Comparing certificates Experimental feature

You are comparing two certificates. By default, only different attributes are shown. Use the button below to show/hide all attributes.

Microsoft SQL Server 2014 Database Engine Enterprise Edition x64 (English)12.0.2000.8
JISEC-CC-CRP-C0475 		Microsoft SQL Server 2012 Database Engine Enterprise Edition x64 (English), Version:11.0.2100.60
JISEC-CC-CRP-C0371
name Microsoft SQL Server 2014 Database Engine Enterprise Edition x64 (English)12.0.2000.8 Microsoft SQL Server 2012 Database Engine Enterprise Edition x64 (English), Version:11.0.2100.60
not_valid_before 2015-06-16 2012-09-06
not_valid_after 2020-07-01 2017-10-12
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0475_est.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0371_est.pdf
security_level ALC_FLR.2, EAL2+ EAL2
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0475_erpt.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0371_erpt.pdf
protection_profiles frozendict({'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'U.S. Government Protection Profile Database Management Systems, Version 1.3', 'pp_eal': 'EAL2+', 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/pp_dbms_v1.3.pdf', 'pp_ids': frozenset({'PP_DBMS_V1.3'})})
state/report/pdf_hash bf3d64289ba9b8366626761600d05b7766183ff7dc92f9c5f0581d1faf2e2160 f2f2a6b69599a0cb8ac099277072b73e17007e3cf32b898cc0dd800c76a3315f
state/report/txt_hash 2aab8d690195e7968a1820761e268fc26514a6b22f0efeb07bcd3775340011bf ebc549efe55ff397697774dd320108ad1674e590d48b3888cb5cd082c1277140
state/st/pdf_hash 27bb951e648abb5a44ec818ad00ce0fac5ef7f68ee6c58c0d73a45fab982a33c b1e3a6e25b09aae6b415fd246959fe9797504f6a3b072fb104883103c8bba4fa
state/st/txt_hash c9ec0cb700e0da833f51063d6cd67466d8cfa06e4486cf4bc0f944dd0840ce5e 91f2a7092c2a0bcaf09d1af07b30df69eaefebc2f0e630dd0cd94f33c2a55c9c
heuristics/cert_id JISEC-CC-CRP-C0475 JISEC-CC-CRP-C0371
heuristics/extracted_sars ALC_FLR.2, ADV_FSP.2, ADV_ARC.1, AGD_PRE.1, ALC_CMS.2, ALC_DEL.1, ATE_IND.2, AVA_VAN.2, ATE_COV.1 None
heuristics/extracted_versions 12.0.2000.8 11.0.2100.60
heuristics/scheme_data/cert_id C0475 C0371
heuristics/scheme_data/certification_date 2015-06 2012-09
heuristics/scheme_data/claim EAL2+ ALC_FLR.2 PP EAL2
heuristics/scheme_data/enhanced
  • product: Microsoft SQL Server 2014 Database Engine Enterprise Edition x64 (English)
  • toe_version: 12.0.2000.8
  • product_type: Database Management System (DBMS)
  • certification_date: 2015-06-16
  • cc_version: 3.1 Release4
  • assurance_level: EAL2 Augmented with ALC_FLR.2
  • protection_profile: U.S. Government Protection Profile for Database Management Systems, Version 1.3
  • vendor: Microsoft Corporation
  • evaluation_facility: TÜV Informationstechnik GmbH, Evaluation Body for IT-Security
  • report_link: https://www.ipa.go.jp/en/security/c0475_erpt.pdf
  • cert_link: https://www.ipa.go.jp/en/security/c0475_eimg.pdf
  • target_link: https://www.ipa.go.jp/en/security/c0475_est.pdf
  • description: PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of SQL Server 2014. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functionality This TOE provides the following security functionality: - The Access Control function of the TOE controls the access of users to user data and metadata stored in the TOE. - The Session Handling function of the TOE limits the possibilities of users to establish sessions with the TOE. - The Security Audit function of the TOE produces log files about all security relevant events. - The Security Management function allows authorized administrators to manage the behavior of the security functionality of the TOE. - The Identification and Authentication function of the TOE is able to identify and authenticate users. - The Residual Information Protection function of the TOE overwrites the residual information on the memory that will be used for user sessions.
