Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Forescout v8.3
CCEVS-VR-VID-11279-2022 		Arbit Data Diode 10 GbE v1.00
BSI-DSZ-CC-1096-2021
name Forescout v8.3 Arbit Data Diode 10 GbE v1.00
category Network and Network-Related Devices and Systems Boundary Protection Devices and Systems
scheme US DE
not_valid_after 20.06.2025 07.04.2026
not_valid_before 05.08.2022 07.04.2021
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11279-ci.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1096c_pdf.pdf
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11279-vr.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1096a_pdf.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11279-st.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1096b_pdf.pdf
manufacturer ForeScout Technologies, Inc. Arbit Cyber Defence Systems ApS
manufacturer_web https://www.forescout.com/ https://arbitcds.com
security_level {} ALC_FLR.1, EAL7+
dgst c1819079f2cf4d17 1c667ea8ba56a5db
heuristics/cert_id CCEVS-VR-VID-11279-2022 BSI-DSZ-CC-1096-2021
heuristics/cert_lab US BSI
heuristics/extracted_sars ASE_TSS.1, ADV_FSP.1, ALC_CMC.1, ASE_INT.1, ASE_SPD.1, ASE_OBJ.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ASE_REQ.1, ASE_CCL.1, ASE_ECD.1, AGD_PRE.1 ALC_LCD.2, ALC_FLR.1, ALC_CMS.5, ALC_DEL.1, ALC_DVS.2, ALC_TAT.3, ALC_CMC.5
heuristics/extracted_versions 8.3 1.00
heuristics/scheme_data
heuristics/protection_profiles 89f2a255423f4a20 {}
maintenance_updates
protection_profile_links https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf {}
pdf_data/cert_filename st_vid11279-ci.pdf 1096c_pdf.pdf
pdf_data/cert_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11279-2022: 1
  • DE:
    • BSI-DSZ-CC-1096-2021: 1
pdf_data/cert_keywords/cc_security_level
  • EAL:
    • EAL 2: 1
    • EAL 4: 1
    • EAL 5: 1
    • EAL 7: 1
    • EAL 7 augmented: 1
pdf_data/cert_keywords/cc_sar
  • ALC:
    • ALC_FLR: 1
    • ALC_FLR.1: 1
pdf_data/cert_keywords/eval_facility
  • BoozAllenHamilton:
    • Booz Allen Hamilton: 1
pdf_data/cert_keywords/standard_id
  • ISO:
    • ISO/IEC 15408: 2
    • ISO/IEC 18045: 2
pdf_data/cert_metadata
  • /CreationDate: D:20220815124603-04'00'
  • /ModDate: D:20220815124603-04'00'
  • /Producer: iText 2.1.0 (by lowagie.com)
  • pdf_file_size_bytes: 181185
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
  • /Author: Bundesamt für Sicherheit in der Informationstechnik
  • /CreationDate: D:20210414123708+02'00'
  • /Creator: Writer
  • /Keywords: Common Criteria, Certification, Zertifizierung, Arbit, Data Diode, EAL7
  • /ModDate: D:20210414123809+02'00'
  • /Producer: LibreOffice 6.3
  • /Subject: Common Criteria Certification
  • /Title: Certification Report BSI-DSZ-CC-1096-2021
  • pdf_file_size_bytes: 237483
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename st_vid11279-vr.pdf 1096a_pdf.pdf
pdf_data/report_frontpage
  • DE:
  • US:
    • cert_id: CCEVS-VR-VID11279-2022
    • cert_item: Forescout v8.3
    • cert_lab: US NIAP
  • DE:
    • cert_id: BSI-DSZ-CC-1096-2021
    • cert_item: Arbit Data Diode 10 GbE
    • cert_lab: BSI
    • developer: Arbit Cyber Defence Systems ApS
    • match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
  • US:
pdf_data/report_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11279-2022: 1
  • DE:
    • BSI-DSZ-CC-1096-2021: 14
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 1: 1
    • EAL 2: 2
    • EAL 2+: 1
    • EAL 4: 5
    • EAL 5: 4
    • EAL 7: 4
    • EAL 7 augmented: 3
pdf_data/report_keywords/cc_sar
  • ADV:
    • ADV_FSP: 1
    • ADV_IMP: 1
    • ADV_TDS: 1
  • ALC:
    • ALC_CMC.5: 1
    • ALC_CMS: 1
    • ALC_CMS.5: 1
    • ALC_DEL.1: 1
    • ALC_DVS.2: 1
    • ALC_FLR: 3
    • ALC_FLR.1: 4
    • ALC_LCD.2: 1
    • ALC_TAT.3: 1
pdf_data/report_keywords/cc_sfr
  • FCS:
    • FCS_CKM.1: 1
    • FCS_CKM.2: 1
    • FCS_COP: 4
    • FCS_RBG_EXT.1: 1
  • FDP:
    • FDP_IFC.2: 2
    • FDP_IFF.1: 2
pdf_data/report_keywords/cc_claims
  • T:
    • T.PASSWORD_CRACKING: 1
    • T.SECURITY_FUNCTIONALITY_COMPROMISE: 1
    • T.SECURITY_FUNCTIONALITY_FAILURE: 1
    • T.UNAUTHORIZED_ADMINISTRATOR_ACCESS: 1
    • T.UNDETECTED_ACTIVITY: 1
    • T.UNTRUSTED_COMMUNICATION_CHANNELS: 1
    • T.UPDATE_COMPROMISE: 1
    • T.WEAK_AUTHENTICATION_ENDPOINTS: 1
    • T.WEAK_CRYPTOGRAPHY: 1
  • A:
    • A.INTEGRATOR: 1
    • A.PHYSICAL: 1
    • A.POWER: 1
  • OE:
    • OE.INTEGRATOR: 1
    • OE.PHYSICAL: 1
    • OE.POWER: 1
pdf_data/report_keywords/eval_facility
  • BoozAllenHamilton:
    • Booz Allen Hamilton: 3
  • TUV:
    • TÜV Informationstechnik: 3
pdf_data/report_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 5
  • constructions:
    • MAC:
      • HMAC-SHA-256: 2
      • HMAC-SHA-512: 1
pdf_data/report_keywords/asymmetric_crypto
  • FF:
    • DH:
      • Diffie-Hellman: 2
pdf_data/report_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 2
    • SHA2:
      • SHA-256: 2
      • SHA-384: 2
pdf_data/report_keywords/crypto_scheme
  • KA:
    • Key Agreement: 1
pdf_data/report_keywords/crypto_protocol
  • SSH:
    • SSH: 11
    • SSHv1: 2
    • SSHv2: 1
  • TLS:
    • TLS:
      • TLS: 13
      • TLS v1.2: 1
  • VPN:
    • VPN: 1
pdf_data/report_keywords/randomness
  • PRNG:
    • DRBG: 3
  • RNG:
    • RBG: 1
pdf_data/report_keywords/cipher_mode
  • CTR:
    • CTR: 1
pdf_data/report_keywords/crypto_library
  • OpenSSL:
    • OpenSSL: 4
pdf_data/report_keywords/side_channel_analysis
  • SCA:
    • Timing Attack: 1
pdf_data/report_keywords/technical_report_id
  • BSI:
    • BSI 7148: 1
pdf_data/report_keywords/standard_id
  • FIPS:
    • FIPS 186-4: 3
  • RFC:
    • RFC 3526: 2
  • X509:
    • X.509: 1
  • BSI:
    • AIS 1: 1
    • AIS 14: 5
    • AIS 35: 1
    • AIS 45: 1
  • ISO:
    • ISO/IEC 15408: 4
    • ISO/IEC 17065: 2
    • ISO/IEC 18045: 4
pdf_data/report_keywords/certification_process
  • ConfidentialDocument:
    • Informationstechnik GmbH, (confidential document) [8] (reference not used) 7 See section 9.1 for details on used AIS. 18 / 22 BSI-DSZ-CC-1096-2021: 1
    • being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
    • list for the TOE, Version 0.42, 2020-12-10, “Arbit Data Diode 10GbE - Configuration List” (confidential document) [11] “Arbit Data Diode 10GbE – Integration Guide”, Version 1.08, 2021-10-21, Confiware ApS and: 1
    • “Arbit Data Diode 10GbE - Security Target”, Confiware ApS and Arbit Cyber Defence Systems ApS (confidential document) [7] Evaluation Technical Report, Version 2, 2021-01-20, “ETR Summary V2 – Arbit Data Diode 1.00: 1
pdf_data/report_metadata
  • /CreationDate: D:20220815113601-04'00'
  • /Creator: Microsoft® Word for Microsoft 365
  • /ModDate: D:20220815113601-04'00'
  • /Producer: Microsoft® Word for Microsoft 365
  • pdf_file_size_bytes: 570905
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 29
pdf_data/st_filename st_vid11279-st.pdf 1096b_pdf.pdf
pdf_data/st_keywords/cc_cert_id
  • DE:
    • BSI-DSZ-CC-1096: 1
pdf_data/st_keywords/cc_security_level
  • EAL:
    • EAL7: 2
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_FSP.1: 9
  • AGD:
    • AGD_OPE.1: 13
    • AGD_PRE.1: 4
  • ALC:
    • ALC_CMC.1: 6
    • ALC_CMS.1: 7
  • ASE:
    • ASE_CCL.1: 16
    • ASE_ECD.1: 12
    • ASE_INT.1: 14
    • ASE_OBJ.1: 6
    • ASE_REQ.1: 12
    • ASE_SPD: 2
    • ASE_SPD.1: 7
    • ASE_TSS.1: 7
  • ATE:
    • ATE_IND.1: 7
  • AVA:
    • AVA_VAN: 2
    • AVA_VAN.1: 9
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_GEN.1: 6
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 2
    • FAU_GEN.2: 3
    • FAU_GEN.2.1: 1
    • FAU_STG: 1
    • FAU_STG_EXT.1: 5
    • FAU_STG_EXT.1.1: 1
    • FAU_STG_EXT.1.2: 1
    • FAU_STG_EXT.1.3: 1
  • FCS:
    • FCS_CKM.1: 9
    • FCS_CKM.1.1: 2
    • FCS_CKM.2: 9
    • FCS_CKM.2.1: 2
    • FCS_CKM.4: 6
    • FCS_CKM.4.1: 1
    • FCS_COP: 32
    • FCS_COP.1: 4
    • FCS_NTP_EXT.1.2: 1
    • FCS_NTP_EXT.1.4: 1
    • FCS_RBG_EXT.1: 8
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 1
    • FCS_SSHC_EXT.1: 1
    • FCS_SSHS_EXT.1: 10
    • FCS_SSHS_EXT.1.1: 1
    • FCS_SSHS_EXT.1.3: 1
    • FCS_SSHS_EXT.1.4: 1
    • FCS_SSHS_EXT.1.5: 1
    • FCS_SSHS_EXT.1.6: 1
    • FCS_SSHS_EXT.1.7: 1
    • FCS_SSHS_EXT.1.8: 1
    • FCS_TLSC_EXT.1: 8
    • FCS_TLSC_EXT.1.1: 1
    • FCS_TLSC_EXT.1.2: 2
    • FCS_TLSC_EXT.1.3: 1
    • FCS_TLSC_EXT.1.4: 1
    • FCS_TLSC_EXT.2.1: 1
    • FCS_TLSC_EXT.2.3: 1
    • FCS_TLSS_EXT.1: 8
    • FCS_TLSS_EXT.1.1: 1
    • FCS_TLSS_EXT.1.2: 1
    • FCS_TLSS_EXT.1.3: 2
    • FCS_TLSS_EXT.1.4: 4
  • FIA:
    • FIA_AFL.1: 11
    • FIA_AFL.1.1: 1
    • FIA_AFL.1.2: 1
    • FIA_PMG_EXT.1: 7
    • FIA_PMG_EXT.1.1: 1
    • FIA_UAU.7: 5
    • FIA_UAU.7.1: 1
    • FIA_UAU_EXT.2: 5
    • FIA_UAU_EXT.2.1: 1
    • FIA_UIA_EXT.1: 5
    • FIA_UIA_EXT.1.1: 1
    • FIA_UIA_EXT.1.2: 1
  • FMT:
    • FMT_MOF: 5
    • FMT_MOF.1: 1
    • FMT_MTD: 5
    • FMT_MTD.1: 1
    • FMT_SMF.1: 8
    • FMT_SMR.2: 6
    • FMT_SMR.2.1: 1
    • FMT_SMR.2.2: 1
    • FMT_SMR.2.3: 1
  • FPT:
    • FPT_APW_EXT.1: 6
    • FPT_APW_EXT.1.1: 1
    • FPT_APW_EXT.1.2: 1
    • FPT_SKP_EXT.1: 6
    • FPT_SKP_EXT.1.1: 1
    • FPT_STM_EXT.1: 6
    • FPT_STM_EXT.1.1: 1
    • FPT_STM_EXT.1.2: 2
    • FPT_TST_EXT.1: 6
    • FPT_TST_EXT.1.1: 1
    • FPT_TUD_EXT.1: 6
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 1
  • FTA:
    • FTA_SSL.3: 5
    • FTA_SSL.3.1: 1
    • FTA_SSL.4: 5
    • FTA_SSL.4.1: 1
    • FTA_SSL_EXT.1: 5
    • FTA_SSL_EXT.1.1: 1
    • FTA_TAB.1: 6
    • FTA_TAB.1.1: 1
  • FTP:
    • FTP_ITC.1: 8
    • FTP_ITC.1.1: 1
    • FTP_ITC.1.2: 1
    • FTP_ITC.1.3: 1
    • FTP_TRP: 5
    • FTP_TRP.1: 3
pdf_data/st_keywords/cc_claims
  • A:
    • A.ADMIN_CREDENTIALS_SECURE: 1
    • A.LIMITED_FUNCTION: 1
    • A.NO_THRU_TRAFFIC_PROTECTION: 1
    • A.PHYSICAL_PROTECTION: 1
    • A.REGULAR_UPDATES: 1
    • A.RESIDUAL_INFORMATION: 1
    • A.TRUSTED_ADMINISTRATOR: 1
  • OE:
    • OE.ADMIN_CREDENTIALS_SECURE: 1
    • OE.NO_GENERAL_PURPOSE: 1
    • OE.NO_THRU_TRAFFIC_PROTECTION: 1
    • OE.PHYSICAL: 1
    • OE.RESIDUAL_INFORMATION: 1
    • OE.TRUSTED_ADMIN: 1
    • OE.UPDATES: 1
  • T:
    • T.PASSWORD_CRACKING: 1
    • T.SECURITY_FUNCTIONALITY_COMPROMISE: 1
    • T.SECURITY_FUNCTIONALITY_FAILURE: 1
    • T.UNAUTHORIZED_ADMINISTRATOR_ACCESS: 1
    • T.UNDETECTED_ACTIVITY: 1
    • T.UNTRUSTED_COMMUNICATION_CHANNELS: 1
    • T.UPDATE_COMPROMISE: 1
    • T.WEAK_AUTHENTICATION_ENDPOINTS: 1
    • T.WEAK_CRYPTOGRAPHY: 1
  • A:
    • A.INTEGRATOR: 3
    • A.PHYSICAL: 3
    • A.POWER: 3
  • O:
    • O.NO: 7
  • OE:
    • OE.INTEGRATOR: 4
    • OE.PHYSICAL: 4
    • OE.POWER: 4
  • T:
    • T.DATA: 6
pdf_data/st_keywords/vendor
  • Microsoft:
    • Microsoft: 1
pdf_data/st_keywords/eval_facility
  • BoozAllenHamilton:
    • Booz Allen Hamilton: 1
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 20
      • AES-256: 2
    • E2:
      • E2: 3
  • constructions:
    • MAC:
      • HMAC: 5
      • HMAC-SHA-256: 8
      • HMAC-SHA-384: 4
      • HMAC-SHA-512: 4
pdf_data/st_keywords/asymmetric_crypto
  • ECC:
    • ECDH:
      • ECDHE: 1
  • FF:
    • DH:
      • DH: 5
      • DHE: 1
      • Diffie-Hellman: 9
pdf_data/st_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 8
    • SHA2:
      • SHA-256: 11
      • SHA-384: 8
      • SHA-512: 6
      • SHA256: 2
pdf_data/st_keywords/crypto_scheme
  • KA:
    • Key Agreement: 1
  • MAC:
    • MAC: 7
pdf_data/st_keywords/crypto_protocol
  • IPsec:
    • IPsec: 1
  • SSH:
    • SSH: 57
    • SSHv2: 4
  • TLS:
    • DTLS:
      • DTLS: 1
    • SSL:
      • SSL: 3
      • SSL 2.0: 2
      • SSL 3.0: 2
    • TLS:
      • TLS: 69
      • TLS 1.0: 1
      • TLS 1.1: 1
      • TLS 1.2: 2
      • TLS v1.2: 1
      • TLSv1.0: 1
      • TLSv1.1: 1
      • TLSv1.2: 2
  • VPN:
    • VPN: 1
pdf_data/st_keywords/randomness
  • PRNG:
    • DRBG: 10
  • RNG:
    • RBG: 1
pdf_data/st_keywords/cipher_mode
  • CBC:
    • CBC: 6
  • CTR:
    • CTR: 9
  • GCM:
    • GCM: 6
pdf_data/st_keywords/tls_cipher_suite
  • TLS:
    • TLS_RSA_WITH_AES_128_CBC_SHA256: 4
    • TLS_RSA_WITH_AES_256_CBC_SHA: 4
    • TLS_RSA_WITH_AES_256_CBC_SHA256: 2
    • TLS_RSA_WITH_AES_256_GCM_SHA384: 4
pdf_data/st_keywords/crypto_library
  • OpenSSL:
    • OpenSSL: 36
pdf_data/st_keywords/standard_id
  • CC:
    • CCMB-2017-004-001: 1
    • CCMB-2017-004-002: 1
    • CCMB-2017-004-003: 1
    • CCMB-2017-004-004: 1
  • FIPS:
    • FIPS 186-4: 8
    • FIPS PUB 180-4: 2
    • FIPS PUB 186-4: 5
    • FIPS PUB 198-1: 1
  • ISO:
    • ISO/IEC 10116:2017: 1
    • ISO/IEC 18031:2011: 4
    • ISO/IEC 19772:2009: 1
    • ISO/IEC 9796-2: 2
  • PKCS:
    • PKCS #1: 2
  • RFC:
    • RFC 2986: 2
    • RFC 3268: 4
    • RFC 3447: 2
    • RFC 3526: 10
    • RFC 4253: 1
    • RFC 5077: 1
    • RFC 5246: 10
    • RFC 5280: 4
    • RFC 5288: 4
    • RFC 6125: 2
    • RFC 6960: 2
    • RFC7030: 1
  • X509:
    • X.509: 5
  • CC:
    • CCMB-2017-04-002: 1
    • CCMB-2017-04-003: 1
pdf_data/st_keywords/certification_process
  • OutOfScope:
    • environment the TOE is managing. The TOEs management of the enterprise operational environment is out of scope for the NDcPP. Therefore, interface E4 to these components is out of scope of the evaluation: 1
    • out of scope: 3
    • the update server directly. The TOE receives the update from the Forescout Console. Interface E8 is out of scope of the evaluation. It is being declared as part of the test environment for completeness as it is: 1
pdf_data/st_metadata
  • /Author: Arne Stig Peters (Confiware ApS), Rasmus Borch (Arbit Cyber Defence Systems ApS)
  • /CreationDate: D:20201210124819+01'00'
  • /Creator: pdflatex
  • /Keywords: Common Criteria, EAL7, Arbit Cyber Defence Systems, Cross Domain, Data Diode, Unidirectional, Network, Cyber Defence, Optical
  • /ModDate: D:20201210124819+01'00'
  • /PTEX.Fullbanner: This is MiKTeX-pdfTeX 4.0.1 (1.40.21)
  • /Producer: Latex
  • /Subject:
  • /Title: Arbit Data Diode 10GbE - Security Target Lite
  • /Trapped: /False
  • pdf_file_size_bytes: 332201
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 16
state/cert/convert_garbage True False
state/cert/pdf_hash Different Different
state/cert/txt_hash Different Different
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different