| name |
CA Siteminder Web Access Manager r12 SP1-CR3 |
NetSignOn Version 2.0 |
| category |
Access Control Devices and Systems |
Access Control Devices and Systems |
| scheme |
US |
MY |
| status |
archived |
archived |
| not_valid_after |
20.07.2012 |
16.04.2017 |
| not_valid_before |
12.06.2009 |
16.04.2012 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10317-vr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C027-CR-v1a.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10317-st.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NetSignON%20ST%20v1.7.pdf |
| manufacturer |
CA Technologies |
MagnaQuest Solutions Sdn Bhd |
| manufacturer_web |
https://www.ca.com |
https://www.magnaquest.com |
| security_level |
ASE_TSS.2, ALC_FLR.1, EAL3+ |
EAL1 |
| dgst |
e55d05a9ca8efdf1 |
1d7f84af6c6b8b93 |
| heuristics/cert_id |
CCEVS-VR-VID-10317-2009 |
ISCB-5-RPT-C027-CR-v1a |
| heuristics/cert_lab |
US |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_SPD.1, ASE_CCL.1, ASE_REQ.2, ALC_CMS.3, ALC_CMC.3, AGD_PRE.1, AGD_OPE.1, ALC_LCD.1, ALC_DEL.1, ALC_FLR.1, ALC_DVS.1, ASE_TSS.2, ASE_ECD.1, ATE_IND.2, ADV_ARC.1, ASE_INT.1, ATE_FUN.1, ADV_TDS.2, ATE_COV.2, AVA_VAN.2, ASE_OBJ.2, ATE_DPT.1, ADV_FSP.3 |
ASE_INT.1, ALC_CMC.1, ALC_CMS.1, AGD_PRE.1, ASE_REQ.1, ASE_ECD.1, ATE_IND.1, AGD_OPE.1, ADV_FSP.1, AVA_VAN.1, ASE_CCL.1, ASE_OBJ.1, ASE_TSS.1 |
| heuristics/extracted_versions |
- |
2.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- api_url: https://www.niap-ccevs.org/api/project/product/pcl_products/10317/
- categories: ['Network Access Control', ' System Access Control']
- category: Network Access Control
- certification_date: 12.06.2009
- evaluation_facility: Booz Allen Hamilton Common Criteria Testing Laboratory
- expiration_date:
- id: CCEVS-VR-VID10317
- product: CA Siteminder Web Access Manager r12 SP1-CR3
- scheme: US
- url: https://www.niap-ccevs.org/products/10317
- vendor: CA Technologies
|
- cert_no: 2012-005-C027
- certification_date: 16.04.2012
- developer: MagnaQuest Solutions Sdn. Bhd
- enhanced:
- assurance_level: EAL1
- category: Access Control Devices and System
- cert_id: C027
- certification_date: 16.04.2012
- developer: Ramdas Nemani A-2-07 & A-2-09SME Technopreneur Centre1,2270 Jalan Usahawan 2,63000 Cyberjaya, Selangor DE,MALAYSIA URL: http://www.magnaquest.comEmail: [email protected]: +60 (3) 8318 2964Fax: +60 (3) 8319 2534
- expiration_date: 16.04.2017
- mutual_recognition: CCRA
- product: NetSignOn Version 2.0
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C027/ISCB-5-RPT-C027-CR-v1a.pdf
- scope: The Target of Evaluation (TOE) is a software product, which comprises of MQAssure™/AppShield v1.2_CR6 integrated with MQAssure™/IAM v1.0_CR6. The MQAssureTM/AppShield v1.2_CR6 (hereafter referred as Appshield) combined with MQAssureTM/IAM v1.0_CR6 (hereafter referred as IAM) is an access control software for web applications. The TOE controls access to web filtering applications by enforcing authentication and authorisation using multifactor authentication schemes. It is also capable of session control, and request validation based on its core engine policy and rules. IAM or Identity and Access Management is the core engine of the TOE. It is a centralised identity and access management platform that provides the back bone for the AppShield security functionality. In the overall infrastructure, AppShield acts as a policy enforcement agent for the web applications. The security features within the scope of the evaluation for IAM includes: Multifactor User Authentication which includes MyKad-Biometric, iKey-PIN or password. TOE Administration which provides a web based GUI console for the administrator to configure and manage the TOE. Security Audit which generates audit records for relevant authentication events and access events to various objects. The security features within the scope of the evaluation for AppShield includes: Access Control which enforces access control policy decision made by the IAM. HTTP request validation which protects the web applications from common input tampering attacks.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C027/NetSignON%20ST%20v1.7.pdf
- type: Client agent runs on Windows operating system platforms that leverages multifactor user authentication methods.
- expiration_date: 16.04.2017
- level: EAL1
- product: NetSignOn Version 2.0
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/70
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
st_vid10317-vr.pdf |
ISCB-5-RPT-C027-CR-v1a.pdf |
| pdf_data/report_frontpage |
- US:
- cert_id: CCEVS-VR-VID10317-2009
- cert_item: CA SiteMinder Web Access Manager r12 SP1-CR3
- cert_lab: US NIAP
|
|
| pdf_data/report_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID10317-2009: 1
|
- MY:
- ISCB-5-RPT-C027-CR-v1a: 25
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
|
| pdf_data/report_keywords/cc_sar |
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_DEL.1: 1
- ALC_FLR.1: 2
- ASE:
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
- TLS:
- SSL:
- SSL: 3
- SSL 3.0: 1
- SSL v3.0: 2
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
- CVE:
- CVE-2003-0718: 1
- CVE-2003-1312: 1
- CVE-2005-2089: 1
- CVE-2005-2204: 1
- CVE-2006-2501: 1
- CVE-2006-3733: 1
- CVE-2006-3918: 1
- CVE-2007-1157: 1
- CVE-2007-1354: 1
- CVE-2007-1526: 1
- CVE-2007-4465: 1
- CVE-2007-5923: 1
- CVE-2007-6203: 1
- CVE-2007-6572: 1
- CVE-2008-0075: 1
- CVE-2008-0455: 1
- CVE-2008-0456: 1
- CVE-2008-1446: 1
- CVE-2008-2166: 1
- CVE-2008-2168: 1
- CVE-2008-2518: 1
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
- /Author: CCEVS NIAP
- /CreationDate: D:20090709152611
- /Creator: Microsoft® Office Word 2007
- /ModDate: D:20090709152611
- /Producer: Microsoft® Office Word 2007
- /Title: National Information Assurance Partnership
- pdf_file_size_bytes: 375891
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 25
|
|
| pdf_data/st_filename |
st_vid10317-st.pdf |
NetSignON ST v1.7.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL 3: 2
- EAL3: 7
- EAL3 augmented: 2
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 12
- ADV_FSP.3: 14
- ADV_TDS.2: 15
- AGD:
- AGD_OPE.1: 15
- AGD_PRE.1: 11
- ALC:
- ALC_CMC.3: 15
- ALC_CMS.3: 8
- ALC_DEL.1: 10
- ALC_DVS.1: 7
- ALC_FLR.1: 11
- ALC_LCD.1: 8
- ASE:
- ASE_CCL.1: 13
- ASE_ECD.1: 12
- ASE_INT.1: 14
- ASE_OBJ.2: 12
- ASE_REQ.1: 9
- ASE_REQ.2: 3
- ASE_SPD.1: 9
- ASE_TSS.1: 1
- ASE_TSS.2: 10
- ATE:
- ATE_COV.2: 7
- ATE_DPT.1: 7
- ATE_FUN.1: 10
- ATE_IND.2: 9
- AVA:
|
- ADV:
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_REQ.1: 1
- ASE_TSS.1: 1
- ATE:
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 12
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 8
- FAU_GEN.2.1: 1
- FAU_SAR.1: 1
- FAU_SAR_EXP.1: 1
- FAU_SAR_EXT.1: 7
- FAU_SAR_EXT.1.1: 2
- FAU_SAR_EXT.1.2: 2
- FAU_STG: 2
- FAU_STG.1: 1
- FAU_STG_EXT.1: 8
- FAU_STG_EXT.1.1: 2
- FAU_STG_EXT.1.2: 2
- FCS:
- FCS_CKM: 3
- FCS_CKM.1: 35
- FCS_CKM.1.1: 3
- FCS_CKM.2: 3
- FCS_CKM.4: 20
- FCS_CKM.4.1: 1
- FCS_CKM_EXT: 1
- FCS_CKM_EXT.1: 9
- FCS_CKM_EXT.1.1: 1
- FCS_CKM_EXT.4: 10
- FCS_CKM_EXT.4.1: 1
- FCS_COP: 3
- FCS_COP.1: 42
- FCS_COP.1.1: 4
- FCS_COP_EXT.1: 9
- FCS_COP_EXT.1.1: 1
- FDP:
- FDP_ACC.1: 22
- FDP_ACC.1.1: 2
- FDP_ACF.1: 20
- FDP_ACF.1.1: 2
- FDP_ACF.1.2: 2
- FDP_ACF.1.3: 2
- FDP_ACF.1.4: 2
- FDP_IFC.1: 4
- FDP_ITC.1: 5
- FDP_ITC.2: 1
- FIA:
- FIA_AFL.1: 7
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_ATD.1: 8
- FIA_ATD.1.1: 1
- FIA_SOS.1: 8
- FIA_SOS.1.1: 1
- FIA_UAU: 2
- FIA_UAU.1: 9
- FIA_UAU.1.1: 1
- FIA_UAU.1.2: 1
- FIA_UAU.5: 1
- FIA_UAU.6: 8
- FIA_UAU.6.1: 1
- FIA_UAU_EXP.5: 2
- FIA_UAU_EXT.5: 18
- FIA_UAU_EXT.5.1: 3
- FIA_UAU_EXT.5.2: 2
- FIA_UID: 2
- FIA_UID.1: 4
- FIA_UID.2: 9
- FIA_UID.2.1: 1
- FIA_UID_EXP.2: 1
- FIA_UID_EXT.2: 7
- FIA_UID_EXT.2.1: 1
- FMT:
- FMT_MSA.1: 26
- FMT_MSA.1.1: 3
- FMT_MSA.2: 13
- FMT_MSA.3: 10
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_SMF.1: 11
- FMT_SMF.1.1: 1
- FMT_SMR.1: 13
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_CKM_EXT.1.1: 1
- FPT_CKM_EXT.4.1: 1
- FPT_COP_EXT.1.1: 1
- FPT_FLS.1: 8
- FPT_FLS.1.1: 1
- FPT_STM: 3
- FPT_STM.1: 3
- FPT_STM_EXT.1: 8
- FPT_STM_EXT.1.1: 3
- FRU:
- FRU_FLT.1: 8
- FRU_FLT.1.1: 1
- FTP:
- FTP_ITC.1: 8
- FTP_ITC.1.1: 1
- FTP_ITC.1.2: 1
- FTP_ITC.1.3: 1
- FTP_TRP: 3
- FTP_TRP.1: 1
- FTP_TRP_EXP.1: 1
- FTP_TRP_EXT.1: 7
- FTP_TRP_EXT.1.1: 1
- FTP_TRP_EXT.1.2: 1
- FTP_TRP_EXT.1.3: 1
|
- FDP:
- FDP_ACC: 1
- FDP_ACC.1: 5
- FDP_ACC.1.1: 1
- FDP_ACF: 1
- FDP_ACF.1: 4
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FDP_IFC.1: 1
- FIA:
- FIA_AFL: 1
- FIA_AFL.1: 5
- FIA_ATD: 1
- FIA_ATD.1: 4
- FIA_SOS: 1
- FIA_SOS.1: 5
- FIA_UAU: 3
- FIA_UAU.1: 4
- FIA_UAU.2: 5
- FIA_UAU.5: 5
- FIA_UAU.6: 4
- FIA_UID: 1
- FIA_UID.1: 7
- FIA_UID.2: 6
- FMT:
- FMT_MSA: 2
- FMT_MSA.1: 6
- FMT_MSA.3: 6
- FMT_SMF: 1
- FMT_SMF.1: 5
- FMT_SMR: 1
- FMT_SMR.1: 9
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMIN: 1
- A.LOCATE: 3
- A.NOEVIL: 3
- A.PATCHES: 1
- O:
- O.ACCESS: 4
- O.AUDIT: 4
- O.AUTH: 4
- O.EAVESDROPPING: 4
- O.MANAGE: 4
- O.ROBUST_ADMIN_G: 1
- O.ROBUST_ADMIN_GUI: 1
- O.ROBUST_ADMIN_GUID: 1
- O.ROBUST_ADMIN_GUIDANCE: 1
- O.ROBUST_TOE_ACCE: 1
- O.ROBUST_TOE_ACCESS: 3
- O.SELF_PROTECTION: 4
- OE:
- OE.EAVESDROPPING: 4
- OE.FILESYS: 4
- OE.LOCATE: 3
- OE.NOEVIL: 3
- OE.ROBUST_ACCESS: 4
- T:
- T.ACCESS: 4
- T.ADMIN_ERROR: 4
- T.AUDIT_COMPROMIS: 2
- T.AUDIT_COMPROMISE: 2
- T.EAVESDROPPING: 4
- T.MASK: 3
- T.MASQUERADE: 4
- T.UNAUTH: 3
|
- OE:
- OE.ATTMP: 1
- OE.COMM: 1
- OE.CONFIG: 1
- OE.CREDEN: 1
- OE.DB: 1
- OE.INSTALL: 1
- OE.NOEVIL: 1
- OE.PHYSICAL: 1
- OE.PIN: 1
- OE.RELIABLE: 1
- OE.SYNC: 1
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- constructions:
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- TLS:
- SSL:
- SSL: 24
- SSL 3.0: 2
- SSL v3.0: 7
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- CC:
- FIPS:
- FIPS 140: 1
- FIPS 140-2: 1
- FIPS 197: 1
- RFC:
- X509:
|
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /CreationDate: D:20090709152747
- /Creator: Microsoft® Office Word 2007
- /ModDate: D:20090709152747
- /Producer: Microsoft® Office Word 2007
- pdf_file_size_bytes: 1353090
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 133
|
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |