| name |
Ivanti Connect Secure 22.2 |
Stormshield Network Security UTM / NG - Firewall Software Suite (Version 3.7.9) |
| category |
Network and Network-Related Devices and Systems |
Network and Network-Related Devices and Systems |
| scheme |
US |
FR |
| status |
active |
active |
| not_valid_after |
23.02.2026 |
16.06.2025 |
| not_valid_before |
23.02.2024 |
16.06.2020 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11372-ci.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/certificat-ANSSI-CC-2020_39%20ORIGINAL%20SIGNE.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11372-vr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cc-2020_39fr.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11372-st.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/anssi-cible-cc-2020_39en.pdf |
| manufacturer |
Ivanti, Inc. |
Stormshield |
| manufacturer_web |
https://www.ivanti.com |
https://www.stormshield.eu/ |
| security_level |
{} |
ALC_CMS.4, ALC_CMC.4, AVA_VAN.3, EAL3+, ALC_FLR.3 |
| dgst |
d8de7620dfa8311b |
6e57eff95d929abf |
| heuristics/cert_id |
CCEVS-VR-VID-11372-2024 |
ANSSI-CC-2020/39 |
| heuristics/cert_lab |
US |
[] |
| heuristics/cpe_matches |
cpe:2.3:a:ivanti:connect_secure:22.2:-:*:*:*:*:*:*, cpe:2.3:a:ivanti:connect_secure:22.2:r1:*:*:*:*:*:* |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
CVE-2022-35258, CVE-2023-39340, CVE-2024-8495, CVE-2024-47909, CVE-2024-11634, CVE-2024-11004, CVE-2024-11005, CVE-2024-21894, CVE-2024-13830, CVE-2024-47907, CVE-2024-13843, CVE-2022-35254, CVE-2025-0283, CVE-2025-22467, CVE-2024-22023, CVE-2024-22052, CVE-2024-13842, CVE-2024-9844, CVE-2024-21887, CVE-2023-41719, CVE-2024-21888, CVE-2024-47906, CVE-2023-41720, CVE-2024-9420, CVE-2024-47905, CVE-2024-11007, CVE-2024-21893, CVE-2024-22053, CVE-2024-11633, CVE-2024-11006, CVE-2023-46805 |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_TSS.1, ADV_FSP.1, ALC_CMC.1, ASE_INT.1, ASE_SPD.1, ASE_OBJ.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ASE_REQ.1, ASE_CCL.1, ASE_ECD.1, AGD_PRE.1 |
ASE_INT.1, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ASE_TSS.1, ASE_SPD.1, ALC_DEL.1, ALC_LCD.1, ALC_FLR.3, AGD_OPE.1, AVA_VAN.3, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ATE_DPT.1, ASE_REQ.2, ALC_DVS.1, ADV_FSP.4, ATE_IND.2, ASE_CCL.1 |
| heuristics/extracted_versions |
22.2 |
3.7.9 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
89f2a255423f4a20 |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf |
{} |
| pdf_data/cert_filename |
st_vid11372-ci.pdf |
certificat-ANSSI-CC-2020_39 ORIGINAL SIGNE.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11372-2024: 1
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 2
- ALC_FLR.3: 1
- AVA:
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20240307110425-05'00'
- /ModDate: D:20240307110425-05'00'
- /Producer: iText 2.1.0 (by lowagie.com)
