Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Cisco Adaptive Security Appliances Version: ASA software version 9.1(2) Components: ASA 5500 (5505, 5510, 5520, 5540, 5550, 5580-20-40), ASA 5500-X Series (5512-X, 5515-X, 5525-X, 5545-X, 5555-X), ASA 5585-X (5585-10, 5585-20, 5585-40, 5585-60), ASA Services Module (ASA-SM)
Certificate Number: 2013/86
Cisco Adaptive Security Appliances (ASA) 9.12 running on Firepower 2100 Series Appliances
CCEVS-VR-11090-2020
name Cisco Adaptive Security Appliances Version: ASA software version 9.1(2) Components: ASA 5500 (5505, 5510, 5520, 5540, 5550, 5580-20-40), ASA 5500-X Series (5512-X, 5515-X, 5525-X, 5545-X, 5555-X), ASA 5585-X (5585-10, 5585-20, 5585-40, 5585-60), ASA Services Module (ASA-SM) Cisco Adaptive Security Appliances (ASA) 9.12 running on Firepower 2100 Series Appliances
scheme AU US
not_valid_after 01.09.2019 09.12.2022
not_valid_before 05.09.2013 09.12.2020
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11090-ci.pdf
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ASA_CR.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11090-vr.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ASA_ST.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11090-st.pdf
dgst f79f5a3bdb302ec0 85a9fbc9b8fbaf22
heuristics/cert_id Certificate Number: 2013/86 CCEVS-VR-11090-2020
heuristics/cert_lab [] US
heuristics/cpe_matches cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)21:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(5\):*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5.15:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(3\):*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5.21:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(1.7\):*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)9:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.6.10:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.4:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(2\):*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.6:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)29:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.6.6:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.6.8:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)4:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.7.23:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3.2:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2.8:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)12:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)13:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5.12:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(6.11\):*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.7.4:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.7.13:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1.4:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5.10:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)19:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.6.4:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)16:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.4.5:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)7:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)6:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)25:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)23:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)20:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)11:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(1\):*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.6.1:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7.245\):*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1\(7\)15:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.7.15:*:*:*:*:*:*:*, cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5:*:*:*:*:*:*:* {}
heuristics/related_cves CVE-2017-3807, CVE-2013-5510, CVE-2016-6432, CVE-2017-3793, CVE-2014-2126, CVE-2013-5560, CVE-2015-6326, CVE-2020-3580, CVE-2016-1379, CVE-2020-3581, CVE-2013-5512, CVE-2022-20760, CVE-2013-5509, CVE-2022-20742, CVE-2016-6461, CVE-2017-6609, CVE-2013-5507, CVE-2015-0677, CVE-2022-20759, CVE-2014-2128, CVE-2022-20737, CVE-2013-5542, CVE-2014-0739, CVE-2014-3392, CVE-2017-6770, CVE-2013-5511, CVE-2022-20715, CVE-2013-5515, CVE-2015-6360, CVE-2017-6765, CVE-2015-6325, CVE-2017-6608, CVE-2016-6424, CVE-2016-1287, CVE-2020-3578, CVE-2017-6610, CVE-2013-5508, CVE-2015-6327, CVE-2014-3393, CVE-2016-6431, CVE-2015-4458, CVE-2015-6324, CVE-2014-2127, CVE-2015-0676, CVE-2020-3582, CVE-2022-20745, CVE-2014-2129, CVE-2013-5513, CVE-2015-0675, CVE-2017-6607 {}
heuristics/extracted_versions 9.1 9.12
heuristics/scheme_data
  • category: Firewall, Network Device, Virtual Private Network
  • certification_date: 09.12.2020
  • evaluation_facility: Gossamer Security Solutions
  • expiration_date: 09.12.2022
  • id: CCEVS-VR-VID11090
  • product: Cisco Adaptive Security Appliances (ASA) 9.12 running on Firepower 2100 Series Appliances
  • scheme: US
  • url: https://www.niap-ccevs.org/product/11090
  • vendor: Cisco Systems, Inc.
maintenance_updates
protection_profiles


pdf_data/cert_filename st_vid11090-ci.pdf
pdf_data/cert_keywords/cc_cert_id
  • US:
    • CCEVS-VR-VID11090-2020: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
  • Cisco:
    • Cisco: 1
    • Cisco Systems, Inc: 1
pdf_data/cert_keywords/eval_facility
  • Gossamer:
    • Gossamer Security: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
  • VPN:
    • VPN: 1
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata
  • /CreationDate: D:20201210153910-05'00'
  • /ModDate: D:20201210153910-05'00'
  • /Producer: iText 2.1.0 (by lowagie.com)
  • pdf_file_size_bytes: 180344
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename ASA_CR.pdf st_vid11090-vr.pdf
pdf_data/report_frontpage
  • US:
  • US:
    • cert_id: CCEVS-VR-11090-2020
    • cert_item: Cisco Adaptive Security Appliances (ASA) 9.12 running on Firepower 2100 Series Appliances
    • cert_lab: US NIAP
pdf_data/report_keywords/cc_cert_id
  • AU:
    • Certification Report 2013/86: 1
  • FR:
    • Certification Report 2013/86: 1
  • US:
    • CCEVS-VR-11090-2020: 1
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 1: 1
pdf_data/report_keywords/cc_sfr
  • FAU:
    • FAU_GEN.1: 6
  • FCS:
    • FCS_SSH_EXT.1.2: 2
    • FCS_SSH_EXT.1.3: 1
    • FCS_SSH_EXT.1.4: 1
    • FCS_SSH_EXT.1.7: 1
    • FCS_TLS_EXT.1: 1
  • FIA:
    • FIA_PMG: 1
    • FIA_UIA_EXT.1: 1
  • FPT:
    • FPT_ITC.1: 1
    • FPT_STM: 1
    • FPT_TUD_EXT.1: 1
  • FTA:
    • FTA_SSL.4: 1
    • FTA_SSL_EXT.1: 1
    • FTA_TAB.1: 1
  • FTP:
    • FTP_TRP.1: 1
pdf_data/report_keywords/cc_claims
  • A:
    • A.CONNECTIONS: 1
    • A.NO_GENERAL_PURPOSE: 1
    • A.PHYSICAL: 1
    • A.TRUSTED_ADMIN: 1
pdf_data/report_keywords/vendor
  • Cisco:
    • Cisco: 57
    • Cisco Systems: 2
  • Cisco:
    • Cisco: 25
    • Cisco Systems, Inc: 3
  • Microsoft:
    • Microsoft: 1
pdf_data/report_keywords/eval_facility
  • Gossamer:
    • Gossamer Security: 5
pdf_data/report_keywords/crypto_protocol
  • IPsec:
    • IPsec: 7
  • SSH:
    • SSH: 4
  • TLS:
    • SSL:
      • SSL: 1
    • TLS:
      • TLS: 11
  • VPN:
    • VPN: 5
  • IKE:
    • IKE: 1
  • IPsec:
    • IPsec: 14
  • SSH:
    • SSH: 5
  • TLS:
    • TLS:
      • TLS: 7
  • VPN:
    • VPN: 24
pdf_data/report_keywords/standard_id
  • CC:
    • CCIMB-2012-09-004: 1
    • CCMB-2012-09-00: 1
    • CCMB-2012-09-001: 1
    • CCMB-2012-09-003: 1
    • CCMB-2012-09-004: 1
pdf_data/report_metadata
  • /Author: ACA
  • /Company: Department of Defence
  • /CreationDate: D:20130905151709+10'00'
  • /Creator: Acrobat PDFMaker 9.0 for Word
  • /ModDate: D:20130905151729+10'00'
  • /Producer: Acrobat Distiller 9.0.0 (Windows)
  • /SourceModified: D:20130905050059
  • /Title:
  • pdf_file_size_bytes: 76300
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 20
  • /CreationDate: D:20201210145924-05'00'
  • /ModDate: D:20201210153312-05'00'
  • pdf_file_size_bytes: 914472
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 18
pdf_data/st_filename ASA_ST.pdf st_vid11090-st.pdf
pdf_data/st_keywords/cc_security_level
  • EAL:
    • EAL1+: 1
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_FSP.1: 2
  • AGD:
    • AGD_OPE.1: 2
    • AGD_PRE.1: 2
  • ALC:
    • ALC_CMC.1: 2
    • ALC_CMS.1: 2
  • ATE:
    • ATE_IND.1: 2
  • AVA:
    • AVA_VAN.1: 3
  • ADV:
    • ADV_FSP.1: 2
  • AGD:
    • AGD_OPE.1: 2
    • AGD_PRE.1: 2
  • ALC:
    • ALC_CMC.1: 2
    • ALC_CMS.1: 2
  • ATE:
    • ATE_IND.1: 2
  • AVA:
    • AVA_VAN: 1
    • AVA_VAN.1: 4
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_GEN.1: 6
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 1
    • FAU_GEN.2: 6
    • FAU_GEN.2.1: 1
    • FAU_SAR.1: 1
    • FAU_STG.1: 1
    • FAU_STG_EXT.1: 6
    • FAU_STG_EXT.1.1: 1
  • FCS:
    • FCS_CKM.1: 6
    • FCS_CKM.1.1: 1
    • FCS_CKM_EXT.4: 7
    • FCS_CKM_EXT.4.1: 1
    • FCS_COP.1: 23
    • FCS_COP.1.1: 4
    • FCS_IKE_EXT.1: 1
    • FCS_RBG_EXT.1: 6
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 1
    • FCS_SSH_EXT.1: 6
    • FCS_SSH_EXT.1.1: 1
    • FCS_SSH_EXT.1.2: 1
    • FCS_SSH_EXT.1.3: 1
    • FCS_SSH_EXT.1.4: 1
    • FCS_SSH_EXT.1.5: 1
    • FCS_SSH_EXT.1.6: 1
    • FCS_SSH_EXT.1.7: 1
    • FCS_TLS_EXT.1: 7
    • FCS_TLS_EXT.1.1: 1
  • FDP:
    • FDP_RIP.2: 6
    • FDP_RIP.2.1: 1
  • FIA:
    • FIA_PMG_EXT.1: 6
    • FIA_PMG_EXT.1.1: 1
    • FIA_UAU.6: 1
    • FIA_UAU.7: 6
    • FIA_UAU.7.1: 1
    • FIA_UAU_EXT.2: 5
    • FIA_UAU_EXT.2.1: 1
    • FIA_UAU_EXT.5: 1
    • FIA_UIA_EXT.1: 6
    • FIA_UIA_EXT.1.1: 1
    • FIA_UIA_EXT.1.2: 1
  • FMT:
    • FMT_MOF.1: 1
    • FMT_MSA.2: 1
    • FMT_MSA.3: 1
    • FMT_MTD.1: 6
    • FMT_MTD.1.1: 1
    • FMT_SFR.1: 1
    • FMT_SMF.1: 7
    • FMT_SMF.1.1: 1
    • FMT_SMR.2: 5
    • FMT_SMR.2.1: 1
    • FMT_SMR.2.2: 1
    • FMT_SMR.2.3: 1
  • FPT:
    • FPT_APW_EXT.1: 5
    • FPT_APW_EXT.1.1: 1
    • FPT_APW_EXT.1.2: 1
    • FPT_ITT.1: 3
    • FPT_ITT.1.1: 1
    • FPT_PTD_EXT.1: 2
    • FPT_RPL.1: 1
    • FPT_SKP_EXT.1: 5
    • FPT_SKP_EXT.1.1: 1
    • FPT_STM.1: 6
    • FPT_STM.1.1: 1
    • FPT_TST_EXT: 1
    • FPT_TST_EXT.1: 5
    • FPT_TST_EXT.1.1: 1
    • FPT_TUD_EXT.1: 7
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 1
  • FRU:
    • FRU_RSA.1: 1
  • FTA:
    • FTA_SSL.3: 7
    • FTA_SSL.3.1: 1
    • FTA_SSL.4: 5
    • FTA_SSL.4.1: 1
    • FTA_SSL_EXT: 1
    • FTA_SSL_EXT.1: 7
    • FTA_SSL_EXT.1.1: 1
    • FTA_TAB.1: 7
    • FTA_TAB.1.1: 1
  • FTP:
    • FTP_ITC.1: 6
    • FTP_ITC.1.1: 1
    • FTP_ITC.1.2: 1
    • FTP_TRP.1: 6
    • FTP_TRP.1.1: 1
    • FTP_TRP.1.2: 1
    • FTP_TRP.1.3: 1
  • FAU:
    • FAU_GEN.1: 9
    • FAU_GEN.1.1: 1
    • FAU_GEN.1.2: 1
    • FAU_GEN.2: 5
    • FAU_GEN.2.1: 1
    • FAU_STG_EXT.1: 5
    • FAU_STG_EXT.1.1: 1
    • FAU_STG_EXT.1.2: 1
    • FAU_STG_EXT.1.3: 1
  • FCS:
    • FCS_CKM: 5
    • FCS_CKM.1: 12
    • FCS_CKM.1.1: 1
    • FCS_CKM.2: 11
    • FCS_CKM.2.1: 1
    • FCS_CKM.4: 6
    • FCS_CKM.4.1: 1
    • FCS_COP: 27
    • FCS_COP.1: 4
    • FCS_NTP_EXT.1: 1
    • FCS_NTP_EXT.1.4: 1
    • FCS_RBG_EXT.1: 8
    • FCS_RBG_EXT.1.1: 1
    • FCS_RBG_EXT.1.2: 2
    • FCS_SSHC_EXT.1: 2
    • FCS_SSHC_EXT.1.5: 1
    • FCS_SSHS_EXT.1: 9
    • FCS_SSHS_EXT.1.1: 2
    • FCS_SSHS_EXT.1.2: 1
    • FCS_SSHS_EXT.1.3: 1
    • FCS_SSHS_EXT.1.4: 1
    • FCS_SSHS_EXT.1.5: 4
    • FCS_SSHS_EXT.1.6: 1
    • FCS_SSHS_EXT.1.7: 2
    • FCS_SSHS_EXT.1.8: 1
    • FCS_TLSC_EXT.1.1: 3
    • FCS_TLSC_EXT.2: 8
    • FCS_TLSC_EXT.2.1: 2
    • FCS_TLSC_EXT.2.2: 1
    • FCS_TLSC_EXT.2.3: 1
    • FCS_TLSC_EXT.2.4: 1
    • FCS_TLSC_EXT.2.5: 1
    • FCS_TLSS_EXT: 1
    • FCS_TLSS_EXT.1: 7
    • FCS_TLSS_EXT.1.1: 2
    • FCS_TLSS_EXT.1.2: 1
    • FCS_TLSS_EXT.1.3: 1
    • FCS_TLSS_EXT.2: 1
  • FDP:
    • FDP_RIP.2: 5
    • FDP_RIP.2.1: 1
  • FIA:
    • FIA_AFL.1: 8
    • FIA_AFL.1.1: 2
    • FIA_AFL.1.2: 2
    • FIA_PMG_EXT.1: 5
    • FIA_PMG_EXT.1.1: 1
    • FIA_PSK_EXT.1: 5
    • FIA_PSK_EXT.1.1: 1
    • FIA_PSK_EXT.1.2: 1
    • FIA_PSK_EXT.1.3: 1
    • FIA_PSK_EXT.1.4: 1
    • FIA_UAU.7: 5
    • FIA_UAU.7.1: 1
    • FIA_UAU_EXT.2: 5
    • FIA_UAU_EXT.2.1: 2
    • FIA_UIA_EXT.1: 5
    • FIA_UIA_EXT.1.1: 1
    • FIA_UIA_EXT.1.2: 1
  • FMT:
    • FMT_MOF: 10
    • FMT_MOF.1: 2
    • FMT_MTD: 10
    • FMT_MTD.1: 2
    • FMT_SMF: 5
    • FMT_SMF.1: 7
    • FMT_SMF.1.1: 1
    • FMT_SMR.2: 5
    • FMT_SMR.2.1: 1
    • FMT_SMR.2.2: 1
    • FMT_SMR.2.3: 1
  • FPT:
    • FPT_APW_EXT.1: 7
    • FPT_APW_EXT.1.1: 1
    • FPT_APW_EXT.1.2: 1
    • FPT_FLS: 5
    • FPT_FLS.1: 2
    • FPT_ITT: 1
    • FPT_SKP_EXT.1: 5
    • FPT_SKP_EXT.1.1: 1
    • FPT_STM_EXT.1: 6
    • FPT_STM_EXT.1.1: 1
    • FPT_STM_EXT.1.2: 1
    • FPT_TST_EXT: 1
    • FPT_TST_EXT.1: 5
    • FPT_TST_EXT.1.1: 1
    • FPT_TST_EXT.3: 5
    • FPT_TST_EXT.3.1: 1
    • FPT_TST_EXT.3.2: 1
    • FPT_TUD_EXT.1: 8
    • FPT_TUD_EXT.1.1: 1
    • FPT_TUD_EXT.1.2: 1
    • FPT_TUD_EXT.1.3: 2
  • FTA:
    • FTA_SSL: 4
    • FTA_SSL.3: 10
    • FTA_SSL.3.1: 1
    • FTA_SSL.4: 4
    • FTA_SSL.4.1: 1
    • FTA_SSL_EXT: 1
    • FTA_SSL_EXT.1: 7
    • FTA_SSL_EXT.1.1: 1
    • FTA_TAB.1: 6
    • FTA_TAB.1.1: 1
    • FTA_TSE.1: 5
    • FTA_TSE.1.1: 1
    • FTA_VCM_EXT.1: 5
    • FTA_VCM_EXT.1.1: 1
  • FTP:
    • FTP_ITC: 4
    • FTP_ITC.1: 14
    • FTP_ITC.1.1: 2
    • FTP_ITC.1.2: 1
    • FTP_ITC.1.3: 1
    • FTP_TRP: 6
    • FTP_TRP.1: 3
    • FTP_TUD.1: 1
pdf_data/st_keywords/cc_claims
  • A:
    • A.CONNECTIONS: 1
    • A.NO_GENERAL_PURPOSE: 4
    • A.PHYSICAL: 2
    • A.TRUSTED_ADMIN: 4
  • O:
    • O.ADDRESS_FILTERING: 6
    • O.DISPLAY_BANNER: 4
    • O.PORT_FILTERING: 4
    • O.PROTECTED_COMMUNI: 1
    • O.PROTECTED_COMMUNICA: 1
    • O.PROTECTED_COMMUNICAT: 1
    • O.PROTECTED_COMMUNICATIONS: 3
    • O.RELATED_CONNECTION: 1
    • O.RELATED_CONNECTION_FI: 2
    • O.RELATED_CONNECTION_FILTERING: 3
    • O.RESIDUAL_INFORMATIO: 1
    • O.RESIDUAL_INFORMATION_: 2
    • O.RESIDUAL_INFORMATION_CLEARING: 1
    • O.RESOURCE_AVAILABILI: 1
    • O.RESOURCE_AVAILABILITY: 4
    • O.SESSION_LOCK: 4
    • O.STATEFUL_INSPECTION: 4
    • O.SYSTEM_MONITORING: 6
    • O.TOE_ADMINISTRATION: 6
    • O.TSF_SELF_TEST: 6
    • O.VERIFIABLE_UPDATES: 4
  • OE:
    • OE.CONNECTIONS: 2
    • OE.NO_GENERAL_PURPOS: 1
    • OE.NO_GENERAL_PURPOSE: 2
    • OE.PHYSICAL: 3
    • OE.TRUSTED_ADMIN: 3
  • T:
    • T.ADMIN_ERROR: 4
    • T.NETWORK_ACCESS: 1
    • T.NETWORK_DISCLOSURE: 3
    • T.NETWORK_DOS: 4
    • T.NETWORK_MISUSE: 5
    • T.RESOURCE_EXHAUSTION: 3
    • T.TRANSMIT: 3
    • T.TSF_FAILURE: 4
    • T.UNAUTHORIZED_ACCESS: 4
    • T.UNAUTHORIZED_UPDATE: 2
    • T.UNDETECTED_ACTIONS: 2
    • T.USER_DATA_REUSE: 2
  • A:
    • A.ADMIN_CREDENTIALS_: 1
    • A.CONNECTIONS: 2
    • A.LIMITED_FUNCTIONALITY: 1
    • A.NO_THRU_TRAFFIC_PROTECTION: 1
    • A.PHYSICAL_PROTECTION: 1
    • A.REGULAR_UPDATES: 1
    • A.RESIDUAL_INFORMATION: 1
    • A.TRUSTED_ADMINSTRATOR: 1
  • O:
    • O.ADDRESS_FILTERING: 1
    • O.AUTHENTICATION: 1
    • O.CRYPTOGRAPHIC_FUNCTIONS: 1
    • O.FAIL_SECURE: 1
    • O.PORT_FILTERING: 1
    • O.RESIDUAL_INFORMATION: 1
    • O.STATEFUL_TRAFFIC_FILTERING: 1
    • O.SYSTEM_MONITORING: 1
    • O.TOE_ADMINISTRATION: 1
  • OE:
    • OE.ADMIN_CREDENTIALS_: 1
    • OE.CONNECTIONS: 1
    • OE.NO_GENERAL_PURPOSE: 1
    • OE.NO_THRU_TRAFFIC_PROTECTION: 1
    • OE.PHYSICAL: 1
    • OE.RESIDUAL_INFORMATION: 1
    • OE.TRUSTED_ADMIN: 1
    • OE.UPDATES: 1
  • T:
    • T.DATA_INTEGRITY: 1
    • T.MALICIOUS_TRAFFIC: 1
    • T.NETWORK_ACCESS: 1
    • T.NETWORK_DISCLOSURE: 2
    • T.NETWORK_MISUSE: 2
    • T.PASSWORD_CRACKING: 1
    • T.REPLAY_ATTACK: 1
    • T.SECURITY_FUNCTIONALITY_: 2
    • T.UNAUTHORIZED_: 1
    • T.UNDETECTED_ACTIVITY: 1
    • T.UNTRUSTED_COMMUNICATIONS: 1
    • T.UPDATE_COMPROMISE: 1
    • T.WEAK_AUTHENTICATION_: 1
    • T.WEAK_CRYPTOGRAPHY: 1
pdf_data/st_keywords/vendor
  • Cisco:
    • Cisco: 37
    • Cisco Systems, Inc: 4
  • Microsoft:
    • Microsoft: 1
  • Cisco:
    • Cisco: 24
    • Cisco Systems, Inc: 2
  • Microsoft:
    • Microsoft: 1
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 6
      • AES-256: 1
  • constructions:
    • MAC:
      • HMAC: 1
      • HMAC-SHA-256: 1
      • HMAC-SHA-384: 1
  • miscellaneous:
    • Skinny:
      • Skinny: 2
  • AES_competition:
    • AES:
      • AES: 13
      • AES-: 1
      • AES-192: 1
  • constructions:
    • MAC:
      • HMAC: 3
      • HMAC-SHA-256: 5
      • HMAC-SHA-384: 4
      • HMAC-SHA-512: 5
  • miscellaneous:
    • Skinny:
      • Skinny: 2
pdf_data/st_keywords/asymmetric_crypto
  • FF:
    • DH:
      • DH: 6
      • Diffie-Hellman: 1
  • RSA:
    • RSA-OAEP: 3
  • ECC:
    • ECC:
      • ECC: 5
    • ECDH:
      • ECDHE: 2
    • ECDSA:
      • ECDSA: 20
  • FF:
    • DH:
      • DH: 9
      • DHE: 2
      • Diffie-Hellman: 8
    • DSA:
      • DSA: 1
  • RSA:
    • RSA-2048: 1
pdf_data/st_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 3
    • SHA2:
      • SHA-256: 3
      • SHA-384: 2
      • SHA-512: 8
  • PBKDF:
    • PBKDF2: 2
  • SHA:
    • SHA1:
      • SHA-1: 6
    • SHA2:
      • SHA-256: 5
      • SHA-384: 4
      • SHA-512: 6
pdf_data/st_keywords/crypto_scheme
  • KA:
    • Key Agreement: 2
  • MAC:
    • MAC: 4
  • KEX:
    • Key Exchange: 3
  • MAC:
    • MAC: 4
pdf_data/st_keywords/crypto_protocol
  • IKE:
    • IKE: 9
    • IKEv1: 4
    • IKEv2: 6
  • IPsec:
    • IPsec: 45
  • SSH:
    • SSH: 33
  • TLS:
    • TLS:
      • TLS: 40
      • TLS 1.0: 1
      • TLS v1.0: 1
  • VPN:
    • VPN: 31
  • IKE:
    • IKE: 36
    • IKEv2: 21
  • IPsec:
    • IPsec: 91
  • SSH:
    • SSH: 46
  • TLS:
    • SSL:
      • SSL: 2
      • SSL 2.0: 1
      • SSL 3.0: 1
    • TLS:
      • TLS: 49
      • TLS 1.0: 1
      • TLS 1.1: 2
      • TLS 1.2: 2
      • TLS v1.2: 5
      • TLS1.1: 1
      • TLS1.2: 1
      • TLSv1.1: 3
      • TLSv1.2: 3
  • VPN:
    • VPN: 166
pdf_data/st_keywords/randomness
  • PRNG:
    • DRBG: 1
    • PRNG: 1
  • RNG:
    • RBG: 2
  • PRNG:
    • DRBG: 4
  • RNG:
    • RBG: 1
pdf_data/st_keywords/cipher_mode
  • CBC:
    • CBC: 1
  • GCM:
    • GCM: 2
  • CBC:
    • CBC: 5
  • GCM:
    • GCM: 6
pdf_data/st_keywords/ecc_curve
  • NIST:
    • P-256: 12
    • P-348: 2
    • P-384: 10
    • P-521: 12
    • secp256r1: 4
    • secp384r1: 3
    • secp521r1: 4
pdf_data/st_keywords/tls_cipher_suite
  • TLS:
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 2
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 1
    • TLS_RSA_WITH_AES_128_CBC_SHA: 2
    • TLS_RSA_WITH_AES_256_CBC_SHA: 1
  • TLS:
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 4
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 4
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 4
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 4
    • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
    • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 3
    • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1
    • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 1
pdf_data/st_keywords/standard_id
  • CC:
    • CCMB-2012-009-001: 1
    • CCMB-2012-009-004: 1
  • FIPS:
    • FIPS 140-2: 3
    • FIPS PUB 140-2: 1
    • FIPS PUB 180-3: 2
    • FIPS PUB 186-2: 3
    • FIPS PUB 186-3: 3
    • FIPS PUB 197: 1
    • FIPS PUB 198-1: 1
  • NIST:
    • NIST SP 800-38A: 2
    • NIST SP 800-56B: 3
  • RFC:
    • RFC 2246: 1
    • RFC 2460: 3
    • RFC 2818: 1
    • RFC 3513: 2
    • RFC 3602: 2
    • RFC 4109: 1
    • RFC 4253: 1
    • RFC 4303: 2
    • RFC 4443: 3
    • RFC 5735: 2
    • RFC 768: 3
    • RFC 791: 3
    • RFC 792: 3
    • RFC 793: 3
    • RFC 959: 1
  • CC:
    • CCMB-2017-04-001: 1
    • CCMB-2017-04-002: 1
    • CCMB-2017-04-003: 1
    • CCMB-2017-04-004: 1
  • FIPS:
    • FIPS 140-2: 3
    • FIPS PUB 140-2: 1
    • FIPS PUB 180-4: 2
    • FIPS PUB 186-3: 1
    • FIPS PUB 186-4: 10
    • FIPS PUB 198-1: 1
  • ISO:
    • ISO/IEC 14888-3: 1
    • ISO/IEC 18031:2011: 2
    • ISO/IEC 9796-2: 1
  • NIST:
    • NIST SP 800-38A: 1
    • NIST SP 800-56A: 1
    • NIST SP 800-90: 2
  • PKCS:
    • PKCS #1: 1
  • RFC:
    • RFC 2460: 4
    • RFC 2818: 1
    • RFC 2986: 1
    • RFC 3268: 4
    • RFC 3513: 2
    • RFC 3526: 4
    • RFC 3602: 2
    • RFC 4106: 1
    • RFC 4253: 1
    • RFC 4301: 1
    • RFC 4303: 2
    • RFC 4346: 3
    • RFC 4443: 2
    • RFC 4868: 1
    • RFC 4945: 1
    • RFC 5246: 7
    • RFC 5280: 4
    • RFC 5282: 1
    • RFC 5289: 4
    • RFC 5735: 2
    • RFC 5759: 1
    • RFC 5996: 2
    • RFC 6125: 1
    • RFC 6960: 1
    • RFC 768: 4
    • RFC 791: 4
    • RFC 792: 2
    • RFC 793: 4
  • X509:
    • X.509: 6
pdf_data/st_keywords/certification_process
  • OutOfScope:
    • out of scope: 1
    • purpose other than securing traffic flows that originate from or terminate to the ASA itself) is out of scope for this evaluated configuration, so will not be used in the TOE. In the certified configuration: 1
  • OutOfScope:
    • ECDSA-based, DH-based, and RSA-based schemes. The RSA-based implementation is vendor affirmation (out of scope) and the KAS ECC and FFC + CVL algorithms testing is provided below. Scheme SFR Services RSA: 1
    • out of scope: 1
pdf_data/st_metadata
state/cert/convert_garbage False True
state/cert/convert_ok False True
state/cert/download_ok False True
state/cert/extract_ok False True
state/cert/pdf_hash Different Different
state/cert/txt_hash Different Different
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different