This page was not yet optimized for use on mobile devices.

CyberArk Privileged Access Manager – Digital Vault Server v14.0.0.40

Known vulnerabilities detected

Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.

CSV information

Status	active
Valid from	03.07.2024
Valid until	03.07.2029
Scheme	🇳🇱 NL
Manufacturer	CyberArk Software, Ltd
Category	Access Control Devices and Systems
Security level	ASE_TSS.1, ATE_IND.1, AGD_OPE.1, AVA_VAN.1, ASE_CCL.1, AGD_PRE.1, ASE_SPD.1, ALC_CMC.1, ASE_ECD.1, ALC_CMS.1, ASE_INT.1, ADV_FSP.1
Protection profiles	Protection Profile for Application Software, Version 1.4 Functional Package for TLS Version 1.1

Heuristics summary

Certificate ID: NSCIB-CC-2400013-01-CR

Certificate

Certificate PDF TXT

Extracted keywords

Security level

EAL2, EAL4

Security Assurance Requirements (SAR)

ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ALC_FLR.3, ALC_FLR, ATE_IND.1, AVA_VAN.1, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1

Certificates

NSCIB-CC-2400013-01, NSCIB-2400013-01

Evaluation facilities

SGS, SGS Brightsight, Brightsight

Standards

ISO/IEC 15408-1, ISO/IEC 18045, ISO/IEC 18045:2008

File metadata

Title	NSCIB Certificate
Author	brian
Creation date	D:20240717191034+01'00'
Modification date	D:20240717191034+01'00'
Pages	1
Creator	Microsoft® Word 2021
Producer	Microsoft® Word 2021

Certification report

Certification report PDF TXT

Extracted keywords

Protocols

SSH, TLS, TLS v1.2

Libraries

OpenSSL

Security level

EAL4

Security Assurance Requirements (SAR)

ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ATE_IND.1, AVA_VAN, AVA_VAN.1, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1

Certificates

NSCIB-CC-2400013-01-CR, NSCIB-2400013-01

Evaluation facilities

SGS, SGS Brightsight, Brightsight

Side-channel analysis

JIL

Certification process

out of scope, following proprietary or non-standard algorithms, protocols and implementations: none, which are out of scope as there are no security claims relating to these. Page: 11/12 of report number

File metadata

Title	Certification Report
Author	brian
Creation date	D:20240717191342+01'00'
Modification date	D:20240717191342+01'00'
Pages	12
Creator	Microsoft® Word 2021
Producer	Microsoft® Word 2021

Frontpage

Certificate ID	NSCIB-CC-2400013-01-CR
Certified item	CyberArk Privileged Access Manager – Digital Vault Server v14.0.0.40
Certification lab	SGS Brightsight B.V.
Developer	CyberArk Software Ltd

Security target

Security target PDF TXT

Extracted keywords

Symmetric Algorithms

AES, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512

Asymmetric Algorithms

RSA 2048, ECDHE, ECDSA, ECC, Diffie-Hellman, DHE

Hash functions

SHA-256, SHA-384, SHA-512, SHA256, SHA384, SHA512

Schemes

Key Exchange, Key agreement

Protocols

SSH, SSL 2.0, SSL 3.0, SSL, TLS, TLS v1.2, TLS 1.1, TLS 1.2, TLS 1.0, TLSv1.2

Randomness

DRBG

Libraries

OpenSSL

Elliptic Curves

P-384, P-256, secp256r1, secp384r1

Block cipher modes

CTR

TLS cipher suites

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384

Vendor

Microsoft

Claims

O.INTEGRITY, O.QUALITY, O.MANAGEMENT, O.PROTECTED_STORAGE, O.PROTECTED_COMMS, O.PROTECTED_STORAG, T.NETWORK_ATTACK, T.NETWORK_EAVESDROP, T.LOCAL_ATTACK, T.PHYSICAL_ACCESS, T.NETWORK_EAVES, A.PLATFORM, A.PROPER_USER, A.PROPER_ADMIN, OE.PLATFORM, OE.PROPER_USER, OE.PROPER_ADMIN

Security Assurance Requirements (SAR)

ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ATE_IND.1, AVA_VAN.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_SPD.1, ASE_TSS.1

Security Functional Requirements (SFR)