  • product: Microsoft SQL Server 2012 Database Engine Enterprise Edition x64 (English)
  • toe_version: 11.0.2100.60
  • product_type: Database Management System (DBMS)
  • certification_date: 2012-09-06
  • assurance_level: EAL2
  • vendor: Microsoft Corporation
  • evaluation_facility: TワV Informationstechnik GmbH, Evaluation Body for IT-Security
  • report_link: https://www.ipa.go.jp/en/security/c0371_erpt.pdf
  • cert_link: https://www.ipa.go.jp/en/security/c0371_eimg.pdf
  • target_link: https://www.ipa.go.jp/en/security/c0371_est.pdf
  • description: PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of SQL Server 2012. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functions This TOE provides the following security functionality: - The Access Control function of the TOE controls the access of users to user and metadata stored in the TOE. - The Security Audit function of the TOE produces log files about all security relevant events. - The Security Management function allows authorized administrators to manage the behavior of the security functionality of the TOE. - The Identification and Authentication function of the TOE is able to identify and authenticate users.
heuristics/scheme_data/enhanced/assurance_level EAL2 Augmented with ALC_FLR.2 EAL2
heuristics/scheme_data/enhanced/cert_link https://www.ipa.go.jp/en/security/c0475_eimg.pdf https://www.ipa.go.jp/en/security/c0371_eimg.pdf
heuristics/scheme_data/enhanced/certification_date 2015-06-16 2012-09-06
heuristics/scheme_data/enhanced/description PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of SQL Server 2014. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functionality This TOE provides the following security functionality: - The Access Control function of the TOE controls the access of users to user data and metadata stored in the TOE. - The Session Handling function of the TOE limits the possibilities of users to establish sessions with the TOE. - The Security Audit function of the TOE produces log files about all security relevant events. - The Security Management function allows authorized administrators to manage the behavior of the security functionality of the TOE. - The Identification and Authentication function of the TOE is able to identify and authenticate users. - The Residual Information Protection function of the TOE overwrites the residual information on the memory that will be used for user sessions. PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of SQL Server 2012. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functions This TOE provides the following security functionality: - The Access Control function of the TOE controls the access of users to user and metadata stored in the TOE. - The Security Audit function of the TOE produces log files about all security relevant events. - The Security Management function allows authorized administrators to manage the behavior of the security functionality of the TOE. - The Identification and Authentication function of the TOE is able to identify and authenticate users.
