This page was not yet optimized for use on mobile devices.

SDoT Security Gateway, Version 6.2i

CSV information

Status	active
Valid from	27.09.2021
Valid until	27.09.2026
Scheme	🇩🇪 DE
Manufacturer	INFODAS Gesellschaft für Systementwicklung und informationsverarbeitung mbH
Category	Boundary Protection Devices and Systems
Security level	EAL4+, ALC_FLR.2

Heuristics summary

Certificate ID: BSI-DSZ-CC-1129-2021

Certificate

Certificate PDF TXT

Extracted keywords

Security level

EAL 4, EAL 2, EAL 4 augmented

Security Assurance Requirements (SAR)

ALC_FLR.2, ALC_FLR

Certificates

BSI-DSZ-CC-1129-2021

Standards

ISO/IEC 15408, ISO/IEC 18045

File metadata

Title	Certificate
Subject	Certificate BSI-DSZ-CC-1129-2021
Keywords	"Common Criteria, Certification, Zertifizierung, Security Gateway, Infodas"
Author	Bundesamt für Sicherheit in der Informationstechnik
Creation date	D:20211004123245+02'00'
Modification date	D:20211004142015+02'00'
Pages	1
Creator	Writer
Producer	LibreOffice 6.3

Certification report

Certification report PDF TXT

Extracted keywords

Symmetric Algorithms

AES-, AES, HMAC, HMAC-SHA-384

Asymmetric Algorithms

ECDSA, DSA

Hash functions

SHA-384, SHA-256, SHA-512, SHA-2

Schemes

Key agreement

Protocols

TLS, TLS1.2, TLSv1.2

Elliptic Curves

secp256r1, secp384r1, brainpoolP256r1, brainpoolP512r1, brainpoolP384r1

Block cipher modes

GCM

Security level

EAL 4, EAL 2, EAL 1, EAL 2+, EAL 5, EAL 4 augmented

Claims

OE.DIFF_NET, OE.TRUSTW_ONLY, OE.HIGH_PROTECTION, OE.ACCESS, OE.TRUSTW_STAFF, OE.AUDIT_ENFORCE, OE.ROLE_SEPARATION, OE.HSM, OE.PKI, OE.NTP_SERVER, OE.USER_IDENT, OE.DEDICATED_ADMIN_NET, OE.HIGH_AVAILABILITY, OE.BOOT

Security Assurance Requirements (SAR)

ALC_FLR.2, ALC_FLR

Security Functional Requirements (SFR)

FTP_TRP.1

Certificates

BSI-DSZ-CC-1129-2021

Evaluation facilities

atsec

Side-channel analysis

JIL

Certification process

being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, BSI-DSZ-CC-1129-2021, Version 2, 06.07.2021, SDoT Security Gateway Security Target, INFODAS GmbH (confidential document) [7] Evaluation Technical Report, Version 4, 20.09.2021, Final Evaluation Technical Report, atsec, sanitised public document) [9] Configuration list for the TOE, 19.07.2021, Main Configuration List (confidential document) [10] SDoT Security Gateway - Produktinformation - Anforderungen an den sicheren Betrieb Product

Standards

FIPS186-4, FIPS180-4, FIPS197, AIS 35, AIS 1, AIS 14, AIS 19, AIS 23, AIS 32, RFC5246, RFC5758, RFC2104, RFC5288, RFC3447, RFC6234, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, X.509, x.509

Technical reports

BSI TR-02102, BSI 7148

File metadata

Title	Certification Report
Subject	Certification Report BSI-DSZ-CC-1129-2021
Keywords	Common Criteria, Certification, Zertifizierung, Security Gateway, Infodas
Author	INFODAS GmbH
Creation date	D:20211004123112+02'00'
Modification date	D:20211007093339+02'00'
Pages	28
Creator	Writer
Producer	LibreOffice 6.3

Frontpage

Certificate ID	BSI-DSZ-CC-1129-2021
Certified item	SDoT Security Gateway Version 6.2i
Certification lab	BSI
Developer	INFODAS GmbH

Security target

Security target PDF TXT

Extracted keywords

Symmetric Algorithms

AES, HMAC

Asymmetric Algorithms

ECDHE, ECDSA, ECC

Hash functions

SHA-384, SHA-256, SHA-2

Protocols

TLS, TLS 1.2

Randomness

RNG

Elliptic Curves

secp256r1, secp384r1, brainpoolP256r1, brainpoolP384r1, brainpoolP512r1

Block cipher modes

GCM

Security level

EAL4, EAL4+, EAL4 augmented

Claims

T.REVEAL_TO_LOW, T.MALICIOUS_CODE, T.AUTH, T.WRONG_LABEL, T.INSERT, T.MISCONFIG, T.AUDIT_CONTROL, T.AUDIT_COLLAPSE, T.AUDIT_ACCESS, A.DIFF_NET, A.TRUSTW_ONLY, A.HIGH_PROTECTION, A.ACCESS, A.TRUSTW_STAFF, A.AUDIT, A.ROLE_SEPARATION, A.HSM, A.PKI, A.NTP_SERVER, A.USER_IDENT, A.DEDICATED_ADMIN_NET, A.HIGH_AVAILABILITY, A.BOOT, A.LABEL_MAN, A.HIGH_AVAILABILLITY, A.DEDICATED_ADMIN, OT.FILTER, OT.PRE_FILTER, OT.LABELS, OT.SANITISED_DATA, OT.BANDWIDTH, OT.PROTOCOLS, OT.PROTOCOL_DENY, OT.USER_AUTHENTICATION, OT.ROLE_SEPARATION, OT.FOUR_EYES, OT.SECURE_CHANNEL, OT.AUDIT_CHANGE_LOG, OT.AUDIT, OT.AUDIT_PROTECT, OT.AUDIT_LOG_AVAILABILITY, OT.PROTECTION, OT.INIT, OT.DEFAULT, OT.WARNING, OE.LABEL_MAN, OE.BOOT, OE.DIFF_NET, OE.TRUSTW_ONLY, OE.HIGH_PROTECTION, OE.ACCESS, OE.TRUSTW_STAFF, OE.AUDIT_ENFORCE, OE.ROLE_SEPARATION, OE.HSM, OE.PKI, OE.NTP_SERVER, OE.USER_IDENT, OE.DEDICATED_ADMIN_NET, OE.HIGH_AVAILABILITY, OSP.PROTOCOLS, OSP.FLOW_CONTROL, OSP.AUDIT, OSP.CONFIG_AUDIT, OSP.DUAL_CONTROL

Security Assurance Requirements (SAR)

ADV_ARC, ADV_FSP, ADV_IMP, ADV_TDS, AGD_OPE, AGD_PRE, ALC_FLR.2, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS, ALC_FLR, ALC_LCD, ALC_TAT, ATE_COV, ATE_DPT, ATE_FUN, ATE_IND, AVA_VAN, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.2, ASE_ECD.1, ASE_REQ.2, ASE_TSS.1, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_REQ, ASE_SPD, ASE_TSS

Security Functional Requirements (SFR)

FAU_STG.2, FAU_ARP.1, FAU_GEN.1, FAU_GEN, FAU_GEN.2, FAU_SAA.1, FAU_SAR.1, FAU_SAR.2, FAU_STG.3, FAU_STG.4, FAU_ARP, FAU_ARP.1.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FAU_SAA, FAU_SAA.1.1, FAU_SAA.1.2, FAU_SAR, FAU_SAR.1.1, FAU_SAR.1.2, FAU_SAR.2.1, FAU_STG, FAU_STG.1, FAU_STG.2.1, FAU_STG.2.2, FAU_STG.2.3, FAU_STG.3.1, FAU_STG.4.1, FCO_NRO.2, FCS_CKM, FCS_COP, FCS_CKM.2, FCS_CKM.4, FCS_COP.1, FCS_CKM.1, FCS_CKM.4.1, FDP_ACF.1, FDP_IFF, FDP_ACF, FDP_IFC.1, FDP_IFF.1, FDP_ITC.2, FDP_ACC, FDP_ACC.1, FDP_IFC, FDP_IFF.3, FDP_IFF.3.1, FDP_ITC.1, FIA_ATD.1, FIA_UAU.2, FIA_UID.2, FIA_UAU, FIA_UAU.1, FIA_UAU.2.1, FIA_UID, FIA_UID.1, FIA_UID.2.1, FMT_MSA.1, FMT_SMF.1, FMT_MSA.3, FMT_MTD, FMT_MTD.3, FMT_SMR.2, FMT_MSA, FMT_SMR.1, FMT_SMF, FMT_MSA.1.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MTD.1, FMT_MTD.3.1, FMT_SMF.1.1, FMT_SMR, FMT_SMR.2.1, FMT_SMR.2.2, FMT_SMR.2.3, FPT_INC, FPT_TST, FPT_INC.1, FPT_INC.1.1, FPT_INC.1.2, FPT_INC.1.3, FPT_STM.1, FPT_TDC.1, FPT_STM, FPT_STM.1.1, FPT_TDC, FPT_TDC.1.1, FPT_TDC.1.2, FTP_TRP.1, FTP_TRP, FTP_TRP.1.1, FTP_TRP.1.2, FTP_TRP.1.3

Certificates

BSI-DSZ-CC-1129

Side-channel analysis

malfunction

Standards

FIPS 197, FIPS 180-4, PKCS#1, AIS 41, AIS 35, RFC 3447, RFC 2104, RFC3986, RFC 3986, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004

File metadata

Title	Security Target Lite
Subject	Security Target
Author	INFODAS GmbH
Creation date	D:20210906121952+02'00'
Modification date	D:20210906121952+02'00'
Pages	105
Creator	Microsoft® Word für Microsoft 365
Producer	Microsoft® Word für Microsoft 365

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

Certificate ID

BSI-DSZ-CC-1129-2021

Extracted SARs

ALC_FLR.2, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The report property was updated, with the {'json_hash': None} values inserted.

The st property was updated, with the {'json_hash': None} values inserted.

The cert property was updated, with the {'json_hash': None} values inserted.
19.05.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
10.03.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to {'cert_id': 'BSI-DSZ-CC-1129-2021', 'product': 'SDoT Security Gateway, Version 6.2i', 'vendor': 'INFODAS Gesellschaft für Systementwicklung und Informationsverarbeitung mbH', 'certification_date': '2021-09-27', 'category': 'Network and Network related Devices and Systems', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1129.html', 'enhanced': {'product': 'SDoT Security Gateway, Version 6.2i', 'applicant': 'INFODAS Gesellschaft für Systementwicklung und Informationsverarbeitung mbH Rhonestraße 2 50765 Köln', 'evaluation_facility': 'atsec information security GmbH', 'assurance_level': 'EAL4,ALC_FLR.2', 'certification_date': '2021-09-27', 'expiration_date': '2026-09-26', 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1129a_pdf.pdf?__blob=publicationFile&v=6', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1129b_pdf.pdf?__blob=publicationFile&v=4', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1129c_pdf.pdf?__blob=publicationFile&v=3', 'description': 'The TOE is part of the product SDoT Security Gateway which provides a secure interconnection between two IP networks, which could have different types of security classifications. For a secure exchange of data between these Networks, the SDoT Security Gateway serves as protection to not let confidential data, within a potentially higher classified network (HIGH), unintentionally flow to a lower classified network (LOW), which is not authorized to get hold of confidential information from the higher classified network. SDoT Security Gateway includes the TOE which provides the filtering functionalities to check security labels for the transmission of data between the two differently classified networks and provides mechanisms to validate structured data objects against a rule set.'}}.
03.03.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
24.02.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to {'cert_id': 'BSI-DSZ-CC-1129-2021', 'product': 'SDoT Security Gateway, Version 6.2i', 'vendor': 'INFODAS Gesellschaft für Systementwicklung und Informationsverarbeitung mbH', 'certification_date': '2021-09-27', 'category': 'Network and Network related Devices and Systems', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1129.html', 'enhanced': {'product': 'SDoT Security Gateway, Version 6.2i', 'applicant': 'INFODAS Gesellschaft für Systementwicklung und Informationsverarbeitung mbH Rhonestraße 2 50765 Köln', 'evaluation_facility': 'atsec information security GmbH', 'assurance_level': 'EAL4,ALC_FLR.2', 'certification_date': '2021-09-27', 'expiration_date': '2026-09-26', 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1129a_pdf.pdf?__blob=publicationFile&v=6', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1129b_pdf.pdf?__blob=publicationFile&v=4', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1129c_pdf.pdf?__blob=publicationFile&v=3', 'description': 'The TOE is part of the product SDoT Security Gateway which provides a secure interconnection between two IP networks, which could have different types of security classifications. For a secure exchange of data between these Networks, the SDoT Security Gateway serves as protection to not let confidential data, within a potentially higher classified network (HIGH), unintentionally flow to a lower classified network (LOW), which is not authorized to get hold of confidential information from the higher classified network. SDoT Security Gateway includes the TOE which provides the filtering functionalities to check security labels for the transmission of data between the two differently classified networks and provides mechanisms to validate structured data objects against a rule set.'}}.
17.02.2025

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was set to None.
05.02.2025

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The report property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The st property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The cert property was updated, with the {'_type': 'sec_certs.sample.document_state.DocumentState'} data.

The computed heuristics were updated.

The following values were inserted: {'protection_profiles': None, 'eal': 'EAL4+'}.

The prev_certificates property was set to None.

The next_certificates property was set to None.
21.11.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The following values were inserted: {'prev_certificates': [], 'next_certificates': []}.
09.11.2024

The certificate data changed.
Certificate changed

The computed heuristics were updated.

The scheme_data property was updated, with the {'certification_date': '2021-09-27', 'enhanced': {'__update__': {'applicant': 'INFODAS Gesellschaft für Systementwicklung und Informationsverarbeitung mbH Rhonestraße 2 50765 Köln', 'certification_date': '2021-09-27', 'expiration_date': '2026-09-26', 'description': 'The TOE is part of the product SDoT Security Gateway which provides a secure interconnection between two IP networks, which could have different types of security classifications. For a secure exchange of data between these Networks, the SDoT Security Gateway serves as protection to not let confidential data, within a potentially higher classified network (HIGH), unintentionally flow to a lower classified network (LOW), which is not authorized to get hold of confidential information from the higher classified network. SDoT Security Gateway includes the TOE which provides the filtering functionalities to check security labels for the transmission of data between the two differently classified networks and provides mechanisms to validate structured data objects against a rule set.'}}} data.
22.08.2024

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '121ec317c98f627a4233c1decd4bc2ab5eeb1abb83b16a3144708895ab3c0796', 'txt_hash': 'd60c3ba8afd5879dadcfd906c5499b26df1341c3b95da72495bd79886fce99d4'} data.

The cert property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd79f3125f5affa8adea9d363ce55fd9c89ae52d840ffe86641d1f9c8fc50fa3a', 'txt_hash': '387afb2817863b44ce9930493dfe5b1a94147f9ec1b956e7ad4094747fc69889'} data.

The PDF extraction data was updated.

The st_metadata property was set to {'pdf_file_size_bytes': 1989754, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 105, '/Title': 'Security Target Lite', '/Author': 'INFODAS GmbH', '/Subject': 'Security Target', '/Creator': 'Microsoft® Word für Microsoft 365', '/CreationDate': "D:20210906121952+02'00'", '/ModDate': "D:20210906121952+02'00'", '/Producer': 'Microsoft® Word für Microsoft 365', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.xmlspif.org/', 'http://www.w3.org/TR/xml/', 'http://www.w3.org/TR/xmldsig-core1/']}}.

The cert_metadata property was set to {'pdf_file_size_bytes': 250309, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20211004123245+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, Security Gateway, Infodas"', '/ModDate': "D:20211004142015+02'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'Certificate BSI-DSZ-CC-1129-2021', '/Title': 'Certificate', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.

The st_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1129': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 5, 'EAL4+': 1, 'EAL4 augmented': 3}}, 'cc_sar': {'ADV': {'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP': 1, 'ADV_TDS': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_FLR.2': 3, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_FLR': 1, 'ALC_LCD': 1, 'ALC_TAT': 1}, 'ATE': {'ATE_COV': 1, 'ATE_DPT': 1, 'ATE_FUN': 1, 'ATE_IND': 1}, 'AVA': {'AVA_VAN': 1}, 'ASE': {'ASE_INT.1': 3, 'ASE_CCL.1': 2, 'ASE_SPD.1': 2, 'ASE_OBJ.2': 2, 'ASE_ECD.1': 2, 'ASE_REQ.2': 2, 'ASE_TSS.1': 2, 'ASE_CCL': 1, 'ASE_ECD': 1, 'ASE_INT': 1, 'ASE_OBJ': 1, 'ASE_REQ': 1, 'ASE_SPD': 1, 'ASE_TSS': 1}}, 'cc_sfr': {'FAU': {'FAU_STG.2': 11, 'FAU_ARP.1': 9, 'FAU_GEN.1': 17, 'FAU_GEN': 2, 'FAU_GEN.2': 8, 'FAU_SAA.1': 9, 'FAU_SAR.1': 9, 'FAU_SAR.2': 9, 'FAU_STG.3': 9, 'FAU_STG.4': 7, 'FAU_ARP': 1, 'FAU_ARP.1.1': 1, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2.1': 1, 'FAU_SAA': 1, 'FAU_SAA.1.1': 1, 'FAU_SAA.1.2': 1, 'FAU_SAR': 1, 'FAU_SAR.1.1': 1, 'FAU_SAR.1.2': 1, 'FAU_SAR.2.1': 1, 'FAU_STG': 1, 'FAU_STG.1': 6, 'FAU_STG.2.1': 1, 'FAU_STG.2.2': 1, 'FAU_STG.2.3': 1, 'FAU_STG.3.1': 1, 'FAU_STG.4.1': 1}, 'FCO': {'FCO_NRO.2': 1}, 'FCS': {'FCS_CKM': 12, 'FCS_COP': 47, 'FCS_CKM.2': 8, 'FCS_CKM.4': 22, 'FCS_COP.1': 7, 'FCS_CKM.1': 15, 'FCS_CKM.4.1': 1}, 'FDP': {'FDP_ACF.1': 38, 'FDP_IFF': 53, 'FDP_ACF': 40, 'FDP_IFC.1': 19, 'FDP_IFF.1': 40, 'FDP_ITC.2': 15, 'FDP_ACC': 39, 'FDP_ACC.1': 17, 'FDP_IFC': 38, 'FDP_IFF.3': 8, 'FDP_IFF.3.1': 1, 'FDP_ITC.1': 14}, 'FIA': {'FIA_ATD.1': 1, 'FIA_UAU.2': 8, 'FIA_UID.2': 17, 'FIA_UAU': 1, 'FIA_UAU.1': 1, 'FIA_UAU.2.1': 1, 'FIA_UID': 1, 'FIA_UID.1': 1, 'FIA_UID.2.1': 1}, 'FMT': {'FMT_MSA.1': 11, 'FMT_SMF.1': 26, 'FMT_MSA.3': 22, 'FMT_MTD': 31, 'FMT_MTD.3': 7, 'FMT_SMR.2': 11, 'FMT_MSA': 1, 'FMT_SMR.1': 12, 'FMT_SMF': 2, 'FMT_MSA.1.1': 1, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_MTD.1': 7, 'FMT_MTD.3.1': 1, 'FMT_SMF.1.1': 1, 'FMT_SMR': 1, 'FMT_SMR.2.1': 1, 'FMT_SMR.2.2': 1, 'FMT_SMR.2.3': 1}, 'FPT': {'FPT_INC': 4, 'FPT_TST': 1, 'FPT_INC.1': 13, 'FPT_INC.1.1': 2, 'FPT_INC.1.2': 2, 'FPT_INC.1.3': 2, 'FPT_STM.1': 11, 'FPT_TDC.1': 7, 'FPT_STM': 1, 'FPT_STM.1.1': 1, 'FPT_TDC': 1, 'FPT_TDC.1.1': 1, 'FPT_TDC.1.2': 1}, 'FTP': {'FTP_TRP.1': 8, 'FTP_TRP': 2, 'FTP_TRP.1.1': 1, 'FTP_TRP.1.2': 1, 'FTP_TRP.1.3': 1}}, 'cc_claims': {'T': {'T.REVEAL_TO_LOW': 15, 'T.MALICIOUS_CODE': 8, 'T.AUTH': 6, 'T.WRONG_LABEL': 6, 'T.INSERT': 6, 'T.MISCONFIG': 6, 'T.AUDIT_CONTROL': 5, 'T.AUDIT_COLLAPSE': 6, 'T.AUDIT_ACCESS': 7}, 'A': {'A.DIFF_NET': 5, 'A.TRUSTW_ONLY': 4, 'A.HIGH_PROTECTION': 4, 'A.ACCESS': 4, 'A.TRUSTW_STAFF': 5, 'A.AUDIT': 5, 'A.ROLE_SEPARATION': 4, 'A.HSM': 6, 'A.PKI': 5, 'A.NTP_SERVER': 5, 'A.USER_IDENT': 5, 'A.DEDICATED_ADMIN_NET': 5, 'A.HIGH_AVAILABILITY': 5, 'A.BOOT': 6, 'A.LABEL_MAN': 1, 'A.HIGH_AVAILABILLITY': 1, 'A.DEDICATED_ADMIN': 1}, 'OT': {'OT.FILTER': 16, 'OT.PRE_FILTER': 6, 'OT.LABELS': 12, 'OT.SANITISED_DATA': 9, 'OT.BANDWIDTH': 6, 'OT.PROTOCOLS': 11, 'OT.PROTOCOL_DENY': 11, 'OT.USER_AUTHENTICATION': 11, 'OT.ROLE_SEPARATION': 13, 'OT.FOUR_EYES': 6, 'OT.SECURE_CHANNEL': 8, 'OT.AUDIT_CHANGE_LOG': 8, 'OT.AUDIT': 10, 'OT.AUDIT_PROTECT': 8, 'OT.AUDIT_LOG_AVAILABILITY': 10, 'OT.PROTECTION': 6, 'OT.INIT': 10, 'OT.DEFAULT': 4, 'OT.WARNING': 10}, 'OE': {'OE.LABEL_MAN': 1, 'OE.BOOT': 5, 'OE.DIFF_NET': 7, 'OE.TRUSTW_ONLY': 4, 'OE.HIGH_PROTECTION': 8, 'OE.ACCESS': 4, 'OE.TRUSTW_STAFF': 6, 'OE.AUDIT_ENFORCE': 5, 'OE.ROLE_SEPARATION': 5, 'OE.HSM': 2, 'OE.PKI': 5, 'OE.NTP_SERVER': 5, 'OE.USER_IDENT': 2, 'OE.DEDICATED_ADMIN_NET': 3, 'OE.HIGH_AVAILABILITY': 5}, 'OSP': {'OSP.PROTOCOLS': 6, 'OSP.FLOW_CONTROL': 5, 'OSP.AUDIT': 5, 'OSP.CONFIG_AUDIT': 5, 'OSP.DUAL_CONTROL': 4}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 2}}, 'constructions': {'MAC': {'HMAC': 3}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDHE': 1}, 'ECDSA': {'ECDSA': 2}, 'ECC': {'ECC': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-384': 1, 'SHA-256': 1, 'SHA-2': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'TLS': {'TLS': 20, 'TLS 1.2': 2}}}, 'randomness': {'RNG': {'RNG': 1}}, 'cipher_mode': {'GCM': {'GCM': 1}}, 'ecc_curve': {'NIST': {'secp256r1': 1, 'secp384r1': 1}, 'Brainpool': {'brainpoolP256r1': 1, 'brainpoolP384r1': 1, 'brainpoolP512r1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'FI': {'malfunction': 1}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS 197': 1, 'FIPS 180-4': 1}, 'PKCS': {'PKCS#1': 1}, 'BSI': {'AIS 41': 1, 'AIS 35': 1}, 'RFC': {'RFC 3447': 1, 'RFC 2104': 2, 'RFC3986': 1, 'RFC 3986': 1}, 'CC': {'CCMB-2017-04-002': 3, 'CCMB-2017-04-003': 2, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.

The cert_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1129-2021': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 1, 'ALC_FLR': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.

The st_filename property was set to 1129b_pdf.pdf.

The cert_filename property was set to 1129c_pdf.pdf.

The computed heuristics were updated.

The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}]} values added.
17.08.2024

The certificate data changed.
Certificate changed

The report_link was updated.

The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129a_pdf.pdf.

The st_link was updated.

The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129b_pdf.pdf.

The state of the certificate object was updated.

The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

The cert property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

The PDF extraction data was updated.

The st_metadata property was set to None.

The cert_metadata property was set to None.

The st_keywords property was set to None.

The cert_keywords property was set to None.

The st_filename property was set to None.

The cert_filename property was set to None.

The computed heuristics were updated.

The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}]} values discarded.
23.07.2024

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Boundary Protection Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129c_pdf.pdf",
  "dgst": "4cd38b96efa2ca6b",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "BSI-DSZ-CC-1129-2021",
    "cert_lab": [
      "BSI"
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "eal": "EAL4+",
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_INT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_OBJ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_CCL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_REQ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_SPD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_ECD",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "6.2"
      ]
    },
    "indirect_transitive_cves": null,
    "next_certificates": null,
    "prev_certificates": null,
    "protection_profiles": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": null,
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "INFODAS Gesellschaft f\u00fcr Systementwicklung und informationsverarbeitung mbH",
  "manufacturer_web": "https://www.infodas.de",
  "name": "SDoT Security Gateway, Version 6.2i",
  "not_valid_after": "2026-09-27",
  "not_valid_before": "2021-09-27",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "1129c_pdf.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1129-2021": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ALC": {
          "ALC_FLR": 1,
          "ALC_FLR.2": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 2": 1,
          "EAL 4": 1,
          "EAL 4 augmented": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408": 2,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/CreationDate": "D:20211004123245+02\u002700\u0027",
      "/Creator": "Writer",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, Security Gateway, Infodas\"",
      "/ModDate": "D:20211004142015+02\u002700\u0027",
      "/Producer": "LibreOffice 6.3",
      "/Subject": "Certificate BSI-DSZ-CC-1129-2021",
      "/Title": "Certificate",
      "pdf_file_size_bytes": 250309,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "1129a_pdf.pdf",
    "report_frontpage": {
      "DE": {
        "cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_FLR.2",
        "cc_version": "Product specific Security Target Common Criteria Part 2 extended",
        "cert_id": "BSI-DSZ-CC-1129-2021",
        "cert_item": "SDoT Security Gateway Version 6.2i",
        "cert_lab": "BSI",
        "developer": "INFODAS GmbH",
        "match_rules": [
          "(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
        ],
        "ref_protection_profiles": "None"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDSA": {
            "ECDSA": 5
          }
        },
        "FF": {
          "DSA": {
            "DSA": 1
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1129-2021": 17
        }
      },
      "cc_claims": {
        "OE": {
          "OE.ACCESS": 1,
          "OE.AUDIT_ENFORCE": 1,
          "OE.BOOT": 1,
          "OE.DEDICATED_ADMIN_NET": 1,
          "OE.DIFF_NET": 1,
          "OE.HIGH_AVAILABILITY": 1,
          "OE.HIGH_PROTECTION": 1,
          "OE.HSM": 1,
          "OE.NTP_SERVER": 1,
          "OE.PKI": 1,
          "OE.ROLE_SEPARATION": 1,
          "OE.TRUSTW_ONLY": 1,
          "OE.TRUSTW_STAFF": 1,
          "OE.USER_IDENT": 1
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ALC": {
          "ALC_FLR": 3,
          "ALC_FLR.2": 4
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 2": 2,
          "EAL 2+": 1,
          "EAL 4": 5,
          "EAL 4 augmented": 3,
          "EAL 5": 1
        }
      },
      "cc_sfr": {
        "FTP": {
          "FTP_TRP.1": 1
        }
      },
      "certification_process": {
        "ConfidentialDocument": {
          "BSI-DSZ-CC-1129-2021, Version 2, 06.07.2021, SDoT Security Gateway Security Target, INFODAS GmbH (confidential document) [7] Evaluation Technical Report, Version 4, 20.09.2021, Final Evaluation Technical Report, atsec": 1,
          "being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1,
          "sanitised public document) [9] Configuration list for the TOE, 19.07.2021, Main Configuration List (confidential document) [10] SDoT Security Gateway - Produktinformation - Anforderungen an den sicheren Betrieb Product": 1
        }
      },
      "cipher_mode": {
        "GCM": {
          "GCM": 7
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS": 7,
            "TLS1.2": 1,
            "TLSv1.2": 2
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 3,
          "brainpoolP384r1": 1,
          "brainpoolP512r1": 3
        },
        "NIST": {
          "secp256r1": 3,
          "secp384r1": 1
        }
      },
      "eval_facility": {
        "atsec": {
          "atsec": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-2": 5,
            "SHA-256": 2,
            "SHA-384": 3,
            "SHA-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {
        "other": {
          "JIL": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 1": 1,
          "AIS 14": 1,
          "AIS 19": 1,
          "AIS 23": 1,
          "AIS 32": 1,
          "AIS 35": 2
        },
        "FIPS": {
          "FIPS180-4": 8,
          "FIPS186-4": 5,
          "FIPS197": 3
        },
        "ISO": {
          "ISO/IEC 15408": 4,
          "ISO/IEC 17065": 2,
          "ISO/IEC 18045": 4
        },
        "RFC": {
          "RFC2104": 3,
          "RFC3447": 2,
          "RFC5246": 3,
          "RFC5288": 2,
          "RFC5758": 2,
          "RFC6234": 3
        },
        "X509": {
          "X.509": 2,
          "x.509": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 8,
            "AES-": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 5,
            "HMAC-SHA-384": 1
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI 7148": 1,
          "BSI TR-02102": 1
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "INFODAS GmbH",
      "/CreationDate": "D:20211004123112+02\u002700\u0027",
      "/Creator": "Writer",
      "/Keywords": "Common Criteria, Certification, Zertifizierung, Security Gateway, Infodas",
      "/ModDate": "D:20211007093339+02\u002700\u0027",
      "/Producer": "LibreOffice 6.3",
      "/Subject": "Certification Report BSI-DSZ-CC-1129-2021",
      "/Title": "Certification Report",
      "pdf_file_size_bytes": 789261,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.bsi.bund.de/zertifizierungsreporte",
          "http://www.commoncriteriaportal.org/",
          "https://csrc.nist.gov/publications/detail/sp/800-38d/final",
          "https://www.bsi.bund.de/AIS",
          "https://www.sogis.eu/",
          "https://www.bsi.bund.de/zertifizierung",
          "https://csrc.nist.gov/publications/detail/fips/197/final",
          "http://www.ietf.org/rfc/rfc6234.txt",
          "http://www.commoncriteriaportal.org/cc/",
          "https://www.bsi.bund.de/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 28
    },
    "st_filename": "1129b_pdf.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDH": {
            "ECDHE": 1
          },
          "ECDSA": {
            "ECDSA": 2
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1129": 1
        }
      },
      "cc_claims": {
        "A": {
          "A.ACCESS": 4,
          "A.AUDIT": 5,
          "A.BOOT": 6,
          "A.DEDICATED_ADMIN": 1,
          "A.DEDICATED_ADMIN_NET": 5,
          "A.DIFF_NET": 5,
          "A.HIGH_AVAILABILITY": 5,
          "A.HIGH_AVAILABILLITY": 1,
          "A.HIGH_PROTECTION": 4,
          "A.HSM": 6,
          "A.LABEL_MAN": 1,
          "A.NTP_SERVER": 5,
          "A.PKI": 5,
          "A.ROLE_SEPARATION": 4,
          "A.TRUSTW_ONLY": 4,
          "A.TRUSTW_STAFF": 5,
          "A.USER_IDENT": 5
        },
        "OE": {
          "OE.ACCESS": 4,
          "OE.AUDIT_ENFORCE": 5,
          "OE.BOOT": 5,
          "OE.DEDICATED_ADMIN_NET": 3,
          "OE.DIFF_NET": 7,
          "OE.HIGH_AVAILABILITY": 5,
          "OE.HIGH_PROTECTION": 8,
          "OE.HSM": 2,
          "OE.LABEL_MAN": 1,
          "OE.NTP_SERVER": 5,
          "OE.PKI": 5,
          "OE.ROLE_SEPARATION": 5,
          "OE.TRUSTW_ONLY": 4,
          "OE.TRUSTW_STAFF": 6,
          "OE.USER_IDENT": 2
        },
        "OSP": {
          "OSP.AUDIT": 5,
          "OSP.CONFIG_AUDIT": 5,
          "OSP.DUAL_CONTROL": 4,
          "OSP.FLOW_CONTROL": 5,
          "OSP.PROTOCOLS": 6
        },
        "OT": {
          "OT.AUDIT": 10,
          "OT.AUDIT_CHANGE_LOG": 8,
          "OT.AUDIT_LOG_AVAILABILITY": 10,
          "OT.AUDIT_PROTECT": 8,
          "OT.BANDWIDTH": 6,
          "OT.DEFAULT": 4,
          "OT.FILTER": 16,
          "OT.FOUR_EYES": 6,
          "OT.INIT": 10,
          "OT.LABELS": 12,
          "OT.PRE_FILTER": 6,
          "OT.PROTECTION": 6,
          "OT.PROTOCOLS": 11,
          "OT.PROTOCOL_DENY": 11,
          "OT.ROLE_SEPARATION": 13,
          "OT.SANITISED_DATA": 9,
          "OT.SECURE_CHANNEL": 8,
          "OT.USER_AUTHENTICATION": 11,
          "OT.WARNING": 10
        },
        "T": {
          "T.AUDIT_ACCESS": 7,
          "T.AUDIT_COLLAPSE": 6,
          "T.AUDIT_CONTROL": 5,
          "T.AUTH": 6,
          "T.INSERT": 6,
          "T.MALICIOUS_CODE": 8,
          "T.MISCONFIG": 6,
          "T.REVEAL_TO_LOW": 15,
          "T.WRONG_LABEL": 6
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1,
          "ADV_FSP": 1,
          "ADV_IMP": 1,
          "ADV_TDS": 1
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_PRE": 1
        },
        "ALC": {
          "ALC_CMC": 1,
          "ALC_CMS": 1,
          "ALC_DEL": 1,
          "ALC_DVS": 1,
          "ALC_FLR": 1,
          "ALC_FLR.2": 3,
          "ALC_LCD": 1,
          "ALC_TAT": 1
        },
        "ASE": {
          "ASE_CCL": 1,
          "ASE_CCL.1": 2,
          "ASE_ECD": 1,
          "ASE_ECD.1": 2,
          "ASE_INT": 1,
          "ASE_INT.1": 3,
          "ASE_OBJ": 1,
          "ASE_OBJ.2": 2,
          "ASE_REQ": 1,
          "ASE_REQ.2": 2,
          "ASE_SPD": 1,
          "ASE_SPD.1": 2,
          "ASE_TSS": 1,
          "ASE_TSS.1": 2
        },
        "ATE": {
          "ATE_COV": 1,
          "ATE_DPT": 1,
          "ATE_FUN": 1,
          "ATE_IND": 1
        },
        "AVA": {
          "AVA_VAN": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL4": 5,
          "EAL4 augmented": 3,
          "EAL4+": 1
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_ARP": 1,
          "FAU_ARP.1": 9,
          "FAU_ARP.1.1": 1,
          "FAU_GEN": 2,
          "FAU_GEN.1": 17,
          "FAU_GEN.1.1": 1,
          "FAU_GEN.1.2": 1,
          "FAU_GEN.2": 8,
          "FAU_GEN.2.1": 1,
          "FAU_SAA": 1,
          "FAU_SAA.1": 9,
          "FAU_SAA.1.1": 1,
          "FAU_SAA.1.2": 1,
          "FAU_SAR": 1,
          "FAU_SAR.1": 9,
          "FAU_SAR.1.1": 1,
          "FAU_SAR.1.2": 1,
          "FAU_SAR.2": 9,
          "FAU_SAR.2.1": 1,
          "FAU_STG": 1,
          "FAU_STG.1": 6,
          "FAU_STG.2": 11,
          "FAU_STG.2.1": 1,
          "FAU_STG.2.2": 1,
          "FAU_STG.2.3": 1,
          "FAU_STG.3": 9,
          "FAU_STG.3.1": 1,
          "FAU_STG.4": 7,
          "FAU_STG.4.1": 1
        },
        "FCO": {
          "FCO_NRO.2": 1
        },
        "FCS": {
          "FCS_CKM": 12,
          "FCS_CKM.1": 15,
          "FCS_CKM.2": 8,
          "FCS_CKM.4": 22,
          "FCS_CKM.4.1": 1,
          "FCS_COP": 47,
          "FCS_COP.1": 7
        },
        "FDP": {
          "FDP_ACC": 39,
          "FDP_ACC.1": 17,
          "FDP_ACF": 40,
          "FDP_ACF.1": 38,
          "FDP_IFC": 38,
          "FDP_IFC.1": 19,
          "FDP_IFF": 53,
          "FDP_IFF.1": 40,
          "FDP_IFF.3": 8,
          "FDP_IFF.3.1": 1,
          "FDP_ITC.1": 14,
          "FDP_ITC.2": 15
        },
        "FIA": {
          "FIA_ATD.1": 1,
          "FIA_UAU": 1,
          "FIA_UAU.1": 1,
          "FIA_UAU.2": 8,
          "FIA_UAU.2.1": 1,
          "FIA_UID": 1,
          "FIA_UID.1": 1,
          "FIA_UID.2": 17,
          "FIA_UID.2.1": 1
        },
        "FMT": {
          "FMT_MSA": 1,
          "FMT_MSA.1": 11,
          "FMT_MSA.1.1": 1,
          "FMT_MSA.3": 22,
          "FMT_MSA.3.1": 1,
          "FMT_MSA.3.2": 1,
          "FMT_MTD": 31,
          "FMT_MTD.1": 7,
          "FMT_MTD.3": 7,
          "FMT_MTD.3.1": 1,
          "FMT_SMF": 2,
          "FMT_SMF.1": 26,
          "FMT_SMF.1.1": 1,
          "FMT_SMR": 1,
          "FMT_SMR.1": 12,
          "FMT_SMR.2": 11,
          "FMT_SMR.2.1": 1,
          "FMT_SMR.2.2": 1,
          "FMT_SMR.2.3": 1
        },
        "FPT": {
          "FPT_INC": 4,
          "FPT_INC.1": 13,
          "FPT_INC.1.1": 2,
          "FPT_INC.1.2": 2,
          "FPT_INC.1.3": 2,
          "FPT_STM": 1,
          "FPT_STM.1": 11,
          "FPT_STM.1.1": 1,
          "FPT_TDC": 1,
          "FPT_TDC.1": 7,
          "FPT_TDC.1.1": 1,
          "FPT_TDC.1.2": 1,
          "FPT_TST": 1
        },
        "FTP": {
          "FTP_TRP": 2,
          "FTP_TRP.1": 8,
          "FTP_TRP.1.1": 1,
          "FTP_TRP.1.2": 1,
          "FTP_TRP.1.3": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "GCM": {
          "GCM": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS": 20,
            "TLS 1.2": 2
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 1,
          "brainpoolP384r1": 1,
          "brainpoolP512r1": 1
        },
        "NIST": {
          "secp256r1": 1,
          "secp384r1": 1
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-2": 1,
            "SHA-256": 1,
            "SHA-384": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 1
        }
      },
      "side_channel_analysis": {
        "FI": {
          "malfunction": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 35": 1,
          "AIS 41": 1
        },
        "CC": {
          "CCMB-2017-04-002": 3,
          "CCMB-2017-04-003": 2,
          "CCMB-2017-04-004": 1
        },
        "FIPS": {
          "FIPS 180-4": 1,
          "FIPS 197": 1
        },
        "PKCS": {
          "PKCS#1": 1
        },
        "RFC": {
          "RFC 2104": 2,
          "RFC 3447": 1,
          "RFC 3986": 1,
          "RFC3986": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 2
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 3
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "INFODAS GmbH",
      "/CreationDate": "D:20210906121952+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word f\u00fcr Microsoft 365",
      "/ModDate": "D:20210906121952+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word f\u00fcr Microsoft 365",
      "/Subject": "Security Target",
      "/Title": "Security Target Lite",
      "pdf_file_size_bytes": 1989754,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.w3.org/TR/xml/",
          "http://www.w3.org/TR/xmldsig-core1/",
          "http://www.xmlspif.org/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 105
    }
  },
  "protection_profile_links": {
    "_type": "Set",
    "elements": []
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129a_pdf.pdf",
  "scheme": "DE",
  "security_level": {
    "_type": "Set",
    "elements": [
      "ALC_FLR.2",
      "EAL4+"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1129b_pdf.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "d79f3125f5affa8adea9d363ce55fd9c89ae52d840ffe86641d1f9c8fc50fa3a",
      "txt_hash": "387afb2817863b44ce9930493dfe5b1a94147f9ec1b956e7ad4094747fc69889"
    },
    "report": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "a7f6441cba2bddd5e4802a67da4116df0cf372ff17cba60932ee32912e22d714",
      "txt_hash": "e4981bef10f3cce2f0db60aef10cc25a2964e7289b0c2fbde81bd67ab48c1088"
    },
    "st": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "121ec317c98f627a4233c1decd4bc2ab5eeb1abb83b16a3144708895ab3c0796",
      "txt_hash": "d60c3ba8afd5879dadcfd906c5499b26df1341c3b95da72495bd79886fce99d4"
    }
  },
  "status": "active"
}

Sections

SDoT Security Gateway, Version 6.2i

CSV information

Heuristics summary

Certificate

Extracted keywords

Common Criteria

Security level

Security Assurance Requirements (SAR)

Certificates

Other

Standards

File metadata

Certification report

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Elliptic Curves

Block cipher modes

Common Criteria

Security level

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Certificates

Evaluation facilities

Security

Side-channel analysis

Certification process

Other

Standards

Technical reports

File metadata

Frontpage

Security target

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Protocols

Randomness

Elliptic Curves

Block cipher modes

Common Criteria

Security level

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Certificates

Security

Side-channel analysis

Other

Standards

File metadata

Heuristics

Automated inference - use with caution

Certificate ID

Extracted SARs

References

Updates Feed

Raw data

Toggle raw data