE: 6
    • D.APP_C_DATA: 4
    • D.APP_I_DATA: 4
    • D.ARRAY: 6
    • D.CONFIG: 5
    • D.CRYPTO: 5
    • D.JCS_CODE: 3
    • D.JCS_DATA: 5
    • D.JCS_KEYS: 8
    • D.NB_REMAINTRYGLB: 1
    • D.PIN: 7
    • D.SEC_DATA: 7
    • D.SENSITIVE_DATA: 6
  • O:
    • O.ALARM: 23
    • O.APPLET: 16
    • O.CARD-: 1
    • O.CARD_MANAGEMENT: 66
    • O.CIPHER: 18
    • O.CODE_PKG: 22
    • O.DELETION: 15
    • O.FIREWALL: 64
    • O.GLOBAL_ARRAYS_CONFID: 19
    • O.GLOBAL_ARRAYS_INTEG: 10
    • O.INSTALL: 18
    • O.JAVAOBJECT: 49
    • O.KEY-MNGT: 27
    • O.LOAD: 16
    • O.NATIVE: 15
    • O.OBJ-DELETION: 8
    • O.OPERATE: 39
    • O.PATCH_LOADING: 25
    • O.PIN-: 7
    • O.PIN-MNGT: 17
    • O.REALLOCATION: 17
    • O.RESIDENT_APPLICATION: 24
    • O.RESOURCES: 23
    • O.SCP: 59
    • O.SECURE_COMPARE: 10
    • O.SID: 33
    • O.TRANSACTION: 19
  • OE:
    • OE.APPLET: 8
    • OE.CARD-MANAGEMENT: 1
    • OE.CARD_MANAGEMENT: 3
    • OE.CODE-: 3
    • OE.CODE-EVIDENCE: 18
    • OE.NATIVE: 1
    • OE.SCP: 12
    • OE.VERIFICATION: 38
  • OP:
    • OP.ARRAY_ACCESS: 9
    • OP.CREATE: 7
    • OP.DELETE_APPLET: 4
    • OP.DELETE_PCKG: 3
    • OP.DELETE_PCKG_APPLET: 3
    • OP.FLOW: 3
    • OP.IMPORT_KEY: 2
    • OP.INSTANCE_FIELD: 6
    • OP.INVK_INTERFACE: 7
    • OP.INVK_VIRTUAL: 6
    • OP.JAVA: 5
    • OP.LOCAL_STACK_ACCESS: 3
    • OP.OPERAND_STACK_ACCESS: 3
    • OP.PUT: 6
    • OP.STATIC_FIELD: 3
    • OP.THROW: 5
    • OP.TYPE_ACCESS: 5
  • OSP:
    • OSP.VERIFICATION: 5
  • R:
    • R.JAVA: 9
  • T:
    • T.CONFID-APPLI-DATA: 17
    • T.CONFID-JCS-: 8
    • T.CONFID-JCS-CODE: 4
    • T.CONFID-JCS-DATA: 5
    • T.CONFIGURATION: 5
    • T.CONF_DATA_APPLET: 5
    • T.DELETION: 6
    • T.EXE-CODE: 9
    • T.INSTALL: 6
    • T.INTEG-: 2
    • T.INTEG-APPLI-: 12
    • T.INTEG-APPLI-CODE: 9
    • T.INTEG-APPLI-DATA: 15
    • T.INTEG-JCS-: 7
    • T.INTEG-JCS-CODE: 6
    • T.INTEG-JCS-DATA: 5
    • T.NATIVE: 6
    • T.OBJ-DELETION: 4
    • T.PATCH_LOADING: 5
    • T.PHYSICAL: 4
    • T.RESOURCES: 8
    • T.SID: 18
pdf_data/st_keywords/vendor
  • Broadcom:
    • Broadcom: 2
  • Cisco:
    • Cisco: 29
    • Cisco Systems, Inc: 2
  • Idemia:
    • IDEMIA: 24
    • Idemia: 2
  • Infineon:
    • Infineon: 1
    • Infineon Technologies AG: 1
  • Morpho:
    • Morpho: 1
  • Oberthur:
    • Oberthur Technologies: 1
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 12
      • AES-: 2
      • AES-256: 2
  • DES:
    • 3DES:
      • 3DES: 1
    • DES:
      • DES: 1
  • constructions:
    • MAC:
      • HMAC: 4
      • HMAC-SHA-256: 8
      • HMAC-SHA-384: 7
      • HMAC-SHA-512: 8
  • miscellaneous:
    • Skinny:
      • Skinny: 2
  • AES_competition:
    • AES:
      • AES: 24
  • DES:
    • 3DES:
      • TDES: 14
      • Triple-DES: 2
    • DES:
      • DES: 15
  • constructions:
    • MAC:
      • CMAC: 3
      • HMAC: 3
pdf_data/st_keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 4
    • ECDH:
      • ECDHE: 4
    • ECDSA:
      • ECDSA: 18
  • FF:
    • DH:
      • DH: 15
      • Diffie-Hellman: 4
    • DSA:
      • DSA: 1
  • RSA:
    • RSA-2048: 1
  • ECC:
    • ECC:
      • ECC: 5
    • ECDH:
      • ECDH: 3
    • ECDSA:
      • ECDSA: 4
  • FF:
    • DH:
      • Diffie-Hellman: 4
pdf_data/st_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 5
      • SHA1: 1
    • SHA2:
      • SHA-256: 5
      • SHA-384: 3
      • SHA-512: 9
      • SHA384: 1
  • SHA:
    • SHA1:
      • SHA-1: 5
    • SHA2:
      • SHA-2: 1
      • SHA-224: 3
      • SHA-256: 6
      • SHA-384: 4
      • SHA-512: 3
      • SHA256: 4
pdf_data/st_keywords/crypto_scheme
  • KA:
    • Key Agreement: 1
  • KEX:
    • Key Exchange: 2
  • MAC:
    • MAC: 7
  • KA:
    • Key Agreement: 3
    • Key agreement: 1
  • MAC:
    • MAC: 2
pdf_data/st_keywords/crypto_protocol
  • IKE:
    • IKE: 42
    • IKEv2: 38
  • IPsec:
    • IPsec: 119
  • SSH:
    • SSH: 88
    • SSHv1: 1
    • SSHv2: 17
  • TLS:
    • DTLS:
      • DTLS: 1
    • SSL:
      • SSL: 2
      • SSL 2.0: 1
      • SSL 3.0: 1
    • TLS:
      • TLS: 114
      • TLS 1.0: 1
      • TLS 1.1: 2
      • TLS 1.2: 2
      • TLSv1.1: 10
      • TLSv1.2: 88
  • VPN:
    • VPN: 234
  • PACE:
    • PACE: 1
pdf_data/st_keywords/randomness
  • PRNG:
    • DRBG: 7
  • RNG:
    • RBG: 1
  • RNG:
    • RNG: 15
pdf_data/st_keywords/cipher_mode
  • CBC:
    • CBC: 5
  • GCM:
    • GCM: 6
  • CBC:
    • CBC: 2
  • ECB:
    • ECB: 5
pdf_data/st_keywords/ecc_curve
  • NIST:
    • P-256: 14
    • P-384: 14
    • P-521: 14
    • secp256r1: 6
    • secp384r1: 6
    • secp521r1: 6
pdf_data/st_keywords/tls_cipher_suite
  • TLS:
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 1
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 1
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1
    • TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 2
    • TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 3
    • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
    • TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 2
    • TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 3
    • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 3
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 4
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 4
    • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 7
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 3
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 6
    • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 7
    • TLS_RSA_WITH_AES_128_CBC_SHA: 5
    • TLS_RSA_WITH_AES_128_CBC_SHA256: 6
    • TLS_RSA_WITH_AES_128_GCM_SHA256: 4
    • TLS_RSA_WITH_AES_256_CBC_SHA: 3
    • TLS_RSA_WITH_AES_256_CBC_SHA256: 6
    • TLS_RSA_WITH_AES_256_GCM_SHA384: 4
pdf_data/st_keywords/side_channel_analysis
  • FI:
    • fault injection: 1
    • malfunction: 2
    • physical tampering: 2
  • SCA:
    • DPA: 2
    • SPA: 1
    • physical probing: 4
    • timing attack: 1
pdf_data/st_keywords/cplc_data
  • ICType:
    • IC Type: 1
pdf_data/st_keywords/standard_id
  • CC:
    • CCMB-2017-04-001: 1
    • CCMB-2017-04-002: 1
    • CCMB-2017-04-003: 1
    • CCMB-2017-04-004: 1
  • FIPS:
    • FIPS 140-2: 2
    • FIPS PUB 140-2: 1
    • FIPS PUB 180-4: 2
    • FIPS PUB 186-3: 1
    • FIPS PUB 186-4: 10
    • FIPS PUB 198-1: 1
  • ISO:
    • ISO/IEC 14888-3: 1
    • ISO/IEC 18031:2011: 4
    • ISO/IEC 9796-2: 1
  • NIST:
    • NIST SP 800-56A: 2
  • PKCS:
    • PKCS #1: 1
  • RFC:
    • RFC 1305: 1
    • RFC 2460: 5
    • RFC 2463: 1
    • RFC 2818: 2
    • RFC 2986: 1
    • RFC 3268: 11
    • RFC 3447: 3
    • RFC 3513: 2
    • RFC 3526: 8
    • RFC 3602: 7
    • RFC 4016: 1
    • RFC 4106: 2
    • RFC 4253: 2
    • RFC 4301: 2
    • RFC 4303: 3
    • RFC 4346: 2
    • RFC 4443: 2
    • RFC 4492: 11
    • RFC 4868: 2
    • RFC 4945: 2
    • RFC 5077: 3
    • RFC 5114: 2
    • RFC 5246: 17
    • RFC 5280: 10
    • RFC 5282: 2
    • RFC 5288: 8
    • RFC 5289: 36
    • RFC 5735: 2
    • RFC 5759: 1
    • RFC 5996: 4
    • RFC 6125: 2
    • RFC 6960: 1
    • RFC 768: 5
    • RFC 791: 5
    • RFC 792: 3
    • RFC 793: 5
  • X509:
    • X.509: 12
  • BSI:
    • AIS31: 1
  • FIPS:
    • FIPS 140-2: 1
    • FIPS 198: 1
    • FIPS PUB 180-3: 2
    • FIPS PUB 186-3: 1
    • FIPS PUB 197: 5
    • FIPS PUB 46-3: 3
    • FIPS PUB 81: 6
  • ISO:
    • ISO/IEC 14443: 2
    • ISO/IEC 7816: 2
    • ISO/IEC 7816-6: 1
    • ISO/IEC 9796-1: 2
    • ISO/IEC 9797: 8
    • ISO/IEC 9797-1: 1
  • NIST:
    • NIST SP 800-90: 1
  • PKCS:
    • PKCS#1: 3
  • SCP:
    • SCP02: 4
    • SCP03: 4
pdf_data/st_keywords/javacard_version
  • JavaCard:
    • Java Card 3.0.5: 7
pdf_data/st_keywords/javacard_api_const
  • misc:
    • TYPE_ACCESS: 5
pdf_data/st_keywords/javacard_packages
  • com:
    • com.oberthurcs.javacard: 3
    • com.oberthurcs.javacard.sac: 1
    • com.oberthurcs.javacard.sac.sac: 1
  • javacard:
    • javacard.framework: 4
    • javacard.sac: 1
    • javacard.sac.sac: 1
    • javacard.security: 3
  • javacardx:
    • javacardx.crypto: 2
    • javacardx.framework.util: 1
    • javacardx.security: 1
pdf_data/st_keywords/certification_process
  • OutOfScope:
    • beyond the scope of this Common Criteria evaluation. Clustering This feature is not tested and is out of scope. The services in the table above are disabled in the evaluated configuration. Any functionality of: 1
    • out of scope: 1
  • OutOfScope:
    • a timeout policy that prevent them from being blocked should a card fails to answer. That point is out of scope of this Security Target, though. Finally, the objectives O.SCP.RECOVERY and O.SCP.SUPPORT are: 1
    • out of scope: 1
pdf_data/st_metadata
state/cert/pdf_hash Different Different
state/cert/txt_hash Different Different
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different