heuristics/scheme_data/enhanced/evaluation_facility TÜV Informationstechnik GmbH, Evaluation Body for IT-Security TワV Informationstechnik GmbH, Evaluation Body for IT-Security
heuristics/scheme_data/enhanced/product Microsoft SQL Server 2014 Database Engine Enterprise Edition x64 (English) Microsoft SQL Server 2012 Database Engine Enterprise Edition x64 (English)
heuristics/scheme_data/enhanced/report_link https://www.ipa.go.jp/en/security/c0475_erpt.pdf https://www.ipa.go.jp/en/security/c0371_erpt.pdf
heuristics/scheme_data/enhanced/target_link https://www.ipa.go.jp/en/security/c0475_est.pdf https://www.ipa.go.jp/en/security/c0371_est.pdf
heuristics/scheme_data/enhanced/toe_version 12.0.2000.8 11.0.2100.60
heuristics/scheme_data/expiration_date 2020-07 2017-10
heuristics/scheme_data/toe_overseas_link https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0475_it3480.html https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0371_it1383.html
heuristics/scheme_data/toe_overseas_name Microsoft SQL Server 2014 Database Engine Enterprise Edition x64 (English)12.0.2000.8 Microsoft SQL Server 2012 Database Engine Enterprise Edition x64 (English) 11.0.2100.60
pdf_data/report_filename c0475_erpt.pdf c0371_erpt.pdf
pdf_data/report_keywords/cc_cert_id/JP
  • CRP-C0475-01: 1
  • Certification No. C0475: 1
  • CRP-C0371-01: 1
  • Certification No. C0371: 1
pdf_data/report_keywords/cc_claims/T
  • T.ACCIDENTIAL_ADMIN_ERROR: 1
  • T.POOR_DESIGN: 1
  • T.POOR_IMPLEMENTATION: 1
  • T.POOR_TEST: 1
  • T.MASQUERADE: 1
  • T.RESIDUAL_DATA: 1
  • T.TSF_COMPROMISE: 1
  • T.UNAUTHORIZED_: 1
  • T.UNIDENTIFIED_: 1
  • T.MASQUERADE: 1
  • T.UNAUTHORIZED_: 1
  • T.TSF_COMPROMISE: 1
  • T.UNIDENTIFIED_: 1
pdf_data/report_keywords/cc_sar
  • ALC:
    • ALC_FLR.2: 4
pdf_data/report_keywords/cc_security_level/EAL
  • EAL2: 4
  • EAL2+: 2
  • EAL2 augmented: 3
  • EAL2: 6
pdf_data/report_keywords/cc_security_level/EAL/EAL2 4 6
pdf_data/report_keywords/eval_facility/TUV/TÜV Informationstechnik 4 3
pdf_data/report_keywords/standard_id/CC
  • CCMB-2012-09-001: 2
  • CCMB-2012-09-002: 2
  • CCMB-2012-09-003: 2
  • CCMB-2012-09-004: 2
  • CCMB-2009-07-001: 2
  • CCMB-2009-07-002: 2
  • CCMB-2009-07-003: 2
  • CCMB-2009-07-004: 2
pdf_data/report_keywords/vendor/Microsoft/Microsoft 20 17
pdf_data/report_metadata//CreationDate D:20150724094408+09'00' D:20130527154721+09'00'
pdf_data/report_metadata//ModDate D:20150724094442+09'00' D:20130527154854+09'00'
pdf_data/report_metadata/pdf_file_size_bytes 233021 225890
pdf_data/report_metadata/pdf_number_of_pages 31 29
pdf_data/st_filename c0475_est.pdf c0371_est.pdf
pdf_data/st_keywords/cc_claims/O
  • O.ADMIN_GUIDANCE: 1
  • O.CONFIGURATION_IDENTIFICATION: 1
  • O.DOCUMENTED_DESIGN: 1
  • O.INTERNAL_TOE_DOMAINS: 1
  • O.PARTIAL_FUNCTIONAL_TEST: 1
  • O.PARTIAL_SELF_PROTECTION: 1
  • O.VULNERABILITY_ANALYSIS: 1
  • O.ACCESS_HISTORY: 5
  • O.ADMIN_ROLE: 4
  • O.AUDIT_GENERATION: 4
  • O.MANAGE: 6
  • O.MEDIATE: 5
  • O.RESIDUAL_INFORMATION: 3
  • O.TOE_ACCESS: 7
  • O.RESIDUAL_INFORMAT: 2
  • O.AUDIT_: 1
  • O.RESIDUAL_INFORM: 1
  • O.ADMIN_ROLE: 5
