{ "_type": "sec_certs.dataset.cc_scheme.CCSchemeDataset", "schemes": { "AU": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "AU", "timestamp": "2026-03-30T12:05:08.822013", "lists": { "INEVALUATION": [ { "vendor": "RackTop Systems, Inc", "product": "RackTop SHIELD v1.0", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/racktop-shield-v10", "level": "Collaborative Protection Profile for Full Drive Encryption – Authorization Acquisition, Version 2.0 + Errata 20190201, 01-Feb-2019", "acceptance_date": "2025-11-12", "evaluation_facility": "Teron Labs", "task_id": "EFT-T067", "enhanced": { "version": "1.0", "category": "Data Protection", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q2/2026", "vendor": "RackTop Systems, Inc.\nSuite 180, 8170 Maple Lawn Blvd. Fulton\nMaryland\n20759\nUSA\nhttps://www.racktopsystems.com", "contacts": [ "Name: Jonathan HalstuchContact: jhalstuch@racktopsystems.com" ], "description": "RackTop SHIELD v1.0 is a software-based Unified Extensible Firmware Interface (UEFI) resident bootloader that facilitates access to encrypted data on Self-Encrypting Drives (SEDs). The TOE is software which provides pre-boot authentication and unlocking for Self-Encrypting Drives (SEDs). The TOE is responsible for orchestrating the unlocking of hardware-based encryption engines present in TCG-compliant SEDs utilizing FIPS 140-2 or 140-3 validated cryptographic modules. It ensures that storage media remains inaccessible unless proper authorization data is presented in the form of 256-bit keys protected by physical separation from the host system." } }, { "vendor": "RackTop Systems, Inc", "product": "RackTop SPEAR v1.0", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/racktop-spear-v10", "level": "Collaborative Protection Profile for Full Drive Encryption – Authorization Acquisition, Version 2.0 + Errata 20190201, 01-Feb-2019. Collaborative Protection Profile for Full Drive Encryption – Encryption Engine, Version 2.0 + Errata 20190201, 01-Feb-2019", "acceptance_date": "2025-11-12", "evaluation_facility": "Teron Labs", "task_id": "EFT-T066", "enhanced": { "version": "1.0", "category": "Data Protection", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q2/2026", "vendor": "RackTop Systems, Inc.\nSuite 180, 8170 Maple Lawn Blvd. Fulton\nMaryland\n20759\nUSA\nhttps://www.racktopsystems.com", "contacts": [ "Name: Jonathan HalstuchContact: jhalstuch@racktopsystems.com" ], "description": "RackTop SPEAR v1.0 is a software-based Full Drive Encryption (FDE) solution built on the Linux Unified Key Setup (LUKS) version 2 specification. The TOE is a software FDE product that leverages RHEL 9.4 running on dedicated hardware. The TOE implements both the Authorization Acquisition (AA) function and the Encryption Engine (EE) function, as defined in the Full Disk Encryption collaborative Protection Profiles. The bootloader integration with the AA component ensures that the operating system cannot start until valid credentials are successfully presented and verified. When deployed in its intended configuration, the TOE protects both the operating system drive and all data drives, requiring successful unlocking of each protected volume before the OS completes its boot process and any protected data becomes accessible." } }, { "vendor": "Juniper Networks Inc", "product": "Juniper SRX4700, SRX4120 and SRX2300 for Junos OS 25.2R1", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/juniper-srx4700-srx4120-and-srx2300-for-junos-os-252r1", "level": "NDcPPv3.0e, Functional Package for Secure Shell (SSH) version1.0, PP-Module for VPN Gateways, version 1.3, PP-Module for Stateful Traffic Filter Firewalls, version 1.4 + Errata 20200625, PP-Module for Intrusion Prevention Systems (IPS), version1.0", "acceptance_date": "2025-09-23", "evaluation_facility": "Teron Labs", "task_id": "EFT-T065", "enhanced": { "version": "Juniper Junos OS 25.2R1", "category": "Network and Network Related Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q1/2026", "vendor": "Juniper Networks Inc\n1133 Innovation Way Sunnyvale 94089 CA\nhttps://www.juniper.net", "contacts": [ "Peggy KennedyProgram Manager Juniper NetworksEmail: pkennedy@juniper.net" ], "description": "The Target of Evaluation (TOE) is purpose-built to protect network environments and provide Internet Mix (IMIX) firewall with high throughput. The TOE incorporates multiple security services and networking functions for a virtual or non-virtual appliance. This allows the TOE to provide highly customisable threat protection, automation, and integration capabilities. The TOE are offered as high throughput Next-Generation Firewall (NGFW) and Intrusion Prevention System (IPS), and a high-speed IPsec Virtual Private Network (VPN) in the data centre, enterprise campus, and regional headquarters deployments with IMIX traffic patterns. The TOE is a physical and standalone network appliance that includes both software and hardware. The software implements the routing engine and the packet forwarding engine of the TOE. Together, the two implement all routing plane and management plane functions of the TOE. The SRX hardware platforms in scope are the SRX4700, SRX4120, and SRX2300." } }, { "vendor": "Juniper Networks", "product": "Juniper Junos OS 24.4R1 for SRX380", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/juniper-junos-os-244r1-for-srx380", "level": "NDcPPv3.0e, Functional Package for Secure Shell (SSH) version1.0, PP-Module for VPN Gateways, version 1.3, PP-Module for Stateful Traffic Filter Firewalls, version 1.4 + Errata 20200625, PP-Module for Intrusion Prevention Systems (IPS), version1.0,PP-Module for MACsec, version 1.0", "acceptance_date": "2025-07-29", "evaluation_facility": "Teron Labs", "task_id": "EFT-T064", "enhanced": { "version": "Hardware: SRX380, Software: Juniper Junos OS 24.4R1", "category": "Network and Network Related Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q4 2025", "vendor": "Juniper Networks Inc\n1133 Innovation Way Sunnyvale 94089 CA\nhttps://www.juniper.net", "contacts": [ "Peggy KennedyProgram ManagerJuniper NetworksEmail: pkennedy@juniper.net" ], "description": "The TOE is a non-virtual and non-distributed network appliance that includes both software and hardware. The software implements the routing engine and the packet forwarding engine of the TOE. Together, the two implement all routing plane and management plane functions of the TOE. The SRX hardware platform in scope is the SRX380. The TOE is purpose-built to protect network environments and provide Internet Mix (IMIX) firewall with high throughput. The TOE incorporates multiple security services and networking functions for a non-virtual appliance. This allows the TOE to provide highly customisable threat protection, automation, and integration capabilities. The TOE offers high throughput Next-Generation Firewall (NGFW), Intrusion Prevention System (IPS), a high-speed IPsec Virtual Private Network (VPN) in office branches and regional headquarters deployments with IMIX traffic patterns, and MACsec, a symmetric cryptography based Ethernet layer protocol for protecting communication between the two endpoints of an Ethernet link. The TOE may be configured in high availability cluster mode." } }, { "vendor": "Rubrik, Inc", "product": "Rubrik SC-P and CDM", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/rubrik-inc-security-cloud-private-and-cloud-data-management-v2412-p3-81-and-v923-p3-29515", "level": "EAL2 + ALC_FLR.2", "acceptance_date": "2025-10-01", "evaluation_facility": "Teron Labs", "task_id": "EFT-T062", "enhanced": { "version": "Security Cloud – Private v2.4.12-p3-81, Cloud Data Management v9.2.3-p3-29515", "category": "Data Protection", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q1/2026", "vendor": "Rubrik Inc.\n3495 Deer Creek Road, Palo Alto, CA 94304, USA\nhttps://www.rubrik.com/", "contacts": [ "Joshua Ryan McCullochStaff Information Security Program Manager, Rubrikjosh.mcculloch@rubrik.com" ], "description": "The Target of Evaluation (TOE) is a distributed platform consisting of Rubrik Security Cloud – Private (SC-P) and Rubrik Cloud Data Management (CDM). CDM is a software platform that distributes data, metadata, and task management across a cluster, and SC-P permits administration and management of multiple Rubrik CDM clusters through a single web UI. A Rubrik CDM cluster is a collection of objects that include sources from where data is getting backed up, targets where backups are stored, and security principals, or the users and service accounts that manages the cluster. Rubrik SC-P provides a global management view of the daily operations of the connected CDM clusters. SC-P apps monitor the protection and compliance status of CDM clusters, generating reports and charts using current and historical data about the health, protection, and compliance status of all of the objects that the CDM clusters protect. Both SC-P and CDM are deployed as virtual machines on compliant hypervisors." } }, { "vendor": "Juniper Networks", "product": "Juniper Networks Junos OS 24.4R1 for SRX300, SRX320, SRX340, SRX345, and SRX345D", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/juniper-networks-junos-os-244r1-for-srx300-srx320-srx340-srx345-and-srx345d", "level": "NDcPPv3.0e, Functional Package for Secure Shell (SSH) version1.0, PP-Module for VPN Gateways, version 1.3, PP-Module for Stateful Traffic Filter Firewalls, version 1.4 + Errata 20200625, PP-Module for Intrusion Prevention Systems (IPS), version1.0", "acceptance_date": "2025-06-19", "evaluation_facility": "Teron Labs", "task_id": "EFT-T060", "enhanced": { "version": "Junos OS 24.4R1", "category": "Network and Network Related Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q4/2025", "vendor": "Juniper Networks Inc\n1133 Innovation Way Sunnyvale 94089 CA\nhttps://www.juniper.net", "contacts": [ "Geetha NaikEngineering Program Manager Juniper NetworksEmail: ngeetha@juniper.net" ], "description": "The TOE is a non-virtual and non-distributed network appliance. The TOE is an instance of Juniper Networks’ Software Defined Networking (SDN), it has Intrusion Protection Systems (IPS), Virtual Private Network (VPN) Gateway, Stateful filtering and Secure Shell (SSH) functionalities. Variants of the TOE deliver Next Generation Firewall (NGFW) and secure SD WAN. There are five variants of the TOE that implement identical functionality but differ in form factor and capabilities. The TOE may be configured in high availability cluster mode." } }, { "vendor": "Juniper Networks", "product": "Juniper Networks Juniper SRX Series and vSRX for Junos OS 24.4R1", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/juniper-networks-juniper-srx-series-and-vsrx-for-junos-os-244r1", "level": "NDcPPv3.0e, Functional Package for Secure Shell (SSH) version1.0, PP-Module for VPN Gateways, version 1.3, PP-Module for Stateful Traffic Filter Firewalls, version 1.4 + Errata 20200625, PP-Module for Intrusion Prevention Systems (IPS), version1.0", "acceptance_date": "2025-03-27", "evaluation_facility": "Teron Labs", "task_id": "EFT-T057", "enhanced": { "version": null, "category": "Network and Network Related Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q3 2025", "vendor": "Juniper Networks Inc\n1133 Innovation Way Sunnyvale 94089 CA\nhttps://www.juniper.net", "contacts": [ "Geetha NalkCertification Program ManagerPhone: +91 80 6121 4404Email:ngeetha@juniper.net" ], "description": "The Target of Evaluation (TOE) is purpose-built to protect network environments and provide Internet Mix (IMIX) firewall with high throughput. The TOE incorporates multiple security services and networking functions for a virtual or non-virtual appliance. This allows the TOE to provide highly customizable threat protection, automation, and integration capabilities. The TOE are offered as high throughput Next-Generation Firewall (NGFW) and Intrusion Prevention System (IPS), and a high-speed IPsec Virtual Private Network (VPN) in the data centre, enterprise campus, and regional headquarters deployments with IMIX traffic patterns. The TOE is a network device with two variants. The SRX variant of the TOE is a non-virtual and non-distributed network device and the vSRX variant of the TOE is a virtual, non-distributed network device. It is a software-only TOE intended to be executed on specific hardware platforms. The hardware SRX series platforms in scope are the SRX1500, SRX1600, SRX2300, SRX4100, SRX4200, SRX4300, SRX4600, SRX5400, SRX5600, and SRX5800." } }, { "vendor": "Advanced Design Technology (ADT)", "product": "ADT WASP KVM v1.0", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/adt-wasp", "level": "Protection Profile for Peripheral Sharing Device, Version 4.0, PP-Module for Video/Display Devices, Version 1.0, PP-Module for Keyboard/Mouse Devices, Version 1.0", "acceptance_date": "2024-09-29", "evaluation_facility": "Teron Labs", "task_id": "EFT-T052", "enhanced": { "version": "Firmware Version 1.0", "category": "Other Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q3/2025", "vendor": "Advanced Design Technology (ADT)", "contacts": [ "Adrian ThearleAdvanced Design Technology (ADT)adrian.thearle@adt.com.au" ], "description": "ADT KVM, i.e. the TOE, is a suite of KVM appliances designed to connect a single set of peripherals, including a mouse, keyboard, user authentication device and two or more video displays (depending on device model) to the TOE. The TOE’s computer ports are connected to 2, 3 or 4 separate computers (depending on device model). The user can then securely switch the connected console peripherals between the connected computers while preventing unintended or unauthorized data flows between computers. The TOE switches port based on the press and release of the port selection buttons on the TOE. The selected device is always identifiable by the lights associated with the applicable selection button. The TOE’s console ports support USB and DisplayPort ports. The TOE’s computer ports support USB keyboard and mouse, and DisplayPort. All models of the TOE support the same functionality, with the following differences between the models: KVM_PR_CKVM_DP_2p supports 2 connected computers via (mini) DisplayPort external video. KVM_PR_CKVM_DP_3p supports 3 connected computers via (mini) DisplayPort external video. KVM_PR_CKVM_DP_4p supports 4 connected computers via (mini) DisplayPort external video." } }, { "vendor": "Northrop Grumman Corporation", "product": "Ad Noctem Connect 2.3", "url": "https://www.cyber.gov.au/resources-business-and-government/assessment-and-evaluation-programs/australian-information-security-evaluation-program/ad-noctem-connect-23", "level": "Protection Profile for Application Software, version 1.4, PP-Module for Virtual Private Network (VPN) Clients, version 2.4", "acceptance_date": "2024-07-01", "evaluation_facility": "Teron Labs", "task_id": "EFT-T053", "enhanced": { "version": "2.3", "category": "Other Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q1/2026", "vendor": "Northrop Grumman Corporation\n2980 Fairview Park Drive, Falls Church 22042, VA, USA", "contacts": [ "Name: Alex BarronPosition: Staff Engineer, Manufacturing SystemEmail: alex.barron@ngc.com" ], "description": "The Target of Evaluation (TOE) is the Northrup Grumman Ad Noctem Connect software that provides a secure VPN connectivity for its users over untrusted networks. The TOE is a VPN Client application that uses a web-based interface for its configuration. The VPN client allows users to connect to VPN Gateway endpoints using IKEv2/IPsec." } }, { "vendor": "HPE Aruba Networking", "product": "HPE Aruba Networking Virtual Intranet Access client (VIA)", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/hpe-aruba-networking-virtual-intranet-access-client-via", "level": "Protection Profile for Application Software, version 1.4, PP-Module for Virtual Private Network (VPN) Clients, version 2.4", "acceptance_date": "2024-07-01", "evaluation_facility": "Teron Labs", "task_id": "EFT-T050", "enhanced": { "version": "4.7", "category": "Other Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q3/2025", "vendor": "HPE Aruba Networking\n11445 Compaq Centre Drive West Houston 77070 TX\nhttps://www.hpe.com", "contacts": [ "Name: Kevin MiccichePosition: Senior Manager, Trust and AssuranceEmail: Kevin.micciche@hpe.com" ], "description": "The Target of Evaluation (TOE) is the HPE Aruba Networking Virtual Intranet Access (VIA) Client version 4.7. The TOE is a software application with IPsec VPN client capability. The TOE runs on an end-user device and communicates with a gateway located on a Mobility Controller. The server component is used to manage the client and ensure policies are enforced. The Mobility Controller maintains certain VIA configuration profiles, such as the VIA authentication profile, the VIA connection profile, and the VIA web authentication profile. Each profile plays an important role in authenticating the users and establishing a secure connection." } }, { "vendor": "Juniper Networks Inc", "product": "Juniper SSR software v7.0.1 on Juniper SSR120, SSR130, SSR1200, SSR1300, SSR1400, SSR1500 and HPE ProLiant DL345 Gen11", "url": "https://www.cyber.gov.au/resources-business-and-government/assessment-and-evaluation-programs/australian-information-security-evaluation-program/juniper-ssr-software-v701-on-juniper-ssr120-ssr130-ssr1200-ssr1300-ssr1400-ssr1500-and-hpe-proliant-dl345-gen11", "level": "NDcPPv2.2e, PP-Module for Stateful Traffic Filter Firewalls, Version 1.4", "acceptance_date": "2024-06-13", "evaluation_facility": "Teron Lab", "task_id": "EFT-T048", "enhanced": { "version": "SSR software v7.0.1", "category": "Network and Network Related Devices and Systems", "evaluation_facility": "Teron Labs", "certification_progress": "Progressing", "estimated_approval": "Q4/2025", "vendor": "Juniper Networks Inc\n1133 Innovation Way Sunnyvale 94089 CA\nhttps://www.juniper.net", "contacts": [ "Name: Reid StidolphPosition: Product ManagerEmail:rstidolph@juniper.net" ], "description": "The TOE is a family of Juniper SSR appliances. They consist of software executing on Juniper and Hewlett Packard Enterprise (HPE) branded platforms. The TOE is the entire appliance which consists of the platform and the software. The software-only SSR solution, which the user may deploy on third party platforms, is not included in the evaluation. Also, the virtual SSR product is not included in the evaluation. Each variant of the TOE is a bare metal variant. Each TOE variant includes the same software. Each variant may be provisioned and configured by the user to be a Session Smart Router (in short: Router) or a Session Smart Conductor (in short: Conductor). The TOE implements all security functions of a network device. It also implements a stateful traffic filtering firewall to guard access to the protected network." } }, { "vendor": "Cogito Group", "product": "Jellyfish Leviathan CA 1.0", "url": "https://www.cyber.gov.au/business-government/protecting-devices-systems/assessment-evaluation-programs/australian-information-security-evaluation-program/jellyfish-leviathan-ca", "level": "CA_PPv2.1", "acceptance_date": "2023-11-21", "evaluation_facility": "Viden Labs", "task_id": "EFV-T002", "enhanced": { "version": "Version 1.0", "category": "Other Devices – Certificate Authority", "evaluation_facility": "Viden Labs", "certification_progress": "Progressing", "estimated_approval": "Q2/2024", "vendor": "Cogito Group\nSuite 3, 9 Sydney Avenue, BARTON ACT 2600\nhttps://cogitogroup.net", "contacts": [ "Richard Brown Managing Director richard.brown@cogitogroup.net 1800 COGITO (264486)" ], "description": "The Target of Evaluation (TOE) is Jellyfish Leviathan Certificate Authority and it is a platform independent web-based application that provides certificate authority and registration services. Please note: This product will complete AISEP’s certification process upon successful product evaluation and Viden Labs gaining NATA accreditation" } } ] } }, "CA": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "CA", "timestamp": "2026-03-30T12:05:25.614277", "lists": { "INEVALUATION": [ { "product": "Xerox® VersaLink™ C415 / B415 / C625 / B625 with HDD", "vendor": "Xerox Corporation", "level": "CPP_HCD_V1.0E", "evaluation_facility": "Lightship Security" }, { "product": "RICOH IM 2510/2519J/3010/3019J/3510/3519J/4510/4519J/5510/5519J/6010/6019J, version JE-1.00-H", "vendor": "Ricoh Company, Ltd.", "level": "CPP_HCD_V1.0E", "evaluation_facility": "Lightship Security" }, { "product": "Dell PowerProtect Data Manager v19.21", "vendor": "Dell Technologies", "level": "EAL2+ (ALC_FLR.2)", "evaluation_facility": "Lightship Security" }, { "product": "Crunchy Certified PostgreSQL 17", "vendor": "Crunchy Data Solutions, Inc.", "level": "CPP_DBMS_V1.3", "evaluation_facility": "Lightship Security" }, { "product": "E-Series and EF-Series with SANTricity v11.90", "vendor": "NetApp, Inc.", "level": "CPP_ND_V3.0E", "evaluation_facility": "Lightship Security" }, { "product": "Layer 7 API Gateway v11.1", "vendor": "Broadcom Inc.", "level": "CPP_ND_V3.0E, PKG_SSH_V1.0", "evaluation_facility": "Lightship Security" }, { "product": "Broadcom Symantec Privileged Access Manager 4.3", "vendor": "Broadcom", "level": "PP_ESM_PM_V2.1", "evaluation_facility": "EWA-Canada" }, { "product": "Vertiv Micro SC825SFF-400, SC925SFF-400, SC845SFF-400, SC945SFF-400, SC885SFF-400, SC985SFF-400, SCMV245SFF-400, SC825SFF-B-DP-400, SC825SFF-B-H-400, SC925SFF-B-DP-400, SC925SFF-B-H-400, SC845SFF-B-DP-400, SC845SFF-B-H-400, SC945SFF-B-DP-400, SC945SFF-B-H-400, SC885SFF-B-DP-400, SC885SFF-B-H-400, SC985SFF-B-DP-400, SC985SFF-B-H-400, SCMV245SFF-B-DP-400, SCMV245SFF-B-DP-400 Firmware Version 44044-M7M7", "vendor": "Vertiv", "level": "PP_PSD_V4.0, MOD_KM_V1.0, MOD_VI_V1.0, MOD_UA_V1.0", "evaluation_facility": "EWA-Canada" }, { "product": "High Sec Labs RS20N-4 and RS40N-4 Secure Multi-Domain Smart Card Reader Firmware Version 40040-0E7", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0, MOD_UA_V1.0", "evaluation_facility": "EWA-Canada" }, { "product": "Xerox® VersaLink™ C415 / B415 / C625 / B625 with eMMC", "vendor": "Xerox Corporation", "level": "CPP_HCD_V1.0E", "evaluation_facility": "Lightship Security" }, { "product": "FortiGate with FortiOS 7.6", "vendor": "Fortinet", "level": "CPP_ND_V3.0E, MOD_CPP_FW_V1.4E, MOD_VPNGW_V1.3, PKG_SSH_V1.0", "evaluation_facility": "Lightship Security" }, { "product": "Belkin F1DN102KVM-UN-4, F1DN102KVM-UN4Z, F1DN102KVM-UN4C, F1DN202KVM-UN-4, F1DN202KVM-UN4Z, F1DN202KVM-UN4C, F1DN104KVM-UN-4, F1DN104KVM-UN4Z, F1DN104KVM-UN4C, F1DN104KVM-UN4W, F1DN204KVM-UN-4, F1DN204KVM-UN4Z, F1DN204KVM-UN4C, F1DN204KVM-UN4W, F1DN204KVM-UN4M, F1DN108KVM-UN-4, F1DN108KVM-UN4Z, F1DN108KVM-UN4W, F1DN208KVM-UN-4, F1DN208KVM-UN4Z, F1DN208KVM-UN4W, F1DN116KVM-UN-4 Firmware Version 44444-E7E7 Peripheral Sharing Devices", "vendor": "Belkin International, Inc.", "level": "PP_PSD_V4.0, MOD_AO_V1.0, MOD_KM_V1.0, MOD_VI_V1.0, MOD_UA_V1.0", "evaluation_facility": "EWA-Canada" } ], "CERTIFIED": [ { "product": "Nokia IXR Service Router Linux (SR Linux) Family v24.10.4", "vendor": "Nokia Corporation", "level": "EAL 3+ (ALC_FLR.1)", "certification_date": "2025-12-15" }, { "product": "Xerox® AltaLink™ C8130 / C8135 / C8145 / C8155 / C8170 / B8145 / B8155 / B8170 / C8230 / C8235 / C8245 / C8255 / C8270 / B8245 / B8255 / B8270 with HDD", "vendor": "Xerox Corporation", "level": "CPP_HCD_V1.0E", "certification_date": "2025-12-19" }, { "product": "Xerox® AltaLink™ C8130 / C8135 / C8145 / C8155 / C8170 / B8145 / B8155 / B8170 / C8230 / C8235 / C8245 / C8255 / C8270 / B8245 / B8255 / B8270 with SSD", "vendor": "Xerox Corporation", "level": "CPP_HCD_V1.0E", "certification_date": "2025-12-16" }, { "product": "High Sec Labs DK82PHU-4TR, SX42PHU- 4TR, SX82PHU-4TR, SC42PHU 4TR, SC82PHU-4TR, SC162PHU-4TR Ruggedized KVM Devices Firmware Version 44444 R7R7", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0 MOD_KM_V1.0 MOD_UA_V1.0 MOD_VI_V1.0", "certification_date": "2025-11-28" }, { "product": "RICOH IM C3010SD/C3510SD/C4510SD/C6010SD, version JE-1.00-H", "vendor": "Ricoh Company, Ltd.", "level": "CPP_HCD_v1.0e", "certification_date": "2025-10-27" }, { "product": "RICOH Pro C5400S/C5410S/C5400SL, version JE-1.00-H", "vendor": "Ricoh Company, Ltd.", "level": "CPP_HCD_V1.0e", "certification_date": "2025-11-03" }, { "product": "Auralis™ Wave Optical Diode", "vendor": "Defendable Technologies", "level": "EAL2+ (ALC_FLR.2)", "certification_date": "2025-10-10" }, { "product": "HPE Integrated Lights-Out 6 v1.11", "vendor": "Hewlett Packard Enterprise", "level": "EAL 4+ (ALC_FLR.2)", "certification_date": "2025-08-07" }, { "product": "HPE Integrated Lights-Out 5 v2.73", "vendor": "Hewlett Packard Enterprise", "level": "EAL 4+ (ALC_FLR.2)", "certification_date": "2025-08-19" }, { "product": "RICOH IM C401F/C401SRF/C431/C431F Version JE-1.00-H", "vendor": "Ricoh Company, Ltd.", "level": "cPP_HCD_v1.0e", "certification_date": "2025-08-07" }, { "product": "Fortinet FortiAnalyzer 7.2.9 Fortinet FortiAnalyzer 7.2.9 (build 7495) (February 2026)", "vendor": "Fortinet, Inc.", "level": "EAL4+ ALC_FLR.3", "certification_date": "2025-06-30" }, { "product": "Lexmark MS622, MS822, MS826, CS730, CS735, CS943, MS632, CS632, and CS963 Single-Function Printers, Firmware version 240.204CC", "vendor": "Lexmark International, Inc.", "level": "cPP_HCD_v1.0e", "certification_date": "2025-06-26" }, { "product": "Lexmark MX432, MX421, MX521, MX622, MX721, MX722, MX725, MX931, CX730, CX735, CX930, CX931, CX942, CX943, CX944, CX532, CX635, MX532, MX632, MX953, CX950, CX951, CX961, CX962, CX963, and CX833 Multi-Function Printers with Fax and without Hard Drive, Firmware version 240.204CC", "vendor": "Lexmark International, Inc.", "level": "cPP_HCD_v1.0e", "certification_date": "2025-06-24" }, { "product": "Lexmark MX521, MX931, MX953, CX730, CX930, CX931, CX950, CX951, CX961, CX962, CX963, and CX833 Multi-Function Printers without Fax or Hard Drive, Firmware version 240.204CC", "vendor": "Lexmark International, Inc.", "level": "cPP_HCD_v1.0e", "certification_date": "2025-06-20" }, { "product": "Lexmark MX432, MX522, MX622, MX721, MX722, MX822, MX826, MX931, CX730, CX735, CX930, CX931, CX942, CX943, CX944, CX532, CX635, MX532, MX632, MX953, CX961, CX962, CX963, CX950, CX951 and CX833 Multi-Function Printers with Fax and Hard Drive, Firmware version 240.204CC", "vendor": "Lexmark International, Inc.", "level": "cPP_HCD_v1.0e", "certification_date": "2025-05-29" }, { "product": "Senetas CN 9000 Series Ethernet Encryptors v5.5.0 Senetas CN 9000 Series Ethernet Encryptors v5.5.1 (June 2025)", "vendor": "Senetas Corporation Ltd., distributed by Thales SA (Safenet)", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2025-03-25" }, { "product": "Senetas CN 4000/6000 Series Ethernet Encryptors v5.5.0 Senetas CN 4000/6000 Series Ethernet Encryptors v5.5.1 (June 2025)", "vendor": "Senetas Corporation Ltd., distributed by Thales SA (Safenet)", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2025-03-25" }, { "product": "High Sec Labs FH10N-4 Firmware Version 40404-0E7", "vendor": "High Sec Labs, Ltd.", "level": "PP_PSD_V4.0, MOD_KM_V1.0", "certification_date": "2025-02-28" }, { "product": "High Sec Labs SM20N-4, SM40N-4, SM80N-4 Firmware Version 40404-0E7", "vendor": "High Sec Labs, Ltd.", "level": "PP_PSD_V4.0, MOD_KM_V1.0", "certification_date": "2025-02-28" }, { "product": "Belkin F1DN102KVM-DC-4, F1DN202KVM-DC-4, F1DN104KVM-DC-4, F1DN204KVM-DC-4, F1DN108KVM-DC-4, F1DN208KVM-DC-4, F1DN104KVMDCU-4, F1DN204KVMDCU-4, F1DN104MVKVMDC4, F1DN108MVKVMDC4, F1DN104MKVMDC-4, F1DN108MKVMDC-4 Firmware Version 44444-D5D5", "vendor": "Belkin International, Inc.", "level": "PP_PSD_V4.0, MOD_KM_V1.0, MOD_VI_V1.0, MOD_UA_V1.0", "certification_date": "2025-03-05" }, { "product": "RICOH Pro 8400S/8410S/8420S version JE-1.00-H", "vendor": "Ricoh Company, Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2025-03-05" }, { "product": "Market Central SecureSwitch® Fiber Optic Switch Models: A, B, C, D, 1:1, 2:1, 3:1, 4:1, 5:1, 6:1, 7:1 and 8:1", "vendor": "Market Central, Inc.", "level": "EAL 4+ (ALC_FLR.1)", "certification_date": "2025-01-21" }, { "product": "KAYTUS Server Baseboard Management Controller 7.11.00", "vendor": "KAYTUS Systems Pte Ltd.", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2025-01-08" }, { "product": "NetScaler Version 13.1 Build 37.201 NetScaler Version 13.1 Build 37.241 (September 2025)", "vendor": "Cloud Software Group", "level": "CPP_ND_V2.2E", "certification_date": "2024-12-02" }, { "product": "NETSCOUT Arbor Edge Defense 7.0.2.0", "vendor": "NetScout Systems Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2025-01-31" }, { "product": "Cisco cEdge Routers running IOS XE 17.12 with SD-WAN 20.12", "vendor": "Cisco Systems, Inc.", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2024-12-18" }, { "product": "Xerox® B410 Printer and C410 Color Printer with Firmware Version 222.037", "vendor": "Xerox International, Inc.", "level": "CPP_HCD_V1.0E", "certification_date": "2024-10-29" }, { "product": "RICOH IM C300/C300F/C400F/C400SRF/C400SRFG, version JE-1.20-H", "vendor": "Ricoh Company, Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2024-10-09" }, { "product": "RICOH IM 550/600/600SR, version E-1.20-H", "vendor": "Ricoh Company, Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2024-10-09" }, { "product": "RICOH Pro C5300S/C5310S, version JE-1.20-H", "vendor": "Ricoh Company, Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2024-10-08" }, { "product": "Oracle Identity Governance 12c Oracle Identity Governance 12c, Build 12.2.1.4, with patch 38477295 (January 2026)", "vendor": "Oracle Corporation", "level": "PP_ESM_ICM_V2.1", "certification_date": "2024-10-09" }, { "product": "RICOH IM C6500/C8000, version JE-1.20-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2024-10-09" }, { "product": "Lexmark MS632, CS632 Single Function Printers with Firmware Version 222.037", "vendor": "Lexmark International, Inc.", "level": "CPP_HCD_V1.0E", "certification_date": "2024-10-11" }, { "product": "Lexmark MX532, MX632, CX532 and CX635 Multi-Function Printers with Firmware Version 222.037", "vendor": "Lexmark International, Inc.", "level": "CPP_HCD_V1.0E", "certification_date": "2024-09-23" }, { "product": "Lexmark MX532, MX632, CX532 and CX635 Multi-Function Printers with Hard Drive and with Firmware Version 222.037", "vendor": "Lexmark International, Inc.", "level": "CPP_HCD_V1.0E", "certification_date": "2024-09-10" }, { "product": "Xerox® AltaLink™ C8130, C8135, C8145, C8155, C8170, B8145, B8155 and B8170 with HDD", "vendor": "Xerox Corporation", "level": "PP_HCD_V1.0", "certification_date": "2024-08-21" }, { "product": "NETSCOUT Omnis Cyber Intelligence with CyberStream v6.3.4", "vendor": "NETSCOUT Systems, Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2024-10-17" }, { "product": "RICOH IM C7010, version JE-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2024-07-29" }, { "product": "High Sec Labs FA10A-4 and FA10AO-4 Firmware Version 40000-0E7 Peripheral Sharing Devices", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0, MOD_AO_V1.0", "certification_date": "2024-07-09" }, { "product": "Belkin Secure KVM models F1DN102KVM-HA-3, F1DN202KVM-HA-3, F1DN104KVM-HA-3, F1DN204KVM-HA-3 Version 33303-C6C6", "vendor": "Belkin International, Inc.", "level": "PP_PSS_V3.0", "certification_date": "2024-06-11" }, { "product": "CipherDriveOne 2.0.1", "vendor": "KLC Group LLC", "level": "CPP_FDE_AA_V2.0E", "certification_date": "2024-06-27" }, { "product": "Dell PowerScale OneFS v9.5 Dell PowerScale OneFS v9.7 (October 2024)", "vendor": "Dell Technologies", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2024-05-22" }, { "product": "Xerox® AltaLink™ EC8036 and EC8056", "vendor": "Xerox Corporation", "level": "PP_HCD_V1.0", "certification_date": "2024-06-25" }, { "product": "Layer7 API Gateway v10.1.00", "vendor": "Broadcom Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2024-05-24" }, { "product": "Xerox® VersaLink™ C625 and B625 with eMMC", "vendor": "Xerox Corporation", "level": "PP_HCD_V1.0", "certification_date": "2024-05-08" }, { "product": "Xerox® VersaLink™ C625 and B625 with HDD", "vendor": "Xerox Corporation", "level": "PP_HCD_V1.0", "certification_date": "2024-05-14" }, { "product": "Xerox® VersaLink™ C415 and B415 with HDD", "vendor": "Xerox Corporation", "level": "PP_HCD_V1.0", "certification_date": "2024-04-24" }, { "product": "Xerox® VersaLink™ C415 and B415 with eMMC", "vendor": "Xerox Corporation", "level": "PP_HCD_V1.0", "certification_date": "2024-05-03" }, { "product": "High Sec Labs FI11H-M, FI11D-M, FI11PH-M Firmware Version 44404-E7E7 Peripheral Sharing Devices", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0 with MOD_KM_V1.0, MOD_VI_V1.0", "certification_date": "2024-04-29" }, { "product": "High Sec Labs SC21H-4, SC82PH-4, SC162PH-4, SMX42D-M, SMX42H-M, SMX42P-M, SMX82D-M, SMX82H-M, SMX82P-M Firmware Version 44404-E7E7 Peripheral Sharing Devices", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0 with MOD_KM_V1.0, MOD_VI_V1.0", "certification_date": "2024-04-29" }, { "product": "NETSCOUT® nGeniusONE® with InfiniStreamNG® v6.3.3", "vendor": "NETSCOUT Systems Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2024-04-04" }, { "product": "Adder AS-4CR Multi-Domain Card Reader Firmware Version 40040-0E7", "vendor": "Adder Technology", "level": "PP_PSD_V4.0 with MOD_UA_V1.0", "certification_date": "2024-01-05" }, { "product": "RICOH IM 370F/460F version JE-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-12-07" }, { "product": "High Sec Labs SK21PH-4, SK41PH-4, DK22PH-4, DK42PH-4, SK81PH-4, DK82PH-4, SX42PH-4, SX82PH-4 Firmware Version 44404-E7E7 Peripheral Sharing Devices", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0 with MOD_AO_V1.0, MOD_KM_V1.0, MOD_VI_V1.0", "certification_date": "2023-11-20" }, { "product": "RICOH IM 370 version E-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-12-08" }, { "product": "Dell ECS v3.8.0.3", "vendor": "Dell Technologies", "level": "EAL2+ (ALC_FLR.2)", "certification_date": "2023-11-14" }, { "product": "Dell PowerMax with PowerMaxOS 10 Solutions Enabler 10.0, and Unisphere for PowerMax 10.0", "vendor": "Dell Technologies", "level": "EAL2+ (ALC_FLR.2)", "certification_date": "2023-10-20" }, { "product": "BAE Systems STOP™ 8.8.2", "vendor": "BAE Systems", "level": "PP_OS_V4.2.1", "certification_date": "2023-09-15" }, { "product": "RICOH IM 2500/3000/3500/4000/5000/6000 version JE-1.10-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-09-08" }, { "product": "RICOH IM 7000/8000/9000/9000T version JE-1.10-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-09-08" }, { "product": "Oracle Access Management 12c", "vendor": "Oracle Corporation", "level": "PP_ESM_PM_V2.1, PP_ESM_AC_V2.1", "certification_date": "2023-09-20" }, { "product": "RICOH IM C530F / C530FB version E-1.10-H", "vendor": "Ricoh Company, Ltd", "level": "PP_HCD_V1.0", "certification_date": "2023-08-29" }, { "product": "RICOH Pro C5300S/C5310S Enhanced Security Firmware version E-1.00-H", "vendor": "Ricoh Company, Ltd", "level": "PP_HCD_V1.0", "certification_date": "2023-07-28" }, { "product": "Lexmark CX730, CX930, CX931 and MX931 Multi-Function Printers with Trusted Platform Module and Hard Drive and without Fax and with Firmware Version 081.234", "vendor": "Lexmark International, Inc.", "level": "PP_HCD_V1.0", "certification_date": "2023-06-23" }, { "product": "Lexmark MX521, MX931, CX730, CX930, and CX931 Multi-Function Printers with Trusted Platform Module, without Fax and Hard Drive and with Firmware Version 081.234", "vendor": "Lexmark International, Inc.", "level": "PP_HCD_V1.0", "certification_date": "2023-06-23" }, { "product": "Lexmark MX421, MX432, MX521, MX622, MX721, MX722, MX725, MX931, CX622, CX625, CX730, CX735, CX930, CX931, CX942, CX943 and CX944 Multi-Function Printers with Trusted Platform Module and Fax and without Hard Drive and with Firmware Version 081.234", "vendor": "Lexmark International, Inc.", "level": "PP_HCD_V1.0", "certification_date": "2023-06-22" }, { "product": "Lexmark MS622, MS822, MS826, CS622, CS730, CS735, CS820, and CS943 Single Function Printers with Trusted Platform Module and Firmware Version 081.234", "vendor": "Lexmark International, Inc.", "level": "PP_HCD_V1.0", "certification_date": "2023-06-23" }, { "product": "RICOH IM C2010/C2510/C2519/C3010/C3510/C3519/C4510/C5510/C6010 version JE-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-06-29" }, { "product": "Lexmark MX432, MX522, MX622, MX721, MX722, MX822, MX826, MX931, CX622, CX625, CX730, CX735, CX820, CX825, CX860, CX930, CX931, CX942, CX943, and CX944 MFPs with TPM, Fax and Hard Drive with firmware version 081.234", "vendor": "Lexmark International, Inc.", "level": "PP_HCD_V1.0", "certification_date": "2023-05-24" }, { "product": "RICOH IM C6500/C8000 Enhanced Security Firmware version E-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-04-27" }, { "product": "RICOH IM 2500/3000/3500/4000/5000/6000 Enhanced Security Firmware version E-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-05-01" }, { "product": "RICOH IM 7000/8000/9000 Enhanced Security Firmware version E-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-05-01" }, { "product": "RICOH IM C300/C300F/C300FLT/C400F/C400SRF/C400FLT Enhanced Security Firmware version E-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-04-27" }, { "product": "RICOH IM 550/600/600SR Enhanced Security Firmware version E-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-04-27" }, { "product": "RICOH IM C2000 / C2000LT / C2500 / C2500LT / C3000 / C3000LT / C3500 / C3500LT / C4500 /C4500LT / C5500 / C5500LT/ C6000 / C6000LT Enhanced Security Firmware version E-1.00-H", "vendor": "Ricoh Company Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2023-04-27" }, { "product": "Oracle Linux 8.4", "vendor": "Oracle Corporation", "level": "PP_OS_V4.2.1, PKG_SSH_V1.0", "certification_date": "2023-04-12" }, { "product": "TestStream Management Software v5.3.0 on nGenius 3900 Series Switches", "vendor": "NetScout Systems, Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2023-04-17" }, { "product": "Cisco Catalyst 9800 Series Wireless Controllers and Access Points 17.6", "vendor": "Cisco Systems, Inc.", "level": "CPP_ND_V2.2E, PP_WLAN_AS_EP_V1.0", "certification_date": "2023-03-20" }, { "product": "Oracle Linux 7.6 UEK 5 KVM & Virtualization Manager 4.3", "vendor": "Oracle Corporation", "level": "PP_BASE_VIRTUALIZATION_V1.0, EP_SV_V1.0, PP_SSH_EP_V1.0", "certification_date": "2023-03-03" }, { "product": "High Sec Labs SK41PHU-4, DK42PHU-4, SX42PHU-4, SX82PHU-4, SC42DHU-4, SC42PHU-4 Firmware Version 44444-E7E7 Peripheral Sharing Devices", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0 with MOD_AO_V1.0, MOD_KM_V1.0, MOD_UA_V1.0, MOD_VI_V1.0", "certification_date": "2022-12-20" }, { "product": "Adder AVS-4228, AVS-42216, XDS441, XDS441FX Firmware Version 44404-E7E7 Peripheral Sharing Devices Adder AVS-4228, AVS-42216 Firmware Version 44404-E7E7 Peripheral Sharing Devices (August 2023)", "vendor": "Adder Technology", "level": "PP_PSD_V4.0 with MOD_KM_V1.0, MOD_VI_V1.0", "certification_date": "2022-12-07" }, { "product": "SentinelOne Singularity Complete Version S", "vendor": "SentinelOne, Inc.", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2022-12-19" }, { "product": "Dell EMC Unity OE v5.2", "vendor": "Dell EMC", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2022-12-13" }, { "product": "FortiAnalyzer 6.2.8", "vendor": "Fortinet, Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2022-12-12" }, { "product": "RICOH IM C300/C300F/C400F/C400SRF version JE-1.10-H", "vendor": "Ricoh Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2022-11-23" }, { "product": "RICOH IM 550/600/600SR version E-1.10-H", "vendor": "Ricoh Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2022-11-23" }, { "product": "RICOH IM C5300S/C5310S version JE-1.10-H", "vendor": "Ricoh Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2022-11-14" }, { "product": "RICOH IM C6500/C8000 version JE-1.10-H", "vendor": "Ricoh Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2022-11-14" }, { "product": "Fortinet FortiManager 6.2.8", "vendor": "Fortinet, Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2022-11-07" }, { "product": "Cisco 900 Series Integrated Services Routers running IOS v15.9", "vendor": "Cisco Systems, Inc.", "level": "CPP_ND_V2.2E with MOD_VPNGW_v1.1", "certification_date": "2022-11-02" }, { "product": "RICOH IM C2000/C2000LT/C2500/C2500LT/C3000/C3000LT/C3500/C3500LT/ C4500/C4500LT/C5500/C5500LT/C6000/C6000LT version JE-1.20-H", "vendor": "Ricoh Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2022-09-28" }, { "product": "Dell EMC™ Data Domain® v7.2", "vendor": "Dell EMC™", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2022-09-26" }, { "product": "Citrix Hypervisor® 8.2 LTSR Premium Edition (CU1)", "vendor": "Citrix Systems, Inc.", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2022-08-23" }, { "product": "McAfee Endpoint Security 10.7.x with ePolicy Orchestrator 5.10.x", "vendor": "Trellix", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2022-07-28" }, { "product": "NetApp StorageGRID 11.5", "vendor": "NetApp Inc.", "level": "EAL 2+ (ALC_FLR.1)", "certification_date": "2022-07-15" }, { "product": "AhnLab CPP 1.0", "vendor": "AhnLab, Inc.", "level": "EAL 2+ (ALC_FLR.1)", "certification_date": "2022-07-14" }, { "product": "nGenius 5000 and 7000 Series Packet Flow Switches with PFOS 6.0.6", "vendor": "NETSCOUT Systems, Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2022-06-07" }, { "product": "Trend Micro Deep Security 20", "vendor": "Trend Micro Inc.", "level": "EAL 2+ (ALC_FLR.1)", "certification_date": "2022-05-31" }, { "product": "Adder AVS-4112, AVS-2112, AVS-4114, AVS-4214, AVS-2114, AVS-2214, AVS-4128, AVS-4124, AVS-1124, AVS-4224 Firmware Version 44404-E7E7, Peripheral Sharing Devices", "vendor": "Adder Technology", "level": "PP_PSD_v4.0, MOD_AO_v1.0, MOD_KM_v1.0, MOD_VI_v1.0", "certification_date": "2022-04-20" }, { "product": "Keysight Technologies Vision Series Network Packet Broker v5.7.1 Keysight Technologies Vision Series Network Packet Broker v5.10.0 (January 2024)", "vendor": "Keysight Technologies", "level": "CPP_ND_v2.2E", "certification_date": "2022-03-04" }, { "product": "Belkin F1DN102MOD-xx-4, F1DN202MOD-xx-4, F1DN104MOD-xx-4, F1DN204MOD-xx-4, F1DN108MOD-xx-4, F1DN208MOD-xx-4 Firmware Version 44404-E7E7 Peripheral Sharing Devices", "vendor": "Belkin International, Inc.", "level": "PP_PSD_v4.0, MOD_KM_v1.0, MOD_VI_v1.0", "certification_date": "2021-07-11" }, { "product": "Belkin F1DN002MOD-KM-4, F1DN004MOD-KM-4 and F1DN-FLTR-HID-4 Firmware Version 40404-0E7 Peripheral Sharing Devices", "vendor": "Belkin International, Inc.", "level": "PP_PSD_v4.0, MOD_KM_v1.0", "certification_date": "2022-01-24" }, { "product": "Cisco Web Security Appliance with AsyncOS 11.8", "vendor": "Cisco Systems, Inc.", "level": "CPP_ND_v2.2E", "certification_date": "2022-02-28" }, { "product": "FortiGate/FortiOS Version 6.2.7", "vendor": "Fortinet, Inc.", "level": "CPP_ND_V2.2E w/ MOD_CPP_FW_v1.4e, MOD_VPNGW_v1.1,MOD_IPS_V1.0", "certification_date": "2022-01-14" }, { "product": "Fortinet FortiGate™ Next Generation Firewalls with FortiOS 6.2.7", "vendor": "Fortinet, Incorporated", "level": "EAL 4+ (ALC_FLR.3)", "certification_date": "2021-10-15" }, { "product": "NetApp Element Software 12.2 on SolidFire Appliances", "vendor": "NetApp, Inc.", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2022-03-08" }, { "product": "Sphyrna Security Unidirectional Gateway- Data Diode Identifier: 2010-UG100-SSI Sphyrna Security Unidirectional Gateway- Data Diode Identifier: NGXS UGW-200 (November 2024)", "vendor": "Sphyrna Security Incorporated", "level": "EAL4+ (ADV_INT.2, ALC_CMC.5, ALC_CMS.5, ALC_DVS.2, ALC_FLR.3, ATE_DPT.2 and AVA_VAN.4)", "certification_date": "2021-09-07" }, { "product": "NetApp E-Series & EF-Series with SANtricity OS 11.70", "vendor": "NetApp, Inc.", "level": "NDcPP v2.2e", "certification_date": "2021-09-21" }, { "product": "Blackline Systems Corporation BSC-CDS Unidirectional Subsystem PN: 710-0185-00", "vendor": "Blackline Systems Corporation", "level": "EAL 4+ (ADV_INT.2, ALC_CMC.5, ALC_CMS.5, ALC_DVS.2, ALC_FLR.3, ATE_DPT.2 and AVA_VAN.4)", "certification_date": "2021-09-15" }, { "product": "RICOH IM C530F/C530FB version E-1.00-H", "vendor": "RICOH Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2021-10-13" }, { "product": "RICOH IM 2500/3000/3500/4000/5000/6000 version JE-1.00-H", "vendor": "RICOH Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2021-10-18" }, { "product": "RICOH IM 7000/8000/9000/9000T version JE-1.00-H", "vendor": "RICOH Company, LTD.", "level": "PP_HCD_V1.0", "certification_date": "2021-10-18" }, { "product": "Cisco Email Security Appliance with AsyncOS 13.0", "vendor": "Cisco Systems, Inc", "level": "cPP_ND_v2.1", "certification_date": "2021-09-20" }, { "product": "Belkin F1DN104KVM-UNN4, F1DN204KVM-UNN4, F1DN102KVM-UNN4, F1DN202KVM-UNN4 Firmware Version 44404-E7E7 Peripheral Sharing Devices Belkin F1DN104KVM-UNN4, F1DN204KVM-UNN4, F1DN102KVM-UNN4, F1DN202KVM-UNN4, F1DN104KVM-HA-4, F1DN204KVM-HA-4, F1DN102KVM-HA-4, F1DN202KVM-HA-4 Firmware Version 44404-E7E7 Peripheral Sharing Devices (April 2023)", "vendor": "Belkin International, Inc.", "level": "PP_PSD_v4.0, MOD_AO_V1.0, MOD_KM_V1.0, MOD_VI_V1.0", "certification_date": "2021-07-08" }, { "product": "Belkin F1DN104KVM-UN-4, F1DN204KVM-UN-4, F1DN102KVM-UN-4, F1DN202KVM-UN-4, F1DN108KVM-UN-4, F1DN208KVM-UN-4, F1DN116KVM-UN-4 Firmware Version 44444-E7E7 Peripheral Sharing Devices", "vendor": "Belkin International, Inc.", "level": "PP_PSD_V4.0, MOD_AO_V1.0, MOD_KM_V1.0, MOD_UA_V1.0, MOD_VI_V1.0", "certification_date": "2021-04-29" }, { "product": "Oracle Linux 7.6", "vendor": "Oracle Corporation", "level": "PP_OS_V4.2.1 PP_SSH_EP_v1.0", "certification_date": "2021-07-19" }, { "product": "Oracle Solaris 11.4", "vendor": "Oracle Corporation", "level": "PP_OS_v4.2.1, PP_SSH_EP_v1.0", "certification_date": "2021-02-08" }, { "product": "NETSCOUT Sightline and Threat Mitigation System v9.7", "vendor": "NETSCOUT Systems Inc.", "level": "CPP_ND_V2.2E", "certification_date": "2024-05-14" }, { "product": "RICOH IM C320F, version JE-1.00-H", "vendor": "Ricoh Company, Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2025-01-20" }, { "product": "Oracle Linux 9.3", "vendor": "Oracle Corporation", "level": "PP_OS_V4.3, PKG_TLS_V1.1, PKG_SSH_V1.0", "certification_date": "2025-02-14" }, { "product": "RICOH IM C2010/C2510/C2519/C3010/C3510/C3519/C4510/C5510/C6010 Version JE-1.10-H", "vendor": "Ricoh Company, Ltd.", "level": "PP_HCD_V1.0", "certification_date": "2025-03-06" }, { "product": "RICOH IM C6510/C8010, version JE-1.00-H", "vendor": "Ricoh Company, Ltd.", "level": "CPP_HCD_V1.0E", "certification_date": "2025-10-30" }, { "product": "Dell VxRail 7.0", "vendor": "Dell Technologies", "level": "EAL 2+ (ALC_FLR.2)", "certification_date": "2025-04-03" }, { "product": "Fortinet FortiManager 7.2.9 Fortinet FortiManager 7.2.9 (build 7495) (February 2026)", "vendor": "Fortinet, Inc.", "level": "EAL4+ ALC_FLR.3", "certification_date": "2025-05-05" }, { "product": "Lexmark MX931, MX953, CX730, CX930, CX950, CX951, CX931, CX961, CX962, CX963, and CX833 Multi-Function Printers with Hard Drive and without Fax, Firmware version 240.204CC", "vendor": "Lexmark International, Inc.", "level": "cPP_HCD_v1.0e", "certification_date": "2025-06-12" }, { "product": "High Sec Labs FV11H-M, FV11D-M, FV11PH-M, FV11HH-MM, FV11PP-MM, FV11HP-MM, FV11PH-MM Video Isolators Firmware Version 44000-E7E7", "vendor": "High Sec Labs Ltd.", "level": "PP_PSD_V4.0, MOD_VI_V1.0", "certification_date": "2026-01-14" } ] } }, "DE": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "DE", "timestamp": "2026-03-30T12:05:29.551305", "lists": { "CERTIFIED": [ { "cert_id": "BSI-DSZ-CC-1248-2026", "product": "SUSE Linux Enterprise Server 15, SP4", "vendor": "SUSE Software Solutions Germany GmbH", "certification_date": "2026-02-24", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1248.html", "enhanced": { "product": "SUSE Linux Enterprise Server 15, SP4", "applicant": "SUSE Software Solutions Germany GmbH Frankenstraße 146 90461 Nürnberg", "evaluation_facility": "atsec information security GmbH", "protection_profile": "Operating System Protection Profile, Version 2.0, 01 June 2010, BSI-CC-PP-0067-2010; OSPP Extended Package – Virtualization, Version 2.0, 28 May 2010; OSPP Extended Package – Advanced Audit, Version 2.0, 28 May 2010; OSPP Extended Package – Advanced Management, Version 2.0, 28 May 2010;", "certification_date": "2026-02-24", "expiration_date": "2031-02-23", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1248a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1248b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1248c_pdf.pdf?__blob=publicationFile&v=2", "description": "SUSE Linux Enterprise Server is a highly-configurable Linux-based operating system which has been developed to provide a good level of security as required in commercial environments. It also meets all requirements of the Operating System Protection Profile, together with the extended packages for Virtualization, Advanced Management and Advanced Audit." } }, { "cert_id": "BSI-DSZ-CC-1230-2026", "product": "SUSE Linux Enterprise Server, Version 15 SP7", "vendor": "SUSE LLC", "certification_date": "2026-02-24", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1230.html", "enhanced": { "product": "SUSE Linux Enterprise Server, Version 15 SP7", "applicant": "SUSE LLC 1221 S Valley Grove Way #500, Pleasant Grove UT 84062 United States", "evaluation_facility": "atsec information security GmbH", "protection_profile": "U.S. Government Approved Protection Profile - Protection Profile for General Purpose Operating Systems, Version 4.3, 27 September 2022, CCEVS-VR-PP-0091; Functional Package for Transport Layer Security (TLS), Version 1.1, 12 Februar 2019, NIAP; Functional Package for Secure Shell (SSH), Version 1.0, 13 May 2021, CCEVS-VR-PP-0075, NIAP;", "certification_date": "2026-02-24", "expiration_date": "2031-02-23", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1230a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1230b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1230c_pdf.pdf?__blob=publicationFile&v=2", "description": "SUSE Linux Enterprise Server 15 SP17 is a highly-configurable Linux-based operating system that has been developed to provide a good level of security as required in commercial environments. It also meets all requirements of the General Purpose Operating System Protection Profile together with the Functional Package for SSH Version 1.0 as well as the Functional Package for TLS Version 1.1." } }, { "cert_id": "BSI-DSZ-CC-1231-2026", "product": "SUSE Linux Enterprise Server, Version 15 SP4", "vendor": "SUSE LLC", "certification_date": "2026-01-27", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1231.html", "enhanced": { "product": "SUSE Linux Enterprise Server, Version 15 SP4", "applicant": "SUSE LLC 1221 S Valley Grove Way #500, Pleasant Grove UT 84062 United States", "evaluation_facility": "atsec information security GmbH", "protection_profile": "U.S. Government Approved Protection Profile - Protection Profile for Virtualization Version 1.1, 14 June 2021", "certification_date": "2026-01-27", "expiration_date": "2031-01-26", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1231a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1231b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1231c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the SUSE Linux Enterprise Server 15 SP4, a highly-configurable Linux-based operating system offering virtual machine management support. The virtual machine monitor support is integrated into the operating system. The evaluation covers the KVM virtualization technology. The TOE provides identification and authentication of its users, user data protection, and security audit functionality. Administrators of the TOE may perform local and remote security management." } }, { "cert_id": "BSI-DSZ-CC-1177-2025", "product": "L4Re Secure Separation Kernel CC, Version 1.0.1", "vendor": "Kernkonzept GmbH", "certification_date": "2025-02-18", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1177.html", "enhanced": { "product": "L4Re Secure Separation Kernel CC, Version 1.0.1", "applicant": "Kernkonzept GmbH Buchenstraße 16 b 01097 Dresden Deutschland", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL4+,ALC_FLR.3", "certification_date": "2025-02-18", "expiration_date": "2030-02-17", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1177a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1177b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1177c_pdf.pdf?__blob=publicationFile&v=3", "description": "The TOE is the L4Re Secure Separation Kernel CC 1.0.1 (L4Re SSK). L4Re SSK is a distribution of the open-source L4Re Operating System Framework. As such it is based on the L4Re Microkernel. The L4Re Microkernel is a 3rd-generation microkernel with a state-of-the-art capability-based mandatory access control security model. It allows the separation of applications into different security domains, information flow control, and, subject to access control, dynamic assignment of resources and communication channels. Further the L4Re Microkernel supports static workloads alongside dynamic workloads, which allows to start, restart and shutdown applications during runtime. L4Re SSK is configured to act as a separation kernel, to provide the security features claimed by the ST. The TOE supports native applications as well as virtual machines (VMs). Access to every resource including but not limited to memory, hardware devices and CPU cores is protected by capabilities. Applications and VMs can only access a resource if they possess a capability with suitable permissions for that resource." } }, { "cert_id": "BSI-DSZ-CC-1214-2025", "product": "SUSE Linux Enterprise Micro 5.3", "vendor": "SUSE, LLC", "certification_date": "2025-01-24", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1214.html", "enhanced": { "product": "SUSE Linux Enterprise Micro 5.3", "applicant": "SUSE, LLC 1221 S Valley Grove Way #500, Pleasant Grove UT 84062 United States", "evaluation_facility": "atsec information security GmbH", "protection_profile": "Protection Profile for General Purpose Operating Systems Version 4.2.1, 22 April 2019, CCEVS-VR-PP-0047, NIAP, Functional Package for Secure Shell (SSH), Version 1.0, 13 May 2021, CCEVS-VR-PP-0075, NIAP", "certification_date": "2025-01-24", "expiration_date": "2030-01-23", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1214a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1214b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1214c_pdf.pdf?__blob=publicationFile&v=2", "description": "SUSE Linux Enterprise Micro 5.3 is a highly-configurable Linux-based operating system which has been developed to provide a good level of security as required in commercial environments. It also meets all requirements of the General Purpose Operating System Protection Profile v4.2.1 together with the Functional Package for Secure Shell (SSH) v1.0." } }, { "cert_id": "BSI-DSZ-CC-1213-2023", "product": "SUSE Linux Enterprise Server 15 SP4", "vendor": "SUSE, LLC", "certification_date": "2023-12-15", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1213.html", "enhanced": { "product": "SUSE Linux Enterprise Server 15 SP4", "applicant": "SUSE, LLC 1221 S Valley Grove Way #500, Pleasant Grove UT 84062 United States", "evaluation_facility": "atsec information security GmbH", "protection_profile": "Protection Profile for General Purpose Operating Systems Version 4.2.1, 22 April 2019, CCEVS-VR-PP-0047, NIAP, Functional Package for Secure Shell (SSH), Version 1.0, 13 May 2021, CCEVS-VR-PP-0075, NIAP", "certification_date": "2023-12-15", "expiration_date": "2028-12-14", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1213a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1213b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1213c_pdf.pdf?__blob=publicationFile&v=2", "description": "SUSE Linux Enterprise Server is a highly-configurable Linux-based operating system which has been developed to provide a good level of security as required in commercial environments. It also meets all requirements of the General Purpose Operating System Protection Profile v4.2.1 together with the Functional Package for Secure Shell (SSH) v1.0." } }, { "cert_id": "BSI-DSZ-CC-1185-2023", "product": "PikeOS Separation Kernel v5.1.3 for the NXP LS 1023A/LS1043A Processor, Version 3.1.0", "vendor": "SYSGO GmbH", "certification_date": "2023-09-18", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1185.html", "enhanced": { "product": "PikeOS Separation Kernel v5.1.3 for the NXP LS 1023A/LS1043A Processor, Version 3.1.0", "applicant": "SYSGO GmbH Am Pfaffenstein 8 55270 Klein-Winternheim", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL5,AVA_VAN.5,ALC_FLR.3,ALC_DVS.2,ALC_CMC.5,ADV_IMP.2", "certification_date": "2023-09-18", "expiration_date": "2028-09-17", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1185a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1185b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1185c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the PikeOS Separation Kernel v5.1.3 for the NXP LS1023A/LS1043A Processor. It consists of the PikeOS Kernel and System Software instantiated with an ARMv8 ASP and extended with BSP components for the NXP LS1023A/LS1043A Processor hardware platform (featuring an ARM Cortex-A53 core processor with 4 cores for LS1043A, 2 cores for LS1023A): PSP, HWVIRT Hypervisor driver (as kernel device driver), CLKMGR driver (as kernel device driver) and e1000 driver (as external file provider in a normal partition)." } }, { "cert_id": "BSI-DSZ-CC-1146-2022", "product": "PikeOS Separation Kernel, Version 5.1.3", "vendor": "SYSGO GmbH", "certification_date": "2022-09-20", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1146.html", "enhanced": { "product": "PikeOS Separation Kernel, Version 5.1.3", "applicant": "SYSGO GmbH Am Pfaffenstein 8 55270 Klein-Winternheim", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL5,AVA_VAN.5,ALC_FLR.3,ALC_DVS.2,ALC_CMC.5,ADV_IMP.2", "certification_date": "2022-09-20", "expiration_date": "2027-09-19", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1146a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1146b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1146c_pdf.pdf?__blob=publicationFile&v=1", "description": "The TOE is the PikeOS Separation Kernel version 5.1.3 running on the microprocessor Family (x86 64-bit, ARMv8, or PowerPC) hosting different applications. The TOE is referenced as PikeOS 5.1.3 base product build S6510 for Linux and Windows development host with PikeOS 5.1.3 Certification Kit build S6510." } }, { "cert_id": "BSI-DSZ-CC-1165-2022", "product": "IBM AIX 7.2.5, Service Pack 3 (SP3) Standard Edition (SE)", "vendor": "IBM Corporation", "certification_date": "2022-07-08", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1165.html", "enhanced": { "product": "IBM AIX 7.2.5, Service Pack 3 (SP3) Standard Edition (SE)", "applicant": "IBM Corporation 11400 Burnet Road Austin, TX 78758 USA", "evaluation_facility": "atsec information security GmbH", "assurance_level": "ADV_FSP.1,AGD_OPE.1,AGD_PRE.1,ALC_CMC.1,ALC_CMS.1,ALC_TSU_EXT.1,ASE_CCL.1,ASE_ECD.1,ASE_INT.1,ASE_OBJ.2,ASE_REQ.2,ASE_SPD.1,ASE_TSS.1,ATE_IND.1,AVA_VAN.1", "protection_profile": "Protection Profile for General Purpose Operating Systems Version 4.2.1, 22 April 2019, CCEVS-VR-PP-0047, NIAP Extended Package for Secure Shell (SSH), Version 1.0, 19 February 2016, CCEVS-VR-PP-0039, NIAP", "certification_date": "2022-07-08", "expiration_date": "2027-07-07", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1165a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1165b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1165c_pdf.pdf?__blob=publicationFile&v=2", "description": "The AIX operating system is a general purpose, multi-user, multi-tasking operating system. It is compliant with major international standards for UNIX systems, such as the Portable Operating System Interface (POSIX) standards, X/Open Portability Guide (XPG) 4, and Spec 1170. It provides a platform for a variety of applications in the governmental and commercial environment. AIX is available on a broad range of computer systems from IBM, ranging from departmental Servers to multi-processor enterprise servers, and is capable of running in a Logical Partition (LPAR) environment." } }, { "cert_id": "BSI-DSZ-CC-1041-V2-2022", "product": "PikeOS Separation Kernel, 4.2.4", "vendor": "SYSGO GmbH", "certification_date": "2022-03-07", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1041_1041V2.html", "enhanced": { "product": "PikeOS Separation Kernel, 4.2.4", "applicant": "SYSGO GmbH Am Pfaffenstein 8 55270 Klein-Winternheim", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL3,ALC_FLR.3", "certification_date": "2022-03-07", "expiration_date": "2027-03-06", "entries": [ { "id": "BSI-DSZ-CC-1041-V2-2022", "description": "is referenced as PikeOS 4.2.4 base product build S6120 for Linux and Windows development host with PikeOS 4.2.4 Certification Kit build S6120." }, { "id": "BSI-DSZ-CC-1041-2018-MA-01 (18.03.2019)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-1041-2018 (Ausstellungsdatum / Certification Date 10.12.2018, gültig bis / valid until 09.12.2023) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificat", "description": "Build" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1041V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1041V2b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1041V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the PikeOS Separation Kernel version 4.2.2 running on the microprocessor family (x86 64-bit, ARMv7, or ARMv8) hosting different applications. The TOE is referenced as PikeOS 4.2.2 base product build S5400 for Linux and Windows development host with PikeOS 4.2.2 Certification Kit build S5400." } }, { "cert_id": "BSI-DSZ-CC-1168-2021", "product": "SUSE Linux Enterprise Server, Version 15 SP2", "vendor": "SUSE LLC", "certification_date": "2021-11-11", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1168.html", "enhanced": { "product": "SUSE Linux Enterprise Server, Version 15 SP2", "applicant": "SUSE LLC 10 Canal Park, Suite 200 Cambridge, MA 02141 USA", "evaluation_facility": "atsec information security GmbH", "protection_profile": "Protection Profile for General Purpose Operating Systems Version 4.2.1, 22 April 2019, CCEVS-VR-PP-0047, NIAP; Extended Package for Secure Shell (SSH), Version 1.0, 19 February 2016, CCEVS-VR-PP-0039, NIAP", "certification_date": "2021-11-11", "expiration_date": "2026-11-10", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1168a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1168b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1168c_pdf.pdf?__blob=publicationFile&v=1", "description": "SUSE Linux Enterprise Server is a highly-configurable Linux-based operating system which has been developed to provide a good level of security as required in commercial environments. It also meets all requirements of the General Purpose Operating System Protection Profile together with the Extended Package for Secure Shell (SSH)." } }, { "cert_id": "BSI-DSZ-CC-1151-2021", "product": "SUSE Linux Enterprise Server 15 SP2", "vendor": "SUSE Software Solution Germany GmbH", "certification_date": "2021-07-08", "category": "Operating systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Betriebssysteme/1151.html", "enhanced": { "product": "SUSE Linux Enterprise Server 15 SP2", "applicant": "SUSE Software Solution Germany GmbH Maxfeldstr. 5 90409 Nürnberg", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL4,ALC_FLR.3", "protection_profile": "Operating System Protection Profile, Version 2.0, 01 June 2010, BSI-CC-PP-0067-2010, OSPP Extended Package – Advanced Management, Version 2.0, 28 May 2010, OSPP Extended Package – Advanced Audit, Version 2.0, 28 May 2010, OSPP Extended Package – Virtualization, Version 2.0, 28 May 2010", "certification_date": "2021-07-08", "expiration_date": "2026-07-07", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1151a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1151b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1151c_pdf.pdf?__blob=publicationFile&v=2", "description": "SUSE Linux Enterprise Server is a highly-configurable Linux-based operating system which has been developed to provide a good level of security as required in commercial environments. It also meets all requirements of the Operating System Protection Profile, together with the extended packages for Virtualization, Advanced Management and Advanced Audit." } }, { "cert_id": "BSI-DSZ-CC-1200-2026", "product": "Aventra MyEID PKI Smart Card, version 5.0.0", "vendor": "Aventra Oy", "certification_date": "2026-02-25", "category": "Digital signature", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitale_Signatur-Sichere_Signaturerstellungseinheiten/1200.html", "enhanced": { "product": "Aventra MyEID PKI Smart Card, version 5.0.0", "applicant": "Aventra Oy Lanttikatu 2 02770 Espoo Finland", "evaluation_facility": "SGS Digital Trust Services GmbH", "assurance_level": "EAL4+,AVA_VAN.5", "protection_profile": "EN 419211-2:2013 - Protection profiles for secure signature creation device - Part 2: Device with key generation, 18 May 2013, BSI-CC-PP-0059-2009-MA-02EN 419211-3:2013 - Protection profiles for secure signature creation device - Part 3: Device with key import, 14 September 2013, BSI-CC-PP-0075-2012-MA-01", "certification_date": "2026-02-25", "expiration_date": "2031-02-24", "entries": [ { "id": "EN" }, { "id": "EN" } ], "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1200c_pdf.pdf?__blob=publicationFile&v=4", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1200a_pdf.pdf?__blob=publicationFile&v=4", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1200b_pdf.pdf?__blob=publicationFile&v=3", "description": "The Target of evaluation (TOE) is the product „Aventra MyEID PKI Smart Card, version 5.0.0 “ by the vendor Aventra Oy. It is a composite product consisting of Aventra’s „MyEID“ Java Card applet version 5.0.0 running ontop of the Common Criteria certified NXP JCOP4 Java Card operating system JCOP 4 P71 v4.7 R1.01.4 and JCOP 4 P71 v4.7 R1.02.4 (NSCIB-CC-2300172-02) which itself comprises a Common Criteria certified NXP IC (BSI-DSZ-CC-1136-V5-2026). The TOE is primarily used for authenticating users or devices and ensuring confidentiality of data in public key infrastructure. The main features of the TOE are calculating digital signatures, deciphering data and storing cryptographic keys in a secure way." }, "subcategory": "Secure Signature Creation Devices (SSCD)" }, { "cert_id": "BSI-DSZ-CC-1255-2025", "product": "CardOS V6.1 ID R1.0", "vendor": "Eviden Germany GmbH", "certification_date": "2025-04-17", "category": "Digital signature", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitale_Signatur-Sichere_Signaturerstellungseinheiten/1255.html", "enhanced": { "product": "CardOS V6.1 ID R1.0", "applicant": "Eviden Germany GmbH Otto-Hahn-Ring 6 81739 München", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,AVA_VAN.5,ALC_DVS.2,ATE_DPT.2", "protection_profile": "EN 419211-2:2013 - Protection profiles for secure signature creation device - Part 2: Device with key generation, 18 May 2013, BSI-CC-PP-0059-2009-MA-02,Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0071-2012-MA-01,Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0072-2012-MA-01,Machine Readable Travel Document with \"ICAO Application\" Extended Access Control with PACE, Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02,Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE_PP), Version 1.01, 22 July 2014, BSI-CC-PP-0068-V2-2011-MA-01", "certification_date": "2025-04-17", "expiration_date": "2030-04-16", "entries": [ { "id": "EN", "description": "May" }, { "id": "Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application,", "description": "October" }, { "id": "Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application,", "description": "October" }, { "id": "Machine Readable Travel Document with \"", "description": "5 December" }, { "id": "Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with", "description": "July" } ], "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1255c_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1255a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1255b_pdf.pdf?__blob=publicationFile&v=2", "description": "The composite TOE is named CardOS V6.1 ID R1.0 and developed by Eviden Germany GmbH. The TOE is a smart card product consisting of an operating system on an Infineon IC together with an application layer. Applications covered by this TOE comprise an electronic passport (ePass) application and/or a signature (eSign) application. Three major configurations of the TOE are defined which differ in the description of the file system: ePassport, SSCD (Secure Signature Creation Device) and eID. The IC platform comprises the integrated circuit SLC52GDA448* (IFX_CCI_000005 Design Step H13) and the cryptographic libraries RSA v2.09.002, EC v2.09.002, Toolbox v2.09.002, Base v2.09.002, HCL (Hash Cryptographic Library) v1.12.001, SCL (Symmetric Cryptographic Library) v2.04.002 and HSL (Hardware Support Library) v03.12.8812 from Infineon Technologies AG certified under ID BSI-DSZ-CC-1110-V7-2024. The present procedure is a re-certification of the TOE certified under BSI-DSZ-CC-1162-V2-2023 and subsequent BSI-DSZ-CC-1162-V2-2023-MA-01. The focus of this re-evaluation was on the update of the CC certificate of the TOE’s underlying IC, a scope change of the TOE’s cryptographic functionality, the improvement of the TOE’s cryptographic implementation, the renewal of the vulnerability analysis and the corresponding update of the Security Target and user guidance documentation." }, "subcategory": "Secure Signature Creation Devices (SSCD)" }, { "cert_id": "BSI-DSZ-CC-1162-V3-2024", "product": "CardOS V6.0 ID R1.2", "vendor": "Eviden Germany GmbH", "certification_date": "2024-12-04", "category": "Digital signature", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitale_Signatur-Sichere_Signaturerstellungseinheiten/1162.html", "enhanced": { "product": "CardOS V6.0 ID R1.2", "applicant": "Eviden Germany GmbH Otto-Hahn-Ring 6 81739 München", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,AVA_VAN.5,ALC_DVS.2,ATE_DPT.2", "protection_profile": "EN 419211-2:2013 - Protection profiles for secure signature creation device - Part 2: Device with key generation, 18 May 2013, BSI-CC-PP-0059-2009-MA-02,Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0071-2012-MA-01,Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0072-2012-MA-01,Machine Readable Travel Document with \"ICAO Application\" Extended Access Control with PACE, Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02,Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE_PP), Version 1.01, 22 July 2014, BSI-CC-PP-0068-V2-2011-MA-01", "certification_date": "2024-12-04", "expiration_date": "2029-12-03", "entries": [ { "id": "EN", "description": "May" }, { "id": "Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application,", "description": "October" }, { "id": "Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application,", "description": "October" }, { "id": "Machine Readable Travel Document with \"", "description": "5 December" }, { "id": "Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with", "description": "July" } ], "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1162V3c_pdf.pdf?__blob=publicationFile&v=3", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1162V3a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1162V3b_pdf.pdf?__blob=publicationFile&v=3", "description": "The composite TOE is named CardOS V6.0 ID R1.0 (developed by Atos Information Technology GmbH). The TOE is a smart card operating system on an IC with at least one application. Applications covered by this TOE comprise an electronic passport (ePass) application and/or a signature (eSign) application. The IC platform comprises the integrated circuit SLC52GDA448* (IFX_CCI_000005 Design Step H13) and the cryptographic libraries RSA v2.08.007, EC v2.08.007, Toolbox v2.08.007, Base v2.08.007, HCL2 v1.12.001 (hash library) and Symmetric Crypto Library (SCL) v2.04.002 certified according CC v3.1 with ID BSI-DSZ-CC-1110-V4-2021. Note: The Certification Report has been updated to version 2.0 by supplementing additional security requirements for the secure use of the TOE's cryptographic functionality. The Certificate of Conformity to Regulation (EU) No. 910/2014 (eIDAS) has been adjusted to version 2.0 for covering a scope reduction with regard to the TOE's ECDSA signature generation functionality. The new document versions 2.0 replace their respective preceding document version." }, "subcategory": "Secure Signature Creation Devices (SSCD)" }, { "cert_id": "BSI-DSZ-CC-1221-2024", "product": "MTCOS Pro 2.6 QSCD/SSCD / SLC37 (V11)", "vendor": "MaskTech International GmbH", "certification_date": "2024-11-13", "category": "Digital signature", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitale_Signatur-Sichere_Signaturerstellungseinheiten/1221.html", "enhanced": { "product": "MTCOS Pro 2.6 QSCD/SSCD / SLC37 (V11)", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL5+,ALC_DVS.2,ALC_FLR.3,AVA_VAN.5", "protection_profile": "EN 419211-2:2013 - Protection profiles for secure signature creation device - Part 2: Device with key generation, 18 May 2013, BSI-CC-PP-0059-2009-MA-02Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0071-2012-MA-01Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0072-2012-MA-01EN 419211-3:2013 - Protection profiles for secure signature creation device- Part 3: Device with key import, BSI-CC-PP-0075-2012-MA-01EN 419211-6:2014 - Protection profiles for secure signature creation device- Part 6: Extension for device with key import and trusted channel to signature creation application, BSI-CC-PP-0076-2013-MA-01", "certification_date": "2024-11-13", "expiration_date": "2029-11-12", "entries": [ { "id": "EN" }, { "id": "Protection", "description": "Information Society Standardization System" }, { "id": "Protection", "description": "Information Society Standardization System" }, { "id": "EN 419211-3:2013 - Protection profiles for secure signature creation device- Part 3: Device with key import, BSI-CC-PP-0075-2012-MA-01", "description": "EN 419211-3:2013 - Protection profiles for secure signature creation device- Part 3: Device with key import, BSI-CC-PP-0075-2012-MA-01" }, { "id": "EN 419211-6:2014 - Protection profiles for secure signature creation device- Part 6: Extension for device with key import and trusted channel to signature creation application, BSI-CC-PP-0076-2013-MA-01", "description": "EN 419211-6:2014 - Protection profiles for secure signature creation device- Part 6: Extension for device with key import and trusted channel to signature creation application, BSI-CC-PP-0076-2013-MA-01" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1221b_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1221a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1221c_pdf.pdf?__blob=publicationFile&v=2", "description": "Target of evaluation (TOE) is the product MTCOS Pro 2.6 QSCD/SSCD / SLC37 (V11) provided by MaskTech International GmbH. The TOE is a combination of hardware and software configured to securely create, use and manage signature creation data (SCD). The SSCD protects the SCD during its whole life cycle as to be used in a signature creation process solely by its signatory. The TOE comprises all IT security functionality necessary to ensure the secrecy of the SCD and the security of the electronic signature. The TOE is used for creating digital signatures. The user called signatory can create signatures on digital documents to ensure their authenticity and provide means of in-tegrity. Therefore the TOE operates in form of a smart card running a signature application. The current evaluation process is a re-evaluation of the product MTCOS Pro 2.5 SSCD / SLE78CLFX400VPHM/BPHM/7PHM (M7892), which has been certified under the certification ID BSI-DSZ-CC-1036-2019. Subject to the re-evaluation are changes to the certified product with respect to actual development and findings which are: The embedded software has been implemented to the hardware platform SLC37GDA512 (V11) secure dual-interface controller of Infineon Technologies AG, BSI-DSZ-CC-1107-V5-2024. This implies an adaption of the low-level interfaces to the functionality provided by the IC and the usage of the cryptographic library.The TOE supports import of signing keys and the creation of electronic signatures with the imported key.The MTCOS operating system has been revised including the internal key handling. In this context, new commands for the generation and configuration of key files are provided. Furthermore, MTCOS now allowsmore configuration options: File sizes of specified transparent files can be set during personalization. In order to oblige customers with an established personalization system, a “compatibility mode” can be configured.Due to expiration of the audit validity of MaskTech International GmbH a new site visit was performed in which course the assurance component ALC_FLR.3 was added." }, "subcategory": "Secure Signature Creation Devices (SSCD)" }, { "cert_id": "BSI-DSZ-CC-1211-2023", "product": "MTCOS Pro 2.6 SSCD / P71D352 (N7121)", "vendor": "MaskTech International GmbH", "certification_date": "2023-10-27", "category": "Digital signature", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitale_Signatur-Sichere_Signaturerstellungseinheiten/1211.html", "enhanced": { "product": "MTCOS Pro 2.6 SSCD / P71D352 (N7121)", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL5+,ALC_DVS.2,AVA_VAN.5", "protection_profile": "EN 419211-2:2013 - Protection profiles for secure signature creation device - Part 2: Device with key generation, 18 May 2013, BSI-CC-PP-0059-2009-MA-02EN 419211-3:2013 - Protection profiles for secure signature creation device - Part 3: Device with key import, 14 September 2013, BSI-CC-PP-0075-2012-MA-01Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted communication with certificate generation application 1.0.1, CEN / CENELEC (TC224/WG17), November 2012, BSI-CC-PP-0071-2012Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0072-20EN 419211-6:2014 - Protection profiles for secure signature creation device - Part 6: Extension for device with key import and trusted channel to signature creation application, 25 July 2014, BSI-CC-PP-0076-2013-MA-01", "certification_date": "2023-10-27", "expiration_date": "2028-10-26", "entries": [ { "id": "EN" }, { "id": "EN" }, { "id": "Protection" }, { "id": "Protection" }, { "id": "EN" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1211a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1211b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1211c_pdf.pdf?__blob=publicationFile&v=3", "description": "The fundamental change in this re-evaluation is the porting of the embedded software to NXP Semiconductors Germany GmbH hardware P71D352 (N7121) (certification-ID: BSI-DSZ-CC-1136-V3), which implies a different delivery procedure. The hardware-depending tools have also changed, which leads to changes in the Configuration Management System. Furthermore the TOE supports import of signing keys and the creation of electronic signatures with the imported key." }, "subcategory": "Secure Signature Creation Devices (SSCD)" }, { "cert_id": "BSI-DSZ-CC-1112-V2-2021", "product": "CardOS DI V5.4 QES Version 1.0", "vendor": "Atos Information Technology GmbH", "certification_date": "2021-09-29", "category": "Digital signature", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitale_Signatur-Sichere_Signaturerstellungseinheiten/1112.html", "enhanced": { "product": "CardOS DI V5.4 QES Version 1.0", "applicant": "Atos Information Technology GmbH Otto-Hahn-Ring 6 81739 München", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_DVS.2,AVA_VAN.5", "protection_profile": "Secure Signature Creation Device - Part 2: Device with Key Generation Version 2.0.1, 23 January 2012, prEN 14169-2, BSI-CC-PP-0059-2009-MA-01,Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0071-2012-MA-01,Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0072-2012-MA-01", "certification_date": "2021-09-29", "expiration_date": "2026-09-28", "entries": [ { "id": "Secure" }, { "id": "Protection" }, { "id": "Protection" } ], "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1112V2c_pdf.pdf?__blob=publicationFile&v=4", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1112V2a_pdf.pdf?__blob=publicationFile&v=7", "description": "The composite TOE is named CardOS DI V5.4 QES Version 1.0 (developed by Atos Information Technology GmbH). The TOE is a smart card operating system dedicated to be used as a Secure Signature Creation Device (SSCD) and in accordance with eIDAS. It consists of the application QES, the OS ‘CardOS DI V5.4’, configuration scripts for initialization, personalization and AQES update, the according guidance documents, the underlying hardware platform together with the crypto library. As stated in the certification report in chapter 12 the certificate comprises the usage as QSigCD as well as QSealCD according to articles 30 and 39 of the Regulation (EU) No 910/2014. Please note that the certificate is no longer valid." }, "subcategory": "Secure Signature Creation Devices (SSCD)" }, { "cert_id": "BSI-DSZ-CC-1158-V4-2025", "product": "Digital Tachograph DTCO 1381, Release 4.1b", "vendor": "Continental Automotive Technologies GmbH", "certification_date": "2025-08-14", "category": "Digital tachograph", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitaler_Tachograph-Vehicle_Unit/1158.html", "enhanced": { "product": "Digital Tachograph DTCO 1381, Release 4.1b", "applicant": "Continental Automotive Technologies GmbH Heinrich-Hertz-Strasse 45 78052 Villingen-Schwenningen", "evaluation_facility": "Deutsche Telekom Security GmbH", "assurance_level": "EAL4,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Digital Tachograph - Vehicle Unit (VU PP) Version 1.15, 6 June 2021, BSI-CC-PP-0094-V2-2021", "certification_date": "2025-08-14", "expiration_date": "2030-08-13", "entries": [ { "id": "BSI-DSZ-CC-1158-V4-2025", "description": "- the re-evaluation of two development sites" }, { "id": "BSI-DSZ-CC-1158-V3-2025", "description": "The current evaluation is a re-evaluation based on the evaluation results andits certification BSI-DSZ-CC-1158-V2-2023. Subject of the re-evaluation were: - changes in the software, - the re-evaluation of a development site, and - the discontinuation of one development site. The software changes comprise bug fixing and improvement of usability." } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1158V4a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1158V4b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1158V4c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of evaluation is a second generation vehicle unit (VU) in the sense of Commission Implementing Regulation (EU) 2016/799 (Annex 1C) intended to be installed in road transport vehicles. Its purpose is to record, store, display, print and output data related to driver activities. It is connected to a motion sensor with which it exchanges vehicle’s motion data. The VU records and stores human user activities data in its internal data memory, it also records human user activities data in tachograph cards. The VU outputs data to display, printer and external devices. The TOE is connected to a motion sensor with which it obtains the vehicle’s motion data. Information from the motion sensor is corroborated by vehicle motion information derived from a GNSS receiver, and optionally by other sources independent of the motion sensor." }, "subcategory": "Vehicle Unit" }, { "cert_id": "BSI-DSZ-CC-1071-V8-2025", "product": "Digital Tachograph - Vehicle Unit SE 5000-8.1 Version F", "vendor": "Stoneridge Electronics AB", "certification_date": "2025-04-07", "category": "Digital tachograph", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitaler_Tachograph-Vehicle_Unit/1071.html", "enhanced": { "product": "Digital Tachograph - Vehicle Unit SE 5000-8.1 Version F", "applicant": "Stoneridge Electronics AB Gustav III:s Boulevard 26 SE-169 73 Solna Sweden", "evaluation_facility": "Deutsche Telekom Security GmbH", "assurance_level": "EAL4+,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Digital Tachograph - Vehicle Unit (VU PP) Version 1.15, 6 June 2021, BSI-CC-PP-0094-V2-2021", "certification_date": "2025-04-07", "expiration_date": "2030-04-06", "entries": [ { "id": "BSI", "description": "The target of evaluation (TOE) SE5000-8.1 Version I was changed due to improvements in the hardware layout as well as customer-induced changes regarding the GNSS antenna." }, { "id": "BSI", "description": "The target of evaluation (TOE) SE5000-8.1 Version H was changed due to a software update and the enabling of an addition power supply for a specific serial bus. Both changes are SFR non-interfering." }, { "id": "BSI-DSZ-CC-1071-V8-2025-MA-01", "description": "The Target of Evaluation (TOE) SE5000-8.1 Version G was changed due to specific customer issues." }, { "id": "BSI", "description": "- other minor changes aimed to improve the usability of TOE" }, { "id": "BSI-DSZ-CC-1071-V7-2023-MA-02", "description": "Security Target" }, { "id": "BSI-DSZ-CC-1071-V7-2023-MA-01", "description": "The product was changed to Revision D due to bug fixes and improvements." }, { "id": "BSI", "description": "was changed due to an improvement of the hardware." }, { "id": "BSI-DSZ-CC-1071-V6-2023-MA-01", "description": "was changed due to product improvements." }, { "id": "BSI-DSZ-CC-1071-V6-2023", "description": "Download" }, { "id": "BSI-DSZ-CC-1071-V5-2021-MA-03", "description": "The change was due to a new hologram on the tamper label." }, { "id": "BSI-DSZ-CC-1071-V5-2021-MA-02", "description": "The SE5000-8 Version I was changed due to non security relevant configuration modifications on implementation level." }, { "id": "BSI-DSZ-CC-1071-V5-2021-MA-01", "description": "The SE5000-8 Version I was changed due to non security relevant configuration modifications on implementation level." }, { "id": "BSI-DSZ-CC-1071-V5-2021", "description": "Vehicle Unit" }, { "id": "BSI-DSZ-CC-1071-V4-2020-MA-02", "description": "The SE5000-8, version G was changed due to non security relevant configuration modifications on implementation level improving computations of generated output pulses. The measurements of incoming pulses from motion sensor has not been changed." }, { "id": "BSI-DSZ-CC-1071-V4-2020-MA-01", "description": "Change of configuration for diagnostic services." }, { "id": "BSI-DSZ-CC-1071-V4-2020", "description": "." }, { "id": "BSI-DSZ-CC-1071-V3-2020-MA-01", "description": "Maintenancereport" }, { "id": "BSI-DSZ-CC-1071-V3-2020", "description": "compared with the predecessor product are the changes due interoperability issues and other improvements." }, { "id": "BSI-DSZ-CC-1071-V2-2019", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1071-2019", "description": "Certificate" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1071V8b_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1071V8a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1071V8c_pdf.pdf?__blob=publicationFile&v=2", "description": "The SE5000 is a second generation vehicle unit (VU) in the sense of Commission Implementing Regulation (EU) 2016/799 (Annex 1C), intended to be installed in road transport vehicles. Its purpose is to record, store, display, print and output data related to driver activities. The VU records and stores human user activities data in its internal data memory. It also records human user activities data in tachograph cards. The VU outputs data to a display, to a printer and to external devices. The SE5000 is connected to a motion sensor from which it obtains the vehicle’s motion data. Information from the motion sensor is corroborated by vehicle motion information derived from a GNSS receiver, and optionally by other sources independent of the motion sensor." }, "subcategory": "Vehicle Unit" }, { "cert_id": "BSI-DSZ-CC-1131-V3-2026", "product": "Sensor 2185 (KITAS 4.0) Revision 1.2.2", "vendor": "Continental Automotive Technologies GmbH Ehemals: Continental Automotive GmbH", "certification_date": "2026-02-09", "category": "Digital tachograph", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Digitaler_Tachograph_Motion_Sensor/1131.html", "enhanced": { "product": "Sensor 2185 (KITAS 4.0) Revision 1.2.2", "applicant": "Continental Automotive Technologies GmbH Ehemals: Continental Automotive GmbH Heinrich-Hertz-Strasse 45 78052 Villingen-Schwenningen", "evaluation_facility": "Deutsche Telekom Security GmbH", "assurance_level": "EAL4+,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Digital Tachograph - Motion Sensor (MS PP) Version 1.0, 9 May 2017, BSI-CC-PP-0093-2017", "certification_date": "2026-02-09", "expiration_date": "2031-02-08", "entries": [ { "id": "BSI", "description": "The Target of Evaluation (TOE) is the product:Sensor 2185 (KITAS 4.0).The TOE is a second generation Tachograph Motion Sensor. A motion sensor is installed within a road transport vehicle as part of a digital tachograph system. Its purpose is to provide a vehicle unit with motion datathat accurately reflects the vehicle’s speed and distance travelled. The motion sensor is mechanically interfaced to a moving part of the vehicle, which movement is representative of the vehicle’s speed and distance travelled. It may be located in the vehicle’s gearbox or in any other part of the vehicle. In the operational phase, the motion sensor is connected to a vehicle unit. A motion sensor meeting the requirements of this ST can be paired and used with second-generation vehicle units, or with first generation vehicle units." }, { "id": "BSI", "description": "This second Maintenance Procedure with partial ALC Re-Evaluation included an on-site audit allowing the integration of a third-party production site in Germany into the certified product life cycle of the unchanged product." }, { "id": "BSI", "description": "Minor improvement of the implementation without any impact on security." }, { "id": "BSI", "description": "The changes of the Sensor 2185 (KITAS 4.0), Release 1.20 are related to an update of the SW and a change of the housing seal.." }, { "id": "BSI", "description": "The Sensor 2185 (KITAS 4.0) Release 1.11 was changed due to non security relevant modifications of the platform." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1131V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1131V3b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1131V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Sensor 2185 (KITAS 4.0) is second generation Tachograph Motion Sensor in the sense of Commission Implementing Regulation (EU) 2016/799, intended to be used in the digital tachograph system. The Digital Tachograph system additionally contains a vehicle unit, tachograph cards, an external GNSS (Global Navigation Satellite System) module (if applicable) and remote early detection communication readers. A motion sensor is installed within a road transport vehicle as part of a digital tachograph system. Its purpose is to provide a vehicle unit with motion data that accurately reflects the vehicle’s speed and distance traveled. The focus of this re-evaluation was on the one hand on the software changes and their impact on the security functionality of the TOE and on the other hand on the change of the housing seal." }, "subcategory": "Motion Sensor" }, { "cert_id": "BSI-DSZ-CC-1130-V4-2025", "product": "fiskaly Security Module Application for Electronic Record-keeping Systems, Version 1.0.15", "vendor": "fiskaly GmbH", "certification_date": "2025-03-31", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1130.html", "enhanced": { "product": "fiskaly Security Module Application for Electronic Record-keeping Systems, Version 1.0.15", "applicant": "fiskaly GmbH Mariahilfer Straße 36/5, 4. OG AT-1070 Wien Österreich", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_CMS.3", "protection_profile": "Common Criteria Protection Profile Security Module Application for Electronic Record-keeping Systems (SMAERS) Version 1.0, 15 July 2020, BSI-CC-PP-0105-V2-2020", "certification_date": "2025-03-31", "expiration_date": "2033-03-30", "entries": [ { "id": "BSI-DSZ-CC-1130-V4-2025 (Ausstellungsdatum / Certification Date 31.03.2025, gültig bis / valid until 30.03.2033) Zertifizierungsreport / Certification Report", "description": "The Target of Evaluation (TOE) is a Security Module application for Electronic Record-keeping Systems implemented as software. The TOE implements the client-server architecture running on a platform supporting secure storage of assets." }, { "id": "BSI-DSZ-CC-1130-V3-2025 (Ausstellungsdatum / Certification Date 21.01.2025, gültig bis / valid until 20.01.2033) Zertifizierungsreport / Certification Report", "description": "The Target of Evaluation (TOE) is a Security Module application for Electronic Record-keeping Systems implemented as software. The TOE implements the client-server architecture running on a platform supporting secure storage of assets." }, { "id": "BSI-DSZ-CC-1130-V2-2021 (Ausstellungsdatum / Certification Date 03.12.2021, gültig bis / valid until 02.12.2029) Zertifizierungsreport / Certification Report", "description": "implements the client-server architecture running on a platform supporting secure storage of assets." }, { "id": "BSI-DSZ-CC-1130-2021 (Ausstellungsdatum / Certification Date 17.05.2021, gültig bis / valid until 16.05.2029) Zertifizierungsreport / Certification Report", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1130V4a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1130V4b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1130V4c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is a Security Module application for Electronic Record-keeping Systems implemented as software. The TOE implements the client-server architecture running on a platform supporting secure storage of assets." } }, { "cert_id": "BSI-DSZ-CC-1238-2025", "product": "Swissbit Cloud CSPL, Version 1.0.7", "vendor": "Swissbit AG", "certification_date": "2025-03-27", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1238.html", "enhanced": { "product": "Swissbit Cloud CSPL, Version 1.0.7", "applicant": "Swissbit AG Industriestraße 4 9552 Bronschhofen Schweiz", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_CMS.3", "protection_profile": "Protection Profile Cryptographic Service Provider Light (CSPL) Version 1.0, 12 November 2019, BSI-CC-PP-0111-2019; Common Criteria Protection Profile Configuration Cryptographic Service Provider Light – Time Stamp Service and Audit (PPC-CSPLight-TS-Au) Version 1.0, 26 February 2020, BSI-CC-PP-0112-2020; Common Criteria Protection Profile Configuration Cryptographic Service Provider Light - Time Stamp Service and Audit – Clustering (PPC-CSPLight-TS-Au-Cl), Version 1.0, 26 February 2020, BSI-CC-PP-0113-2020", "certification_date": "2025-03-27", "expiration_date": "2030-03-26", "entries": [ { "id": "BSI-DSZ-CC", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1238a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1238b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1238c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE provides the functionality of a Cryptographic Service Provider (CSPL) according to the Protection Profiles Cryptographic Service Provider Light (BSI-CC-PP-0111-2019) including the PP-Modules Time Stamp Service and Audit (BSI-CC-PP-0112-2020) and Clustering (BSI-CC-PP-0113-2020)." } }, { "cert_id": "BSI-DSZ-CC-1239-2024", "product": "Swissbit Cloud SMAERS", "vendor": "Swissbit AG", "certification_date": "2024-11-29", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1239.html", "enhanced": { "product": "Swissbit Cloud SMAERS", "applicant": "Swissbit AG Industriestraße 4 9552 Bronschhofen Schweiz", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_CMS.3", "protection_profile": "Common Criteria Protection Profile Security Module Application for Electronic Record-keeping Systems (SMAERS) Version 1.0, 15 July 2020, BSI-CC-PP-0105-V2-2020", "certification_date": "2024-11-29", "expiration_date": "2032-11-28", "entries": [ { "id": "BSI-DSZ-CC", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1239a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1239b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1239c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is a Security Module application for Electronic Record-keeping Systems implemented as software. The TOE implements the client-server architecture running on a platform supporting secure storage of assets." } }, { "cert_id": "BSI-DSZ-CC-1137-V4-2024", "product": "D-TRUST TSE-SMAERS, version 1.4.3", "vendor": "D-Trust GmbH", "certification_date": "2024-02-13", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1137.html", "enhanced": { "product": "D-TRUST TSE-SMAERS, version 1.4.3", "applicant": "D-Trust GmbH Kommandantenstraße 18 10969 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_CMS.3", "protection_profile": "Security Module Application for Electronic-keeping Systems (SMAERS) Version 1.0, 15 July 2020, BSI-CC-PP-0105-V2-2020", "certification_date": "2024-02-13", "expiration_date": "2032-02-12", "entries": [ { "id": "BSI-DSZ-CC-1137-V4-2024", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1137-V3-2021-MA-03 (Ausstellungsdatum / Certification Date 12.09.2023)", "description": "Cloud" }, { "id": "BSI-DSZ-CC-1137-V3-2021-MA-02 (Ausstellungsdatum / Certification Date 12.08.2022)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-1137-V3-2021-MA-01 (Ausstellungsdatum / Certification Date 25.05.2022)", "description": "Maintenancereportt" }, { "id": "BSI-DSZ-CC-1137-V3-2021", "description": "D-Trust" }, { "id": "BSI-DSZ-CC-1137-V2-2021", "description": "Light Service which is operated by D-Trust.\"" }, { "id": "BSI-DSZ-CC-1137-2020", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1137V4a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1137V4b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1137V4c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is a pure software TOE and is provided as a Java application. The TOE provides the functionality of a SMAERS according to BSI-CC-PP-0105-V2-2020. D-Trust provides a remote form of the Technical Security System (TSS) in a client / server architecture. The TOE operates as part of the D-Trust TSS client. It communicates with the Remote CSPLight Service which is operated by D-Trust." } }, { "cert_id": "BSI-DSZ-CC-1170-2023", "product": "cryptovision SMAERS, Version 2.0", "vendor": "cv cryptovision GmbH", "certification_date": "2023-04-27", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1170.html", "enhanced": { "product": "cryptovision SMAERS, Version 2.0", "applicant": "cv cryptovision GmbH Munscheidstr. 14 45886 Gelsenkirchen Deutschland", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_CMS.3", "certification_date": "2023-04-27", "expiration_date": "2031-04-26", "entries": [ { "id": "BSI", "description": "Some accompanying life-cycle documentation which ist required by the PP has ben updatet by the developer. This documentation is not in the scope of the Common Criteria Evaluation. The purpose of this maintenance was solely to update the ETR and include references to the updated documents." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1170a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1170b_pdf.pdf?__blob=publicationFile&v=3", "description": "The TOE is named cryptovision SMAERS – Java Card applet providing Security Module Application for Electronic Record-keeping Systems and was evaluated in version 1.0. It is a security module application implemented as software running on the cryptovision CSP (cryptographic service provider). The TOE is a part of the security module of a certified technical security system (CTSS) for electronic record-keeping systems (ERS)." } }, { "cert_id": "BSI-DSZ-CC-1166-2021", "product": "D-TRUST Web-Dienst TSE-SMAERS for DF Fiskal Cloud Connect Version 1.3.3", "vendor": "D-Trust GmbH", "certification_date": "2021-12-15", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1166.html", "enhanced": { "product": "D-TRUST Web-Dienst TSE-SMAERS for DF Fiskal Cloud Connect Version 1.3.3", "applicant": "D-Trust GmbH Kommandantenstr. 15 10969 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL2,ALC_CMS.3,ALC_LCD.1", "protection_profile": "Common Criteria Protection Profile Security Module Application for Electronic Record-keeping Systems (SMAERS) Version 1.0, 15 July 2020, BSI-CC-PP-0105-V2-2020", "certification_date": "2021-12-15", "expiration_date": "2029-12-14", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1166a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1166b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1166c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is a pure software TOE in form of a JAR-file, which is delivered embedded in an Android application. The TOE provides the functionality of a SMAERS according to the Protection Profile BSI-CC-PP-0105-V2-2020. D-Trust provides a remote form of the Technical Security System (TSS) in a client / server architecture. The TOE operates as part of the D-Trust TSS client. It communicates with the Remote CSP Service, which is operated by D-Trust." } }, { "cert_id": "BSI-DSZ-CC-1140-2021", "product": "SMAERS for a.sign TSE Online, Version 1.2.0", "vendor": "A-Trust Gesellschaft für Sicherheitssysteme im elektronischen Datenverkehr GmbH", "certification_date": "2021-11-11", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1140.html", "enhanced": { "product": "SMAERS for a.sign TSE Online, Version 1.2.0", "applicant": "A-Trust Gesellschaft für Sicherheitssysteme im elektronischen Datenverkehr GmbH Landstraßer Hauptstraße 1b, E02 1030 Wien Österreich", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_CMS.3", "protection_profile": "Security Module Application for Electronic-Record-keeping Systems (SMAERS) Version 1.0, 15 July 2020, BSI-CC-PP-0105-V2-2020", "certification_date": "2021-11-11", "expiration_date": "2029-11-10", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1140a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1140b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1140c_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of Evaluation (TOE) is a Security Module application implemented as software. A-Trust SMAERS for a.sign TSE Online is a software library that implements the client-server architecture running on a platform supporting secure storage of assets after being integrated into a separate CTSS Software of the developer (‘a.sign TSE Online’ TSS). The TOE relies on an Utimaco CryptoServer CSPLight Version 1.0.0 (BSI-DSZ-CC-1145-2021) as a Cryptographic Service Provider Light (CSPL), located in the A-Trust Datacenter secure environment. The TOE is strict conform to the Protection Profile BSI-CC-PP-0105-V2-2020." } }, { "cert_id": "BSI-DSZ-CC-1121-V2-2021", "product": "Swissbit TSE SMAERS Firmware", "vendor": "Swissbit AG", "certification_date": "2021-03-12", "category": "Fiscalisation", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Fiskalisierung/1121_1121V2.html", "enhanced": { "product": "Swissbit TSE SMAERS Firmware", "applicant": "Swissbit AG Industriestraße 4 9552 Bronschhofen Schweiz", "evaluation_facility": "MTG AG", "assurance_level": "EAL2", "protection_profile": "Security Module Application for Electronic Record-keeping Systems (SMAERS) Version 0.7.5, 6 March 2019, BSI-CC-PP-0105-2019", "certification_date": "2021-03-12", "expiration_date": "2029-03-11", "entries": [ { "id": "BSI-DSZ-CC-1121-V2-2021-MA-01 (Ausstellungsdatum / Certification Date 31.03.2023) Maintenance Report / Maintenancereport Die Swissbit TSE SMAERS Firmware selbst hat sich nicht geändert, einzig die Umgebung welches bei der USB Version zu einer neuen Versionsnummer führt.", "description": "Swissbit TSE SMAERS Firmware" }, { "id": "BSI-DSZ-CC-1121-V2-2021", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1121-2019-RA-01", "description": "The result of the original certification has been confirmed." }, { "id": "BSI-DSZ-CC-1121-2019 (19.12.2019)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1121V2a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1121V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is a SMAERS Applet with a small additional part of Hardware. The TOE exists in three different physical configurations (micro SD, SD or USB-Token). Their differences are solely based on the physical form factor and a different controller." } }, { "cert_id": "BSI-DSZ-CC-0519-V6-2025", "product": "ORGA 6141 online V3.9.2:1.2.0/3.9.2:2.0.0", "vendor": "Worldlline Healthcare GmbH", "certification_date": "2025-10-16", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/0519.html", "enhanced": { "product": "ORGA 6141 online V3.9.2:1.2.0/3.9.2:2.0.0", "applicant": "Worldlline Healthcare GmbH Konrad-Zuse-Ring 1 24220 Flintbek", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3+,AVA_VAN.4,ALC_TAT.1,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Protection Profile Electronic Health Card Terminal (eHCT) Version 3.7, BSI-CC-PP-0032-V2-2015-MA-01, 22 May 2017", "certification_date": "2025-10-16", "expiration_date": "2030-10-15", "entries": [ { "id": "BSI", "description": "Management" }, { "id": "BSI-DSZ-CC-0519-V6-2025 (16.10.2025)", "description": "Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate" }, { "id": "BSI", "description": "online" }, { "id": "BSI-DSZ-CC-0519-V5-2024 (24.09.2024)", "description": "Management" }, { "id": "BSI-DSZ-CC-0519-V4-2022-MA-01 (04.04.2023) Maintenancereport / Maintenance Report Sicherheitsvorgaben / Security Target Folgende Änderungen waren im Fokus dieser Re-Evalauierung: Updates von Open-Sopurce-Komponenten, Fehlerbehebung im TOE und die Erweiterung des Produkts um die Remote Management Schnittstelle als zweite Adiminstrationsschnittstelle, die eingabe der SMC-B PIN über diese Remote Management Schnittstelle sowie die VPN Authentifizierung via PSK und EAP-TLS. Following changes on the evaluated product have been in the focus of this re-evaluation: Update of open-source components, Bug fixing for the TOE, Product expansion, Remote Management Interface as second administration interface, SMC-B PIN entry via the Remote Management Interface and VPN authentication method PSK and EAP-TLS.", "description": "Firmware" }, { "id": "BSI", "description": "Management" }, { "id": "BSI", "description": "online" }, { "id": "BSI", "description": "Maintenance Report" }, { "id": "BSI", "description": "The certified product itself did not change compared to 0519-V2-2018." }, { "id": "BSI", "description": "online" }, { "id": "BSI", "description": "The certified product itself did not change compared to 0519-V2-2018." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0519V6a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0519V6b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0519V6c_pdf.pdf?__blob=publicationFile&v=3", "description": "The Target of Evaluation (TOE) is a smart card terminal ORGA 6141 online Version 3.7.2:1.2.0. It fulfils the IT security requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system." }, "subcategory": "Card reader" }, { "cert_id": "BSI-DSZ-CC-1233-2025", "product": "Y7 4.3.1:1.2.9 with eHealth Application 1.1.20", "vendor": "JDM Payment Solutions SAS", "certification_date": "2025-07-08", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/1233.html", "enhanced": { "product": "Y7 4.3.1:1.2.9 with eHealth Application 1.1.20", "applicant": "JDM Payment Solutions SAS 2 rue Gallien, F-03400 Saint Ouen-sur-Sein", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3+,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_TAT.1,AVA_VAN.4", "protection_profile": "Common Criteria Protection Profile Electronic Health Card Terminal (eHCT) Version 3.8, BSI-CC-PP-0032-V3-2023, 15.12. 2022", "certification_date": "2025-07-08", "expiration_date": "2030-07-07", "entries": [ { "id": "BSI-DSZ-CC-1233-2025-MA-01 (Ausstellungsdatum 10.02.2026)", "description": "The Target of Evaluation (TOE) is a smart-card-terminal which fulfils the requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system. The terminal is based on a two-chip architecture." } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is a smart-card-terminal which fulfils the requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system. The terminal is based on a two-chip architecture" }, "subcategory": "Card reader" }, { "cert_id": "BSI-DSZ-CC-1171-V2-2024", "product": "Electronic Health Card Terminal eHealth GT900 Hardwareversion: 2.1.0 & 2.1.1, Firmwareversion: 2.1.1", "vendor": "GT German Telematics Gesellschaft für Telematikdienste GmbH", "certification_date": "2024-11-20", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/1171.html", "enhanced": { "product": "Electronic Health Card Terminal eHealth GT900 Hardwareversion: 2.1.0 & 2.1.1, Firmwareversion: 2.1.1", "applicant": "GT German Telematics Gesellschaft für Telematikdienste GmbH Libellenstraße 9 14129 Berlin", "evaluation_facility": "Deutsche Telekom Security GmbH (Bonn)", "assurance_level": "EAL3+,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_TAT.1,AVA_VAN.4", "protection_profile": "Common Criteria Protection Profile Electronic Health Card Terminal (eHCT) Version 3.7, BSI-CC-PP-0032-V2-2015-MA-01, 22 May 2017", "certification_date": "2024-11-20", "expiration_date": "2029-11-19", "entries": [ { "id": "BSI-DSZ-CC-1171-V2-2024 (Ausstellungsdatum / Certification Date 20.12.2024, gültig bis / valid until 19.12.2029) Zertifizierungsreport / Certification Report", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1171-2023 (Ausstellungsdatum / Certification Date 30.03.2023, gültig bis / valid until 29.03.2028) Zertifizierungsreport / Certification Report", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1171V2a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1171V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the eHealth Card Terminal GT900 Hardware version: 2.1.0, Firmware version: 2.0.1. It is an eHealth Card Terminal with 2 ID-1 Slots (HPC and eGK) and 2 ID-000 SMC Slots (supporting SMC-KT and SMC-B Cards), a disinfectable liquids resistant 20 key keypad also usable for secure pin entry and LAN + USB interfaces with interoperability to all eHealth Connectors TI 1.0 and to all High Speed Connectors (HSK) for TI 2.0 of the German Healthcare System." }, "subcategory": "Card reader" }, { "cert_id": "BSI-DSZ-CC-0623-V3-2024", "product": "ZEMO VML-GK2", "vendor": "ZEMO GmbH", "certification_date": "2024-05-08", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/0623.html", "enhanced": { "product": "ZEMO VML-GK2", "applicant": "ZEMO GmbH Franz-Mader-Straße 9 94036 Passau", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3,AVA_VAN.5,ALC_TAT.1,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Protection Profile Mobile Card Terminal for the German Healthcare System (MobCT), Version 1.4, BSI-CC-PP-0052-2015, 19 January 2015", "certification_date": "2024-05-08", "expiration_date": "2029-05-07", "entries": [ { "id": "BSI-DSZ-CC-0623-V3-2024 (08.05.2024)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-0623-V2-2018 (28.06.2018)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte06/0623V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte06/0623V3b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte06/0623V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the ZEMO VML-GK2, FW-Version 3.1.0, HW-Version 2.0.0 by ZEMO GmbH. The TOE is a smart card terminal used for the German healthcare system as a Mobile Card Terminal (MobCT). It is used by medical suppliers during visits to read out insurance data from a German electronic Health Card (eHC) of a health insured person. The TOE fulfils the IT security requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system." }, "subcategory": "Card reader" }, { "cert_id": "BSI-DSZ-CC-0513-V3-2023", "product": "CHERRY eHealth Terminal G87-1505 FW-Version 3.3.3 HW-Version 1.1.1", "vendor": "Cherry Digital Health GmbH", "certification_date": "2023-10-09", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/0513.html", "enhanced": { "product": "CHERRY eHealth Terminal G87-1505 FW-Version 3.3.3 HW-Version 1.1.1", "applicant": "Cherry Digital Health GmbH Cherrystraße 2 91275 Auerbach/Opf Deutschland", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3+,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_TAT.1,AVA_VAN.4", "protection_profile": "Common Criteria Protection Profile Electronic Health Card Terminal (eHCT) Version 3.7, BSI-CC-PP-0032-V2-2015-MA-01, 22. Mai 2017", "certification_date": "2023-10-09", "expiration_date": "2028-10-08", "entries": [ { "id": "BSI-DSZ-CC-0513-V3-2023 (09.10.2023)", "description": "Certificate" }, { "id": "BSI", "description": "The certified product itself did not change. Only the secure delivery-chain has been updated." }, { "id": "BSI", "description": "The certified product itself did not change. Only the secure delivery-chain has been updated." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0513V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0513V3b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0513V3c_pdf.html?nn=456648", "description": "The TOE is the smart card keyboard \"G87-1505\" version 3.0.1:1.1.1 with integrated smart card readers. It fulfils the IT security requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system." }, "subcategory": "Card reader" }, { "cert_id": "BSI-DSZ-CC-1124-V3-2023", "product": "CHERRY eHealth Terminal ST-1506, AFxZ FW 3.0.0, HW 4.0.0", "vendor": "Cherry GmbH", "certification_date": "2023-06-06", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/1124_1124V2_1124V3.html", "enhanced": { "product": "CHERRY eHealth Terminal ST-1506, AFxZ FW 3.0.0, HW 4.0.0", "applicant": "Cherry GmbH Cherrystraße 2 91275 Auerbach/Opf", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3+,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_TAT.1,AVA_VLA.4", "certification_date": "2023-06-06", "expiration_date": "2028-06-05", "entries": [ { "id": "BSI", "description": "4.0.0" }, { "id": "BSI", "description": "4.0.0" }, { "id": "BSI-DSZ-CC-1124-V3-2023-MA-01 (Ausstellungsdatum / Certification Date 05.01.2024) Maintenance Report / Maintenancereport Das CHERRY eHealth Terminal ST-1506, FW 4.0.23, HW 4.0.0 wurde aufgrund von Usability-Aspekten (Display-Layout und Handling) sowie zur Verbesserung der Kompatibilität mit dem Konnektor geändert. Diese Änderungen modifizieren keine sicherheitsrelevanten Funktionen im Quellcode und wirken sich nur auf die Benutzeroberfläche aus. Die Änderungen sind daher auch mit einer Aktualisierung des Benutzerhandbuchs verbunden. Die Konfigurationsmanagementverfahren erforderten eine Änderung der Produktkennung. Daher wurde die Versionsnummer von FW 4.0.0, HW 4.0.0 auf FW 4.0.23, HW 4.0.0 geändert.", "description": "4.0.0" }, { "id": "BSI-DSZ-CC-1124-V3-2023 (Ausstellungsdatum / Certification Date 06.06.2023, gültig bis / valid until 05.06.2028)", "description": "- Passive and active physical protection." }, { "id": "BSI-DSZ-CC-1124-V2-2022-MA-02 (Ausstellungsdatum / Certification Date 03.11.2022) Maintenance Report / Maintenancereport Das CHERRY eHealth Terminal ST-1506, AFxZ FW 3.0.28, HW 4.0.0 würde in Hinsicht auf eine Anforderung an die Metadaten der SSL-Verbindung angepasst. Konfigurations-Management Vorgaben erfordern daher auch die Änderung der Produkt-ID. Dementsprechend hat sich die Versionsnummer von AFxZ FW 3.0.24, HW 4.0.0 nach AFxZ FW 3.0.28, HW 4.0.0 geändert. Außerdem wurde ein Dokument welches Teile der sicheren Auslieferungskette beschreibt, redaktionell angepasst.", "description": "4.0.0. Furthermore an document related to the secure delivery chain has been editorially changed." }, { "id": "BSI-DSZ-CC-1124-V2-2022-MA-01 (Ausstellungsdatum / Certification Date 23.05.2022) Maintenance Report / Maintenancereport Das CHERRY eHealth Terminal ST-1506, AFxZ FW 3.0.24, HW 4.0.0 würde in Hinsicht der Konnektor-Interoperabilität (TLS-Timeout, SICCT Request Command) angepasst. Konfigurations-Management Vorgaben erfordern daher auch die Änderung der Produkt-ID. Dementsprechend hat sich die Versionsnummer von AFxZ FW 3.0.0, HW 4.0.0 in AFxZ FW 3.0.24, HW 4.0.0 geändert.", "description": "4.0.0." }, { "id": "BSI-DSZ-CC-1124-V2-2022 (Ausstellungsdatum / Certification Date 11.05.2022, gültig bis / valid until 10.05.2027)", "description": "Certificate" }, { "id": "Zugriff" }, { "id": "Sichere" }, { "id": "Sichere" }, { "id": "Unterstützung" }, { "id": "Benutzerauthentifizieung," }, { "id": "Management" }, { "id": "Passiver und aktiver physischer Schutz." }, { "id": "Access" }, { "id": "Secure" }, { "id": "Secure" }, { "id": "Enforcement" }, { "id": "User" }, { "id": "Management" }, { "id": "Passive" }, { "id": "BSI-DSZ-CC-1124-2021-MA-04 (Ausstellungsdatum / Certification Date 16.03.2022) Maintenance Report / Maintenancereport Das CHERRY eHealth Terminal ST-1506, FW 2.0.20 HW 4.0.0 wurde in Hinsicht der konkreten Bestückung der Platine des Mainboards geändert. Diese deckt eine zweite Bestückungsmöglichkeit ab, ohne die Funktionalität zu verändern. Die TOE Hardware Version 4.0.0 besteht jetzt aus den PCB Versionen 2.2.7 oder 2.2.8.", "description": "versions 2.2.7 or 2.2.8." }, { "id": "BSI-DSZ-CC-1124-2021-MA-03 (Ausstellungsdatum / Certification Date 13.10.2021) Maintenance Report / Maintenancereport Der CHERRY eHealth Terminal ST-1506, FW 2.0.20, HW 4.0.0 wurde in Hinsicht auf einen Timeout-Wert geändert. Konfigurations-Management Vorgaben erfordern daher auch die Änderung der Produkt-ID, bei der sich die Versionsnummer von 2.0.17 in 2.0.20 geändert hat.", "description": "The CHERRY eHealth Terminal ST-1506, FW 2.0.20, HW 4.0.0 was changed due to a extension of a timeout value. Configuration Management procedures required a change in the product identifier. Therefore the version number changed from 2.0.17 to 2.0.20." }, { "id": "BSI-DSZ-CC-1124-2021-MA-02 (Ausstellungsdatum / Certification Date 03.08.2021) Maintenance Report / Maintenancereport Die Änderung am zertifizierten Produkt betreffen kleinere Anpassungen, wie Display-Texte und Return Codes. Diese aktualisierte Produktversion wird durch eine neue Versionsnummer kenntlich gemacht.", "description": "The change to the certified product is at the level of minor fixes covering e.g. display-text layout and return codes. The identification of the maintained product is indicated by a new version number compared to the certified product." }, { "id": "BSI-DSZ-CC-1124-2021-MA-01 (Ausstellungsdatum / Certification Date 17.05.2021) Maintenance Report / Maintenancereport Das eHealth Karten-Terminal mit Touchscreen Display, ST-1506, AFxZ 2.0.4:4.0.0 wurde auf der Ebene des Power Management geändert. Dementsprechend hat sich die Versionsnummer von AFxZ 2.0.0:4.0.0 zu AFxZ 2.0.4:4.0.0 geändert.", "description": "The eHealth Card Terminal with Touchscreen Display, ST-1506, AFxZ 2.0.4:4.0.0 was changed on power management level. Therefore the version number changed from AFxZ 2.0.0:4.0.0 to AFxZ 2.0.4:4.0.0." }, { "id": "BSI-DSZ-CC-1124-2021 (Ausstellungsdatum / Certification Date 15.04.2021, gültig bis / valid until 14.04.2026)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1124V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1124V3b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1124V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the card terminal eHealth Terminal ST-1506 with 2 ID1 Slots (HPC and eGK) and 2 SMC Slots (SM-KT (supporting SMC-B and SMC-KT cards) and SMC-A), 720p touchscreen (also used for secure pin entry) and LAN interfaces for the use in the German healthcare system with HPC and eGK. It addresses the security services provided by this terminal: Access to one or more slots for smart cards, Secure network connectivity,Secure PIN entry functionality,Enforcement of the encryption of communication,User authentication,Management functionality including update of Firmware,Passive and active physical protection." }, "subcategory": "Card reader" }, { "cert_id": "BSI-DSZ-CC-0596-V3-2023", "product": "Mobiles eHealth Kartenterminal ORGA 930 M online, 4.9.0: 1.0.0", "vendor": "Worldline Healthcare GmbH", "certification_date": "2023-01-18", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/0596V2_0596V3.html", "enhanced": { "product": "Mobiles eHealth Kartenterminal ORGA 930 M online, 4.9.0: 1.0.0", "applicant": "Worldline Healthcare GmbH Konrad-Zuse-Ring 1 24220 Flintbek", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3+,AVA_VAN.5,ALC_TAT.1,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Protection Profile Mobile Card Terminal for the German Healthcare System (MobCT), Version 1.4, BSI-CC-PP-0052-2015, 24 September 2014", "certification_date": "2023-01-18", "expiration_date": "2028-01-17", "entries": [ { "id": "BSI-DSZ-CC-0596-V3-2023-MA-02 (Ausstellungsdatum / Certification Date 02.01.2025)", "description": "The changes are firmware adaptions regarding gematik specifications, adaption of BCD-display and the clicktone. Further the advance warning time regarding the expiration of the HBA/SMC-B certificates is extended." }, { "id": "BSI-DSZ-CC-0596-V3-2023-MA-01 (Ausstellungsdatum / Certification Date 02.01.2024)", "description": ", an improvement of power consumption management and a truststore update of the productive environment." }, { "id": "BSI-DSZ-CC-0596-V3-2023 (Ausstellungsdatum / Certification Date 18.01.2023, gültig bis / valid until 17.01.2028)", "description": "as product optimizing and Updates of the Open Source components. The Secure Delivery Chain was improved, as it is now independent from the forwarder with new security measures." }, { "id": "BSI-DSZ-CC-0596-V2-2018-MA-3 (23.11.2020)", "description": "TOEs are the mobile card terminal “ORGA 930 M” and the most widely identical “Cherry ST-1530” in Version 4.7.0:1.0.0 with integrated smart card readers. The TOE fulfills the requirements to be used with the German electronic Health Card (eHC) and the German Professional Card (HPC) based on the regulations of the German healthcare System." }, { "id": "BSI-DSZ-CC-0596-V2-MA-02 (19.12.2018)", "description": "The certified product itself did not change compared to 0596-V2-2018." }, { "id": "BSI-DSZ-CC-0596-V2-2018 (Ausstellungsdatum / Certification Date 25.09.2010, gültig bis / valid until 24.09.2018)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0596V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0596V3b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte05/0596V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "TOEs are the mobile card terminal “ORGA 930 M” and the most widely identical “Cherry ST-1530” in Version 4.7.0:1.0.0 with integrated smart card readers. The TOE fulfills the requirements to be used with the German electronic Health Card (eHC) and the German Professional Card (HPC) based on the regulations of the German healthcare system." }, "subcategory": "Card reader" }, { "cert_id": "BSI-DSZ-CC-1261-2025", "product": "IDEMIA_HC_Germany_NEO_G2.1_COS, V3", "vendor": "IDEMIA Germany GmbH", "certification_date": "2025-08-06", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/1261.html", "enhanced": { "product": "IDEMIA_HC_Germany_NEO_G2.1_COS, V3", "applicant": "IDEMIA Germany GmbH Konrad-Zuse-Ring 1 24220 Flintbek", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 1.9, 18 November 2014, BSI-CC-PP-0082-V2-2014", "certification_date": "2025-08-06", "expiration_date": "2030-08-05", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the product IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3 developed by IDEMIA Germany GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for specific card types and applications of the card generation G2 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional packages \"RSA Key Generation\", \"Contactless Interface\" and \"Logical Channels\". The TOE uses from the Protection Profile PP-0082-V4 the base part together with the corresponding optional packages. The present certification procedure is a re-certification on base of the certificate BSI-DSZ-CC-1098-2020 and the two maintenance procedures BSI-DSZ-CC-1098-2020-MA-01 and BSI-DSZ-CC-1098-2020-MA-02 with focus on: the update of the CC certificate of the TOE’s underlying IC, the improvement of the TOE’s cryptographic implementation, the renewal of the vulnerability analysis and valuation, the integration of patch code into the operating system code, the changes in the life-cycle model, the renewal of site audits and site certificates for development and production, and the corresponding update of the Security Target and user guidance documentation." }, "subcategory": "Smartcards" }, { "cert_id": "BSI-DSZ-CC-1243-2024", "product": "STARCOS 3.7 COS GKV C2", "vendor": "Giesecke+Devrient ePayments GmbH", "certification_date": "2024-08-22", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/1243.html", "enhanced": { "product": "STARCOS 3.7 COS GKV C2", "applicant": "Giesecke+Devrient ePayments GmbH Prinzregentenstr. 161 81677 München", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019", "certification_date": "2024-08-22", "expiration_date": "2029-08-21", "entries": [ { "id": "BSI", "description": "The maintenance procedure for BSI-DSZ-CC-1243-2024 covers the update of the product life-cycle concerning the involved development and production sites and additionally addresses the update of the Security Target(ST) and user guidance documentation regards the TOE's random number generation functionality. The certified product itself did not change." }, { "id": "BSI", "description": "Certificate" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243b_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the product STARCOS 3.7 COS GKV C2 developed by Giesecke+Devrient ePayments GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for the electronic Health Card (eHC) of the card generation G2.1 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional packages \"RSA Key Generation\" and \"Contactless Interface\". The TOE uses from the Protection Profile PP-0082-V4 the base part together with the corresponding optional packages. This certification procedure was carried out as a re-evaluation based on the certificate BSI-DSZ-CC-0976-V3-2019 including subsequent maintenance procedures BSI-DSZ-CC-0976-V3-2019-MA-01 and BSI-DSZ-CC-0976-V3-2019-MA-02. The TOE and its implementation itself did not change. The focus of this re-evaluation was on the change of the TOE’s life-cycle model regards production sites including renewal of corresponding site certificates, the update of the underlying HW certificate, and the renewal of the TOE’s vulnerability analysis and assessment including penetration testing of the TOE’s (crypto) implementation." }, "subcategory": "Smartcards" }, { "cert_id": "BSI-DSZ-CC-1198-2022", "product": "STARCOS 3.7 COS GKV C3", "vendor": "Giesecke+Devrient Mobile Security GmbH", "certification_date": "2022-09-02", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/1198.html", "enhanced": { "product": "STARCOS 3.7 COS GKV C3", "applicant": "Giesecke+Devrient Mobile Security GmbH Prinzregentenstr. 159 81607 München", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019", "certification_date": "2022-09-02", "expiration_date": "2027-09-01", "entries": [ { "id": "BSI-DSZ-CC-1198-2022-MA-01", "description": "The partial ALC re-evaluation for BSI-DSZ-CC-1198-2022 covers the update of the product life-cycle concerning the involved development and production sites. The certified product itself did not change." } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1198a_pdf.pdf?__blob=publicationFile&v=6", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1198b_pdf.pdf?__blob=publicationFile&v=5", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1198c_pdf.pdf?__blob=publicationFile&v=3", "description": "The Target of Evaluation (TOE) is the product STARCOS 3.7 COS GKV C3 developed by Giesecke+Devrient Mobile Security GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification V3.13.1 from gematik. The TOE is intended to be used as a card operating system platform for specific card types and applications of the card generation G2 in the framework of the German health care system and implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional package \"Kontaktlos\". Accordingly, the TOE uses from the PP-0082-V4 the base part and the optional package \"Contactless\"." }, "subcategory": "Smartcards" }, { "cert_id": "BSI-DSZ-CC-0904-V2-2021", "product": "TCOS FlexCert Version 2.0 Release 2/SLC52", "vendor": "Deutsche Telekom Security GmbH", "certification_date": "2021-06-24", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0904.html", "enhanced": { "product": "TCOS FlexCert Version 2.0 Release 2/SLC52", "applicant": "Deutsche Telekom Security GmbH Neue Adresse: Koblenzer Straße 87-93 57072 Siegen Alte Adresse: Untere Industriestraße 20 57250 Netphen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019", "certification_date": "2021-06-24", "expiration_date": "2026-06-23", "entries": [ { "id": "BSI-DSZ-CC-0904-V2-2021-MA-01 (29.07.2025)", "description": "The Partial ALC Re-Evaluation for BSI-DSZ-CC-0904-V2-2021 covers the update of the product life-cycle concerning the relocation of the involved development and production sites. The certified product itself did not change." }, { "id": "BSI-DSZ-CC-0904-V2-2021 (Ausstellungsdatum / Certification Date 24.06.2021, gültig bis / valid until 23.06.2026) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate", "description": "Software" }, { "id": "BSI-DSZ-CC-0904-2015-MA-02 (13.05.2020)", "description": "The maintenance procedure addresses the change of the production site." }, { "id": "BSI", "description": "Maintenance Report" }, { "id": "BSI", "description": "Security Target" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2c_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2b_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the product TCOS FlexCert 2.0 Release 1/SLE78CLX1440P developed by T-Systems International GmbH. The TOE is a smart card product according to the G2 Card Operating System specification from gematik. The TOE is intended to be used as a card operating system platform for different card types and applications of the card generation G2 in the framework of the German health care system. The TOE implements from the PP-0082-V2 the base part and the packages Crypto Box, Logical Channel and Contactless." }, "subcategory": "Smartcards" }, { "cert_id": "BSI-DSZ-CC-0976-V4-2021", "product": "STARCOS 3.7 COS HBA-SMC", "vendor": "Giesecke & Devrient GmbH seit 1. Juli 2017 Giesecke+Devrient Mobile Security GmbH seit 1. Juli 2023 Giesecke+Devrient ePayments GmbH", "certification_date": "2021-06-18", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0976.html", "enhanced": { "product": "STARCOS 3.7 COS HBA-SMC", "applicant": "Giesecke & Devrient GmbH seit 1. Juli 2017 Giesecke+Devrient Mobile Security GmbH seit 1. Juli 2023 Giesecke+Devrient ePayments GmbH Prinzregentenstr. 161 81677 München", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019", "certification_date": "2021-06-18", "expiration_date": "2026-06-17", "entries": [ { "id": "BSI-DSZ-CC-0976-V4-2021-MA-02 (Ausstellungsdatum / Certification Date 16.06.2025)", "description": "The maintenance procedure for BSI-DSZ-CC-0976-V4-2021 covers the update of the product life-cycle concerning the involved development and production sites and additionally addresses the update of the Security Target (ST) and user guidance documentation regards the TOE's random number generation functionality. The certified product itself did not change." }, { "id": "BSI-DSZ-CC-0976-V4-2021-MA-01 (Ausstellungsdatum / Certification Date 09.05.2022)", "description": "The partial ALC re-evaluation for procedure 0976-V4 covers the update of the product life-cycle concerning the involved development and production sites. The certified product itself did not change." }, { "id": "BSI-DSZ-CC-0976-V4-2021 (Ausstellungsdatum / Certification Date 18.06.2021, gültig bis / valid until 17.06.2026) Zertifizierungsreport / Certification Report", "description": "Software" }, { "id": "BSI", "description": "The partial ALC re-evaluation for procedure 0976-V3 covers the update of the product life-cycle concerning the involved development and production sites. The certified product itself did not change." }, { "id": "BSI-DSZ-CC-0976-V3-2019-MA-01 (Ausstellungsdatum / Certification Date 15.06.2021)", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-0976-V3-2019 (Ausstellungsdatum / Certification Date 21.11.2019, gültig bis / valid until 20.11.2024)", "description": "Software" }, { "id": "BSI-DSZ-CC-0976-V2-2018 (Ausstellungsdatum / Certification Date 20.09.2018, gültig bis / valid until 19.09.2023)", "description": "Software" }, { "id": "BSI-DSZ-CC-0976-2015-MA-01 (Ausstellungsdatum / Certification Date 02.08.2018)", "description": "The changes are related to an update and reevaluation of the product life-cycle caused by changes in the development and porduction sites. The certified product itself did not change." }, { "id": "BSI-DSZ-CC-0976-2015-RA-01 (Ausstellungsdatum / Certification Date 19.09.2017)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0976-2015 (Ausstellungsdatum / Certification Date 29.12.2015, gültig bis / valid until 28.12.2020)", "description": "Security Target" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0976V4b_pdf.pdf?__blob=publicationFile&v=3", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0976V4a_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0976V4c_pdf.pdf?__blob=publicationFile&v=3", "description": "The Target of Evaluation (TOE) is the product STARCOS 3.6 COSGKV C1 developed by Giesecke & Devrient GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for specific card types and applications of the card generation G2 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform only. The TOE implements from the PP-0082-V2 the base part without any of the optional packages." }, "subcategory": "Smartcards" }, { "cert_id": "BSI-DSZ-CC-0916-2015", "product": "STARCOS 3.6 COS C1", "vendor": "Giesecke & Devrient GmbH seit 1. Juli 2017 Giesecke+Devrient Mobile Security GmbH", "certification_date": "2015-08-07", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0916.html", "enhanced": { "product": "STARCOS 3.6 COS C1", "applicant": "Giesecke & Devrient GmbH seit 1. Juli 2017 Giesecke+Devrient Mobile Security GmbH Prinzregentenstr. 159 81677 München", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 1.9, 18 November 2014, BSI-CC-PP-0082-V2-2014", "certification_date": "2015-08-07", "expiration_date": "2020-08-06", "entries": [ { "id": "BSI-DSZ-CC-0916-2015-MA-02", "description": "The changes are related to an update and reevaluation of the product life-cycle caused by changes in the development and porduction sites. The certified product itself did not change." }, { "id": "BSI-DSZ-CC-0916-2015-MA-01", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-0916-2015", "description": "Security Target" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0916a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0916b_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of Evaluation (TOE) is the product STARCOS 3.6 COS C1 developed by Giesecke & Devrient GmbH. The TOE is a smart card product according to the G2 Card Operating System specification from gematik. The TOE is intended to be used as a card operating system platform for different card types and applications of the card generation G2 in the framework of the German health care system. The TOE implements from the PP-0082-V2 the base part and the packages Crypto Box, Logical Channel and Contactless." }, "subcategory": "Smartcards" }, { "cert_id": "BSI-DSZ-CC-1052-V7-2026", "product": "RISE Konnektor V6.0, Version 5.6.2", "vendor": "Research Industrial Systems Engineering (RISE) Forschungs-, Entwicklungs- und Großprojektberatung GmbH", "certification_date": "2026-02-11", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1052_1052V2_1052V3_1052V4_1052V5_1052V6_1052V7.html", "enhanced": { "product": "RISE Konnektor V6.0, Version 5.6.2", "applicant": "Research Industrial Systems Engineering (RISE) Forschungs-, Entwicklungs- und Großprojektberatung GmbH Concorde Business Park F 2320 Schwechat Austria", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Schutzprofil (Protection Profile), Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021;", "certification_date": "2026-02-11", "expiration_date": "2031-02-10", "entries": [ { "id": "BSI-DSZ-CC-1052-V7-2026 (Ausstellungsdatum / Certification Date 11.02.2026, gültig bis / valid until 10.02.2031) Zertifizierungsreport / Certification Report", "description": "This re-certification focused in particular on the introduction of support for ECC for IPSec, as well as the removal of the (non-EVG) Fachmodul ePA. In addition, further requirements of gematik were implemented and various functional improvements were introduced." }, { "id": "BSI-DSZ-CC-1052-V6-2024-MA-01 (Ausstellungsdatum / Certification Date 14.03.2024) Maintenance Report", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1052-V6-2024 (Ausstellungsdatum / Certification Date 24.01.2024, gültig bis / valid until 23.01.2029) Zertifizierungsreport / Certification Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1052-V5-2022 (Ausstellungsdatum / Certification Date 14.04.2022, gültig bis / valid until 13.04.2027) Zertifizierungsreport / Certification Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. This version implements the changes from PTV4 to PTV5." }, { "id": "BSI-DSZ-CC-1052-V4-2021 (Ausstellungsdatum / Certification Date 27.08.2021, gültig bis / valid until 26.08.2026) Zertifizierungsreport / Certification Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1052-V3-2021 (Ausstellungsdatum / Certification Date 22.02.2021, gültig bis / valid until 21.02.2026) Zertifizierungsreport / Certification Report", "description": "The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, { "id": "BSI-DSZ-CC-1052-V2-2020 (Ausstellungsdatum / Certification Date 24.06.2020, gültig bis / valid until 23.06.2025) Zertifizierungsreport / Certification Report", "description": ") of the German health care." }, { "id": "BSI-DSZ-CC-1052-2018 (Ausstellungsdatum / Certification Date 08.01.2019, gültig bis / valid until 07.01.2024) Zertifizierungsreport / Certification Report", "description": "Certificat" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1052V7b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1052V7c_pdf.pdf?__blob=publicationFile&v=2", "description": "The target of evaluation (TOE) is the network connector (German “Netzkonnektor”) RISE-Konnektor V1.0. The TOE is part of the application connector (German “Anwendungskonnektor”) as an “e-Health Konnektor” in the context of the German health care telematics infrastructure." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1210-V2-2026", "product": "RISE Konnektor V6.0, Version 5.6.2", "vendor": "Research Industrial Systems Engineering (RISE) Forschungs-, Entwicklungs- und Großprojektberatung GmbH", "certification_date": "2026-02-11", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1210_1210V2.html", "enhanced": { "product": "RISE Konnektor V6.0, Version 5.6.2", "applicant": "Research Industrial Systems Engineering (RISE) Forschungs-, Entwicklungs- und Großprojektberatung GmbH Concorde Business Park F 2320 Schwechat Austria", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,AVA_VAN.3,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Schutzprofil (Protection Profile), Schutzprofil 2: Anforderungen an den Konnektor, Version 1.6, 30.03.2022, BSI-CC-PP-0098-V3-2021-MA-01", "certification_date": "2026-02-11", "expiration_date": "2031-02-10", "entries": [ { "id": "BSI-DSZ-CC-1210-V2-2026 (Ausstellungsdatum / Certification Date 11.02.2026, gültig bis / valid until 10.02.2031) Zertifizierungsreport / Certification Report", "description": "non" }, { "id": "BSI-DSZ-CC-1210-2024-MA-01 (Ausstellungsdatum / Certification Date 14.03.2024) Maintenance Report", "description": "Clientsystem" }, { "id": "BSI-DSZ-CC-1210-2024 (Ausstellungsdatum / Certification Date 24.01.2024, gültig bis / valid until 23.01.2029) Zertifizierungsreport / Certification Report", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1210V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1210V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1210V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098. The Netzkonnektor includes the security functionality of a firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1044-V8-2025", "product": "secunet konnektor 2.0.0 und 2.1.0, Version 5.70.4:2.0.0 und 5.70.4:2.1.0", "vendor": "secunet Security Networks AG", "certification_date": "2025-06-10", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1044_1044V2_1044V3_1044V4_1044V5_1044V6_1044V7.html", "enhanced": { "product": "secunet konnektor 2.0.0 und 2.1.0, Version 5.70.4:2.0.0 und 5.70.4:2.1.0", "applicant": "secunet Security Networks AG Kurfürstenstraße 58 45138 Essen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Schutzprofil (Protection Profile), Schutzprofil 1: Anforderungen an den Netzkonnektor, BSI-CC-PP-0097-V2-2020-MA-02, Version 1.6.7, vom 15.03.2023", "certification_date": "2025-06-10", "expiration_date": "2030-06-09", "entries": [ { "id": "BSI-DSZ-CC-1044-V8-2025 (Ausstellungsdatum / Certification Date 10.06.2025, gültig bis / valid until 09.06.2030)", "description": ") is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configurations" }, { "id": "BSI-DSZ-CC-1044-V7-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1044-V7-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1044-V7-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1044-V6-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1044-V6-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1044-V5-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1044-V4-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)", "description": ")" }, { "id": "BSI-DSZ-CC-1044-V3-2020 (Ausstellungsdatum / Certification Date 06.11.2020, gültig bis / valid until 05.11.2025)", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1044-V2-2019-MA-01 (Ausstellungsdatum / Certification Date 10.06.2020) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.\"" }, { "id": "BSI-DSZ-CC-1044-V2-2019 (Ausstellungsdatum / Certification Date 13.11.2019, gültig bis / valid until 12.11.2024)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1044-2019-MA-02 (Ausstellungsdatum / Certification Date 19.09.2019) Maintanance Report", "description": "Maintanance Report" }, { "id": "BSI-DSZ-CC-1044-2019_MA-01 (Ausstellungsdatum / Certification Date 06.06.2019) Maintenance Report", "description": "The change compared to the certified product was made at the level of adjustment of the guidance document." }, { "id": "BSI-DSZ-CC-1044-2019 (Ausstellungsdatum / Certification Date 25.01.2019, gültig bis / valid until 24.01.2024) Zertifizierungsreport / Certification Report", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1044V8a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1044V8b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1044V8c_pdf.pdf?__blob=publicationFile&v=2", "description": "Target of evaluation (TOE) is the product secunet konnektor 2.0.0 provided by secunet Security Networks AG. The TOE is a pure software TOE consisting of the Netzkonnektor as specified in the protection profile Common Criteria Schutzprofil (Protection Profile), Schutzprofil 1: Anforderungen an den Netzkonnektor, BSI-CC-PP-0097, Version 1.5, 27.04.2018, Bundesamt für Sicherheit in der Informationstechnik (BSI)" }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1209-V2-2025", "product": "secunet konnektor 2.0.0 und 2.1.0 Version 5.70.4:2.0.0 und 5.70.4:2.1.0", "vendor": "secunet Security Networks AG", "certification_date": "2025-06-10", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1209.html", "enhanced": { "product": "secunet konnektor 2.0.0 und 2.1.0 Version 5.70.4:2.0.0 und 5.70.4:2.1.0", "applicant": "secunet Security Networks AG Weidenauer Straße 223-225 57076 Siegen Deutschland", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_FLR.2,ALC_TAT.1,AVA_VAN.3", "protection_profile": "Common Criteria Schutzprofil (Protection Profile), Schutzprofil 2: Anforderungen an den Konnektor, BSI-CC-PP-0098-V3-2021-MA-02, Version 1.6.1, 15.03.2023, Bundesamt für Sicherheit in der Informationstechnik (BSI)", "certification_date": "2025-06-10", "expiration_date": "2030-06-09", "entries": [ { "id": "BSI", "description": "Der Evaluationsgegenstand (EVG) ist ein Softwareprodukt, bestehend aus dem Netz- und dem Anwendungskonnektor nach dem Schutzprofil BSI-CC-PP-0098. Der Netzkonnektor setzt die Sicherheitsfunktionalität einer Firewall, einer VPN-Client, eines NTP Server, DNS und DHCP Service um. Weiterhin setzt der EVG die Basisfunktionalität zum Herstellen von sicheren TLS-Verbindungen zu anderen IT-Produkten um. Der TOE ist Teil des Konnektors und wird vorinstalliert auf exakt einer Hardwarekonfiguration ausgeliefert. Die Sicherheitsfunktionalität des Anwendungskonnektors umfasst die Signaturanwendung, die Verschlüsselung und Entschlüsselung von Dokumenten, den Kartenterminaldienst und den Chipkartendienst. Zusammen mit dem Netzkonnektor ermöglicht der Anwendungskonnektor zudem die gesicherte Kommunikation zwischen dem Konnektor und dem Clientsystem sowie zwischen Fachmodulen und Fachdiensten." }, { "id": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten.BSI-DSZ-CC-1209-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-1209-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-1209-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültlig bis / valid until 18.10.2028)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1068-V5-2024", "product": "KoCoBox MED+ Konnektor, Version 5.5.12", "vendor": "KoCo Connector GmbH", "certification_date": "2024-12-19", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1068_1068V2_1068V3_1068V4_1068V5.html", "enhanced": { "product": "KoCoBox MED+ Konnektor, Version 5.5.12", "applicant": "KoCo Connector GmbH Dessauer Str. 28/29 10963 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3+,ADV_IMP.1,ADV_TDS.3,AVA_VAN.3,ADV_FSP.4,ALC_FLR.2,ALC_TAT.1", "protection_profile": "Common Criteria Schutzprofil (Protection Profile), Schutzprofil 2: Anforderungen an den Konnektor, Version 1.6, 30.03.2022, BSI-CC-PP-0098-V3-2021-MA-02, Version 1.6.1, 15.03.2023, Bundesamt für Sicherheit in der Informationstechnik (BSI)", "certification_date": "2024-12-19", "expiration_date": "2029-12-18", "entries": [ { "id": "BSI-DSZ-CC-1068-V5-2024", "description": "”) and a healthcare specific module (VSDM) (German: “Fachmodul VSDM”)." }, { "id": "BSI-DSZ-CC-1068-V4-2023 (Ausstellungsdatum / Certification Date 07.06.2023, gültig bis / valid until 06.06.2028) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Seurity Target Zertifikat / Certificate Der Evaluationsgegenstand (EVG) ist KoCoBox MED+ Konnektor, Version 5.1.6. Der EVG ist der Basissoftwareanteil des Produkts KoCoBox MED+. Dieses Produkt ist eine dezentrale Komponente, die als e-Health-Konnektor im Rahmen der deutschen Gesundheitstelematikinfrastruktur verwendet wird. Der TOE besteht aus dem Netzkonnektor (NK), dem Anwendungskonnektor (AK) und dem Fachmodul Versichertenstammdatenmanagement (VSDM).", "description": "e-Health" }, { "id": "BSI-DSZ-CC-1068-V3-2022-MA-02 (Ausstellungsdatum / Certification Date 19.04.2024)", "description": "e-Health" }, { "id": "BSI-DSZ-CC-1068-V3-2022-MA-01 (Ausstellungsdatum / Certification Date 12.08.2022)", "description": "e-Health" }, { "id": "BSI-DSZ-CC-1068-V3-2022 (Ausstellungsdatum / Certification Date 12.08.2022, gültig bis / valid until 11.08.2027) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Seurity Target Zertifikat / Certificate Der Evaluationsgegenstand (EVG) ist KoCoBox MED+ Konnektor, Version 4.2.22. Der EVG ist der Basissoftwareanteil des Produkts KoCoBox MED+. Dieses Produkt ist eine dezentrale Komponente, die als e-Health-Konnektor im Rahmen der deutschen Gesundheitstelematikinfrastruktur verwendet wird. Der TOE besteht aus dem Netzkonnektor (NK), dem Anwendungskonnektor (AK) und dem Fachmodul Versichertenstammdatenmanagement (VSDM).", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1068-V2-2022", "description": ") (German:" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1068V5a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1068V5b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1068V5c_pdf.pdf?__blob=publicationFile&v=2", "description": "The target of evaluation (TOE) is KoCoBox MED+ OPB 2.1 Konnektor, Version 2.3.24. The TOE is the base software part of the product KoCoBox MED+. This product is a decentral component, called “e-Health Konnektor” in the context of the German health care telematics infrastructure. The TOE consists of three parts, the network connector (NK) (German: “Netzkonnektor”), the application connector (AK) (German: “Anwendungskonnektor”) and a healthcare specific module (VSDM) (German: “Fachmodul VSDM”)." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1067-V5-2024", "product": "KoCoBox MED+ Netzkonnektor, 5.5.12", "vendor": "KoCo Connector GmbH", "certification_date": "2024-12-19", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1067.html", "enhanced": { "product": "KoCoBox MED+ Netzkonnektor, 5.5.12", "applicant": "KoCo Connector GmbH Dessauer Str. 28/29 10963 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_FLR.2,ALC_TAT.1,AVA_VAN.5", "protection_profile": "Common Criteria Schutzprofil (Protection Profile), Schutzprofil 1: Anforderungen an den Netzkonnektor, BSI-CC-PP-0097-V2-2020-MA-02, Version 1.6.7, 15.03.2023, Bundesamt für Sicherheit in der Informationstechnik (BSI)", "certification_date": "2024-12-19", "expiration_date": "2029-12-18", "entries": [ { "id": "BSI-DSZ-CC-1067-V5-2024 (Ausstellungsdatum / Certification Date 19.12.2024, gültlig bis / valid until 18.12.2029)", "description": "The target of evaluation (TOE) is KoCoBox MED+ Netzkonnektor, Version 5.5.12. The TOE is the network and operating system specific software part of the product KoCoBox MED+. This product is a decentral component, called “e-Health Konnektor” in the context of the German health care telematics infrastructure. The specific TOE software part is called network connector (NK) (German: “Netzkonnektor”)." }, { "id": "BSI-DSZ-CC-1067-V4-2023 (Ausstellungsdatum / Certification Date 07.06.2023, gültlig bis / valid until 06.06.2028)", "description": "software part is called network connector (NK) (German:" }, { "id": "BSI-DSZ-CC-1067-V3-2022-MA-02 (Ausstellungsdatum / Certification Date 19.04.2024)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-1067-V3-2022-MA-01 (Ausstellungsdatum / Certification Date 12.08.2022)", "description": ") (German:" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1067V5a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1067V5b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1067V5c_pdf.pdf?__blob=publicationFile&v=2", "description": "The target of evaluation (TOE) is KoCoBox MED+ Netzkonnektor, Version 2.3.24. The TOE is the network and operating system specific software part of the product KoCoBox MED+. This product is a decentral component, called “e-Health Konnektor” in the context of the German health care telematics infrastructure. The specific TOE software part is called network connector (NK) (German: “Netzkonnektor”)." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1128-V6-2023", "product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0", "vendor": "secunet Security Networks AG", "certification_date": "2023-10-19", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html", "enhanced": { "product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0", "applicant": "secunet Security Networks AG Kurfürstenstraße 58 45138 Essen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021", "certification_date": "2023-10-19", "expiration_date": "2028-10-18", "entries": [ { "id": "BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)", "description": "Hardware" }, { "id": "BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)", "description": "Hardware" }, { "id": "BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)", "description": "Server" }, { "id": "BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1128-V2-2020 (06.11.2020) Zertifizierungsreport / Certification Report", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration." }, { "id": "BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)", "description": "-instances of the net-connector which are installed on two separate circuit boards." }, { "id": "BSI-DSZ-CC-1128-2019 (20.12.2019) Zertifizierungsreport / Certification Report", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1218-2023", "product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0", "vendor": "secunet Security Networks AG", "certification_date": "2023-10-19", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1218.html", "enhanced": { "product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0", "applicant": "secunet Security Networks AG Kurfürstenstraße 58 45138 Essen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,AVA_VAN.3,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Schutzprofil (Protection Profile), Schutzprofil 2: Anforderungen an den Konnektor, BSI-CC-PP-0098-V3-2021-MA-02, Version 1.6.1, 15.03.2023", "certification_date": "2023-10-19", "expiration_date": "2028-10-18", "entries": [ { "id": "BSI-DSZ-CC-1218-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, { "id": "BSI-DSZ-CC-1218-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, { "id": "BSI-DSZ-CC-1218-2023", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1218a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1218b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1218c_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1201-2022", "product": "secunet konnektor 2.0.0, Version 5.1.2:2.0.0", "vendor": "secunet Security Networks AG", "certification_date": "2022-09-09", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1201.html", "enhanced": { "product": "secunet konnektor 2.0.0, Version 5.1.2:2.0.0", "applicant": "secunet Security Networks AG Kurfürstenstraße 58 45138 Essen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Schutzprofil (Protection Profile) Schutzprofil 2: Anforderungen an den Konnektor, Version 1.6, BSI-CC-PP-0098-V3-2021-MA-01 vom 30.02.2022", "certification_date": "2022-09-09", "expiration_date": "2027-09-08", "entries": [ { "id": "BSI-DSZ-CC-1201-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022)", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-1201-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1201a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1201b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1201c_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1202-2022", "product": "secunet konnektor 2.1.0, Version 5.1.2:2.1.0", "vendor": "secunet Security Networks AG", "certification_date": "2022-09-09", "category": "eHealth", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1202.html", "enhanced": { "product": "secunet konnektor 2.1.0, Version 5.1.2:2.1.0", "applicant": "secunet Security Networks AG Kurfürstenstraße 58 45138 Essen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL3,AVA_VAN.3,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4", "protection_profile": "Common Criteria Schutzprofil (Protection Profile) Schutzprofil 2: Anforderungen an den Konnektor, Version 1.6, BSI-CC-PP-0098-V3-2021-MA-01 vom 30.02.2022", "certification_date": "2022-09-09", "expiration_date": "2027-09-08", "entries": [ { "id": "BSI-DSZ-CC-1202-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022) Maintenance Report", "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, { "id": "BSI-DSZ-CC-1202-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1202a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1202b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1202c_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1074-V3-2026", "product": "Xaica-α PLUS ePassport on MTCOS Pro 2.6 with SAC (BAC+PACE) and Active Authentication / ST31N600", "vendor": "MaskTech International GmbH", "certification_date": "2026-02-11", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1074.html", "enhanced": { "product": "Xaica-α PLUS ePassport on MTCOS Pro 2.6 with SAC (BAC+PACE) and Active Authentication / ST31N600", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ALC_FLR.3", "certification_date": "2026-02-11", "expiration_date": "2031-02-10", "entries": [ { "id": "BSI-DSZ-CC-1074-V3-2026 (Ausstellungsdatum / Certification Date 11.02.2026, gültig bis / valid until 10.02.2031)", "description": "The target of evaluation (TOE) of this evaluation is the product Xaica-a PLUS ePassport on MTCOS Pro 2.6 with SAC (BAC+PACE) and Active Authentication / ST31N600 provided by MaskTech International GmbH. The TOE is an electronic travel document representing a contactless smart card providing the Basic Access Control (BAC), Password Authenticated Connection Establishment (PACE) and the Active Authentication protocol according to the ’ICAO 9303’ and BSI TR-03110 and is pro-grammed according to ICAO Technical Report “Supplemental Access Control”." }, { "id": "BSI-DSZ-CC-1074-V2-2020 (Ausstellungsdatum / Certification Date 30.07.2020, gültig bis / valid until 29.07.2025)", "description": "Technical Report \"Supplemental Access Control\"" }, { "id": "BSI-DSZ-CC-1074-2019 (25.01.2019)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1074V3a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1074V3b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1074V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "The target of evaluation (TOE) is the product Xaica-α PLUS ePassport on MTCOS Pro 2.5 with SAC (BAC+PACE) and Active Authentication / ST31G480 D01 provided by MaskTech International GmbH. The TOE is an electronic travel document representing a contactless smart card providing the Basic Access Control (BAC), Password Authenticated Connection Establishment (PACE) and the Active Authentication protocol according to the ICAO 9303 and BSI TR-03110 and is programmed according to ICAO Technical Report “Supplemental Access Control”." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1073-V3-2026", "product": "Xaica-a PLUS ePassport on MTCOS Pro 2.6 with SAC (PACE) and Active Authentication / ST31N600", "vendor": "MaskTech International GmbH", "certification_date": "2026-02-11", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1073.html", "enhanced": { "product": "Xaica-a PLUS ePassport on MTCOS Pro 2.6 with SAC (PACE) and Active Authentication / ST31N600", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ALC_FLR.3,AVA_VAN.5", "certification_date": "2026-02-11", "expiration_date": "2031-02-10", "entries": [ { "id": "BSI", "description": "The Target of evaluation (TOE) of this evaluation is the product Xaica-a PLUS ePassport on MTCOS Pro 2.6 with SAC (PACE) and Active Authentication / ST31N600provided by MaskTech International GmbH. The TOE is an electronic travel document representing a contactless smart card providing Password Authenticated Connection Establishment (PACE) and the Active Authentication protocol according to the ’ICAO 9303’ and BSI TR-03110 and is programmed according to ICAO Technical Report “Supplemental Access Control”." }, { "id": "BSI-DSZ-CC-1073-V2-2020", "description": "Technical Report \"Supplemental Access Control\"" }, { "id": "BSI-DSZ-CC-1073-2020", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1073V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1073V3b_pdf.pdf?__blob=publicationFile&v=4", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1073V3c_pdf.pdf?__blob=publicationFile&v=3", "description": "The target of evaluation (TOE) is the product Xaica-α PLUS ePassport on MTCOS Pro 2.5 with SAC (PACE) and Active Authentication / ST31G480 D01 provided by MaskTech International GmbH. The TOE is an electronic travel document representing a contactless smart card providing Password Authenticated Connection Establishment (PACE) and the Active Authentication protocol according to the ICAO 9303 and BSI TR-03110 and is programmed according to ICAO Technical Report “Supplemental Access Control”." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1255-2025", "product": "CardOS V6.1 ID R1.0", "vendor": "Eviden Germany GmbH", "certification_date": "2025-04-17", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1255.html", "enhanced": { "product": "CardOS V6.1 ID R1.0", "applicant": "Eviden Germany GmbH Otto-Hahn-Ring 6 81739 München", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,AVA_VAN.5,ALC_DVS.2,ATE_DPT.2", "protection_profile": "EN 419211-2:2013 - Protection profiles for secure signature creation device - Part 2: Device with key generation, 18 May 2013, BSI-CC-PP-0059-2009-MA-02,Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0071-2012-MA-01,Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0072-2012-MA-01,Machine Readable Travel Document with \"ICAO Application\" Extended Access Control with PACE, Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02,Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE_PP), Version 1.01, 22 July 2014, BSI-CC-PP-0068-V2-2011-MA-01", "certification_date": "2025-04-17", "expiration_date": "2030-04-16", "entries": [ { "id": "EN", "description": "May" }, { "id": "Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application,", "description": "October" }, { "id": "Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application,", "description": "October" }, { "id": "Machine Readable Travel Document with \"", "description": "5 December" }, { "id": "Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with", "description": "July" } ], "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1255c_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1255a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1255b_pdf.pdf?__blob=publicationFile&v=2", "description": "The composite TOE is named CardOS V6.1 ID R1.0 and developed by Eviden Germany GmbH. The TOE is a smart card product consisting of an operating system on an Infineon IC together with an application layer. Applications covered by this TOE comprise an electronic passport (ePass) application and/or a signature (eSign) application. Three major configurations of the TOE are defined which differ in the description of the file system: ePassport, SSCD (Secure Signature Creation Device) and eID. The IC platform comprises the integrated circuit SLC52GDA448* (IFX_CCI_000005 Design Step H13) and the cryptographic libraries RSA v2.09.002, EC v2.09.002, Toolbox v2.09.002, Base v2.09.002, HCL (Hash Cryptographic Library) v1.12.001, SCL (Symmetric Cryptographic Library) v2.04.002 and HSL (Hardware Support Library) v03.12.8812 from Infineon Technologies AG certified under ID BSI-DSZ-CC-1110-V7-2024. The present procedure is a re-certification of the TOE certified under BSI-DSZ-CC-1162-V2-2023 and subsequent BSI-DSZ-CC-1162-V2-2023-MA-01. The focus of this re-evaluation was on the update of the CC certificate of the TOE’s underlying IC, a scope change of the TOE’s cryptographic functionality, the improvement of the TOE’s cryptographic implementation, the renewal of the vulnerability analysis and the corresponding update of the Security Target and user guidance documentation." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1162-V3-2024", "product": "CardOS V6.0 ID R1.2", "vendor": "Eviden Germany GmbH", "certification_date": "2024-12-04", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1162.html", "enhanced": { "product": "CardOS V6.0 ID R1.2", "applicant": "Eviden Germany GmbH Otto-Hahn-Ring 6 81739 München", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "EN 419211-2:2013 - Protection profiles for secure signature creation device - Part 2: Device with key generation, 18 May 2013, BSI-CC-PP-0059-2009-MA-02,Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0071-2012-MA-01 Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application, CEN / ISSS - Information Society Standardization System, 12 October 2013, BSI-CC-PP-0072-2012-MA-01,Machine Readable Travel Document with \"ICAO Application\" Extended Access Control with PACE, Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02,Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE_PP), Version 1.01, 22 July 2014, BSI-CC-PP-0068-V2-2011-MA-01", "certification_date": "2024-12-04", "expiration_date": "2029-12-03", "entries": [ { "id": "EN" }, { "id": "Protection", "description": "Information Society Standardization System" }, { "id": "Protection", "description": "Information Society Standardization System" }, { "id": "Machine", "description": "Extended Access Control" }, { "id": "Common", "description": "Protection Profile" } ], "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1162V3c_pdf.pdf?__blob=publicationFile&v=3", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1162V3a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1162V3b_pdf.pdf?__blob=publicationFile&v=3", "description": "The composite TOE is named CardOS V6.0 ID R1.0 (developed by Atos Information Technology GmbH). The TOE is a smart card operating system on an IC with at least one application. Applications covered by this TOE comprise an electronic passport (ePass) application and/or a signature (eSign) application. The IC platform comprises the integrated circuit SLC52GDA448* (IFX_CCI_000005 Design Step H13) and the cryptographic libraries RSA v2.08.007, EC v2.08.007, Toolbox v2.08.007, Base v2.08.007, HCL2 v1.12.001 (hash library) and Symmetric Crypto Library (SCL) v2.04.002 certified according CC v3.1 with ID BSI-DSZ-CC-1110-V4-2021. Note: The Certification Report has been updated to version 2.0 by supplementing additional security requirements for the secure use of the TOE's cryptographic functionality. The Certificate of Conformity to Regulation (EU) No. 910/2014 (eIDAS) has been adjusted to version 2.0 for covering a scope reduction with regard to the TOE's ECDSA signature generation functionality. The new document versions 2.0 replace their respective preceding document version." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1219-2024", "product": "MTCOS Pro 2.6 EAC with PACE / SLC37 (V11)", "vendor": "MaskTech International GmbH", "certification_date": "2024-11-13", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1219.html", "enhanced": { "product": "MTCOS Pro 2.6 EAC with PACE / SLC37 (V11)", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL5+,ALC_DVS.2,ALC_FLR.3,AVA_VAN.5", "protection_profile": "Machine Readable Travel Document with \"ICAO Application\", Extended Access Control with PACE (EAC PP), Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02", "certification_date": "2024-11-13", "expiration_date": "2029-11-12", "entries": [ { "id": "BSI", "description": "The maintenance procedure for BSI-DSZ-CC-1219-2024 covers the update of the product life-cycle and additionally covers non security relevant changes to the TOE. Additionally it addresses the update of the Security Target(ST) and user guidance documentation." }, { "id": "BSI", "description": "Certificate" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1219b_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1219a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1219c_pdf.pdf?__blob=publicationFile&v=2", "description": "Target of evaluation (TOE) is the product MTCOS Pro 2.6 EAC with PACE / SLC37 (V11) provided by MaskTech International GmbH.The TOE is a fully interoperable multi-application smart card operating system compliant to 'ISO_7816' with a contact and contactless interface. It contains an MRTD application which is programmed according to ICAO Technical Report “Supplemental Access Control” and additionally providing the Extended Access Control according to the ’ICAO 9303’ and 'BSI_TR-03110-1', respectively. The communication between terminal and chip shall be protected by Password Authenticated Connection Establishment (PACE) according to “Electronic Passport using Standard Inspection Procedure with PACE”, BSI-CC-PP-0068-V2. Additionally, Active Authentication according to 'ICAO_9303' is provided.The current evaluation process is a re-evaluation of the product MTCOS Pro 2.5 EAC with PACE / SLE78CLFX400VPHM/BPHM/7PHM (M7892), which has been certified under the certification ID BSI-DSZ-CC-1033-V2-2021. Subject to the re-evaluation are changes to the certified product with respect to actual development and findings which are: The embedded software has been implemented to the hardware platform SLC37GDA512 (V11) secure dual-interface controller of Infineon Technologies AG, BSI-DSZ-CC-1107-V5-2024. This implies an adaption of the low-level interfaces to the functionality provided by the IC and the usage of the cryptographic library.While the base certification was provided as an ePassport application only, the TOE now includes a multi-application product, containing an SSCD application to be certified in a separate procedure. However, the basecertification itself is based on an SSCD-including multi-application product.The MTCOS operating system has been revised including the internal keyhandling. In this context, new commands for the generation and configuration of key files are provided. Furthermore, MTCOS now allows more configuration options: File sizes of specified transparent files can be set during personalization. In order to oblige customers with an established personalization system, a “compatibility mode” can be configured.The feature “in-field hardening of the cryptographic implementation” has been omitted.Due to expiration of the audit validity of MaskTech International GmbH a new site visit was performed in which course the assurance component ALC_FLR.3 was added." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1220-2024", "product": "MTCOS Pro 2.6 EAC with PACE / SLC37 (V11) (BAC)", "vendor": "MaskTech International GmbH", "certification_date": "2024-11-13", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1220.html", "enhanced": { "product": "MTCOS Pro 2.6 EAC with PACE / SLC37 (V11) (BAC)", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ALC_FLR.3", "protection_profile": "Machine Readable Travel Document with \"ICAO Application\" Basic Access Control, Version 1.10, 25 March 2009, BSI-CC-PP-0055-2009", "certification_date": "2024-11-13", "expiration_date": "2029-11-12", "entries": [ { "id": "BSI-DSZ-CC-1220-2024-MA-01", "description": "The maintenance procedure for BSI-DSZ-CC-1220-2024 covers the update of the product life-cycle and additionally covers non security relevant changes to the TOE. Additionally it addresses the update of the Security Target(ST) and user guidance documentation." }, { "id": "BSI-DSZ-CC-1220-2024", "description": "Certificate" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1220b_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1220a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1220c_pdf.pdf?__blob=publicationFile&v=2", "description": "Target of evaluation (TOE) is the product MTCOS Pro 2.6 EAC with PACE/ SLC37 (V11) (BAC) provided by MaskTech International GmbH.The TOE is the contactless integrated circuit chip of machine readable travel documents (MRTD’s chip) programmed according to the Logical Data Structure (LDS) and providing Basic Access Control according to the ’ICAO 9303’. There were no changes of the product, but in the scope of the evaluation. Inaddition to the Password Authenticated Connection Establishment, Extended Access Control and Active Authentication functionality addressedin BSI-DSZ-CC-1219-2024, the Basis Access Control functionality was taken into account in this certification. The TOE itself did not change." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1077-V2-2024", "product": "STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2", "vendor": "Giesecke+Devrient ePayments GmbH", "certification_date": "2024-06-12", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1077.html", "enhanced": { "product": "STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2", "applicant": "Giesecke+Devrient ePayments GmbH Prinzregentenstr. 161 81677 München", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP), Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01, Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016", "certification_date": "2024-06-12", "expiration_date": "2029-06-11", "entries": [ { "id": "BSI", "description": "Re-Assessment for update of the vulnerability analysis and valuation related to the certification procedure BSI-DSZ-CC-1077-V2-2024 and BSI-DSZ-CC-1077-V2-2024-MA-01." }, { "id": "BSI", "description": "The maintenance procedure for BSI-DSZ-CC-1077-V2-2024 covers the update of the Security Target (ST) and user guidance documentation regards the TOE's random number generation functionality. The certified product itself did not change." }, { "id": "BSI-DSZ-CC-1077-V2-2024 (Ausstellungsdatum / Certification Date 12.06.2024, gültig bis / valid until 11.06.2029) Certificate of Conformity to Regulation (EU) No. 910/2014 (eIDAS) based on BSI-DSZ-CC-1077-V2-2024 Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate", "description": "certificate and integrated site certificates for development and production sites as well as on the update of the vulnerability analysis including penetration testing for the (crypto-) implementation." }, { "id": "BSI", "description": "Second Re-Assessment for update of the vulnerability analysis and valuation related to the certification procedure 1077." }, { "id": "BSI", "description": "Re-Assessment for update of the vulnerability analysis and valuation related to the certification procedure 1077." }, { "id": "BSI", "description": "Certificate" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1077V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1077V2c_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1077V2a_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the product STARCOS 3.7 ID ePA C1, STARCOS 3.7 ID eAT C1, STARCOS 3.7 ID ePass C1 provided by Giesecke+Devrient Mobile Security GmbH, based on the hardware platform Infineon Security Controller IFX_CCI_000005h from Infineon Technologies AG. It is an electronic Identity Card representing a smart card with contactless interface programmed according to the Technical Guideline BSI TR-03110 and the ICAO specifications. The smart card provides the following authentication mechanisms: Passive Authentication, Password Authenticated Connection Establishment (PACE), Chip Authentication version 1, 2 and 3, Terminal Authentication version 1 and 2. Additionally, the TOE meets the requirements of the Technical Guideline BSI TR-03116-2 as part of the qualification for the use within electronic ID card projects of the Federal Republic of Germany. Please note that in consistency to the claimed protection profile BSI-CC-PP-0087-V2-2016-MA-01 the security mechanisms Password Authenticated Connection Establishment (PACE) and Extended Access Control (EAC) are in focus of this evaluation process. The further security mechanism Basic Access Control (BAC) contained in the corresponding product is subject of a separate evaluation process (refer to BSI-DSZ-CC-1076-2020). The smart card contains at least one of the following applications that are all subject of the TOE’s evaluation: ePass ApplicationeID ApplicationeSign Application Three different major configurations of the TOE exist that only differ in the installed file system or applications respectively: Electronic DocumentResidence PermitPassport Furthermore, the TOE provides the so-called Update-in-Field mechanism. This secure update mechanism allows to install code-signed updates of the TOE Embedded Software (operating system part) by authorized staff during operational use. The TOE’s evaluation only covers the Update-in-Field mechanism itself, but does not cover any update packages. As stated in the certification report in chapter 12, the certificate comprises the usage as QSigCD according to article 30 of the Regulation (EU) No 910/2014." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1147-V3-2023", "product": "MTCOS Pro 2.6 EAC with PACE / P71D352 (N7121)", "vendor": "MaskTech International GmbH", "certification_date": "2023-10-27", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1147.html", "enhanced": { "product": "MTCOS Pro 2.6 EAC with PACE / P71D352 (N7121)", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL5+,ALC_DVS.2,AVA_VAN.5", "protection_profile": "Machine Readable Travel Document with \"ICAO Application\" Extended Access Control with PACE, Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02", "certification_date": "2023-10-27", "expiration_date": "2028-10-26", "entries": [ { "id": "BSI", "description": "-1136-V3-2022)" }, { "id": "BSI", "description": "results in the requirement for the agent to change customer specific personalisation keys and other administrative tasks on-wafer." }, { "id": "BSI", "description": "." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1147V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1147V3b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1147V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "The target of evaluation (TOE) is the product MTCOS Pro 2.5 EAC with PACE / P71D352 (N7121) provided by MaskTech International GmbH. It is an electronic travel document representing a contactless smart card programmed according to the ICAO Technical Report “Supplemental Access Control” and additionally providing the Extended Access Control according to the ICAO Doc 9303 and the Technical Guideline TR-03110-1, respectively. The communication between terminal and chip is protected by Password Authenticated Connection Establishment (PACE) according to the Protection Profile BSI-CC-PP-0056-V2-2012-MA-02. Additionally, Active Authentication according to the ICAO Doc 9303 is provided." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1148-V3-2023", "product": "MTCOS Pro 2.6 EAC with PACE / P71D352 (N7121) (BAC)", "vendor": "MaskTech International GmbH", "certification_date": "2023-10-27", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1148.html", "enhanced": { "product": "MTCOS Pro 2.6 EAC with PACE / P71D352 (N7121) (BAC)", "applicant": "MaskTech International GmbH Nordostpark 45 90411 Nürnberg", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2", "protection_profile": "Machine Readable Travel Document with \"ICAO Application\" Basic Access Control, Version 1.10, 25 March 2009, BSI-CC-PP-0055-2009", "certification_date": "2023-10-27", "expiration_date": "2028-10-26", "entries": [ { "id": "BSI", "description": "itself did not change." }, { "id": "BSI-DSZ-CC-1148-V2-2023 (Ausstellungsdatum / Certification Date 22.02.2023, gültig bis / valid until 21.02.2028) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate", "description": "itself did not change." }, { "id": "BSI", "description": "." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1148V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1148V3b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1148V3c_pdf.pdf?__blob=publicationFile&v=3", "description": "The TOE is the contactless integrated circuit chip of machine readable travel documents (MRTD’s chip) programmed according to the ‘Logical Data Structure’ and providing Basic Access Control according to the ’ICAO 9303’." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1176-2023", "product": "PWPW SmartApp-MRTD 1.0", "vendor": "Polska Wytwórnia Papierów Wartościowych S.A.", "certification_date": "2023-05-22", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1176.html", "enhanced": { "product": "PWPW SmartApp-MRTD 1.0", "applicant": "Polska Wytwórnia Papierów Wartościowych S.A. 1 Sanguszki St. 00-222 Warsaw Poland", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ATE_DPT.2,ALC_DVS.2,AVA_VAN.5", "protection_profile": "Machine Readable Travel Document with \"ICAO Application\", Extended Access Control with PACE (EAC PP), Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02,Common Criteria Protection Profile Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE_PP), Version 1.01, 22 July 2014, BSI-CC-PP-0068-V2-2011-MA-01", "certification_date": "2023-05-22", "expiration_date": "2028-05-21", "entries": [ { "id": "Machine", "description": "Extended Access Control" }, { "id": "Common", "description": "Protection Profile" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1176a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1176b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1176c_pdf.pdf?__blob=publicationFile&v=2", "description": "The composite TOE is named PWPW SmartApp-MRTD and was evaluated in version 1.0. The TOE is an electronic travel document representing a contactless smart card." }, "subcategory": "IC with applications" }, { "cert_id": "BSI-DSZ-CC-1247-2025", "product": "Bundesdruckerei Document Application with tamper-evident casing Version 2.6.1, Firmware Version 1.6.24-604, TOE Casing …", "vendor": "Bundesdruckerei GmbH", "certification_date": "2025-01-30", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-Software/1247.html", "enhanced": { "product": "Bundesdruckerei Document Application with tamper-evident casing Version 2.6.1, Firmware Version 1.6.24-604, TOE Casing Version 0", "applicant": "Bundesdruckerei GmbH Kommandantenstraße 18 10969 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3", "protection_profile": "Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064-V2-2018, Version: 2.0, 2018-06-06, Federal Office for Information Security (BSI)", "certification_date": "2025-01-30", "expiration_date": "2030-01-29", "entries": [ { "id": "BSI", "description": "The changes are mainly related to an update of life cycle security aspects by including a production site. Additionally a production test functionality has been changed, the seals have been updated to a new Bundesdruckerei GmbH Logo including a respective update of AGD and a minor change in the ST. Configuration Management procedures required a change in the product identifier. Therefore the version number changed from \"Bundesdruckerei Document Application with tamper-evident casing Version 2.6.1, Firmware Version 2.0.4-612, TOE Casing Version 0\" to \"Bundesdruckerei Document Application with tamper-evident casing Version 2.6.1; Firmware Version 2.0.8-616, TOE Casing Version 0\"." }, { "id": "BSI", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-1247-2025", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1247a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1247b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1247c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the Bundesdruckerei Document Application with tamper-evident casing 2.6.1. The Document Application is running on a Document Management Terminal (DMT). It is used to read the German Passport (ePass), to read and update the electronic data of the German Identity Card (“Personalausweis (PA)”) and electronic Resident Permit Card (“elektronischer Aufenthaltstitel (eAT)”) as well as to verify the document’s authenticity and the integrity of its data. The TOE is operated by governmental organisations, e.g. municipal office, police, government or other state approved agencies. The TOE is specifically applied in registration offices to allow card holders to verify that their ePass, PA or eAT is working correctly. In case of PA and eAT it is further possible to update the address information of the card holder, the card holder’s PIN for eID applications, and the community ID (“Gemeindeschlüssel”). In addition, the eID application functionality of the PA or eAT can be activated or deactivated. Additionally, the TOE ensures secure communication to external control software and provides a tamper-evident enclosure. Necessary protocols for the communication of the TOE with the electronic identity documents like the ePass, PA or eAT are described in [ICAO_9303], [TR-03110-1], [TR-03110-2], and [TR-03110-3]." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1215-2023", "product": "Bundesdruckerei Document Application with tamper-evident casing 2.5.1, Firmware Version 1.5.8, TOE Casing Version 0", "vendor": "Bundesdruckerei GmbH", "certification_date": "2023-07-20", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-Software/1215.html", "enhanced": { "product": "Bundesdruckerei Document Application with tamper-evident casing 2.5.1, Firmware Version 1.5.8, TOE Casing Version 0", "applicant": "Bundesdruckerei GmbH Kommandantenstraße 18 10969 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3", "protection_profile": "Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064-V2-2018, Version: 2.0, 2018-06-06, Federal Office for Information Security (BSI)", "certification_date": "2023-07-20", "expiration_date": "2028-07-19", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1215a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1215b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1215c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the Bundesdruckerei Document Application with tamperevident casing 2.5.1. The Document Application is running on a Document Management Terminal (DMT). It is used to read the German Passport (ePass), to read and update the electronic data of the German identification card (“Personalausweis (PA)”) and electronic resident permit (“elektronischer Aufenthaltstitel (eAT)”) as well as to verify the document’s authenticity and the integrity of its data. The TOE is operated by governmental organisations, e.g. municipal office, police, government or other state approved agencies. The TOE is specifically applied in registration offices to allow card holders to verify that their ePass, PA or eAT is working correctly. In case of PA and eAT it is further possible to update the address information of the card holder, the card holder’s PIN for eID applications, and the community ID (“Gemeindeschlüssel”). In addition, the eID application functionality of the PA or eAT can be activated or deactivated. Additionally the TOE ensures secure communication to external control software and provides a tamper-evident enclosure. Necessary protocols for the communication of the TOE with the electronic identity documents like the ePass, PA or eAT are described in [ICAO_9303], [TR-03110-1], [TR-03110-2], and [TR-03110-3]." }, "subcategory": "Software" }, { "cert_id": "BSI-DSZ-CC-1181-2021", "product": "Bundesdruckerei Document Application with tamper-evident casing, Document Application Version 2.4.6; (Firmware Vers. 1.3.28, …", "vendor": "Bundesdruckerei GmbH", "certification_date": "2021-10-27", "category": "Electronic ID documents", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-Software_mit_Hardware/1181.html", "enhanced": { "product": "Bundesdruckerei Document Application with tamper-evident casing, Document Application Version 2.4.6; (Firmware Vers. 1.3.28, HW Vers. 0)", "applicant": "Bundesdruckerei GmbH Kommandantenstraße 18 10969 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL3", "protection_profile": "Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064-V2-2018, Version: 2.0, 2018-06-06, Federal Office for Information Security (BSI)", "certification_date": "2021-10-27", "expiration_date": "2026-10-26", "entries": [ { "id": "BSI-DSZ-CC-1181-2021-MA-02 (Ausstellungsdatum / Certification Date 23.05.2022)", "description": "\"Rest of the terminal firmware (including the Operating System)\"" }, { "id": "BSI-DSZ-CC-1181-2021-MA-01 (Ausstellungsdatum / Certification Date 09.03.2022)", "description": "Vers. 0) was changed due to an update of the Rest of the terminal firmware (including the Operating System). Configuration Management procedures required a change in the product identifier. Therefore the version number of the Firmware changed from 1.3.28 to 1.4.8. The changes also cover an minor update of the user guidance related to this version number." }, { "id": "BSI-DSZ-CC-1181-2021", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1181a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1181b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1181c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the Bundesdruckerei Document Application with tamper-evident casing 2.4.6. The Document Application is running on a Document Management Terminal (DMT). It is used to read the German Passport (ePass), to read and update the electronic data of the German identification card (“Personalausweis (PA)”) and electronic resident permit (“elektronischer Aufenthaltstitel (eAT)”) as well as to verify the document’s authenticity and the integrity of its data. The TOE is operated by governmental organisations, e.g. municipal office, police, government or other state approved agencies. The TOE is specifically applied in registration offices to allow card holders to verify that their ePass, PA or eAT is working correctly. In case of PA and eAT it is further possible to update the address information of the card holder, the card holder’s PIN for eID applications, and the community ID (“Gemeindeschlüssel”). In addition, the eID application functionality of the PA or eAT can be activated or deactivated. Additionally the TOE ensures secure communication to external control software and provides a tamper-evident enclosure. Necessary protocols for the communication of the TOE with the electronic identity documents like the ePass, PA or eAT are described in [ICAO_9303], [TR-03110-1], [TR-03110-2], and [TR-03110-3]." }, "subcategory": "Software with hardware" }, { "cert_id": "BSI-DSZ-CC-0919-V4-2025", "product": "CASA 1.0 and CASA 1.1", "vendor": "EMH metering GmbH & Co.KG", "certification_date": "2025-08-26", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/0919.html", "enhanced": { "product": "CASA 1.0 and CASA 1.1", "applicant": "EMH metering GmbH & Co.KG Matthias Göbel Neu-Galliner Weg 1 19258 Gallin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,AVA_VAN.5,ALC_FLR.2", "protection_profile": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014", "certification_date": "2025-08-26", "expiration_date": "2033-08-25", "entries": [ { "id": "BSI", "description": "The focus of the re-certification was on the integration of the new Security Module, updates of the third party software components and the operating system, changes at the WAN and HAN interfaces, changes to measurement data processing, bug fixing, changes to the production environment and further refinements and updates of the ALC class." }, { "id": "BSI-DSZ-CC-0919-V3-2023-RA-01 (Ausstellungsdatum / Certification Date 01.10.2025 Neubewertung der Widerstandsfähigkeit / Re-Assessment Erfolgreiches Re-Assessment mit Aktualisierung der Schwachstellenanalyse. Das CC-Zertifikat BSI-DSZ-CC-0919-V3-2023 bleibt damit weitere 2 Jahre gültig. Successful Re-Assessment with update of the vulnerability analysis. The CC-certificate BSI-DSZ-CC-0919-V3-2023 remains valid for 2 further years.", "description": "Furthermore, the CC-certified part of the SMGW delivery procedures was limited to the first delivery to an instance of the metering point operator (MPO) and for the further storage and delivery in the responsibility of the MPO the \"MSB-Lieferkette\" was enabled." }, { "id": "BSI-DSZ-CC-0919-V3-2023-MA-02 (Ausstellungsdatum / Certification Date 17.06.2024)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0919-V3-2023-MA-01", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0919-V3-2023 (Ausstellungsdatum / Certification Date 02.10.2023 gültig bis / valid until 02.10.2031) Certification Report / Zertifizierungsreport Sicherheitsvorgaben / Security Target Zertifikat / Certificate Das Produkt CASA 1.0 wurde zur Ergänzung einer zweiten Hardware-Plattform, die durch CASA 1.1 (Hardware Version 11 301 / 11 302) gekennzeichnet ist, zur Ausweitung der Konfigurationsrechte des Service Technikers und wegen kleinerer Fehlerkorrekturen geändert. Die Änderungen führten für beide Hardware Plattformen zu einer neuen Software Version 31000000__X026d. Die Hardware Version für CASA 1.0 (10 301 / 10 302 / 10 303 / 10 304) ist unverändert.", "description": "The changes led for both hardware platforms to a new Software Version 31000000__X026d. The Hardware Version for CASA 1.0 (10 301 / 10 302 / 10303 / 10304) remains unchanged." }, { "id": "BSI-DSZ-CC-0919-V2-2021-RA-01 (Ausstellungsdatum / Certification Date 29.03.2023)", "description": "Certification Date" }, { "id": "BSI-DSZCC-0919-V2-2021-MA-02", "description": "Security Target" }, { "id": "BSI", "description": "The product CASA 1.0 was changed to improve the implementation representation regarding system stability and connectivity.. Therefore the software version number changed from 30100000__X026e to 30100000__X026f. The changes had no effect on the certified security functionality" }, { "id": "BSI", "description": "The changes led to a new Software Version 30100000__X026e. The Hardware Version (10 301 / 10 302 / 10 303 / 10 304) is still the same." }, { "id": "BSI-DSZ-CC-0919-2019-RA-01", "description": "Certification Date 16.12.2021" }, { "id": "BSI", "description": "The product CASA 1.0 was changed to correct the tariffing of meter data. Therefore the software version number changed from 30000000__X026b to 30000000__X026c. The changes had no effect on the certified security functionality." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0919V4a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0919V4b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0919V4c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is uniquely identified as CASA 1.0. This Smartmeter Gateway is the communication unit used within an intelligent metering system and is represented by the product CASA except for the integrated Security Module and external communication interfaces. The main functionality of the Gateway is the reception and the storage of measured values and status of the connected meters as well as the processing and the transfer of these measurements and status values to authorized entities." }, "subcategory": "(Smart Meter Gateway)" }, { "cert_id": "BSI-DSZ-CC-0918-V8-2025", "product": "CONEXA 3.0, Version 1.7", "vendor": "Theben Smart Energy GmbH", "certification_date": "2025-07-03", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/0918.html", "enhanced": { "product": "CONEXA 3.0, Version 1.7", "applicant": "Theben Smart Energy GmbH Schlossfeld 9 72401 Haigerloch", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_FLR.2,AVA_VAN.5", "protection_profile": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014", "certification_date": "2025-07-03", "expiration_date": "2033-07-02", "entries": [ { "id": "BSI-DSZ-CC-0918-V8-2025-MA-01", "description": "The changes are related to an update of the communication in the LMN." }, { "id": "BSI-DSZ-CC-0918-V8-2025 (Ausstellungsdatum / Certification Date 03.07.2025, gültig bis / valid until 02.07.2033)", "description": "The Target of Evaluation (TOE) presented in this document is called \"Smart Meter Gateway\", “SMGW” or “Gateway” and uniquely identified as CONEXA 3.0 (CC), Version 1.7. It is the communication unit used within such an intelligent metering system and represented by the product CONEXA 3.0 except for the integrated Security Module. Besides data processing, Smart Meter Gateway offers possibility to generate tariff rates in order to enable network operators and consumers to control energy consumption in an intelligent way. The changes regarding this re-certification are based on using a new security module and some bug fixing." }, { "id": "BSI-DSZ-CC-0918-V7-2025 (Ausstellungsdatum / Certification Date 06.02.2025, gültig bis / valid until 05.02.2033)", "description": "The Target of Evaluation (TOE) presented in this document is called \"Smart Meter Gateway\", “SMGW” or “Gateway” and uniquely identified as CONEXA 3.0 (CC), Version 1.6. It is the communication unit used within such an intelligent metering system and represented by the product CONEXA 3.0 except for the integrated Security Module. Besides data processing, Smart Meter Gateway offers possibility to generate tariff rates in order to enable network operators and consumers to control energy consumption in an intelligent way. The following changes on the evaluated product have been in the focus of this re-evaluation procedure: Adjustment in assignment of counter register to measured value list, optimization GWA change process, compression of data at the WAN interface, documentation adaptions, implementation of the MPO delivery method, further changes and bugfixes, kernel update and editorial changes." }, { "id": "BSI-DSZ-CC-0918-V6-2024-RA-01 (Ausstellungsdatum / Certification Date 29.01.2025)", "description": "Successful Re-Assessment with update of the vulnerability analysis. The CC-certificate BSI-DSZ-CC-0918-V6-2024 remains valid for 2 further years." }, { "id": "BSI-DSZ-CC-0918-V6-2024-MA-03", "description": "The changes are related to an update of the user guidance and to the certified scope of the delivery procedures. For the certified scope of the delivery procedures, the assurance component ALC_DEL.1 (ALC_DEL.1.1D, ALC_DEL.1.1C) has been refined in the ST to only cover the delivery of the TOE from the manufacturer to the MPO (metering point operator), who is the customer of the developer and the recipient of the TOE." }, { "id": "BSI-DSZ-CC-0918-V6-2024-MA-02", "description": "The changes are related to an update of the user guidance and to the certified scope of the delivery procedures. For the certified scope of the delivery procedures, the assurance component ALC_DEL.1 (ALC_DEL.1.1D, ALC_DEL.1.1C) has been refined in the ST to only cover the delivery of the TOE from the manufacturer to the MPO (metering point operator), who is the customer of the developer and the recipient of the TOE." }, { "id": "BSI-DSZ-CC-0918-V6-2024-MA-01", "description": "The maintenance consists of a bug fix that was necessary to eliminate problems with connection interruptions both when tariffing with compact profiles and during network Management." }, { "id": "BSI-DSZ-CC-0918-V6-2024 (Ausstellungsdatum / Certification Date 08.02.2024, gültig bis / valid until 07.02.2032)", "description": ", some software adjustments and adjustment of kernel-hardening. And last but not least the boot process was improved, some further adjustments with impact on documentation and editorial changes were made." }, { "id": "BSI-DSZ-CC-0918-V5-2023-MA-02", "description": "The change to the certified product is at the level of vendor’s renaming." }, { "id": "BSI-DSZ-CC-0918-V5-2023-MA-01", "description": "The description of the secure delivery procedure was extended due to adding an alternative delivery procedure (cardbox delivery)." }, { "id": "BSI-DSZ-CC-0918-V5-2023 (Ausstellungsdatum / Certification Date 11.05.2023, gültig bis / valid until 10.05.2031)", "description": "The focus of this re-evaluation was on certification obligations following BSI-K-TR-0507-2022, mobile phone signal validation without tools, adaption reaction of >36h no time synchronization and some further small changes, adjustments and updates." }, { "id": "BSI-DSZ-CC-0918-V4-2022-MA-03" }, { "id": "BSI-DSZ-CC-0918-V4-2022-MA-02", "description": "The assembly space for the Fakra socket was adapted." }, { "id": "BSI-DSZ-CC-0918-V4-2022-MA-01", "description": "The order of the configuration parameters regarding the LTE module were corrected." }, { "id": "BSI-DSZ-CC-0918-V4-2022 (Ausstellungsdatum / Certification Date 08.03.2022, gültig bis / valid until 07.03.2030)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-0918-V3-2022 (Ausstellungsdatum / Certification Date 24.01.2022, gültig bis / valid until 23.01.2030)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-0918-V2-2021 (Ausstellungsdatum / Certification Date 01.07.2021, gültig bis / valid until 30.06.2029)", "description": "), Version 1.1 was enhanced due to the new tariff use cases (TAF) 9, 10 and 14. Further optimizations and some minor bugfixing were also performed." }, { "id": "BSI-DSZ-CC-0918-2020-MA-01", "description": "alive values. Therefore the version number changed for the Software from v3.33.0-cc to v3.33.3-cc." } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0918V8a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0918V8b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0918V8c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the Smart Meter Gateway (SMGW) CONEXA 3.0, Version 1.0. The Smart Meter Gateway is the communication unit in a smart metering system. The main functionality of the gateway is the reception and the storage of measured consumption and status values of the connected meters as well as the processing and the transfer of these consumption and status values to authorized entities." }, "subcategory": "(Smart Meter Gateway)" }, { "cert_id": "BSI-DSZ-CC-0822-V7-2025", "product": "SMARTY IQ-LTE, Version 1.5", "vendor": "Sagemcom Dr. Neuhaus GmbH", "certification_date": "2025-04-17", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/0822_0822V2_0822V3_0822V4_0822V5_0822V6.html", "enhanced": { "product": "SMARTY IQ-LTE, Version 1.5", "applicant": "Sagemcom Dr. Neuhaus GmbH Papenreye 65 22453 Hamburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,AVA_VAN.5,ALC_FLR.2", "protection_profile": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014", "certification_date": "2025-04-17", "expiration_date": "2033-04-16", "entries": [ { "id": "BSI-DSZ-CC-0822-V7-2025-MA-01", "description": "This maintenance procedure serves to limit the CC-certified part of the SMGW delivery procedures to the first delivery to an instance of the metering point operator (MPO) and to enable the \"MSB-Lieferkette\" for the further storage and delivery in the responsibility of the MPO" }, { "id": "BSI-DSZ-CC-0822-V7-2025", "description": "The focus of this recertification was on a bugfix for the SMGW certificate change process." }, { "id": "BSI-DSZ-CC-0822-V6-2024", "description": "The focus of this recertification was on the introduction of a new LTE-Modul for WAN-communication, the GWA-change process implementation following FNN requirements and the introduction of proxy-profiles and communication scenario HKS3 with SOCKSv5." }, { "id": "BSI-DSZ-CC-0822-V5-2023-RA-01", "description": "The CC-certificate BSI-DSZ-CC-0822-V5-2023 remains valid for 2 further years." }, { "id": "BSI-DSZ-CC-0822-V5-2023-MA-01", "description": "This maintenance procedure serves to limit the CC-certified part of the SMGW delivery procedures to the first delivery to an instance of the metering point operator (MPO) and to enable the \"MSB-Lieferkette\" for the further storage and delivery in the responsibility of the MPO" }, { "id": "BSI-DSZ-CC-0822-V5-2023", "description": "components." }, { "id": "BSI-DSZ-CC-0822-V4-2023", "description": "The focus of this recertification was on the update of the operating system and some libraries, the implementation of changed and added tariff use cases (TAF 2, TAF 9, TAF 10, TAF 14), the support of IPv6 and the support of firmware download." }, { "id": "BSI-DSZ-CC-0822-V3-2021-RA-02", "description": "The CC-certificate BSI-DSZ-CC-0822-V3-2021 remains valid for 2 further years." }, { "id": "BSI-DSZ-CC-0822-V3-2021-RA-01", "description": "Successful Re-Assessment with update of the vulnerability analysis." }, { "id": "BSI-DSZ-CC-0822-V3-2021-MA-02", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0822-V3-2021-MA-01", "description": "version number remains the same as the alternative components have the same behaviour as the original one." }, { "id": "BSI-DSZ-CC-0822-V3-2021", "description": "The previoulsly certified TOE was changed and re-certified to implement minor security-relevant optimizations." }, { "id": "BSI-DSZ-CC-0822-V2-2020", "description": "Certificate" }, { "id": "BSI-DSZ-CC-0822-2019-MA-01 (20.11.2019)", "description": "Certificate invalid" }, { "id": "BSI-DSZ-CC-0822-2019 (25.09.2019)", "description": "Certificate invalid" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte08/0822V7a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte08/0822V7b_pdf.html?nn=456626", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte08/0822V7c_pdf.pdf?