- pdf_file_size_bytes: 185858
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: Christian Benardeau
- /CreationDate: D:20200617133909+02'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20200617133909+02'00'
- /Producer: Microsoft® Word 2010
- /Subject: CER/F/14.2
- /Title: ANSSI-CC-2020/39
- pdf_file_size_bytes: 732474
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
st_vid11372-vr.pdf |
anssi-cc-2020_39fr.pdf |
| pdf_data/report_frontpage |
- FR:
- US:
- cert_id: CCEVS-VR-VID11372-2024
- cert_item: for the Ivanti Connect Secure 22.2
- cert_lab: US NIAP
|
|
| pdf_data/report_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11372-2024: 1
|
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 3: 3
- EAL 5: 1
- EAL 7: 1
- EAL2: 2
- EAL3+: 1
- EAL4: 2
- ITSEC:
|
| pdf_data/report_keywords/cc_sar |
|
- ADV:
- ADV_ARC: 1
- ADV_FSP: 1
- ADV_IMP: 1
- ADV_INT: 1
- ADV_SPM: 1
- ADV_TDS: 1
- AGD:
- ALC:
- ALC_CMC: 1
- ALC_CMC.4: 3
- ALC_CMS: 1
- ALC_CMS.4: 3
- ALC_DEL: 1
- ALC_DVS: 1
- ALC_FLR: 2
- ALC_FLR.3: 4
- ALC_LCD: 1
- ALC_TAT: 1
- ASE:
- ASE_CCL: 1
- ASE_ECD: 1
- ASE_INT: 1
- ASE_OBJ: 1
- ASE_REQ: 1
- ASE_SPD: 1
- ASE_TSS: 1
- ATE:
- ATE_COV: 1
- ATE_DPT: 1
- ATE_FUN: 1
- ATE_IND: 1
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
- FCS:
- FCS_CKM.1: 2
- FCS_CKM.2: 1
- FCS_COP: 6
- FCS_RBG_EXT.1: 1
- FCS_TLSC_EXT.1: 7
- FCS_TLSC_EXT.2: 6
- FCS_TLSS_EXT.1: 8
- FPT:
|
|
| pdf_data/report_keywords/cc_claims |
- A:
- A.ADMIN_CREDENTIALS_SECURE: 1
- A.LIMITED_FUNCTIONALITY: 1
- A.NO_THRU_TRAFFIC_PROTECTION: 1
- A.PHYSICAL_PROTECTION: 1
- A.REGULAR_UPDATES: 1
- A.RESIDUAL_INFORMATION: 1
- A.TRUSTED_ADMINISTRATOR: 1
- A.VS_CORRECT_CONFIGURATION: 1
- A.VS_ISOLATION: 1
- A.VS_REGULAR_UPDATES: 1
- A.VS_TRUSTED_ADMINISTRATOR: 1
- T:
- T.PASSWORD_CRACKING: 1
- T.SECURITY_FUNCTIONALITY_COMPROMISE: 1
- T.SECURITY_FUNCTIONALITY_FAILURE: 1
- T.UNAUTHORIZED_ADMINISTRATOR_ACCESS: 1
- T.UNDETECTED_ACTIVITY: 1
- T.UNTRUSTED_COMMUNICATION_CHANNELS: 1
- T.UPDATE_COMPROMISE: 1
- T.WEAK_CRYPTOGRAPHY: 1
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
- AES_competition:
- constructions:
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
- IKE:
- IPsec:
- SSH:
- TLS:
- VPN:
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
|
- /Author: BENARDEAU Christian
- /CreationDate: D:20200617133832+02'00'
- /Creator: Microsoft® Word 2010
- /Keywords: ANSSI-CC-CER-F-07 v29.2
- /ModDate: D:20200617133832+02'00'
- /Producer: Microsoft® Word 2010
- /Subject: Stormshield Network Security UTM / NG-Firewall Software Suite
- /Title: ANSSI-CC-2020/39
- pdf_file_size_bytes: 628788
- pdf_hyperlinks: http://www.ssi.gouv.fr/, mailto:[email protected]
- pdf_is_encrypted: False
- pdf_number_of_pages: 15
|
| pdf_data/st_filename |
st_vid11372-st.pdf |
anssi-cible-cc-2020_39en.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- NL:
- CC-01: 3
- CC-02: 6
- CC-03: 5
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL3: 22
- EAL3 augmented: 1
- EAL3+: 2
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 2
- AGD_PRE.1: 2
- ALC:
- ALC_CMC.1: 2
- ALC_CMS.1: 2
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_REQ.1: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.3: 1
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.2: 1
- ADV_TDS.3: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC: 1
- ALC_CMC.4: 5
- ALC_CMS: 1
- ALC_CMS.1: 1
- ALC_CMS.4: 5
- ALC_DEL.1: 1
- ALC_DVS.1: 2
- ALC_FLR.3: 4
- ALC_LCD.1: 2
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 3
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.2: 1
- ATE_DPT.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 4
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 4
- FAU_GEN.2.1: 1
- FAU_STG.1: 4
- FAU_STG.1.1: 1
- FAU_STG.1.2: 1
- FAU_STG_EXT.1: 5
- FAU_STG_EXT.1.1: 1
- FAU_STG_EXT.1.2: 1
- FAU_STG_EXT.1.3: 1
- FCS:
- FCS_CKM.1: 11
- FCS_CKM.1.1: 1
- FCS_CKM.2: 8
- FCS_CKM.2.1: 1
- FCS_CKM.4: 5
- FCS_CKM.4.1: 1
- FCS_COP: 25
- FCS_COP.1: 6
- FCS_NTP_EXT.1.4: 1
- FCS_RBG_EXT.1: 6
- FCS_RBG_EXT.1.1: 1
- FCS_RBG_EXT.1.2: 1
- FCS_TLSC_EXT.1: 11
- FCS_TLSC_EXT.1.1: 1
- FCS_TLSC_EXT.1.2: 1
- FCS_TLSC_EXT.1.3: 1
- FCS_TLSC_EXT.1.4: 1
- FCS_TLSC_EXT.2: 14
- FCS_TLSC_EXT.2.1: 1
- FCS_TLSC_EXT.2.3: 1
- FCS_TLSS_EXT.1: 13
- FCS_TLSS_EXT.1.1: 1
- FCS_TLSS_EXT.1.2: 1
- FCS_TLSS_EXT.1.3: 1
- FCS_TLSS_EXT.1.4: 1
- FIA:
- FIA_AFL.1: 7
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_PMG_EXT.1: 5
- FIA_PMG_EXT.1.1: 1
- FIA_UAU.7: 3
- FIA_UAU.7.1: 2
- FIA_UAU_EXT.2: 5
- FIA_UAU_EXT.2.1: 1
- FIA_UIA_EXT.1: 5
- FIA_UIA_EXT.1.1: 1
- FIA_UIA_EXT.1.2: 1
- FMT:
- FMT_MOF: 8
- FMT_MOF.1: 2
- FMT_MTD: 8
- FMT_MTD.1: 2
- FMT_SMF.1: 4
- FMT_SMF.1.1: 1
- FMT_SMR.2: 4
- FMT_SMR.2.1: 1
- FMT_SMR.2.2: 1
- FMT_SMR.2.3: 1
- FPT:
- FPT_APW_EXT.1: 5
- FPT_APW_EXT.1.1: 1
- FPT_APW_EXT.1.2: 1
- FPT_SKP_EXT.1: 4
- FPT_SKP_EXT.1.1: 1
- FPT_STM_EXT.1: 5
- FPT_STM_EXT.1.1: 1
- FPT_STM_EXT.1.2: 1
- FPT_TST_EXT.1: 4
- FPT_TST_EXT.1.1: 1
- FPT_TUD_EXT.1: 4
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.1.3: 1
- FTA:
- FTA_SSL.3: 4
- FTA_SSL.3.1: 1
- FTA_SSL.4: 4
- FTA_SSL.4.1: 1
- FTA_SSL_EXT.1: 4
- FTA_SSL_EXT.1.1: 1
- FTA_TAB.1: 6
- FTA_TAB.1.1: 1
- FTP:
- FTP_ITC.1: 6
- FTP_ITC.1.1: 1
- FTP_ITC.1.2: 1
- FTP_ITC.1.3: 1
- FTP_TRP: 4
- FTP_TRP.1: 3
|
- FAU:
- FAU_ARP: 2
- FAU_ARP.1: 14
- FAU_ARP.1.1: 2
- FAU_GEN: 1
- FAU_GEN.1: 7
- FAU_GEN.1.1: 2
- FAU_GEN.1.2: 4
- FAU_GEN.2: 6
- FAU_GEN.2.1: 2
- FAU_SAA.1: 2
- FAU_SAA.4: 9
- FAU_SAA.4.1: 4
- FAU_SAA.4.2: 2
- FAU_SAA.4.3: 3
- FAU_SAR.1: 7
- FAU_SAR.1.1: 2
- FAU_SAR.1.2: 2
- FAU_STG.3: 7
- FAU_STG.3.1: 2
- FCS:
- FCS_CKM.1: 7
- FCS_CKM.4: 7
- FCS_COP.1: 59
- FDP:
- FDP_ACC.1: 2
- FDP_ACC.2: 6
- FDP_ACC.2.1: 2