  • O.AUDIT_GENERATION: 6
  • O.MANAGE: 7
  • O.MEDIATE: 4
pdf_data/st_keywords/cc_claims/O/O.ADMIN_ROLE 4 5
pdf_data/st_keywords/cc_claims/O/O.AUDIT_GENERATION 4 6
pdf_data/st_keywords/cc_claims/O/O.MANAGE 6 7
pdf_data/st_keywords/cc_claims/O/O.MEDIATE 5 4
pdf_data/st_keywords/cc_claims/OE/OE.NO_GENERAL_ 2 3
pdf_data/st_keywords/cc_claims/T
  • T.ACCIDENTIAL_ADMIN_ERROR: 1
  • T.POOR_DESIGN: 1
  • T.POOR_IMPLEMENTATION: 1
  • T.POOR_TEST: 1
  • T.MASQUERADE: 3
  • T.RESIDUAL_DATA: 3
  • T.TSF_COMPROMISE: 3
  • T.UNAUTHORIZED_ACCESS: 3
  • T.UNIDENTIFIED_ACTIONS: 3
  • T.MASQUERADE: 3
  • T.TSF_COMPROMISE: 3
  • T.UNAUTHORIZED_ACCESS: 2
  • T.UNIDENTIFIED_ACTIONS: 3
  • T.UNAUTHORIZED_: 1
pdf_data/st_keywords/cc_claims/T/T.UNAUTHORIZED_ACCESS 3 2
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_FSP.2: 1
    • ADV_ARC.1: 2
  • AGD:
    • AGD_ADD: 3
    • AGD_PRE.1: 1
  • ALC:
    • ALC_FLR.2: 4
    • ALC_FLR: 1
    • ALC_DEL.1: 1
    • ALC_CMS.2: 1
  • ATE:
    • ATE_COV.1: 1
    • ATE_IND.2: 1
  • AVA:
    • AVA_VAN.2: 1
  • AGD:
    • AGD_ADD: 3
pdf_data/st_keywords/cc_sar/AGD
  • AGD_ADD: 3
  • AGD_PRE.1: 1
  • AGD_ADD: 3
pdf_data/st_keywords/cc_security_level/EAL
  • EAL2+: 51
  • EAL2: 2
  • EAL 2: 3
  • EAL2 augmented: 2
  • EAL 2 augmented: 1
  • EAL2: 84
  • EAL 2: 4
pdf_data/st_keywords/cc_security_level/EAL/EAL 2 3 4
pdf_data/st_keywords/cc_security_level/EAL/EAL2 2 84
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_STG_EXP.5: 15
    • FAU_STG: 3
    • FAU_GEN: 10
    • FAU_GEN.1: 3
    • FAU_SEL: 8
    • FAU_SEL.1: 2
    • FAU_GEN.2: 8
    • FAU_STG_EXP: 2
    • FAU_STG.3: 1
    • FAU_STG.1: 2
    • FAU_STG_EXP.5.1: 2
    • FAU_GEN.2.1: 1
    • FAU_STG.4: 1
  • FDP:
    • FDP_ACF: 8
    • FDP_ACF.1: 6
    • FDP_ACC.1: 10
    • FDP_RIP.1: 6
    • FDP_ACC.1.1: 1
    • FDP_RIP.1.1: 1
    • FDP_IFC.1: 1
  • FIA:
    • FIA_UAU.2: 8
    • FIA_UAU.5: 8
    • FIA_UID.2: 12
    • FIA_ATD.1: 10
    • FIA_ATD.1.1: 2
    • FIA_UAU.2.1: 1
    • FIA_UAU.5.1: 1
    • FIA_UAU.5.2: 1
    • FIA_UID.2.1: 1
    • FIA_UID.1: 11
  • FMT:
    • FMT_MSA.3: 8
    • FMT_REV.1: 16
    • FMT_MOF.1: 6
    • FMT_MSA.1: 6
    • FMT_MTD.1: 7
    • FMT_SMF.1: 7
    • FMT_SMR.1: 14
    • FMT_MOF.1.1: 1
    • FMT_MSA.1.1: 1
    • FMT_MSA.3.1: 1
    • FMT_MSA.3.2: 1
    • FMT_MTD.1.1: 1
    • FMT_REV.1.1: 2
    • FMT_REV.1.2: 2
    • FMT_SMF.1.1: 1
    • FMT_SMR.1.1: 1
    • FMT_SMR.1.2: 1
  • FPT:
    • FPT_TRC.1: 6
    • FPT_TRC.1.1: 1
    • FPT_TRC.1.2: 1
    • FPT_STM.1: 1
  • FTA:
    • FTA_TAH.1: 8
    • FTA_MCS.1: 6
    • FTA_TSE.1: 6
    • FTA_MCS.1.1: 1
    • FTA_MCS.1.2: 1
    • FTA_TAH.1.1: 1
    • FTA_TAH.1.2: 1
    • FTA_TAH.1.3: 1
    • FTA_TSE.1.1: 1
  • FAU:
    • FAU_STG_EXP.5: 14
    • FAU_STG: 3
    • FAU_STG_EXP: 2
    • FAU_GEN: 1
    • FAU_STG.3: 1
    • FAU_STG.1: 2
    • FAU_STG_EXP.5.1: 2
    • FAU_GEN.1: 6
    • FAU_GEN.2: 6
    • FAU_SEL.1: 6
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 1
    • FAU_GEN.2.1: 1
    • FAU_SEL.1.1: 1
    • FAU_STG.4: 1
  • FDP:
    • FDP_ACC.1: 9
    • FDP_ACF.1: 6
    • FDP_ACC.1.1: 1
    • FDP_ACF.1.1: 1
