Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Forescout v8.3
CCEVS-VR-VID-11279-2022 		Waterfall Unidirectional Security Gateway WF-500, Version 2.0
NSCIB-CC-0618820-CR
name Forescout v8.3 Waterfall Unidirectional Security Gateway WF-500, Version 2.0
category Network and Network-Related Devices and Systems Boundary Protection Devices and Systems
scheme US NL
not_valid_after 20.06.2025 24.03.2028
not_valid_before 05.08.2022 24.03.2023
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11279-ci.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-23-0618820-cert.pdf
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11279-vr.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0618820-CR-1.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11279-st.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0618820-STv3.pdf
manufacturer ForeScout Technologies, Inc. Waterfall Security Solutions Ltd.
manufacturer_web https://www.forescout.com/ https://www.waterfallsecurity.com
security_level {} ALC_FLR.2, ALC_DVS.2, EAL4+, AVA_VAN.5
dgst c1819079f2cf4d17 c891270d230bb586
heuristics/cert_id CCEVS-VR-VID-11279-2022 NSCIB-CC-0618820-CR
heuristics/cert_lab US
heuristics/extracted_sars ASE_TSS.1, ADV_FSP.1, ALC_CMC.1, ASE_INT.1, ASE_SPD.1, ASE_OBJ.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ASE_REQ.1, ASE_CCL.1, ASE_ECD.1, AGD_PRE.1 ASE_INT.1, ALC_DVS.2, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ASE_TSS.1, ALC_TAT.1, ASE_SPD.1, AVA_VAN.5, ALC_DEL.1, ALC_LCD.1, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ATE_DPT.1, ALC_FLR.2, ASE_REQ.2, ADV_FSP.4, ATE_IND.2, ASE_CCL.1
heuristics/extracted_versions 8.3 2.0
heuristics/scheme_data
heuristics/protection_profiles 89f2a255423f4a20 {}
maintenance_updates
protection_profile_links https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf {}
pdf_data/cert_filename st_vid11279-ci.pdf NSCIB-CC-23-0618820-cert.pdf
pdf_data/cert_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11279-2022: 1
  • NL:
    • CC-23-0618820: 1
pdf_data/cert_keywords/cc_security_level
  • EAL:
    • EAL2: 1
    • EAL4: 2
    • EAL4 augmented: 1
pdf_data/cert_keywords/cc_sar
  • ALC:
    • ALC_DVS.2: 1
    • ALC_FLR.2: 1
    • ALC_FLR.3: 2
  • AVA:
    • AVA_VAN.5: 1
pdf_data/cert_keywords/cc_claims
  • R:
    • R.L: 1
pdf_data/cert_keywords/eval_facility
  • BoozAllenHamilton:
    • Booz Allen Hamilton: 1
  • BrightSight:
    • Brightsight: 1
  • SGS:
    • SGS: 1
    • SGS Brightsight: 1
pdf_data/cert_keywords/standard_id
  • ISO:
    • ISO/IEC 15408-1: 1
    • ISO/IEC 15408-2: 1
    • ISO/IEC 15408-3: 1
    • ISO/IEC 18045: 2
pdf_data/cert_metadata
  • /CreationDate: D:20220815124603-04'00'
  • /ModDate: D:20220815124603-04'00'
  • /Producer: iText 2.1.0 (by lowagie.com)
  • pdf_file_size_bytes: 181185
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
  • /Author: kruitr
  • /CreationDate: D:20230331124350+02'00'
  • /Creator: Bullzip PDF Printer (11.10.0.2761)
  • /ModDate: D:20230331124510+02'00'
  • /Producer: PDF Printer / www.bullzip.com / FPG / TUV Rheinland Service GmbH
  • /Title: Microsoft Word - NSCIB-CC-23-0618820-cert.doc
  • pdf_file_size_bytes: 268471
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename st_vid11279-vr.pdf NSCIB-CC-0618820-CR-1.pdf
pdf_data/report_frontpage
  • NL:
  • US:
    • cert_id: CCEVS-VR-VID11279-2022
    • cert_item: Forescout v8.3
    • cert_lab: US NIAP
  • NL:
    • cert_id: NSCIB-CC-0618820-CR
    • cert_item: Waterfall Unidirectional Security Gateway WF-500, Version 2.0
    • cert_lab: SGS Brightsight B.V.