FCS_TLSS_EXT.1.1, FCS_CKM, FCS_CKM_EXT.1, FCS_CKM.2, FCS_COP, FCS_RBG_EXT.1, FCS_STO_EXT.1, FCS_TLS_EXT.1, FCS_TLSS_EXT, FCS_CKM.1, FCS_CKM_EXT.1.1, FCS_CKM.2.1, FCS_COP.1, FCS_RBG_EXT.1.1, FCS_STO_EXT.1.1, FCS_TLS_EXT.1.1, FCS_TLSS_EXT.1, FCS_TLSS_EXT.1.2, FCS_TLSS_EXT.1.3, FDP_DEC_EXT.1, FDP_NET_EXT.1, FDP_DAR_EXT.1, FDP_DEC_EXT.1.1, FDP_DEC_EXT.1.2, FDP_NET_EXT.1.1, FDP_DAR_EXT.1.1, FMT_MEC_EXT.1, FMT_CFG_EXT.1, FMT_SMF.1, FMT_MEC_EXT.1.1, FMT_CFG_EXT.1.1, FMT_CFG_EXT.1.2, FMT_SMF.1.1, FPR_ANO_EXT.1, FPR_ANO_EXT.1.1, FPT_TUD_EXT.2.2, FPT_AEX_EXT.1.5, FPT_AEX_EXT.1.3, FPT_API_EXT.1, FPT_AEX_EXT.1, FPT_TUD_EXT.1, FPT_TUD_EXT.2, FPT_LIB_EXT.1, FPT_IDV_EXT.1, FPT_API_EXT.1.1, FPT_AEX_EXT.1.1, FPT_AEX_EXT.1.2, FPT_AEX_EXT.1.4, FPT_TUD_EXT.1.1, FPT_TUD_EXT.1.2, FPT_TUD_EXT.1.3, FPT_TUD_EXT.1.4, FPT_TUD_EXT.1.5, FPT_TUD_EXT.2.1, FPT_TUD_EXT.2.3, FPT_LIB_EXT.1.1, FPT_IDV_EXT.1.1, FPT_TUD_EXT, FTP_DIT_EXT.1.1, FTP_DIT_EXT.1

Evaluation facilities

Lightship Security

Standards

FIPS PUB 186-4, NIST SP 800-38A, NIST SP 800-38D, SP 800-90, RFC 7919, RFC 5246, RFC 5289, RFC 5288, CCMB-2017-04-002, CCMB-2017-04-003

File metadata

Title	CyberArk
Subject	Privileged Access Manager – Digital Vault Server
Author	Marina Ibrishimova
Creation date	D:20240613132405+03'00'
Modification date	D:20240613134010+03'00'
Pages	68
Creator	Microsoft® Word for Microsoft 365
Producer	Microsoft® Word for Microsoft 365

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

Certificate ID

NSCIB-CC-2400013-01-CR

Extracted SARs

ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_SPD.1, ASE_TSS.1, ATE_IND.1, AVA_VAN.1

CPE matches

cpe:2.3:a:cyberark:privileged_access_manager:14.0:*:*:*:*:*:*:*

Related CVEs

ID	Links	Severity	CVSS Score			Published on
ID	Links	Severity	Base	Exploitability	Impact	Published on
CVE-2024-54840	C N	MEDIUM	6.1		2.7	03.02.2025

Similar certificates

Name	Certificate ID
CyberArk Privileged Access Manager – Digital Vault Server v14.0.0.40	NSCIB-CC-2400013-01-CR	Compare
CyberArk Privileged Access Manager – Windows Components including PSM v14.0.0.9, CPM v14.0.0.9 and PVWA v14.0.0.32	NSCIB-CC-2400012-01-CR	Compare
CyberArk Privileged Access Manager – Windows Components including PSM v14.0.0.9, CPM v14.0.0.9 and PVWA v14.0.0.32	NSCIB-CC-2400012-01-CR	Compare

Scheme data

Cert Id	NSCIB-CC-2400013-01-CR
Certification Date	03.07.2024
Status	Issued
Product	CyberArk Privileged Access Manager – Digital Vault Server v14.0.0.40
Developer	CyberArk Software Ltd.
Evaluation Facility	SGS Brightsight
Level	ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE.REQ.1, ASE.TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ATE_IND.1, AVA_VAN.1
Cert Link	https://trustcb.com/download/?wpdmdl=4334
Report Link	https://trustcb.com/download/?wpdmdl=4335
Target Link	https://trustcb.com/download/?wpdmdl=4336

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The report property was updated, with the {'json_hash': None} values inserted.