    • FDP_ACF.1.2: 1
    • FDP_ACF.1.3: 1
    • FDP_ACF.1.4: 1
    • FDP_IFC.1: 1
  • FIA:
    • FIA_ATD.1: 9
    • FIA_UAU.2: 7
    • FIA_UAU.5: 7
    • FIA_UID.2: 10
    • FIA_ATD.1.1: 1
    • FIA_UAU.2.1: 1
    • FIA_UAU.5.1: 1
    • FIA_UAU.5.2: 1
    • FIA_UID.2.1: 1
    • FIA_UID.1: 8
  • FMT:
    • FMT_MOF.1: 6
    • FMT_MSA.1: 6
    • FMT_MSA.3: 9
    • FMT_MTD.1: 7
    • FMT_REV.1: 14
    • FMT_SMF.1: 7
    • FMT_SMR.1: 13
    • FMT_MOF.1.1: 1
    • FMT_MSA.1.1: 1
    • FMT_MSA.3.1: 1
    • FMT_MSA.3.2: 1
    • FMT_MTD.1.1: 1
    • FMT_REV.1.1: 2
    • FMT_REV.1.2: 2
    • FMT_SMF.1.1: 1
    • FMT_SMR.1.1: 1
    • FMT_SMR.1.2: 1
  • FPT:
    • FPT_STM.1: 1
pdf_data/st_keywords/cc_sfr/FAU
  • FAU_STG_EXP.5: 15
  • FAU_STG: 3
  • FAU_GEN: 10
  • FAU_GEN.1: 3
  • FAU_SEL: 8
  • FAU_SEL.1: 2
  • FAU_GEN.2: 8
  • FAU_STG_EXP: 2
  • FAU_STG.3: 1
  • FAU_STG.1: 2
  • FAU_STG_EXP.5.1: 2
  • FAU_GEN.2.1: 1
  • FAU_STG.4: 1
  • FAU_STG_EXP.5: 14
  • FAU_STG: 3
  • FAU_STG_EXP: 2
  • FAU_GEN: 1
  • FAU_STG.3: 1
  • FAU_STG.1: 2
  • FAU_STG_EXP.5.1: 2
  • FAU_GEN.1: 6
  • FAU_GEN.2: 6
  • FAU_SEL.1: 6
  • FAU_GEN.1.1: 1
  • FAU_GEN.1.2: 1
  • FAU_GEN.2.1: 1
  • FAU_SEL.1.1: 1
  • FAU_STG.4: 1
pdf_data/st_keywords/cc_sfr/FAU/FAU_GEN 10 1
pdf_data/st_keywords/cc_sfr/FAU/FAU_GEN.1 3 6
pdf_data/st_keywords/cc_sfr/FAU/FAU_GEN.2 8 6
pdf_data/st_keywords/cc_sfr/FAU/FAU_SEL.1 2 6
pdf_data/st_keywords/cc_sfr/FAU/FAU_STG_EXP.5 15 14
pdf_data/st_keywords/cc_sfr/FDP
  • FDP_ACF: 8
  • FDP_ACF.1: 6
  • FDP_ACC.1: 10
  • FDP_RIP.1: 6
  • FDP_ACC.1.1: 1
  • FDP_RIP.1.1: 1
  • FDP_IFC.1: 1
  • FDP_ACC.1: 9
  • FDP_ACF.1: 6
  • FDP_ACC.1.1: 1
  • FDP_ACF.1.1: 1
  • FDP_ACF.1.2: 1
  • FDP_ACF.1.3: 1
  • FDP_ACF.1.4: 1
  • FDP_IFC.1: 1
pdf_data/st_keywords/cc_sfr/FDP/FDP_ACC.1 10 9
pdf_data/st_keywords/cc_sfr/FIA/FIA_ATD.1 10 9
pdf_data/st_keywords/cc_sfr/FIA/FIA_ATD.1.1 2 1
pdf_data/st_keywords/cc_sfr/FIA/FIA_UAU.2 8 7
pdf_data/st_keywords/cc_sfr/FIA/FIA_UAU.5 8 7
pdf_data/st_keywords/cc_sfr/FIA/FIA_UID.1 11 8
pdf_data/st_keywords/cc_sfr/FIA/FIA_UID.2 12 10
pdf_data/st_keywords/cc_sfr/FMT/FMT_MSA.3 8 9
pdf_data/st_keywords/cc_sfr/FMT/FMT_REV.1 16 14
pdf_data/st_keywords/cc_sfr/FMT/FMT_SMR.1 14 13
pdf_data/st_keywords/cc_sfr/FPT
  • FPT_TRC.1: 6
  • FPT_TRC.1.1: 1
  • FPT_TRC.1.2: 1
  • FPT_STM.1: 1
  • FPT_STM.1: 1
pdf_data/st_keywords/tee_name
  • IBM:
    • SE: 3
pdf_data/st_keywords/vendor/Microsoft/Microsoft 11 54
pdf_data/st_metadata//Author SQL Team Microsoft Corp.
pdf_data/st_metadata//CreationDate D:20150330143231+02'00' D:20120808120637+02'00'
pdf_data/st_metadata//Keywords CC, ST, Common Criteria, SQL, Security Target, DBMS, Database Management System CC, ST, Common Criteria, SQL, Security Target
pdf_data/st_metadata//ModDate D:20150330143231+02'00' D:20120808120637+02'00'
pdf_data/st_metadata//Title Security Target - SQL Server 2014 Microsoft SQL Server 2012 Database EngineCommon Criteria Evaluation (EAL2)
pdf_data/st_metadata/pdf_file_size_bytes 595609 628935
pdf_data/st_metadata/pdf_number_of_pages 50 42
dgst c225189611bed8f2 bccee9cca27bae56