Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Cisco ASA 9.12 running on Firepower 4100 and 9300 Security Appliances
CCEVS-VR-11090-2020
CISCO ADAPTIVE SECURITY APPLIANCES (ASA) AND CISCO ADAPTIVE SECURITY APPLIANCES VIRTUAL (ASAV) Version: ASA 9.4(1.13), ASAv 9.4(1.240) ASDM 7.4Components: ASA 5500 Series (5506-X, 5506-H, 5506-W, 5508-X, 5516-X) and ASAv running on VM ESXi 5.1 and 5.5 on the Unified Computing System (UCS) EN120E, EN120S M2, E140S M1, E140S M2, E140D M1, E160D M2, E160D M1, E180D M2, E140DP M1, E160DP M1, C22 M3, C24 M3, C220 M3, C220 M4, C240 M3, C240 M4, C260 M2, C420 M3, C460 M2, and C460 M4
Certificate Number: 2016/102
name Cisco ASA 9.12 running on Firepower 4100 and 9300 Security Appliances CISCO ADAPTIVE SECURITY APPLIANCES (ASA) AND CISCO ADAPTIVE SECURITY APPLIANCES VIRTUAL (ASAV) Version: ASA 9.4(1.13), ASAv 9.4(1.240) ASDM 7.4Components: ASA 5500 Series (5506-X, 5506-H, 5506-W, 5508-X, 5516-X) and ASAv running on VM ESXi 5.1 and 5.5 on the Unified Computing System (UCS) EN120E, EN120S M2, E140S M1, E140S M2, E140D M1, E160D M2, E160D M1, E180D M2, E140DP M1, E160DP M1, C22 M3, C24 M3, C220 M3, C220 M4, C240 M3, C240 M4, C260 M2, C420 M3, C460 M2, and C460 M4
scheme US AU
not_valid_after 04.01.2023 10.11.2021
not_valid_before 04.01.2021 10.11.2016
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11091-ci.pdf
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11091-vr.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/2016_102_Cisco_ASA_ASAv_CRv1.0.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11091-st.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/2016_102_Cisco_ASA_ASAv_STv3.0.pdf
dgst ea8c74c8b4b6f2c3 0fc4a86821f53983
heuristics/cert_id CCEVS-VR-11090-2020 Certificate Number: 2016/102
heuristics/cert_lab US []
heuristics/cpe_matches {} cpe:2.3:a:cisco:unified_computing_system:5.5\(203\):*:*:*:*:*:*:*
heuristics/related_cves {} CVE-2018-0338
heuristics/extracted_versions 9.12 9.4, 1.240, 5.1, 1.13, 7.4, 5.5
heuristics/scheme_data
  • category: Firewall, Network Device, Virtual Private Network
  • certification_date: 04.01.2021
  • evaluation_facility: Gossamer Security Solutions
  • expiration_date: 04.01.2023
  • id: CCEVS-VR-VID11091
  • product: Cisco ASA 9.12 running on Firepower 4100 and 9300 Security Appliances
  • scheme: US
  • url: https://www.niap-ccevs.org/product/11091
  • vendor: Cisco Systems, Inc.
protection_profiles



pdf_data/cert_filename st_vid11091-ci.pdf
pdf_data/cert_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11091-2021: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
  • Cisco:
    • Cisco: 1
    • Cisco Systems, Inc: 1
pdf_data/cert_keywords/eval_facility
  • Gossamer:
    • Gossamer Security: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
  • VPN:
    • VPN: 1
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata
  • /CreationDate: D:20210105102611-05'00'
  • /ModDate: D:20210105102611-05'00'
  • /Producer: iText 2.1.0 (by lowagie.com)
  • pdf_file_size_bytes: 180473
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename st_vid11091-vr.pdf 2016_102_Cisco_ASA_ASAv_CRv1.0.pdf
pdf_data/report_frontpage
  • US:
    • cert_id: CCEVS-VR-11090-20201
    • cert_item: Cisco ASA 9.12 running on Firepower 4100 and 9300 Security Appliances
    • cert_lab: US NIAP
  • US:
pdf_data/report_keywords/cc_cert_id
  • AU:
    • Certification Report 2016/102: 1
  • FR:
    • Certification Report 2016/102: 1
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 1: 1
pdf_data/report_keywords/cc_claims
  • A:
    • A.CONNECTIONS: 1
    • A.NO_GENERAL_PURPOSE: 1
    • A.PHYSICAL: 1
    • A.TRUSTED_ADMIN: 1
pdf_data/report_keywords/vendor
  • Cisco:
    • Cisco: 22
    • Cisco Systems, Inc: 3
  • Microsoft:
    • Microsoft: 1
  • Cisco:
    • Cisco: 35
    • Cisco Systems: 9
pdf_data/report_keywords/eval_facility
  • Gossamer:
    • Gossamer Security: 5
pdf_data/report_keywords/hash_function
  • SHA:
    • SHA2:
      • SHA-512: 1
pdf_data/report_keywords/crypto_protocol
  • IPsec:
    • IPsec: 15
  • SSH:
    • SSH: 6
  • TLS:
    • TLS:
      • TLS: 5
  • VPN:
    • VPN: 20
  • IPsec:
    • IPsec: 16
  • SSH:
    • SSH: 5
  • TLS:
    • TLS:
      • TLS: 7
  • VPN:
    • VPN: 27
pdf_data/report_keywords/crypto_library
  • OpenSSL:
    • OpenSSL: 1
pdf_data/report_keywords/side_channel_analysis
  • SCA:
    • SPA: 1
pdf_data/report_metadata
  • /CreationDate: D:20210105090353-05'00'
  • /ModDate: D:20210105090353-05'00'
  • pdf_file_size_bytes: 560062
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 19
  • /Author: Terence.Caulfield
  • /CreationDate: D:20161116092825+11'00'
  • /Creator: PScript5.dll Version 5.2.2
  • /ModDate: D:20161125133121+11'00'
  • /Producer: Acrobat Distiller 9.0.0 (Windows)
  • /Title: Microsoft Word - EFC-T085 Cisco ASA and ASAv Certification Report v1.0.DOC
  • pdf_file_size_bytes: 71070
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 24
pdf_data/st_filename st_vid11091-st.pdf 2016_102_Cisco_ASA_ASAv_STv3.0.pdf
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_FSP.1: 2
  • AGD:
    • AGD_OPE.1: 2
    • AGD_PRE.1: 2
  • ALC:
    • ALC_CMC.1: 2
    • ALC_CMS.1: 2
  • ATE:
    • ATE_IND.1: 2
  • AVA:
    • AVA_VAN: 1
    • AVA_VAN.1: 4
  • ADV:
    • ADV_FSP.1: 2
  • AGD:
    • AGD_OPE.1: 2
    • AGD_PRE.1: 2
  • ALC:
    • ALC_CMC.1: 2
    • ALC_CMS.1: 1
  • ATE:
    • ATE_IND.1: 2
  • AVA:
    • AVA_VAN.1: 3
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_GEN.1: 8
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 1
    • FAU_GEN.2: 4
    • FAU_GEN.2.1: 1
    • FAU_STG_EXT.1: 4
    • FAU_STG_EXT.1.1: 1
    • FAU_STG_EXT.1.2: 1
    • FAU_STG_EXT.1.3: 1
  • FCS:
    • FCS_CKM: 4
    • FCS_CKM.1: 11
    • FCS_CKM.1.1: 1
    • FCS_CKM.2: 10
    • FCS_CKM.2.1: 1
    • FCS_CKM.4: 5
    • FCS_CKM.4.1: 1
    • FCS_COP: 24
    • FCS_COP.1: 4
    • FCS_NTP_EXT.1: 4
    • FCS_NTP_EXT.1.1: 1
    • FCS_NTP_EXT.1.2: 1
    • FCS_NTP_EXT.1.3: 1
    • FCS_NTP_EXT.1.4: 3
    • FCS_RBG_EXT.1: 7
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 2
    • FCS_SSHC_EXT.1: 2
    • FCS_SSHC_EXT.1.5: 1
    • FCS_SSHS_EXT.1: 8
    • FCS_SSHS_EXT.1.1: 2
    • FCS_SSHS_EXT.1.2: 1
    • FCS_SSHS_EXT.1.3: 1
    • FCS_SSHS_EXT.1.4: 1
    • FCS_SSHS_EXT.1.5: 4
    • FCS_SSHS_EXT.1.6: 1
    • FCS_SSHS_EXT.1.7: 2
    • FCS_SSHS_EXT.1.8: 1
    • FCS_TLSC_EXT.1.1: 3
    • FCS_TLSC_EXT.2: 7
    • FCS_TLSC_EXT.2.1: 2
    • FCS_TLSC_EXT.2.2: 1
    • FCS_TLSC_EXT.2.3: 1
    • FCS_TLSC_EXT.2.4: 1
    • FCS_TLSC_EXT.2.5: 1
    • FCS_TLSS_EXT: 1
    • FCS_TLSS_EXT.1: 6
    • FCS_TLSS_EXT.1.1: 2
    • FCS_TLSS_EXT.1.2: 1
    • FCS_TLSS_EXT.1.3: 1
    • FCS_TLSS_EXT.2: 1
  • FDP:
    • FDP_RIP.2: 4
    • FDP_RIP.2.1: 1
  • FIA:
    • FIA_AFL.1: 7
    • FIA_AFL.1.1: 2
    • FIA_AFL.1.2: 2
    • FIA_PMG_EXT.1: 4
    • FIA_PMG_EXT.1.1: 1
    • FIA_PSK_EXT.1: 4
    • FIA_PSK_EXT.1.1: 1
    • FIA_PSK_EXT.1.2: 1
    • FIA_PSK_EXT.1.3: 1
    • FIA_PSK_EXT.1.4: 1
    • FIA_UAU.7: 4
    • FIA_UAU.7.1: 1
    • FIA_UAU_EXT.2: 4
    • FIA_UAU_EXT.2.1: 2
    • FIA_UIA_EXT.1: 4
    • FIA_UIA_EXT.1.1: 1
    • FIA_UIA_EXT.1.2: 1
  • FMT:
    • FMT_MOF: 8
    • FMT_MOF.1: 2
    • FMT_MTD: 8
    • FMT_MTD.1: 2
    • FMT_SMF: 4
    • FMT_SMF.1: 6
    • FMT_SMF.1.1: 1
    • FMT_SMR.2: 4
    • FMT_SMR.2.1: 1
    • FMT_SMR.2.2: 1
    • FMT_SMR.2.3: 1
  • FPT:
    • FPT_APW_EXT.1: 6
    • FPT_APW_EXT.1.1: 1
    • FPT_APW_EXT.1.2: 1
    • FPT_FLS: 5
    • FPT_FLS.1: 1
    • FPT_ITT: 1
    • FPT_SKP_EXT.1: 4
    • FPT_SKP_EXT.1.1: 1
    • FPT_STM_EXT.1: 5
    • FPT_STM_EXT.1.1: 1
    • FPT_STM_EXT.1.2: 1
    • FPT_TST_EXT: 1
    • FPT_TST_EXT.1: 4
    • FPT_TST_EXT.1.1: 1
    • FPT_TST_EXT.3: 4
    • FPT_TST_EXT.3.1: 1
    • FPT_TST_EXT.3.2: 1
    • FPT_TUD_EXT.1: 7
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 2
  • FTA:
    • FTA_SSL: 3
    • FTA_SSL.3: 9
    • FTA_SSL.3.1: 1
    • FTA_SSL.4: 3
    • FTA_SSL.4.1: 1
    • FTA_SSL_EXT: 1
    • FTA_SSL_EXT.1: 6
    • FTA_SSL_EXT.1.1: 1
    • FTA_TAB.1: 5
    • FTA_TAB.1.1: 1
    • FTA_TSE.1: 4
    • FTA_TSE.1.1: 1
    • FTA_VCM_EXT.1: 4
    • FTA_VCM_EXT.1.1: 1
  • FTP:
    • FTP_ITC: 4
    • FTP_ITC.1: 13
    • FTP_ITC.1.1: 1
    • FTP_ITC.1.2: 1
    • FTP_ITC.1.3: 1
    • FTP_TRP: 5
    • FTP_TRP.1: 3
    • FTP_TUD.1: 1
  • FAU:
    • FAU_GEN.1: 7
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 1
    • FAU_GEN.2: 6
    • FAU_GEN.2.1: 1
    • FAU_SAR.1: 1
    • FAU_STG.1: 1
    • FAU_STG_EXT.1: 6
    • FAU_STG_EXT.1.1: 1
  • FCS:
    • FCS_CKM.1: 12
    • FCS_CKM.1.1: 2
    • FCS_CKM_EXT.4: 7
    • FCS_CKM_EXT.4.1: 1
    • FCS_COP.1: 28
    • FCS_COP.1.1: 4
    • FCS_IKE_EXT.1: 1
    • FCS_RBG_EXT.1: 8
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 1
    • FCS_SSH_EXT.1: 6
    • FCS_SSH_EXT.1.1: 1
    • FCS_SSH_EXT.1.2: 1
    • FCS_SSH_EXT.1.3: 1
    • FCS_SSH_EXT.1.4: 1
    • FCS_SSH_EXT.1.5: 1
    • FCS_SSH_EXT.1.6: 1
    • FCS_SSH_EXT.1.7: 1
    • FCS_TLS_EXT.1: 7
    • FCS_TLS_EXT.1.1: 1
  • FDP:
    • FDP_RIP.2: 6
    • FDP_RIP.2.1: 1
  • FIA:
    • FIA_AFL.1: 5
    • FIA_AFL.1.1: 1
    • FIA_AFL.1.2: 1
    • FIA_PMG_EXT.1: 6
    • FIA_PMG_EXT.1.1: 1
    • FIA_PSK_EXT.1: 4
    • FIA_PSK_EXT.1.1: 1
    • FIA_PSK_EXT.1.2: 1
    • FIA_PSK_EXT.1.3: 1
    • FIA_PSK_EXT.1.4: 1
    • FIA_UAU.6: 1
    • FIA_UAU.7: 6
    • FIA_UAU.7.1: 1
    • FIA_UAU_EXT.2: 5
    • FIA_UAU_EXT.2.1: 1
    • FIA_UAU_EXT.5: 1
    • FIA_UIA_EXT.1: 6
    • FIA_UIA_EXT.1.1: 1
    • FIA_UIA_EXT.1.2: 1
  • FMT:
    • FMT_MOF.1: 5
    • FMT_MOF.1.1: 1
    • FMT_MSA.2: 1
    • FMT_MSA.3: 1
    • FMT_MTD.1: 6
    • FMT_MTD.1.1: 1
    • FMT_SFR.1: 1
    • FMT_SMF.1: 7
    • FMT_SMF.1.1: 1
    • FMT_SMR.2: 5
    • FMT_SMR.2.1: 1
    • FMT_SMR.2.2: 1
    • FMT_SMR.2.3: 1
  • FPT:
    • FPT_APW_EXT.1: 5
    • FPT_APW_EXT.1.1: 1
    • FPT_APW_EXT.1.2: 1
    • FPT_FLS.1: 6
    • FPT_FLS.1.1: 1
    • FPT_ITT.1: 4
    • FPT_ITT.1.1: 1
    • FPT_PTD_EXT.1: 2
    • FPT_RPL.1: 1
    • FPT_SKP_EXT.1: 5
    • FPT_SKP_EXT.1.1: 1
    • FPT_STM.1: 6
    • FPT_STM.1.1: 1
    • FPT_TST_EXT: 1
    • FPT_TST_EXT.1: 5
    • FPT_TST_EXT.1.1: 1
    • FPT_TST_EXT.1.2: 1
    • FPT_TUD_EXT.1: 6
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 1
  • FRU:
    • FRU_RSA.1: 1
  • FTA:
    • FTA_SSL.3: 11
    • FTA_SSL.3.1: 2
    • FTA_SSL.4: 6
    • FTA_SSL.4.1: 1
    • FTA_SSL_EXT: 1
    • FTA_SSL_EXT.1: 7
    • FTA_SSL_EXT.1.1: 1
    • FTA_TAB.1: 7
    • FTA_TAB.1.1: 1
    • FTA_TSE.1: 5
    • FTA_TSE.1.1: 1
    • FTA_VCM_EXT.1: 5
    • FTA_VCM_EXT.1.1: 1
  • FTP:
    • FTP_ITC.1: 7
    • FTP_ITC.1.1: 1
    • FTP_ITC.1.2: 1
    • FTP_TRP.1: 6
    • FTP_TRP.1.1: 1
    • FTP_TRP.1.2: 1
    • FTP_TRP.1.3: 1
pdf_data/st_keywords/cc_claims
  • A:
    • A.ADMIN_CREDENTIALS_: 1
    • A.CONNECTIONS: 2
    • A.LIMITED_FUNCTIONALITY: 1
    • A.NO_THRU_TRAFFIC_PROTECTION: 1
    • A.PHYSICAL_PROTECTION: 1
    • A.REGULAR_UPDATES: 1
    • A.RESIDUAL_INFORMATION: 1
    • A.TRUSTED_ADMINSTRATOR: 1
  • O:
    • O.ADDRESS_FILTERING: 1
    • O.AUTHENTICATION: 1
    • O.CRYPTOGRAPHIC_FUNCTIONS: 1
    • O.FAIL_SECURE: 1
    • O.PORT_FILTERING: 1
    • O.RESIDUAL_INFORMATION: 1
    • O.STATEFUL_TRAFFIC_FILTERING: 1
    • O.SYSTEM_MONITORING: 1
    • O.TOE_ADMINISTRATION: 1
  • OE:
    • OE.ADMIN_CREDENTIALS_: 1
    • OE.CONNECTIONS: 1
    • OE.NO_GENERAL_PURPOSE: 1
    • OE.NO_THRU_TRAFFIC_PROTECTION: 1
    • OE.PHYSICAL: 1
    • OE.RESIDUAL_INFORMATION: 1
    • OE.TRUSTED_ADMIN: 1
    • OE.UPDATES: 1
  • T:
    • T.DATA_INTEGRITY: 1
    • T.MALICIOUS_TRAFFIC: 1
    • T.NETWORK_ACCESS: 1
    • T.NETWORK_DISCLOSURE: 2
    • T.NETWORK_MISUSE: 2
    • T.PASSWORD_CRACKING: 1
    • T.REPLAY_ATTACK: 1
    • T.SECURITY_FUNCTIONALITY_: 2
    • T.UNAUTHORIZED_: 1
    • T.UNDETECTED_ACTIVITY: 1
    • T.UNTRUSTED_COMMUNICATIONS: 1
    • T.UPDATE_COMPROMISE: 1
    • T.WEAK_AUTHENTICATION_: 1
    • T.WEAK_CRYPTOGRAPHY: 1
  • A:
    • A.CONNECTIONS: 1
    • A.NO_GENERAL_PURPOSE: 4
    • A.PHYSICAL: 2
    • A.TRUSTED_ADMIN: 4
  • O:
    • O.ADDRESS_: 1
    • O.ADDRESS_FILTERING: 5
    • O.ASSIGNED_PRIV: 1
    • O.ASSIGNED_PRIVATE_ADDR: 2
    • O.ASSIGNED_PRIVATE_ADDRESS: 1
    • O.AUTHENTICATIO: 1
    • O.AUTHENTICATION: 5
    • O.CLIENT_ESTABLI: 1
    • O.CLIENT_ESTABLISHMENT_: 2
    • O.CLIENT_ESTABLISHMENT_CONSTRAINTS: 1
    • O.CRYPTOGRAPHI: 1
    • O.CRYPTOGRAPHIC_FUNCTI: 1
    • O.CRYPTOGRAPHIC_FUNCTIO: 1
    • O.CRYPTOGRAPHIC_FUNCTIONS: 1
    • O.DISPLAY_: 1
    • O.DISPLAY_BANNER: 3
    • O.FAIL_SECURE: 6
    • O.PORT_FILTERING: 4
    • O.PROTECTED_: 1
    • O.PROTECTED_COMMUNICA: 1
    • O.PROTECTED_COMMUNICAT: 1
    • O.PROTECTED_COMMUNICATIONS: 3
    • O.RELATED_: 1
    • O.RELATED_CONNECTION_FI: 2
    • O.RELATED_CONNECTION_FILTERING: 3
    • O.REMOTE_SESSIO: 1
    • O.REMOTE_SESSION_TERMIN: 2
    • O.REMOTE_SESSION_TERMINATION: 3
    • O.RESIDUAL_: 1
    • O.RESIDUAL_INFORMATION_: 2
    • O.RESIDUAL_INFORMATION_CLEARING: 1
    • O.RESOURCE_AVAILABILITY: 1
    • O.SESSION_LOCK: 6
    • O.STATEFUL_: 1
    • O.STATEFUL_INSPECTION: 3
    • O.SYSTEM_: 1
    • O.SYSTEM_MONITORING: 5
    • O.TOE_: 1
    • O.TOE_ADMINISTRATION: 5
    • O.TSF_SELF_TEST: 4
    • O.VERIFIABLE_: 1
    • O.VERIFIABLE_UPDATES: 3
  • OE:
    • OE.CONNECTIONS: 2
    • OE.NO_GENERAL_: 1
    • OE.NO_GENERAL_PURPOSE: 2
    • OE.PHYSICAL: 3
    • OE.TRUSTED_: 1
    • OE.TRUSTED_ADMIN: 2
  • T:
    • T.ADMIN_ERROR: 4
    • T.DATA_INTEGRITY: 2
    • T.HIJACKED_SESSION: 2
    • T.NETWORK_ACCESS: 1
    • T.NETWORK_DISCLOSURE: 6
    • T.NETWORK_DOS: 4
    • T.NETWORK_MISUSE: 5
    • T.REPLAY_ATTACK: 4
    • T.TRANSMIT: 1
    • T.TSF_FAILURE: 3
    • T.UNAUTHORIZED_ACCESS: 4
    • T.UNAUTHORIZED_CONNECTI: 2
    • T.UNAUTHORIZED_CONNECTION: 1
    • T.UNAUTHORIZED_CONNECTIONS: 1
    • T.UNAUTHORIZED_UPDATE: 2
    • T.UNDETECTED_ACTIONS: 2
    • T.UNPROTECTED_TRAFFIC: 4
    • T.USER_DATA_REUSE: 4
pdf_data/st_keywords/vendor
  • Cisco:
    • Cisco: 23
    • Cisco Systems, Inc: 2
  • Microsoft:
    • Microsoft: 1
  • Cisco:
    • Cisco: 20
    • Cisco Systems, Inc: 10
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 12
      • AES-: 1
      • AES-256: 1
  • constructions:
    • MAC:
      • HMAC: 5
      • HMAC-SHA-256: 6
      • HMAC-SHA-384: 6
      • HMAC-SHA-512: 4
  • miscellaneous:
    • Skinny:
      • Skinny: 2
  • AES_competition:
    • AES:
      • AES: 11
  • constructions:
    • MAC:
      • HMAC: 4
      • HMAC-SHA-256: 1
      • HMAC-SHA-384: 1
  • miscellaneous:
    • SEED:
      • SEED: 1
    • Skinny:
      • Skinny: 2
pdf_data/st_keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 5
    • ECDH:
      • ECDHE: 1
    • ECDSA:
      • ECDSA: 20
  • FF:
    • DH:
      • DH: 11
      • DHE: 1
      • Diffie-Hellman: 5
    • DSA:
      • DSA: 1
  • RSA:
    • RSA-2048: 1
  • ECC:
    • ECC:
      • ECC: 19
    • ECDSA:
      • ECDSA: 17
  • FF:
    • DH:
      • DH: 12
      • Diffie-Hellman: 3
  • RSA:
    • RSA-2048: 1
    • RSA-OAEP: 3
pdf_data/st_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 9
    • SHA2:
      • SHA-256: 4
      • SHA-384: 3
      • SHA-512: 8
  • PBKDF:
    • PBKDF2: 1
  • SHA:
    • SHA1:
      • SHA-1: 3
    • SHA2:
      • SHA-256: 4
      • SHA-384: 2
      • SHA-512: 7
      • SHA256: 6
pdf_data/st_keywords/crypto_scheme
  • KEX:
    • Key Exchange: 3
  • MAC:
    • MAC: 3
  • KA:
    • Key Agreement: 7
  • KEX:
    • Key Exchange: 2
  • MAC:
    • MAC: 3
pdf_data/st_keywords/crypto_protocol
  • IKE:
    • IKE: 40
    • IKEv2: 19
  • IPsec:
    • IPsec: 102
  • SSH:
    • SSH: 49
  • TLS:
    • SSL:
      • SSL: 4
      • SSL 2.0: 1
      • SSL 3.0: 1
    • TLS:
      • TLS: 48
      • TLS 1.0: 1
      • TLS 1.1: 2
      • TLS 1.2: 2
      • TLS v1.2: 5
      • TLS1.1: 1
      • TLS1.2: 1
      • TLSv1.1: 3
      • TLSv1.2: 3
  • VPN:
    • VPN: 152
  • IKE:
    • IKE: 33
    • IKEv1: 1
    • IKEv2: 13
  • IPsec:
    • IPsec: 76
  • SSH:
    • SSH: 31
  • TLS:
    • TLS:
      • TLS: 22
      • TLS 1.0: 1
      • TLS 1.2: 1
      • TLS v1.0: 1
      • TLSv1.2: 1
  • VPN:
    • VPN: 77
pdf_data/st_keywords/randomness
  • PRNG:
    • DRBG: 4
  • RNG:
    • RBG: 1
  • PRNG:
    • DRBG: 2
  • RNG:
    • RBG: 2
pdf_data/st_keywords/cipher_mode
  • CBC:
    • CBC: 4
  • GCM:
    • GCM: 5
  • CBC:
    • CBC: 3
  • GCM:
    • GCM: 3
pdf_data/st_keywords/ecc_curve
  • NIST:
    • P-256: 14
    • P-348: 2
    • P-384: 8
    • P-521: 14
    • secp256r1: 4
    • secp384r1: 3
    • secp521r1: 4
  • NIST:
    • P-256: 4
    • P-384: 4
pdf_data/st_keywords/tls_cipher_suite
  • TLS:
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 4
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 4
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 4
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 4
    • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
    • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 3
    • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1
    • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 1
  • TLS:
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 1
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 2
    • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 2
    • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 1
    • TLS_RSA_WITH_AES_128_CBC_SHA: 2
    • TLS_RSA_WITH_AES_128_CBC_SHA256: 1
    • TLS_RSA_WITH_AES_256_CBC_SHA: 2
pdf_data/st_keywords/standard_id
  • CC:
    • CCMB-2012-009-001: 1
    • CCMB-2012-009-004: 1
  • FIPS:
    • FIPS 140-2: 3
    • FIPS PUB 140-2: 1
    • FIPS PUB 180-4: 2
    • FIPS PUB 186-3: 1
    • FIPS PUB 186-4: 10
    • FIPS PUB 198-1: 1
  • ISO:
    • ISO/IEC 14888-3: 1
    • ISO/IEC 18031:2011: 2
    • ISO/IEC 9796-2: 1
  • NIST:
    • NIST SP 800-38A: 1
    • NIST SP 800-56A: 1
    • NIST SP 800-90: 2
  • PKCS:
    • PKCS #1: 1
  • RFC:
    • RFC 1305: 1
    • RFC 2460: 4
    • RFC 2818: 1
    • RFC 2986: 1
    • RFC 3268: 4
    • RFC 3513: 2
    • RFC 3526: 3
    • RFC 3602: 2
    • RFC 4106: 1
    • RFC 4253: 1
    • RFC 4301: 1
    • RFC 4303: 2
    • RFC 4346: 3
    • RFC 4443: 2
    • RFC 4868: 1
    • RFC 4945: 1
    • RFC 5246: 7
    • RFC 5280: 4
    • RFC 5282: 1
    • RFC 5289: 4
    • RFC 5735: 2
    • RFC 5759: 1
    • RFC 5996: 2
    • RFC 6125: 2
    • RFC 6960: 1
    • RFC 768: 4
    • RFC 791: 4
    • RFC 792: 2
    • RFC 793: 4
  • X509:
    • X.509: 6
  • CC:
    • CCMB-2012-009-001: 1
    • CCMB-2012-009-004: 1
  • FIPS:
    • FIPS 140-2: 3
    • FIPS 186-3: 1
    • FIPS PUB 140-2: 1
    • FIPS PUB 180-3: 2
    • FIPS PUB 180-4: 2
    • FIPS PUB 186-2: 3
    • FIPS PUB 186-3: 10
    • FIPS PUB 186-4: 1
    • FIPS PUB 197: 1
    • FIPS PUB 198-1: 1
  • NIST:
    • NIST SP 800-38A: 2
    • NIST SP 800-38D: 1
    • NIST SP 800-56A: 3
    • NIST SP 800-56B: 2
    • SP 800-90: 1
  • RFC:
    • RFC 2246: 1
    • RFC 2460: 5
    • RFC 2560: 1
    • RFC 2818: 1
    • RFC 2986: 1
    • RFC 3513: 2
    • RFC 3602: 1
    • RFC 4253: 1
    • RFC 4301: 1
    • RFC 4303: 2
    • RFC 4443: 3
    • RFC 4945: 1
    • RFC 5246: 1
    • RFC 5280: 2
    • RFC 5282: 1
    • RFC 5735: 2
    • RFC 5759: 1
    • RFC 6379: 1
    • RFC 768: 5
    • RFC 791: 5
    • RFC 792: 3
    • RFC 793: 5
    • RFC 959: 1
  • X509:
    • X.509: 2
pdf_data/st_keywords/certification_process
  • OutOfScope:
    • ECDSA-based, DH-based, and RSA-based schemes. The RSA-based implementation is vendor affirmation (out of scope) and the KAS ECC and FFC + CVL algorithms testing is provided below. Scheme SFR Services RSA: 1
    • out of scope: 1
pdf_data/st_metadata
  • /Author: Terence.Caulfield
  • /CreationDate: D:20161110125039+11'00'
  • /Creator: PScript5.dll Version 5.2.2
  • /ModDate: D:20161125133048+11'00'
  • /Producer: Acrobat Distiller 9.0.0 (Windows)
  • /Title: Microsoft Word - Cisco_ASA+ASAv_9.4.x_Security_Target _version 3.0_.docx
  • pdf_file_size_bytes: 693295
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 115
state/cert/convert_garbage True False
state/cert/convert_ok True False
state/cert/download_ok True False
state/cert/extract_ok True False
state/cert/pdf_hash Different Different
state/cert/txt_hash Different Different
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different