    • developer: Waterfall Security Solutions, Ltd
  • US:
pdf_data/report_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11279-2022: 1
  • NL:
    • NSCIB-CC-0618820-CR: 11
    • NSCIB-CC-17-119023: 1
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 4: 1
    • EAL4: 2
    • EAL4 augmented: 1
    • EAL4+: 2
pdf_data/report_keywords/cc_sar
  • ALC:
    • ALC_DVS.2: 2
    • ALC_FLR.2: 2
  • AVA:
    • AVA_VAN.5: 2
pdf_data/report_keywords/cc_sfr
  • FCS:
    • FCS_CKM.1: 1
    • FCS_CKM.2: 1
    • FCS_COP: 4
    • FCS_RBG_EXT.1: 1
pdf_data/report_keywords/cc_claims
  • T:
    • T.PASSWORD_CRACKING: 1
    • T.SECURITY_FUNCTIONALITY_COMPROMISE: 1
    • T.SECURITY_FUNCTIONALITY_FAILURE: 1
    • T.UNAUTHORIZED_ADMINISTRATOR_ACCESS: 1
    • T.UNDETECTED_ACTIVITY: 1
    • T.UNTRUSTED_COMMUNICATION_CHANNELS: 1
    • T.UPDATE_COMPROMISE: 1
    • T.WEAK_AUTHENTICATION_ENDPOINTS: 1
    • T.WEAK_CRYPTOGRAPHY: 1
pdf_data/report_keywords/eval_facility
  • BoozAllenHamilton:
    • Booz Allen Hamilton: 3
  • BrightSight:
    • Brightsight: 2
  • SGS:
    • SGS: 2
    • SGS Brightsight: 2
pdf_data/report_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 5
  • constructions:
    • MAC:
      • HMAC-SHA-256: 2
      • HMAC-SHA-512: 1
pdf_data/report_keywords/asymmetric_crypto
  • FF:
    • DH:
      • Diffie-Hellman: 2
pdf_data/report_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 2
    • SHA2:
      • SHA-256: 2
      • SHA-384: 2
pdf_data/report_keywords/crypto_scheme
  • KA:
    • Key Agreement: 1
pdf_data/report_keywords/crypto_protocol
  • SSH:
    • SSH: 11
    • SSHv1: 2
    • SSHv2: 1
  • TLS:
    • TLS:
      • TLS: 13
      • TLS v1.2: 1
  • VPN:
    • VPN: 1
pdf_data/report_keywords/randomness
  • PRNG:
    • DRBG: 3
  • RNG:
    • RBG: 1
pdf_data/report_keywords/cipher_mode
  • CTR:
    • CTR: 1
pdf_data/report_keywords/crypto_library
  • OpenSSL:
    • OpenSSL: 4
pdf_data/report_keywords/side_channel_analysis
  • SCA:
    • Timing Attack: 1
  • SCA:
    • side-channel: 1
  • other:
    • JIL: 1
pdf_data/report_keywords/standard_id
  • FIPS:
    • FIPS 186-4: 3
  • RFC:
    • RFC 3526: 2
  • X509:
    • X.509: 1
pdf_data/report_keywords/certification_process
  • OutOfScope:
    • and WF-500-Standard-Split, and the host agents exist in the same cabinet. However, those agents are out of scope of the TOE as well. The TOE has been evaluated by SGS Brightsight B.V. located in Delft, The: 1
    • out of scope: 1
pdf_data/report_metadata
  • /CreationDate: D:20220815113601-04'00'
  • /Creator: Microsoft® Word for Microsoft 365
  • /ModDate: D:20220815113601-04'00'
  • /Producer: Microsoft® Word for Microsoft 365
  • pdf_file_size_bytes: 570905
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 29
pdf_data/st_filename st_vid11279-st.pdf NSCIB-CC-0618820-STv3.pdf
pdf_data/st_keywords/cc_security_level
  • EAL:
    • EAL 4: 3
    • EAL 4 augmented: 1
    • EAL4: 12
    • EAL4 augmented: 1
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_FSP.1: 9
  • AGD:
    • AGD_OPE.1: 13
    • AGD_PRE.1: 4
  • ALC:
    • ALC_CMC.1: 6
    • ALC_CMS.1: 7
  • ASE:
    • ASE_CCL.1: 16
    • ASE_ECD.1: 12
    • ASE_INT.1: 14
    • ASE_OBJ.1: 6
    • ASE_REQ.1: 12
    • ASE_SPD: 2
    • ASE_SPD.1: 7
    • ASE_TSS.1: 7
  • ATE:
    • ATE_IND.1: 7
  • AVA:
    • AVA_VAN: 2
    • AVA_VAN.1: 9
  • ADV:
    • ADV_ARC.1: 6
    • ADV_FSP.1: 2
    • ADV_FSP.2: 2
    • ADV_FSP.4: 8
    • ADV_IMP.1: 5
    • ADV_TDS.1: 1
    • ADV_TDS.2: 1
    • ADV_TDS.3: 8
  • AGD:
    • AGD_OPE.1: 6
    • AGD_PRE.1: 6
  • ALC:
    • ALC_CMC.4: 2
    • ALC_CMS.4: 2
    • ALC_DEL.1: 2
    • ALC_DVS.1: 2
    • ALC_DVS.2: 9
    • ALC_FLR.2: 7
    • ALC_LCD.1: 4
    • ALC_TAT.1: 3
  • ASE:
    • ASE_CCL.1: 2
    • ASE_ECD.1: 6
    • ASE_INT.1: 3
    • ASE_OBJ.2: 3
    • ASE_REQ.1: 2
    • ASE_REQ.2: 3
    • ASE_SPD.1: 2
    • ASE_TSS.1: 2
  • ATE:
    • ATE_COV.1: 1
    • ATE_COV.2: 4
    • ATE_DPT.1: 4
    • ATE_FUN.1: 8
    • ATE_IND.2: 2
  • AVA:
    • AVA_VAN.5: 8
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_GEN.1: 6
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 2
    • FAU_GEN.2: 3
    • FAU_GEN.2.1: 1
    • FAU_STG: 1
    • FAU_STG_EXT.1: 5
    • FAU_STG_EXT.1.1: 1
    • FAU_STG_EXT.1.2: 1
    • FAU_STG_EXT.1.3: 1
  • FCS:
    • FCS_CKM.1: 9
    • FCS_CKM.1.1: 2
    • FCS_CKM.2: 9
    • FCS_CKM.2.1: 2
    • FCS_CKM.4: 6
    • FCS_CKM.4.1: 1
    • FCS_COP: 32
    • FCS_COP.1: 4
    • FCS_NTP_EXT.1.2: 1
    • FCS_NTP_EXT.1.4: 1
    • FCS_RBG_EXT.1: 8
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 1
    • FCS_SSHC_EXT.1: 1
    • FCS_SSHS_EXT.1: 10
    • FCS_SSHS_EXT.1.1: 1
    • FCS_SSHS_EXT.1.3: 1
    • FCS_SSHS_EXT.1.4: 1
    • FCS_SSHS_EXT.1.5: 1
    • FCS_SSHS_EXT.1.6: 1
    • FCS_SSHS_EXT.1.7: 1
    • FCS_SSHS_EXT.1.8: 1
    • FCS_TLSC_EXT.1: 8
    • FCS_TLSC_EXT.1.1: 1
    • FCS_TLSC_EXT.1.2: 2
    • FCS_TLSC_EXT.1.3: 1
    • FCS_TLSC_EXT.1.4: 1
    • FCS_TLSC_EXT.2.1: 1
    • FCS_TLSC_EXT.2.3: 1
    • FCS_TLSS_EXT.1: 8
    • FCS_TLSS_EXT.1.1: 1
    • FCS_TLSS_EXT.1.2: 1
    • FCS_TLSS_EXT.1.3: 2
    • FCS_TLSS_EXT.1.4: 4
  • FIA:
    • FIA_AFL.1: 11
    • FIA_AFL.1.1: 1
    • FIA_AFL.1.2: 1
    • FIA_PMG_EXT.1: 7
    • FIA_PMG_EXT.1.1: 1
    • FIA_UAU.7: 5
    • FIA_UAU.7.1: 1
    • FIA_UAU_EXT.2: 5
    • FIA_UAU_EXT.2.1: 1
    • FIA_UIA_EXT.1: 5
    • FIA_UIA_EXT.1.1: 1
    • FIA_UIA_EXT.1.2: 1
  • FMT:
    • FMT_MOF: 5
    • FMT_MOF.1: 1
    • FMT_MTD: 5
    • FMT_MTD.1: 1
    • FMT_SMF.1: 8
    • FMT_SMR.2: 6
    • FMT_SMR.2.1: 1
    • FMT_SMR.2.2: 1
    • FMT_SMR.2.3: 1
  • FPT:
    • FPT_APW_EXT.1: 6
    • FPT_APW_EXT.1.1: 1
    • FPT_APW_EXT.1.2: 1
    • FPT_SKP_EXT.1: 6
    • FPT_SKP_EXT.1.1: 1
    • FPT_STM_EXT.1: 6
    • FPT_STM_EXT.1.1: 1
    • FPT_STM_EXT.1.2: 2
    • FPT_TST_EXT.1: 6
    • FPT_TST_EXT.1.1: 1
    • FPT_TUD_EXT.1: 6
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 1
  • FTA:
    • FTA_SSL.3: 5
    • FTA_SSL.3.1: 1
    • FTA_SSL.4: 5
    • FTA_SSL.4.1: 1
    • FTA_SSL_EXT.1: 5
    • FTA_SSL_EXT.1.1: 1
    • FTA_TAB.1: 6
    • FTA_TAB.1.1: 1
  • FTP:
    • FTP_ITC.1: 8
    • FTP_ITC.1.1: 1
    • FTP_ITC.1.2: 1
    • FTP_ITC.1.3: 1
    • FTP_TRP: 5
    • FTP_TRP.1: 3
  • FDP:
    • FDP_IFC.1: 1
    • FDP_IFC.2: 8
    • FDP_IFC.2.1: 1
    • FDP_IFC.2.2: 1
    • FDP_IFF.1: 8
    • FDP_IFF.1.1: 1
    • FDP_IFF.1.2: 1
    • FDP_IFF.1.3: 1
    • FDP_IFF.1.4: 1
    • FDP_IFF.1.5: 1
  • FMT:
    • FMT_MSA.3: 2
pdf_data/st_keywords/cc_claims
  • A:
    • A.ADMIN_CREDENTIALS_SECURE: 1
    • A.LIMITED_FUNCTION: 1
    • A.NO_THRU_TRAFFIC_PROTECTION: 1
    • A.PHYSICAL_PROTECTION: 1
    • A.REGULAR_UPDATES: 1
    • A.RESIDUAL_INFORMATION: 1
    • A.TRUSTED_ADMINISTRATOR: 1
  • OE:
    • OE.ADMIN_CREDENTIALS_SECURE: 1
    • OE.NO_GENERAL_PURPOSE: 1
    • OE.NO_THRU_TRAFFIC_PROTECTION: 1
    • OE.PHYSICAL: 1
    • OE.RESIDUAL_INFORMATION: 1
    • OE.TRUSTED_ADMIN: 1
    • OE.UPDATES: 1
  • T:
    • T.PASSWORD_CRACKING: 1
    • T.SECURITY_FUNCTIONALITY_COMPROMISE: 1
    • T.SECURITY_FUNCTIONALITY_FAILURE: 1
    • T.UNAUTHORIZED_ADMINISTRATOR_ACCESS: 1
    • T.UNDETECTED_ACTIVITY: 1
    • T.UNTRUSTED_COMMUNICATION_CHANNELS: 1
    • T.UPDATE_COMPROMISE: 1
    • T.WEAK_AUTHENTICATION_ENDPOINTS: 1
    • T.WEAK_CRYPTOGRAPHY: 1
  • A:
    • A.ADMIN: 3
    • A.NETWORK: 4
    • A.PHYSICAL: 4
  • O:
    • O.UNIDIRECTIONAL: 8
  • OE:
    • OE.FILTER_LOW: 4
  • T:
    • T.HACK_HIGH: 1
    • T.HACK_LOW: 3
    • T.LEAKAGE: 2
pdf_data/st_keywords/vendor
  • Microsoft:
    • Microsoft: 1
pdf_data/st_keywords/eval_facility
  • BoozAllenHamilton:
    • Booz Allen Hamilton: 1
  • BrightSight:
    • Brightsight: 1
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 20
      • AES-256: 2
    • E2:
      • E2: 3
  • constructions:
    • MAC:
      • HMAC: 5
      • HMAC-SHA-256: 8
      • HMAC-SHA-384: 4
      • HMAC-SHA-512: 4
pdf_data/st_keywords/asymmetric_crypto
  • ECC:
    • ECDH:
      • ECDHE: 1
  • FF:
    • DH:
      • DH: 5
      • DHE: 1
      • Diffie-Hellman: 9
pdf_data/st_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 8
    • SHA2:
      • SHA-256: 11
      • SHA-384: 8
      • SHA-512: 6
      • SHA256: 2
pdf_data/st_keywords/crypto_scheme
  • KA:
    • Key Agreement: 1
  • MAC:
    • MAC: 7
pdf_data/st_keywords/crypto_protocol
  • IPsec:
    • IPsec: 1
  • SSH:
    • SSH: 57
    • SSHv2: 4
  • TLS:
    • DTLS:
      • DTLS: 1
    • SSL:
      • SSL: 3
      • SSL 2.0: 2
      • SSL 3.0: 2
    • TLS:
      • TLS: 69
      • TLS 1.0: 1
      • TLS 1.1: 1
      • TLS 1.2: 2
      • TLS v1.2: 1
      • TLSv1.0: 1
      • TLSv1.1: 1
      • TLSv1.2: 2
  • VPN:
    • VPN: 1
pdf_data/st_keywords/randomness
  • PRNG:
    • DRBG: 10
  • RNG:
    • RBG: 1
pdf_data/st_keywords/cipher_mode
  • CBC:
    • CBC: 6
  • CTR:
    • CTR: 9
  • GCM:
    • GCM: 6
pdf_data/st_keywords/tls_cipher_suite
  • TLS:
    • TLS_RSA_WITH_AES_128_CBC_SHA256: 4
    • TLS_RSA_WITH_AES_256_CBC_SHA: 4
    • TLS_RSA_WITH_AES_256_CBC_SHA256: 2
    • TLS_RSA_WITH_AES_256_GCM_SHA384: 4
pdf_data/st_keywords/crypto_library
  • OpenSSL:
    • OpenSSL: 36
pdf_data/st_keywords/side_channel_analysis
  • FI:
    • physical tampering: 1
pdf_data/st_keywords/standard_id
  • CC:
    • CCMB-2017-004-001: 1
    • CCMB-2017-004-002: 1
    • CCMB-2017-004-003: 1
    • CCMB-2017-004-004: 1
  • FIPS:
    • FIPS 186-4: 8
    • FIPS PUB 180-4: 2
    • FIPS PUB 186-4: 5
    • FIPS PUB 198-1: 1
  • ISO:
    • ISO/IEC 10116:2017: 1
    • ISO/IEC 18031:2011: 4
    • ISO/IEC 19772:2009: 1
    • ISO/IEC 9796-2: 2
  • PKCS:
    • PKCS #1: 2
  • RFC:
    • RFC 2986: 2
    • RFC 3268: 4
    • RFC 3447: 2
    • RFC 3526: 10
    • RFC 4253: 1
    • RFC 5077: 1
    • RFC 5246: 10
    • RFC 5280: 4
    • RFC 5288: 4
    • RFC 6125: 2
    • RFC 6960: 2
    • RFC7030: 1
  • X509:
    • X.509: 5
  • CC:
    • CCMB-2017-04-001: 1
pdf_data/st_keywords/certification_process
  • OutOfScope:
    • environment the TOE is managing. The TOEs management of the enterprise operational environment is out of scope for the NDcPP. Therefore, interface E4 to these components is out of scope of the evaluation: 1
    • out of scope: 3
    • the update server directly. The TOE receives the update from the Forescout Console. Interface E8 is out of scope of the evaluation. It is being declared as part of the test environment for completeness as it is: 1
  • OutOfScope:
    • fiber optic cable and relays the data to a server equipped with Waterfall software. Agent Host (out of scope of the TOE) TX & RX Agent Host Modules: is a normal PC, it can transmit data to the TX for: 1
    • out of scope: 1
pdf_data/st_metadata
  • /Author: Waterfall Security Solutions
  • /CreationDate: D:20230324114901+01'00'
  • /Creator: Microsoft® Word 2010
  • /ModDate: D:20230324114901+01'00'
  • /Producer: Microsoft® Word 2010
  • /Subject: WF-500 V2
  • /Title: Waterfall Unidirectional Security Gateway
  • pdf_file_size_bytes: 1808722
  • pdf_hyperlinks: http://www.waterfall-security.com/, https://waterfall-security.com/company/legal
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 32
state/cert/convert_garbage True False
state/cert/pdf_hash Different Different
state/cert/txt_hash Different Different
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different