The st property was updated, with the {'json_hash': None} values inserted.

The cert property was updated, with the {'json_hash': None} values inserted.
03.04.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The cpe_matches property was set to {'_type': 'Set', 'elements': ['cpe:2.3:a:cyberark:privileged_access_manager:14.0:*:*:*:*:*:*:*']}.

The related_cves property was set to {'_type': 'Set', 'elements': ['CVE-2024-54840']}.
05.02.2025

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The report property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The st property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The cert property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The computed heuristics were updated.

The following values were inserted: {'protection_profiles': {'_type': 'Set', 'elements': ['c40ae795865a0dba', '90c116e62a19bc4d']}, 'eal': 'EAL1'}.

The prev_certificates property was set to None.

The next_certificates property was set to None.
21.11.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The following values were inserted: {'prev_certificates': [], 'next_certificates': []}.
09.11.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to {'cert_id': 'NSCIB-CC-2400013-01-CR', 'certification_date': '2024-07-03', 'status': 'Issued', 'product': 'CyberArk Privileged Access Manager – Digital Vault Server v14.0.0.40', 'developer': 'CyberArk Software Ltd.', 'evaluation_facility': 'SGS Brightsight', 'level': 'ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE.REQ.1, ASE.TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ATE_IND.1, AVA_VAN.1', 'cert_link': 'https://trustcb.com/download/?wpdmdl=4334', 'report_link': 'https://trustcb.com/download/?wpdmdl=4335', 'target_link': 'https://trustcb.com/download/?wpdmdl=4336'}.
17.10.2024

The certificate data changed.
Certificate changed

The Protection Profiles of the certificate were updated.

The following values were removed: {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Functional Package for TLS Version 1.1', 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PKG_TLS_V1.1.pdf', 'pp_ids': None}]}.

The following values were added: {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Functional Package for TLS Version 1.1', 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/PKG_TLS_V1.1.pdf', 'pp_ids': {'_type': 'Set', 'elements': ['PKG_TLS_V1.1']}}]}.
22.08.2024

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Access Control Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2400013-01-Cert.pdf",
  "dgst": "f4123aeccf86806e",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "NSCIB-CC-2400013-01-CR",
    "cert_lab": [
      ""
    ],
    "cpe_matches": {
      "_type": "Set",
      "elements": [
        "cpe:2.3:a:cyberark:privileged_access_manager:14.0:*:*:*:*:*:*:*"
      ]
    },
    "direct_transitive_cves": null,
    "eal": "EAL1",
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_TSU_EXT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_INT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_CCL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_SPD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_ECD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_OBJ",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_REQ",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "14.0.0.40"
      ]
    },
    "indirect_transitive_cves": null,
    "next_certificates": null,
    "prev_certificates": null,
    "protection_profiles": {
      "_type": "Set",
      "elements": [
        "90c116e62a19bc4d",
        "c40ae795865a0dba"
      ]
    },
    "related_cves": {
      "_type": "Set",
      "elements": [
        "CVE-2024-54840"
      ]
    },
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": {
      "cert_id": "NSCIB-CC-2400013-01-CR",
      "cert_link": "https://trustcb.com/download/?wpdmdl=4334",
      "certification_date": "2024-07-03",
      "developer": "CyberArk Software Ltd.",
      "evaluation_facility": "SGS Brightsight",
      "level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE.REQ.1, ASE.TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ATE_IND.1, AVA_VAN.1",
      "product": "CyberArk Privileged Access Manager \u2013 Digital Vault Server v14.0.0.40",
      "report_link": "https://trustcb.com/download/?wpdmdl=4335",
      "status": "Issued",
      "target_link": "https://trustcb.com/download/?wpdmdl=4336"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "CyberArk Software, Ltd",
  "manufacturer_web": "https://www.cyberark.com/",
  "name": "CyberArk Privileged Access Manager \u2013 Digital Vault Server v14.0.0.40",
  "not_valid_after": "2029-07-03",
  "not_valid_before": "2024-07-03",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "NSCIB-CC-2400013-01-Cert.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "NL": {
          "NSCIB-2400013-01": 1,
          "NSCIB-CC-2400013-01": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_FSP.1": 1
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC.1": 1,
          "ALC_CMS.1": 1,
          "ALC_FLR": 1,
          "ALC_FLR.3": 1,
          "ALC_TSU_EXT.1": 1
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.1": 1,
          "ASE_SPD.1": 1
        },
        "ATE": {
          "ATE_IND.1": 1
        },
        "AVA": {
          "AVA_VAN.1": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL2": 1,
          "EAL4": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "BrightSight": {
          "Brightsight": 1
        },
        "SGS": {
          "SGS": 1,
          "SGS Brightsight": 1
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408-1": 2,
          "ISO/IEC 18045": 4,
          "ISO/IEC 18045:2008": 1
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "brian",
      "/CreationDate": "D:20240717191034+01\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2021",
      "/ModDate": "D:20240717191034+01\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2021",
      "/Title": "NSCIB Certificate",
      "pdf_file_size_bytes": 127943,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "NSCIB-CC-2400013-01-CR.pdf",
    "report_frontpage": {
      "NL": {
        "cert_id": "NSCIB-CC-2400013-01-CR",
        "cert_item": "CyberArk Privileged Access Manager \u2013 Digital Vault Server v14.0.0.40",
        "cert_lab": " SGS Brightsight B.V.",
        "developer": "CyberArk Software Ltd"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "NL": {
          "NSCIB-2400013-01": 1,
          "NSCIB-CC-2400013-01-CR": 12
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_FSP.1": 1
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC.1": 1,
          "ALC_CMS.1": 1,
          "ALC_TSU_EXT.1": 1
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.1": 1,
          "ASE_SPD.1": 1
        },
        "ATE": {
          "ATE_IND.1": 1
        },
        "AVA": {
          "AVA_VAN": 1,
          "AVA_VAN.1": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL4": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {
        "OutOfScope": {
          "following proprietary or non-standard algorithms, protocols and implementations: none, which are out of scope as there are no security claims relating to these. Page: 11/12 of report number": 1,
          "out of scope": 1
        }
      },
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 1
        }
      },
      "crypto_protocol": {
        "SSH": {
          "SSH": 2
        },
        "TLS": {
          "TLS": {
            "TLS": 3,
            "TLS v1.2": 1
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "BrightSight": {
          "Brightsight": 2
        },
        "SGS": {
          "SGS": 2,
          "SGS Brightsight": 2
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {
        "other": {
          "JIL": 1
        }
      },
      "standard_id": {},
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "brian",
      "/CreationDate": "D:20240717191342+01\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2021",
      "/ModDate": "D:20240717191342+01\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2021",
      "/Title": "Certification Report",
      "pdf_file_size_bytes": 302616,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://trustcb.com/common-criteria/nscib/",
          "mailto:[email protected]",
          "https://www.sogis.eu/",
          "https://nscib.nl/",
          "http://www.commoncriteriaportal.org/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 12
    },
    "st_filename": "NSCIB-CC-2400013-01-ST_1.8.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 2
          },
          "ECDH": {
            "ECDHE": 3
          },
          "ECDSA": {
            "ECDSA": 1
          }
        },
        "FF": {
          "DH": {
            "DHE": 2,
            "Diffie-Hellman": 1
          }
        },
        "RSA": {
          "RSA 2048": 1
        }
      },
      "cc_cert_id": {},
      "cc_claims": {
        "A": {
          "A.PLATFORM": 3,
          "A.PROPER_ADMIN": 3,
          "A.PROPER_USER": 3
        },
        "O": {
          "O.INTEGRITY": 3,
          "O.MANAGEMENT": 5,
          "O.PROTECTED_COMMS": 5,
          "O.PROTECTED_STORAG": 1,
          "O.PROTECTED_STORAGE": 2,
          "O.QUALITY": 5
        },
        "OE": {
          "OE.PLATFORM": 3,
          "OE.PROPER_ADMIN": 3,
          "OE.PROPER_USER": 3
        },
        "T": {
          "T.LOCAL_ATTACK": 2,
          "T.NETWORK_ATTACK": 5,
          "T.NETWORK_EAVES": 1,
          "T.NETWORK_EAVESDROP": 3,
          "T.PHYSICAL_ACCESS": 2
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_FSP.1": 1
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC.1": 1,
          "ALC_CMS.1": 1,
          "ALC_TSU_EXT.1": 1
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.1": 1,
          "ASE_REQ.1": 1,
          "ASE_SPD.1": 1,
          "ASE_TSS.1": 1
        },
        "ATE": {
          "ATE_IND.1": 1
        },
        "AVA": {
          "AVA_VAN.1": 1
        }
      },
      "cc_security_level": {},
      "cc_sfr": {
        "FCS": {
          "FCS_CKM": 3,
          "FCS_CKM.1": 1,
          "FCS_CKM.2": 2,
          "FCS_CKM.2.1": 1,
          "FCS_CKM_EXT.1": 3,
          "FCS_CKM_EXT.1.1": 1,
          "FCS_COP": 13,
          "FCS_COP.1": 4,
          "FCS_RBG_EXT.1": 3,
          "FCS_RBG_EXT.1.1": 1,
          "FCS_STO_EXT.1": 4,
          "FCS_STO_EXT.1.1": 1,
          "FCS_TLSS_EXT": 1,
          "FCS_TLSS_EXT.1": 1,
          "FCS_TLSS_EXT.1.1": 2,
          "FCS_TLSS_EXT.1.2": 1,
          "FCS_TLSS_EXT.1.3": 1,
          "FCS_TLS_EXT.1": 3,
          "FCS_TLS_EXT.1.1": 1
        },
        "FDP": {
          "FDP_DAR_EXT.1": 2,
          "FDP_DAR_EXT.1.1": 1,
          "FDP_DEC_EXT.1": 4,
          "FDP_DEC_EXT.1.1": 1,
          "FDP_DEC_EXT.1.2": 1,
          "FDP_NET_EXT.1": 3,
          "FDP_NET_EXT.1.1": 1
        },
        "FMT": {
          "FMT_CFG_EXT.1": 3,
          "FMT_CFG_EXT.1.1": 1,
          "FMT_CFG_EXT.1.2": 1,
          "FMT_MEC_EXT.1": 3,
          "FMT_MEC_EXT.1.1": 1,
          "FMT_SMF.1": 3,
          "FMT_SMF.1.1": 1
        },
        "FPR": {
          "FPR_ANO_EXT.1": 3,
          "FPR_ANO_EXT.1.1": 1
        },
        "FPT": {
          "FPT_AEX_EXT.1": 3,
          "FPT_AEX_EXT.1.1": 1,
          "FPT_AEX_EXT.1.2": 1,
          "FPT_AEX_EXT.1.3": 2,
          "FPT_AEX_EXT.1.4": 1,
          "FPT_AEX_EXT.1.5": 2,
          "FPT_API_EXT.1": 3,
          "FPT_API_EXT.1.1": 1,
          "FPT_IDV_EXT.1": 3,
          "FPT_IDV_EXT.1.1": 1,
          "FPT_LIB_EXT.1": 3,
          "FPT_LIB_EXT.1.1": 1,
          "FPT_TUD_EXT": 1,
          "FPT_TUD_EXT.1": 2,
          "FPT_TUD_EXT.1.1": 1,
          "FPT_TUD_EXT.1.2": 1,
          "FPT_TUD_EXT.1.3": 1,
          "FPT_TUD_EXT.1.4": 1,
          "FPT_TUD_EXT.1.5": 1,
          "FPT_TUD_EXT.2": 2,
          "FPT_TUD_EXT.2.1": 1,
          "FPT_TUD_EXT.2.2": 2,
          "FPT_TUD_EXT.2.3": 1
        },
        "FTP": {
          "FTP_DIT_EXT.1": 3,
          "FTP_DIT_EXT.1.1": 2
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CTR": {
          "CTR": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 3
        }
      },
      "crypto_protocol": {
        "SSH": {
          "SSH": 3
        },
        "TLS": {
          "SSL": {
            "SSL": 1,
            "SSL 2.0": 1,
            "SSL 3.0": 1
          },
          "TLS": {
            "TLS": 39,
            "TLS 1.0": 1,
            "TLS 1.1": 2,
            "TLS 1.2": 1,
            "TLS v1.2": 1,
            "TLSv1.2": 1
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key agreement": 1
        },
        "KEX": {
          "Key Exchange": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 2,
          "P-384": 2,
          "secp256r1": 1,
          "secp384r1": 1
        }
      },
      "eval_facility": {
        "Lightship": {
          "Lightship Security": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 2,
            "SHA-384": 2,
            "SHA-512": 2,
            "SHA256": 3,
            "SHA384": 3,
            "SHA512": 3
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 8
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "CC": {
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1
        },
        "FIPS": {
          "FIPS PUB 186-4": 4
        },
        "NIST": {
          "NIST SP 800-38A": 1,
          "NIST SP 800-38D": 1,
          "SP 800-90": 1
        },
        "RFC": {
          "RFC 5246": 1,
          "RFC 5288": 2,
          "RFC 5289": 2,
          "RFC 7919": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 4
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 4,
            "HMAC-SHA-256": 2,
            "HMAC-SHA-384": 2,
            "HMAC-SHA-512": 2
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {
        "TLS": {
          "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256": 1,
          "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384": 3,
          "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 1,
          "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": 1,
          "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 5
        }
      },
      "vendor": {
        "Microsoft": {
          "Microsoft": 2
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Marina Ibrishimova",
      "/CreationDate": "D:20240613132405+03\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20240613134010+03\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "/Subject": "Privileged Access Manager \u2013 Digital Vault Server",
      "/Title": "CyberArk",
      "pdf_file_size_bytes": 572890,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.cyberark.com/product-security/",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0822",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0823",
          "https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/details?product=14798",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0513",
          "https://docs.oracle.com/javase/7/docs/technotes/tools/windows/jarsigner.html#CCHFIDAB",
          "https://cyberark.my.site.com/mplace/s/#software",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0815",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0780",
          "http://www.lightshipsec.com/",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0747",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0469",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0726",
          "https://cyberark.my.site.com/s/login/",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0739",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0798",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0650",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0779",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0499",
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0770"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 68
    }
  },
  "protection_profile_links": {
    "_type": "Set",
    "elements": [
      "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PP_APP_V1.4.pdf",
      "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PKG_TLS_V1.1.pdf"
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2400013-01-CR.pdf",
  "scheme": "NL",
  "security_level": {
    "_type": "Set",
    "elements": [
      "AGD_OPE.1",
      "ASE_ECD.1",
      "ASE_SPD.1",
      "ASE_TSS.1",
      "ALC_CMC.1",
      "ALC_CMS.1",
      "ASE_INT.1",
      "ADV_FSP.1",
      "ASE_CCL.1",
      "ATE_IND.1",
      "AGD_PRE.1",
      "AVA_VAN.1"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2400013-01-ST_1.8.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "ff4a2c3c635700fad188ba20aca50f2e18e8d9d2cd3b0ef359cd1e5659c4cd4f",
      "txt_hash": "ed37e25a57f80df137750ec732410fdb99f86eac25c67b502204402721c27827"
    },
    "report": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "3e5ddc136403c6e2b9b4eef731173502a498fc3f30b53d8563b50ed340957916",
      "txt_hash": "f433b043c0c6d2f4201b7a321390613478a61f24779b0ea2b210c8354cfbbd2e"
    },
    "st": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "4c26357b4ed55cdecdfe3be74f1b46ad84d6edcc4b60387c037aa4357928eb6e",
      "txt_hash": "40e86dd04589a1d58894bc9153012e7d4633f37e2883b76a9bfecf9cc50983b1"
    }
  },
  "status": "active"
}

Sections

CyberArk Privileged Access Manager – Digital Vault Server v14.0.0.40

Known vulnerabilities detected

CSV information

Heuristics summary

Certificate

Extracted keywords

Common Criteria

Security level

Security Assurance Requirements (SAR)

Certificates

Evaluation facilities

Other

Standards

File metadata

Certification report

Extracted keywords

Cryptography

Protocols

Libraries

Common Criteria

Security level

Security Assurance Requirements (SAR)

Certificates

Evaluation facilities

Security

Side-channel analysis

Certification process

File metadata

Frontpage

Security target

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Libraries

Elliptic Curves

Block cipher modes

TLS cipher suites

Device

Vendor

Common Criteria

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Evaluation facilities

Other

Standards

File metadata

Heuristics

Automated inference - use with caution

Certificate ID

Extracted SARs

CPE matches

Related CVEs

Similar certificates

Scheme data

References

Updates Feed

Raw data

Toggle raw data