- FDP_ACC.2.2: 2
- FDP_IFC.1: 10
- FDP_IFC.1.1: 2
- FDP_IFC.2: 6
- FDP_IFC.2.1: 3
- FDP_IFC.2.2: 2
- FDP_IFF.1: 29
- FDP_IFF.1.1: 2
- FDP_IFF.1.2: 2
- FDP_IFF.1.3: 2
- FDP_IFF.1.4: 2
- FDP_IFF.1.5: 2
- FDP_ITC.1: 7
- FDP_ITC.2: 7
- FDP_UCT.1: 11
- FDP_UCT.1.1: 2
- FDP_UIT.1: 11
- FDP_UIT.1.1: 2
- FDP_UIT.1.2: 2
- FIA:
- FIA_UAU.5: 45
- FIA_UAU.5.1: 4
- FIA_UAU.5.2: 4
- FIA_UID.1: 2
- FMT:
- FMT_MOF.1: 10
- FMT_MOF.1.1: 3
- FMT_MSA.3: 2
- FMT_MTD: 22
- FMT_MTD.1: 11
- FMT_MTD.1.1: 3
- FMT_SMF: 1
- FMT_SMF.1: 12
- FMT_SMF.1.1: 2
- FMT_SMR.1: 8
- FMT_SMR.1.1: 3
- FMT_SMR.1.2: 4
- FPT:
- FPT_ITT.1: 10
- FPT_ITT.1.1: 2
- FPT_STM.1: 1
- FPT_TDC.1: 8
- FPT_TDC.1.1: 2
- FPT_TDC.1.2: 2
- FTP:
- FTP_ITC.1: 2
- FTP_ITT.1: 1
- FTP_TRP.1: 64
- FTP_TRP.1.1: 4
- FTP_TRP.1.2: 4
- FTP_TRP.1.3: 4
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMIN_CREDENTIALS_SECURE: 1
- A.LIMITED_FUNCTIONALITY: 1
- A.NO_THRU_TRAFFIC_PROTECTION: 1
- A.PHYSICAL_PROTECTION: 1
- A.REGULAR_UPDATES: 1
- A.RESIDUAL_INFORMATION: 1
- A.TRUSTED_ADMINISTRATOR: 1
- A.VS_CORRECT_CONFIGURATION: 1
- A.VS_ISOLATION: 1
- A.VS_REGULAR_UPDATES: 1
- A.VS_TRUSTED_ADMINISTRATOR: 1
- OE:
- OE.ADMIN_CREDENTIALS_SECURE: 1
- OE.NO_GENERAL_PURPOSE: 1
- OE.NO_THRU_TRAFFIC_PROTECTION: 1
- OE.PHYSICAL: 1
- OE.RESIDUAL_INFORMATION: 1
- OE.TRUSTED_ADMN: 1
- OE.UPDATES: 1
- OE.VM_CONFIGURATION: 1
- T:
- T.PASSWORD_CRACKING: 1
- T.SECURITY_FUNCTIONALITY_COMPROMISE: 1
- T.SECURITY_FUNCTIONALITY_FAILURE: 1
- T.UNAUTHORIZED_ADMINISTRATOR_ACCESS: 1
- T.UNDETECTED_ACTIVITY: 1
- T.UNTRUSTED_COMMUNICATION_CHANNELS: 1
- T.UPDATE_COMPROMISE: 1
- T.WEAK_AUTHENTICATION_ENDPOINTS: 1
- T.WEAK_CRYPTOGRAPHY: 1
|
- O:
- O.BACKUP_RESTORATION: 6
- O.CRYPTO: 4
- O.IPS_ATTACK_DETECTION: 8
- O.IPS_RFC_COMPLIANCE: 7
- O.LAA_IPS: 9
- O.LAA_PCAOA: 13
- O.LAA_PCFI: 8
- O.PCAOA: 13
- O.PCFI_APPLICATION_CONTEXT: 4
- O.PCFI_ENCRYPTION: 14
- O.PCFI_FILTERING: 7
- O.PROTECT_ADMIN_SESSIONS: 6
- O.PROTECT_LOGS: 6
- O.RESIST_AUTH_ADMIN: 6
- OE:
- OE.AUTONOMOUS: 3
- OE.CRYPTO_EXT: 3
- OE.GOOD_PCFI: 3
- OE.INTERPOSITION: 4
- OE.PASSWORD: 3
- OE.PERSONNEL: 3
- OE.PROTECT_APPLIANCES: 3
- OE.PROTECT_VPN_CLIENTS: 3
- OE.PROTECT_VPN_PEER: 3
- OE.PROTECT_WORKSTATIO: 1
- OE.PROTECT_WORKSTATIONS: 2
- OE.REVOCATION_LIST: 3
- OE.STRICT_USAGE: 3
- OE.SUPER_ADMIN: 3
- OE.TIMESTAMPS: 4
- T:
- T.ADMIN_USURP: 3
- T.AUDIT: 2
- T.ILLEGAL_ADMIN: 18
- T.ILLEGAL_ADMIN_SESSION: 4
- T.IMPROPER_USE: 11
- T.IP_SPOOFING: 5
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- constructions:
- MAC:
- HMAC: 3
- HMAC-SHA-256: 5
- HMAC-SHA-384: 3
|
- AES_competition:
- DES:
- constructions:
- miscellaneous:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-256: 13
- SHA-384: 2
- SHA-512: 7
- SHA256: 4
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- IPsec:
- SSH:
- TLS:
- DTLS:
- SSL:
- SSL: 4
- SSL 2.0: 1
- SSL 3.0: 1
- TLS:
- TLS: 72
- TLS 1.0: 1
- TLS 1.1: 2
- TLS 1.2: 2
- TLS v1.1: 2
- TLS v1.2: 2
- TLSv1.0: 2
- TLSv1.1: 7
- TLSv1.2: 10
- VPN:
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- NIST:
- P-224: 4
- P-256: 22
- P-384: 18
- secp256r1: 7
- secp384r1: 5
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
- TLS:
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 7
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 7
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 7
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 7
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 7
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 7
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 7
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 7
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 7
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 7
- TLS_RSA_WITH_AES_128_CBC_SHA: 7
- TLS_RSA_WITH_AES_128_CBC_SHA256: 7
- TLS_RSA_WITH_AES_256_CBC_SHA: 7
- TLS_RSA_WITH_AES_256_CBC_SHA256: 3
|
- TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 1
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- FIPS PUB 186-4: 5
- FIPS PUB 196-4: 1
- FIPS18: 1
- FIPS186-4: 4
- ISO:
- ISO/IEC 10118-: 1
- ISO/IEC 14888-3: 1
- ISO/IEC 18031:2011: 3
- ISO/IEC 9796-2: 1
- NIST:
- PKCS:
- RFC:
- RFC 1035: 1
- RFC 2818: 7
- RFC 2986: 1
- RFC 3447: 2
- RFC 3986: 1
- RFC 4346: 2
- RFC 5077: 1
- RFC 5246: 4
- RFC 5280: 3
- RFC 5424: 1
- RFC 5425: 1
- RFC 6125: 1
- RFC 8017: 1
- X509:
|
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
- FIPS:
- FIPS 180-1: 1
- FIPS 180-2: 1
- FIPS PUB 186-4: 1
- FIPS PUB 197: 1
- FIPS PUB 46-3: 1
- PKCS:
- RFC:
- RFC 1034: 1
- RFC 1035: 1
- RFC 1058: 1
- RFC 1321: 1
- RFC 1349: 1
- RFC 2104: 1
- RFC 2144: 1
- RFC 2246: 2
- RFC 2385: 1
- RFC 2389: 1
- RFC 2401: 2
- RFC 2409: 2
- RFC 2428: 1
- RFC 2453: 1
- RFC 2474: 1
- RFC 2518: 1
- RFC 2577: 1
- RFC 2616: 1
- RFC 2631: 1
- RFC 2817: 1
- RFC 3253: 1
- RFC 3261: 1
- RFC 3268: 1
- RFC 3330: 1
- RFC 3376: 1
- RFC 3435: 1
- RFC 3526: 1
- RFC 3550: 1
- RFC 3605: 1
- RFC 4303: 1
- RFC 4754: 1
- RFC 5903: 1
- RFC 6455: 1
- RFC 6932: 1
- RFC 7427: 1
- RFC 768: 1
- RFC 792: 1
- RFC 793: 1
- RFC 959: 1
- X509:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- out of scope: 1
- protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted: 1
|
| pdf_data/st_metadata |
|
- /Author: Stormshield
- /CreationDate: D:20200515152045+02'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20200515152045+02'00'
- /Producer: Microsoft® Word 2010
- /Subject: UTM / NG-Firewall Software Suite
- /Title: Stormshield Network Security
- pdf_file_size_bytes: 2167789
- pdf_hyperlinks: 2.1.1.General%20points%7Coutline
- pdf_is_encrypted: False
- pdf_number_of_pages: 95
|
| state/cert/convert_garbage |
True |
True |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |