Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088
ISCB-5-RPT-C043-CR-v1b
IBM Logical Partition Architecture for Power6 operating on IBM Power Systems hardware (models E8A, MMA, and FHA)
CCEVS-VR-VID-10299-2008
name IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088 IBM Logical Partition Architecture for Power6 operating on IBM Power Systems hardware (models E8A, MMA, and FHA)
category Access Control Devices and Systems Other Devices and Systems
scheme MY US
not_valid_after 31.05.2018 20.07.2012
not_valid_before 31.05.2013 26.11.2008
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C043-CR-v1b.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10299-vr.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/IBM-LPAR-Security-Target-v0%2033_FINAL.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid10299-st.pdf
manufacturer International Business Machine (IBM) Corporation IBM Internet Security Systems, Inc.
manufacturer_web https://www.ibm.com/systems/power/ https://www.iss.net/
dgst e891a1bf42b1ef69 70b6c359b404a700
heuristics/cert_id ISCB-5-RPT-C043-CR-v1b CCEVS-VR-VID-10299-2008
heuristics/cert_lab [] US
heuristics/extracted_sars ATE_COV.2, ADV_TDS.3, AGD_OPE.1, ALC_DVS.1, ALC_DEL.1, AGD_PRE.1, ALC_FLR.2, AVA_VAN.3, ALC_CMC.4, ALC_LCD.1, ATE_DPT.1, ALC_CMS.4, ALC_TAT.1, ADV_IMP.1, ATE_FUN.1, ATE_IND.2, ADV_ARC.1, ADV_FSP.4 ADV_LLD.1, AVA_MSU.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, ADV_HLD.2, ALC_TAT.1, ADV_IMP.1, ATE_COV.2, AVA_SOF.1, ALC_DVS.1, ALC_FLR.2, ADV_RCR.1, AGD_USR.1, ADV_SPM.1, AGD_ADM.1, ADV_FSP.2, ALC_LCD.1, AVA_VLA.2
heuristics/scheme_data
  • cert_no: 2013-003-C043
  • certification_date: 2013-05-31
  • developer: International Business Machine (IBM) Corporation
  • enhanced:
    • assurance_level: EAL4+ ALC_FLR.2
    • category: Access Control Devices and System
    • cert_id: C043
    • certification_date: 2013-05-31
    • developer: International Business Machine (IBM) Corporation3605 Hwy 52 NorthRochester, MM 55901UNITED STATES URL:http://www.ibm.com/systems/power/Email: [email protected]: 507 253 7051Fax: 507 253 2870
    • expiration_date: 2018-05-31
    • mutual_recognition: CCRA
    • product: IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088
    • report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C043/ISCB-5-RPT-C043-CR-v1b.pdf
    • scope: The Target of Evaluation (TOE), IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088 (hereafter referred as LPAR), has been evaluated in the context of hardware models 770 (AM740_088 firmware) and 795 (AH730_087 firmware). The TOE firmware is designed to abstract and virtualise physical hardware resources to provide secure access to the underlying platform for one or more concurrent operating systems. Each virtual platform is known as a partition. The operating systems executing in the available partitions are treated as subjects of the TOE, where the TOE not only provides the necessary operational support for the hosted operating systems, but also serves to separate them from each other to ensure mutual non-interference. While not included as part of the TOE, the TOE is configured using a connected Hardware Management Console (HMC) that provides access to the functions necessary to enable administrative personnel to effectively manage the allocation of resources (i.e., processors, memory, and I/O devices) to the configured partitions. Once the TOE is configured, the HMC must be disconnected so that it offers no interfaces while the TOE is operating in its evaluated configuration. The TOE consists of the PowerVM Hypervisor which provides the virtualisation. The other components of the LPAR such as the Hardware Management Console (HMC), Flexible Service Processor (FSP), Bulk Power Assembly (BPA) and operating systems are outside the TOE scope. The underlying resources of the IBM Power 770 and Power 795 server platforms, including Disks, CPU, RAM, or networking, including the internal virtual switch are considered to be part of the TOE environment. In the context of the evaluation, the TOE provides the following major security features: User data protection – the TOE is designed to instantiate multiple partitions for the purpose of supporting and isolating simultaneous operating systems. As such, it implements a policy where each partition can access only those resources explicitly assigned to it. In terms of access control, the CPU, memory, and I/O devices can be assigned to a given partition and a partition can access those resources only when they are assigned to it. Identification and authentication – the active entity or user of the TOE is partition, which it instantiates. Partitions are implicitly identified and authenticated by internal numerical identifiers associated with partitions (using internal data structures) as they are defined. Being implicitly identified by the TOE, partitions have no need, nor means, to identify themselves. Furthermore, the identification of a partition is guaranteed by the TOE and as such each partition is also continuously authenticated. Security management – the TOE supports several management functions to configure the TOE via the dedicated physical HMC interface (out of scope for this evaluation). Once the TOE is operational (in evaluated configuration), the TOE effectively doesn’t offer any security management functions. However, the TOE serves to restrict the ability to change its own configuration nonetheless. Protection of the TOE Security Function (TSF) – the components of the TOE that protect themselves using the domains provided by Power7 processors. The TOE operates in the privileged domain and the partitions operate in the unprivileged domain. This allows the TOE to protect itself as well as the resources it makes selectively available to the applicable partitions. Beyond protecting itself and its resources, the TOE is also designed such that when the hardware that supports a partition fails, the other partitions will continue uninterrupted.
    • status: Archive
    • target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C043/IBM-LPAR-Security-Target-v0%2033_FINAL.pdf
    • type: Set of hardware and firmware designed to abstract and virtualise physical hardware resources to provide secure access to the underlying platform for one or more concurrent operating systems.
  • expiration_date: 2018-05-31
  • level: EAL4+ ALC_FLR.2
  • product: IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088
  • recognition: CCRA
  • url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/69
pdf_data/report_filename ISCB-5-RPT-C043-CR-v1b.pdf st_vid10299-vr.pdf
pdf_data/report_frontpage
  • US:
  • US:
    • cert_id: CCEVS-VR-VID10299-2008
    • cert_item: International Business Machines Corporation, Rochester, MN 55901 IBM Logical Partition Architecture for Power Systems
    • cert_lab: US NIAP
pdf_data/report_keywords/cc_cert_id
  • MY:
    • ISCB-5-RPT-C043-CR-v1b: 27
  • US:
    • CCEVS-VR-VID10299-2008: 1
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL4: 5
    • EAL4 augmented: 2
    • EAL4+: 6
  • EAL:
    • EAL 4: 11
    • EAL 4 augmented: 2
    • EAL4: 2
    • EAL4 augmented: 1
pdf_data/report_keywords/cc_sar
  • ALC:
    • ALC_FLR.2: 11
  • ALC:
    • ALC_FLR.2: 5
pdf_data/report_keywords/cc_sfr
  • FDP:
    • FDP_ACF.1: 4
    • FDP_IFF.1: 4
  • FIA:
    • FIA_USB.1: 1
  • FMT:
    • FMT_MSA.3: 1
  • FPT:
    • FPT_FLS.1: 1
pdf_data/report_keywords/standard_id
  • ISO:
    • ISO/IEC 18045: 2
    • ISO/IEC15408: 2
pdf_data/report_keywords/certification_process
  • OutOfScope:
    • out of scope: 1
    • several management functions to configure the TOE via the dedicated physical HMC interface (out of scope for PUBLIC FINAL C043 Certification Report - IBM Logical Partition Architecture for Power7: 1
pdf_data/report_metadata
  • /Author: Norhazimah Abdul Malek
  • /Category: PUBLIC
  • /Caveat: FINAL
  • /Classification: PUBLIC
  • /Company: CyberSecurity Malaysia
  • /CreationDate: D:20130613130210+08'00'
  • /Creator: Acrobat PDFMaker 10.1 for Word
  • /Developer: International Business Machine (IBM) Corporation
  • /Document Type: REPORT
  • /Identifier: ISCB-5-RPT-C043-CR-v1b
  • /Index: ISCB_TMP_011
  • /Keywords: LPAR
  • /ModDate: D:20130613130219+08'00'
  • /Phase: External
  • /Producer: Adobe PDF Library 10.0
  • /Released: 31 May 2013
  • /ST: IBM Logical Partition Architecture for Power 7 Security Target
  • /ST Version: v0.33
  • /SourceModified: D:20130613050150
  • /Sponsor: International Business Machine (IBM) Corporation
  • /Subject: IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088
  • /TOE: IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088
  • /TOE Name: LPAR
  • /TOE Version: AH730_087 or AM740_088
  • /Title: C043 Certification Report
  • /Version: v1b
  • pdf_file_size_bytes: 295961
  • pdf_hyperlinks: http://www.cybersecurity.my/mycc, http://www-933.ibm.com/support/fixcentral/?mode=10&page=isoiec.html, mailto:[email protected], http://www.ibm.com/
  • pdf_is_encrypted: True
  • pdf_number_of_pages: 28
  • /Author: Kenneth W. Eggers
  • /CreationDate: D:20081210102023-05'00'
  • /Creator: Acrobat PDFMaker 8.1 for Word
  • /ModDate: D:20081210102057-05'00'
  • /Producer: Acrobat Distiller 8.1.0 (Windows)
  • /SourceModified: D:20081209203142
  • /Title: Validation Report for LPAR Delta
  • pdf_file_size_bytes: 131179
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 15
pdf_data/st_filename IBM-LPAR-Security-Target-v0 33_FINAL.pdf st_vid10299-st.pdf
pdf_data/st_keywords/cc_security_level
  • EAL:
    • EAL 4: 4
    • EAL 4 augmented: 4
    • EAL4: 2
    • EAL4 augmented: 2
  • EAL:
    • EAL 4: 11
    • EAL 4 augmented: 11
    • EAL4: 4
    • EAL4 augmented: 4
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_ARC: 1
    • ADV_ARC.1: 10
    • ADV_FSP: 1
    • ADV_FSP.4: 11
    • ADV_IMP: 1
    • ADV_IMP.1: 7
    • ADV_TDS: 1
    • ADV_TDS.3: 15
  • AGD:
    • AGD_OPE: 1
    • AGD_OPE.1: 10
    • AGD_PRE: 1
    • AGD_PRE.1: 6
  • ALC:
    • ALC_CMC: 1
    • ALC_CMC.4: 15
    • ALC_CMS: 1
    • ALC_CMS.4: 6
    • ALC_DEL: 1
    • ALC_DEL.1: 5
    • ALC_DVS: 1
    • ALC_DVS.1: 5
    • ALC_FLR: 1
    • ALC_FLR.2: 19
    • ALC_LCD: 1
    • ALC_LCD.1: 6
    • ALC_TAT: 1
    • ALC_TAT.1: 7
  • ATE:
    • ATE_COV: 1
    • ATE_COV.2: 5
    • ATE_DPT: 1
    • ATE_DPT.1: 5
    • ATE_FUN: 1
    • ATE_FUN.1: 8
    • ATE_IND: 1
    • ATE_IND.2: 7
  • AVA:
    • AVA_VAN: 1
    • AVA_VAN.3: 7
  • ACM:
    • ACM_AUT: 1
    • ACM_AUT.1: 10
    • ACM_CAP: 1
    • ACM_CAP.3: 1
    • ACM_CAP.4: 21
    • ACM_SCP: 1
    • ACM_SCP.2: 6
  • ADO:
    • ADO_DEL: 1
    • ADO_DEL.2: 9
    • ADO_IGS: 1
    • ADO_IGS.1: 9
  • ADV:
    • ADV_FSP: 1
    • ADV_FSP.1: 8
    • ADV_FSP.2: 16
    • ADV_HLD: 1
    • ADV_HLD.1: 2
    • ADV_HLD.2: 18
    • ADV_IMP: 1
    • ADV_IMP.1: 10
    • ADV_LLD: 1
    • ADV_LLD.1: 20
    • ADV_RCR: 1
    • ADV_RCR.1: 12
    • ADV_SPM: 1
    • ADV_SPM.1: 10
  • AGD:
    • AGD_ADM: 1
    • AGD_ADM.1: 20
    • AGD_USR: 1
    • AGD_USR.1: 17
  • ALC:
    • ALC_DVS: 1
    • ALC_DVS.1: 9
    • ALC_FLR: 1
    • ALC_FLR.2: 30
    • ALC_LCD: 1
    • ALC_LCD.1: 8
    • ALC_TAT: 1
    • ALC_TAT.1: 11
  • ATE:
    • ATE_COV: 1
    • ATE_COV.2: 7
    • ATE_DPT: 1
    • ATE_DPT.1: 5
    • ATE_FUN: 1
    • ATE_FUN.1: 16
    • ATE_IND: 1
    • ATE_IND.2: 9
  • AVA:
    • AVA_MSU: 1
    • AVA_MSU.2: 14
    • AVA_SOF: 1
    • AVA_SOF.1: 8
    • AVA_VLA: 2
    • AVA_VLA.2: 13
pdf_data/st_keywords/cc_sfr
  • FDP:
    • FDP_ACC: 6
    • FDP_ACC.1: 3
    • FDP_ACC.2: 6
    • FDP_ACC.2.1: 1
    • FDP_ACC.2.2: 1
    • FDP_ACF: 4
    • FDP_ACF.1: 4
    • FDP_ACF.1.1: 1
    • FDP_ACF.1.2: 1
    • FDP_ACF.1.3: 1
    • FDP_ACF.1.4: 1
    • FDP_IFC: 4
    • FDP_IFC.1: 2
    • FDP_IFC.2: 6
    • FDP_IFC.2.1: 1
    • FDP_IFC.2.2: 1
    • FDP_IFF: 4
    • FDP_IFF.1: 4
    • FDP_IFF.1.1: 1
    • FDP_IFF.1.2: 1
    • FDP_IFF.1.3: 1
    • FDP_IFF.1.4: 1
    • FDP_IFF.1.5: 1
    • FDP_RIP: 3
    • FDP_RIP.1: 4
    • FDP_RIP.1.1: 1
  • FIA:
    • FIA_ATD: 3
    • FIA_ATD.1: 5
    • FIA_ATD.1.1: 1
    • FIA_USB: 3
    • FIA_USB.1: 4
    • FIA_USB.1.1: 1
    • FIA_USB.1.2: 1
    • FIA_USB.1.3: 1
  • FMT:
    • FMT_MSA: 8
    • FMT_MSA.1: 5
    • FMT_MSA.1.1: 1
    • FMT_MSA.3: 10
    • FMT_MSA.3.1: 1
    • FMT_MSA.3.2: 1
    • FMT_SMF.1: 5
    • FMT_SMR.1: 6
  • FPT:
    • FPT_FLS: 3
    • FPT_FLS.1: 4
    • FPT_FLS.1.1: 1
  • FDP:
    • FDP_ACC: 6
    • FDP_ACC.1: 3
    • FDP_ACC.2: 6
    • FDP_ACC.2.1: 1
    • FDP_ACC.2.2: 1
    • FDP_ACF: 4
    • FDP_ACF.1: 4
    • FDP_ACF.1.1: 1
    • FDP_ACF.1.2: 1
    • FDP_ACF.1.3: 1
    • FDP_ACF.1.4: 1
    • FDP_IFC: 4
    • FDP_IFC.1: 2
    • FDP_IFC.2: 6
    • FDP_IFC.2.1: 1
    • FDP_IFC.2.2: 1
    • FDP_IFF: 4
    • FDP_IFF.1: 4
    • FDP_IFF.1.1: 1
    • FDP_IFF.1.2: 1
    • FDP_IFF.1.3: 1
    • FDP_IFF.1.4: 1
    • FDP_IFF.1.5: 1
    • FDP_IFF.1.6: 1
    • FDP_RIP: 3
    • FDP_RIP.1: 4
    • FDP_RIP.1.1: 1
  • FIA:
    • FIA_ATD: 3
    • FIA_ATD.1: 5
    • FIA_ATD.1.1: 1
    • FIA_UAU: 3
    • FIA_UAU.2: 4
    • FIA_UAU.2.1: 1
    • FIA_UID: 3
    • FIA_UID.2: 4
    • FIA_UID.2.1: 1
    • FIA_USB: 3
    • FIA_USB.1: 4
    • FIA_USB.1.1: 1
    • FIA_USB.1.2: 1
    • FIA_USB.1.3: 1
  • FMT:
    • FMT_MSA: 8
    • FMT_MSA.1: 5
    • FMT_MSA.1.1: 1
    • FMT_MSA.3: 10
    • FMT_MSA.3.1: 1
    • FMT_MSA.3.2: 1
    • FMT_SMF.1: 5
    • FMT_SMR.1: 6
  • FPT:
    • FPT_FLS: 3
    • FPT_FLS.1: 4
    • FPT_FLS.1.1: 1
    • FPT_RVM: 5
    • FPT_RVM.1: 4
    • FPT_RVM.1.1: 1
    • FPT_SEP: 5
    • FPT_SEP.1: 4
    • FPT_SEP.1.1: 1
    • FPT_SEP.1.2: 1
pdf_data/st_metadata
  • /Author: Jim Arnold & Dave McDermitt
  • /Company: International Business Machines Corporation
  • /CreationDate: D:20130412111346-04'00'
  • /Creator: Acrobat PDFMaker 10.0 for Word
  • /Keywords:
  • /Manager: Julie Taylor
  • /ModDate: D:20130412111407-04'00'
  • /Producer: Adobe PDF Library 10.0
  • /SourceModified: D:20130412151122
  • /Subject: Security Target
  • /Title: Dynamic Logical Partition Architecture for Power5 Security Target
  • pdf_file_size_bytes: 207813
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 27
  • /Author: Jim Arnold & Dave McDermitt
  • /Company: International Business Machines Corporation
  • /CreationDate: D:20081210103011-05'00'
  • /Creator: Acrobat PDFMaker 8.1 for Word
  • /Manager: Julie Taylor
  • /ModDate: D:20081210103100-05'00'
  • /Producer: Acrobat Distiller 8.1.0 (Windows)
  • /SourceModified: D:20081209153150
  • /Subject: Security Target
  • /Title: Dynamic Logical Partition Architecture for Power Systems Security Target
  • pdf_file_size_bytes: 358307
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 35
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different