__blob=publicationFile&v=2" }, "subcategory": "(Smart Meter Gateway)" }, { "cert_id": "BSI-DSZ-CC-1000-V2-2025", "product": "Secure Smart Grid Hub (SGH-S), V1.02", "vendor": "EFR GmbH", "certification_date": "2025-02-03", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/1000.html", "enhanced": { "product": "Secure Smart Grid Hub (SGH-S), V1.02", "applicant": "EFR GmbH Nymphenburger Straße 20b 80335 München", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_FLR.2,AVA_VAN.5", "protection_profile": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014", "certification_date": "2025-02-03", "expiration_date": "2033-02-02", "entries": [ { "id": "BSI-DSZ-CC-1000-V2-2025", "description": "This re-certification was necessary because of the re-location of IT infrastructure in the development Environment and a changed delivery method due to enable delivery chains according to [MSB-LK, see: https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Standards-und-Zertifizierung/Smart-metering/Smart-Meter- Gateway/MSB/MSB_node.html ]. Also, the developer updated third-party components of the TOE and corrected defects in the implementation. There were no changes to the TOE's security functionality." }, { "id": "BSI-DSZ-CC-1000-2023-MA-01", "description": "(National Metrology Institute) requirements." } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the security functionality of a Smart Meter Gateway that serves as the communi-cation unit between devices of private and commercial consumers and commodity industry service providers (e.g., electricity, gas, water, etc.). It also collects, processes and stores Meter Data and is responsible for the distribution of this data to external entities" }, "subcategory": "(Smart Meter Gateway)" }, { "cert_id": "BSI-DSZ-CC-0831-V10-2024", "product": "SMGW Version 2.2", "vendor": "Power Plus Communications AG", "certification_date": "2024-11-08", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/0831.html", "enhanced": { "product": "SMGW Version 2.2", "applicant": "Power Plus Communications AG Dudenstraße 6 68167 Mannheim", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,AVA_VAN.5,ALC_FLR.2", "protection_profile": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014", "certification_date": "2024-11-08", "expiration_date": "2032-11-07", "entries": [ { "id": "BSI-DSZ-CC-0831-V10-2024-MA-02", "description": "For this maintenance procedure the SMGW, Version 2.2 was changed to Version 2.2.1 to enhance the reliability of the WAN communication channels and to increase the size of certain log files." }, { "id": "BSI-DSZ-CC-0831-V10-2024-MA-01", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0831-V10-2024", "description": "The focus of the re-certification was on the inclusion of a new security module, the supplement of the power supply with 100V and a change concerning the OpenSSL Padding Byte." }, { "id": "BSI-DSZ-CC-0831-V9-2024-MA-01", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0831-V9-2024", "description": "Hardware" }, { "id": "BSI", "description": "For this maintenance procedure the SMGW, Version 1.3.2 was changed to Version 1.3.3 to enhance the reliability of the WAN communication channels and to increase the size of certain log files." }, { "id": "BSI", "description": "Furthermore this maintenance procedure serves to limit the CC-certified part of the SMGW delivery procedures to the first delivery to an instance of the metering point operator (MPO) and to enable the \"MSB-Lieferkette\" for the further storage and delivery in the responsibility of the MPO." }, { "id": "BSI-DSZ-CC-0831-V8-2024", "description": "Hardware" }, { "id": "BSI", "description": "Successful re-assessment with update of the vulnerability analysis. The CC-certificate BSI-DSZ-CC-0831-V7-2023 remains valid for 2 further years." }, { "id": "BSI-DSZ-CC-0831-V7-2023-MA-03", "description": "Sky-/Safety" }, { "id": "BSI-DSZ-CC-0831-V7-2023-MA-01", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-0831-V7-2023", "description": "Hardware" }, { "id": "BSI", "description": "Successful re-assessment with update of the vulnerability analysis. The CC-certificate BSI-DSZ-CC-0831-V6-2023 remains valid for 2 further years." }, { "id": "BSI-DSZ-CC-0831-V5-2022-RA-01", "description": "Successful Re-Assessment with update of the vulnerability analysis. The CC-certificate BSI-DSZ-CC-0831-V5-2022 remains valid for 2 further years." }, { "id": "BSI-DSZ-CC-0831-V6-2023-MA-02", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-0831-V6-2023-MA-01", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-0831-V6-2023", "description": "The focus of this re-certification was on changes to the wMBUS-functionality, profile adjustments as well as further improvements." }, { "id": "BSI-DSZ-CC-0831-V5-2022-MA-02", "description": "Maintenance Report" }, { "id": "This" }, { "id": "BSI-DSZ-CC-0831-V5-2022-RA-01", "description": "Successful Re-Assessment with update of the vulnerability analysis. The CC-certificate BSI-DSZ-CC-0831-V5-2022 remains valid for 2 further years." }, { "id": "BSI-DSZ-CC-0831-V5-2022-MA-01", "description": "Maintenance Report" }, { "id": "BSI-DSZ-CC-0831-V5-2022", "description": "The focus of this re-certification laid on the update of the linux kernel, a new hardware configuration, optimizations and bugfixing as well as changes in the developpment process." }, { "id": "BSI-DSZ-CC-0831-V4-2021-RA-02", "description": "Successful Re-Assessment with update of the vulnerability analysis. The CC-certificate BSI-DSZ-CC-0831-V4-2021 remains valid for 2 further years." } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte08/0831V10a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte08/0831V10b_pdf.pdf?__blob=publicationFile&v=2", "description": "The target of evaluation (TOE) is the Smart Meter Gateway \"SMGW Integrationsmodul Version 1.0\". This Smartmeter Gateway is the communication unit used within an intelligent metering system. The main functionality of the Gateway is the reception and the storage of measured values and status of the connected meters as well as the processing and the transfer of these measurements and status values to authorized entities." }, "subcategory": "(Smart Meter Gateway)" }, { "cert_id": "BSI-DSZ-CC-1217-2024", "product": "TCOS eEnergy Security Module Version 2.0 Release 1/P71", "vendor": "Deutsche Telekom Security GmbH", "certification_date": "2024-02-29", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Smartmeter_Sicherheitsmodule/1217.html", "enhanced": { "product": "TCOS eEnergy Security Module Version 2.0 Release 1/P71", "applicant": "Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5", "protection_profile": "Protection Profile for the Security Module of a Smart Meter Gateway (Security Module PP), Version 1.03, 11 December 2014, BSI-CC-PP-0077-V2-2015", "certification_date": "2024-02-29", "expiration_date": "2034-02-28", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1217a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1217b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1217c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the product TCOS eEnergy Security Module Version 2.0 Release 1/P71 developed by Deutsche Telekom Security GmbH. The TOE is a Smart Meter Security Module according to the Technical Guideline BSI TR-03109-2, Version 1.1 intended to be used by a Smart Meter Gateway in a Smart Metering System. The TOE serves as cryptographic service provider for the Smart Meter Gateway and supports the Smart Meter Gateway for its specific cryptographic needs. These cryptographic services cover the following issues: Digital Signature Generation, Digital Signature Verification, Key Agreement for TLS, Key Agreement for Content Data Encryption, Key Pair Generation, Random Number Generation, Component Authentication via the PACE Protocol with Negotiation of Session Keys, Secure Messaging, and Secure Storage of Key Material and further data relevant for the Gateway." }, "subcategory": "Security module for an Smart Metering Gateway" }, { "cert_id": "BSI-DSZ-CC-1037-2018", "product": "STSAFE-J100-BS Smart Meter Security Module V2.1.6", "vendor": "STMicroelectronics", "certification_date": "2018-05-17", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Smartmeter_Sicherheitsmodule/1037.html", "enhanced": { "product": "STSAFE-J100-BS Smart Meter Security Module V2.1.6", "applicant": "STMicroelectronics Z.I Marcianise Sud 81025 Marcianise (CE) ITALY", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,AVA_VAN.5", "protection_profile": "Protection Profile for the Security Module of a Smart Meter Gateway (Security Module PP) - Schutzprofil für das Sicherheitsmodul der Kommunikationseinheit eines intelligenten Messsystems für Stoff- und Energiemengen Version 1.03, 11 December 2014, BSI-CC-PP-0077-V2-2015", "certification_date": "2018-05-17", "expiration_date": "2028-05-16", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1037a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1037b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1037c_pdf.pdf?__blob=publicationFile&v=1", "description": "The TOE STSAFE-J100-BS V.2.1.6 is a smartcard application implementing the security module of a smart meter gateway designed as a Java Card Applet integrated on STMicroelectronics STSAFE-J Java Card Platform designed on the ST31H320 hardware platform (ST31H320 security integrated circuit with dedicated software and embedded cryptographic library). The composite TOE implements security functionality according the Protection Profile for the Security Module of a Smart Meter Gateway (BSI-CC-PP-0077-V2)." }, "subcategory": "Security module for an Smart Metering Gateway" }, { "cert_id": "BSI-DSZ-CC-0957-V2-2016", "product": "TCOS Smart Meter Security Module Version 1.0 Release 2/P60C144PVE", "vendor": "Deutsche Telekom Security GmbH", "certification_date": "2016-11-18", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Smartmeter_Sicherheitsmodule/0957_0957V2_0957V2RA1.html", "enhanced": { "product": "TCOS Smart Meter Security Module Version 1.0 Release 2/P60C144PVE", "applicant": "Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,AVA_VAN.5", "protection_profile": "Protection Profile for the Security Module of a Smart Meter Gateway (Security Module PP) - Schutzprofil für das Sicherheitsmodul der Kommunikationseinheit eines intelligenten Messsystems für Stoff- und Energiemengen Version 1.03, 11 December 2014, BSI-CC-PP-0077-V2-2015", "certification_date": "2016-11-18", "expiration_date": "2026-11-17", "entries": [ { "id": "BSI-DSZ-CC-0957-V2-2016-RA-01 (Ausstellungsdatum / Certification Date 27.09.2021)", "description": "Re-Assessment" }, { "id": "BSI-DSZ-CC-0957-V2-2016 (Ausstellungsdatum / Certification Date 18.11.2016, gültig bis / valid until 17.11.2026)", "description": "TCOS Smart Meter Security Module Version 1.0 Release 2/P60C144PVE" }, { "id": "BSI-DSZ-CC-0957-2015 (Ausstellungsdatum / Certification Date 09.02.2015, gültig bis / valid until 09.02.2025)", "description": "Security Target" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0957V2a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0957V2b_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of Evaluation (TOE) is the product TCOS Smart Meter Security Module Version 1.0 Release 1/P60C144PVA developed by T-Systems International GmbH. The TOE is a Smart Meter Security Module according to the Technical Guideline BSI TR-03109-2, Version 1.1 intended to be used by a Smart Meter Gateway in a Smart Metering System. The TOE serves as cryptographic service provider for the Smart Meter Gateway and supports the Smart Meter Gateway for its specific cryptographic needs. These cryptographic services cover the following issues: Digital Signature Generation, Digital Signature Verification, Key Agreement for TLS, Key Agreement for Content Data Encryption, Key Pair Generation, Random Number Generation, Component Authentication via the PACE Protocol with Negotiation of Session Keys, Secure Messaging, and Secure Storage of Key Material and further data relevant for the Gateway." }, "subcategory": "Security module for an Smart Metering Gateway" }, { "cert_id": "BSI-DSZ-CC-1035-2017", "product": "TCOS Secure Crypto Module Version 1.0 Release 1/P60C144PVE", "vendor": "T-Systems International GmbH", "certification_date": "2017-10-06", "category": "Intelligent measuring systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_MiniHSM/1035.html", "enhanced": { "product": "TCOS Secure Crypto Module Version 1.0 Release 1/P60C144PVE", "applicant": "T-Systems International GmbH Untere Industriestraße 20 57250 Netphen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,AVA_VAN.5", "certification_date": "2017-10-06", "expiration_date": "2027-10-05", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1035a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1035b_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of Evaluation (TOE) is the product TCOS Secure Crypto Module Version 1.0 Release 1/P60C144PVE developed by T-Systems International GmbH. The TOE is a Security Module according to the Technical Guideline BSI TR-03109-2 Annex B, Version 1.0 and is intended to be integrated in a so-called Smart Meter Mini-HSM. The TOE serves as a cryptographic service provider and supports different parties (as e.g. the Gateway Administrator) for their specific cryptographic needs in the framework of Smart Metering Systems. These cryptographic services cover the following issues: Digital Signature Generation, Digital Signature Verification, Key Agreement for TLS, Key Agreement for Content Data Encryption, Key Pair Generation, Random Number Generation, Component Authentication via the PACE Protocol with Negotiation of Session Keys, Secure Messaging, and Secure Storage of Key Material and further sensitive data relevant for the user." }, "subcategory": "Security module for an Smart Meter Mini-HSM" }, { "cert_id": "BSI-DSZ-CC-1240-2026", "product": "TightGate-Pro (CC) 2.0", "vendor": "m-privacy GmbH", "certification_date": "2026-02-23", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1240.html", "enhanced": { "product": "TightGate-Pro (CC) 2.0", "applicant": "m-privacy GmbH Werner-Voß-Damm 62 12101 Berlin", "evaluation_facility": "Deutsches Forschungszentrum für Künstliche Intelligenz GmbH", "assurance_level": "EAL3,ALC_CMS.4,ALC_FLR.3", "protection_profile": "Remote-Controlled Browsers Systems (ReCoBS), Version 1.0, 26 February 2008, BSI-CC-PP-0040-2008", "certification_date": "2026-02-23", "expiration_date": "2031-02-22", "entries": [ { "id": "BSI-DSZ-CC-1240-2026", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1240a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1240b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1240c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is a workstation proxy firewall, which allows designated hosts to connect to, and use software on the server." } }, { "cert_id": "BSI-DSZ-CC-1267-2026", "product": "genugate firewall 11.0 p0", "vendor": "genua GmbH", "certification_date": "2026-02-23", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1267.html", "enhanced": { "product": "genugate firewall 11.0 p0", "applicant": "genua GmbH Domagkstrasse 7 85551 Kirchheim", "evaluation_facility": "secuvera GmbH", "assurance_level": "EAL4+,ALC_FLR.2,ALC_PAM.1,ASE_TSS.2,AVA_VAN.5", "certification_date": "2026-02-23", "expiration_date": "2031-02-22", "entries": [ { "id": "BSI-DSZ-CC-1267-2026", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1267a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1267b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1267c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is a combination of an application level gateway (ALG) and a packet filter (PFL), which are implemented on two different systems. It is part of a larger product. The TOE consists of hardware and software. The TOE is part of the shipped software. The operating system is a modified OpenBSD." } }, { "cert_id": "BSI-DSZ-CC-1216-V2-2026", "product": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0", "vendor": "Secunet Security Networks AG", "certification_date": "2026-02-11", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1216.html", "enhanced": { "product": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0", "applicant": "Secunet Security Networks AG Kurfürstenstraße 58 45138 Essen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4,ALC_FLR.2", "certification_date": "2026-02-11", "expiration_date": "2031-02-10", "entries": [ { "id": "BSI-DSZ-CC-1216-V2-2026 (Ausstellungsdatum / Certification Date 11.02.2026, gültig bis / valid until: 10.02.2031)", "description": "The TOE is a CA (Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information." }, { "id": "BSI-DSZ-CC-1216-2024-MA-01 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report", "description": "(Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information." }, { "id": "BSI-DSZ-CC-1216-2024", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is a CA (Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information." } }, { "cert_id": "BSI-DSZ-CC-1223-2025", "product": "Fabric OS, Version 9.1.1b8", "vendor": "Brocade Communications Systems LLC", "certification_date": "2025-10-01", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1223.html", "enhanced": { "product": "Fabric OS, Version 9.1.1b8", "applicant": "Brocade Communications Systems LLC 1320 Ridder Park Drive San Jose 95131 USA", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL2+,ALC_FLR.2", "certification_date": "2025-10-01", "expiration_date": "2030-09-30", "entries": [ { "id": "BSI-DSZ-CC-1223-2025", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1223a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1223b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1223c_pdf.pdf?__blob=publicationFile&v=3", "description": "The Target of Evaluation (TOE) is the Brocade Communications Systems LLC Fabric OS, Version 9.1.1b8 running on Brocade Directors and Switches family of products configured as instructed by the preparatory documentation which is provided by Brocade Communications Systems LLC. Brocade Communications Systems LLC Fabric OS, Version 9.1.1b8 running on Brocade Directors and Switches is a software solution utilizing hardware appliances that implement what is called a 'Storage Area Network' or 'SAN'. SANs provide physical connections between servers that are located in the environment and storage devices such as disk storage systems and tape libraries that are also located in the environment." } }, { "cert_id": "BSI-DSZ-CC-1081-V3-2025", "product": "Trusted Audio Switch with fiber optic (TAS-FO) version 2.0", "vendor": "Rohde & Schwarz Topex S.A.", "certification_date": "2025-08-15", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1081.html", "enhanced": { "product": "Trusted Audio Switch with fiber optic (TAS-FO) version 2.0", "applicant": "Rohde & Schwarz Topex S.A. 9-9A Dimitrie Pompeiu Blvd, Iride Business Park, Building 19, ground floor, 1st, 2nd and 3rd floor, 2nd District 020335 Bucharest Romania", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4", "certification_date": "2025-08-15", "expiration_date": "2030-08-14", "entries": [ { "id": "BSI-DSZ-CC-1081-V3-2025 (15.08.2025)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1081-V2-2020 (18.08.2020)", "description": ") is a Trusted Audio Switch (TAS) as the key element in securing RED (CLASSIFIED) communications by keeping the RED and the BLACK (UNCLASSIFIED) Networks separated, while at the same time allowing the CWP (Controller Working Position) to work in a secure way with both RED and BLACK signals and media." }, { "id": "BSI-DSZ-CC-1081-2020 (31.01.2020)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1081V3a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1081V3b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1081V3c_pdf.pdf?__blob=publicationFile&v=4", "description": "The Target of Evaluation (TOE) is a Trusted Audio Switch (TAS) as the key element in securing RED (CLASSIFIED) communications by keeping the RED and the BLACK (UNCLASSIFIED) Networks separated, while at the same time allowing the CWP (Controller Working Position) to work in a secure way with both RED and BLACK signals and media." } }, { "cert_id": "BSI-DSZ-CC-1180-2025", "product": "macmon NAC, Version 5.36.2", "vendor": "macmon secure GmbH", "certification_date": "2025-05-05", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1180.html", "enhanced": { "product": "macmon NAC, Version 5.36.2", "applicant": "macmon secure GmbH Alte Jakobstraße 79-80 10179Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL2,ALC_FLR.1", "certification_date": "2025-05-05", "expiration_date": "2030-05-04", "entries": [ { "id": "BSI-DSZ-CC-1180-2025", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1180a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1180b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1180c_pdf.pdf?__blob=publicationFile&v=2", "description": "The macmon NAC product is a system for controlling access from end devices to a network. The use of macmon NAC enables management and monitoring of the network and the network devices and end devices it contains. This makes the TOE a Network Access Control (NAC) system. The macmon server is integrated into the existing network at a central location. This server requests different data from different devices in the network. The authentication and authorization of end devices is carried out based on the collected data. This ensures the protection of the network and its resources from unknown or unauthorized devices." } }, { "cert_id": "BSI-DSZ-CC-1207-2025", "product": "Check Point R82 for Gateway and Maestro Configurations, Version R82", "vendor": "Check Point Software Technologies Ltd", "certification_date": "2025-04-10", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1207.html", "enhanced": { "product": "Check Point R82 for Gateway and Maestro Configurations, Version R82", "applicant": "Check Point Software Technologies Ltd Shlomo Kaplan St 5, 6789159 Tel Aviv-Yafo Israel", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4,ALC_FLR.1,AVA_VAN.4", "certification_date": "2025-04-10", "expiration_date": "2030-04-09", "entries": [ { "id": "BSI-DSZ-CC-1207-2025", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1207a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1207b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1207c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is a combination of the firmware for Security Gateway Module(s), a Security Management Server and (when deployed in Scalable Platform configuration) the firmware for the Maestro Orchestrator appliance(s). The Security Gateway Module (SGM) is a managed packet filtering firewall application, with IPS pattern matching (software) blade. The TOE provides controlled connectivity between two or more network environments. It mediates information flows between clients and servers located on internal and external networks governed by the firewalls. The SGM can either be deployed using instances of a single Security Gateway appliance, which incorporates the SGM or a combination of Security Gateway Modules (SGM) operating in a cluster as part of a Scalable Platform (SP). The Security Management Server is used to manage and deploy the security policies and rules to SGM. When operating as part of a Scalable Platform (SP), the Orchestrator appliance provides load balancing services for the SGMs." } }, { "cert_id": "BSI-DSZ-CC-1193-2024", "product": "SDoT Software Data Diode, SDoT SDD, Version 1.3i", "vendor": "INFODAS Gesellschaft für Systementwicklung und Informationsverarbeitung mbH", "certification_date": "2024-12-05", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1193.html", "enhanced": { "product": "SDoT Software Data Diode, SDoT SDD, Version 1.3i", "applicant": "INFODAS Gesellschaft für Systementwicklung und Informationsverarbeitung mbH Rhonestraße 2 50765 Köln", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL5+,ALC_FLR.2,AVA_VAN.5", "certification_date": "2024-12-05", "expiration_date": "2029-12-04", "entries": [ { "id": "BSI-DSZ-CC-1193-2024", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1193a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1193b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1193c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE (SDoT SDD SW) is the software for the product SDoT Software Data Diode (hardware and software) of INFODAS GmbH. The TOE version is 1.3i. The SDoT SDD serves as boundary protection device between IP Networks with different demands on the level of protection needed. These two IP networks are identified as Source (SRC) and Destination (DST), and SDot SDD ensures that there is no data leakage from DST to SRC but data from SRC to DST can always pass the TOE." } }, { "cert_id": "BSI-DSZ-CC-1089-V3-2024", "product": "secunet SBC Container Version 5.2", "vendor": "secunet Security Networks AG", "certification_date": "2024-06-26", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1089.html", "enhanced": { "product": "secunet SBC Container Version 5.2", "applicant": "secunet Security Networks AG Weidenauer Straße 223-225 57076 Siegen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,AVA_VAN.5,ASE_TSS.2,ALC_FLR.2", "certification_date": "2024-06-26", "expiration_date": "2029-06-25", "entries": [ { "id": "BSI-DSZ-CC-1089-V3-2024 (26.06.2024)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1089-V2-2022 (19.05.2022)", "description": ") networks to manage the signaling and media streams of audio and video communication. The used hardware is under full control of the operating system. However, the connected networks have to be separated physically, especially the management network, to allow the secunet SBC to perform the in-tended operation in a secure manner." }, { "id": "BSI-DSZ-CC-1089-2020 (08.07.2020)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1089V3a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1089V3b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1089V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "The secunet SBC Container is a Session Border Controller Container, a Linux systemd-nspawn container which can be deployed on a Linux operating system. The main purpose of the secunet SBC Container is a secure bridging between an SIP caller and the SIP callee. Concretely, the SBC supports a safeguarded initiation of SIP sessions (also called signaling) and bridging of media communication streams such as RTP or SRTP. A Session Border Controller (SBC) is a device which is deployed in Voice-over-IP (VoIP) networks to manage the signaling and media streams of audio and video communication. The used hardware is under full control of the operating system. However, the connected networks have to be separated physically, especially the management network, to allow the secunet SBC to perform the intended operation in a secure manner." } }, { "cert_id": "BSI-DSZ-CC-1116-V3-2024", "product": "secunet wall, Version 6.2.0", "vendor": "Secunet Security Networks AG", "certification_date": "2024-02-22", "category": "Network and Network related Devices and Systems", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1116.html", "enhanced": { "product": "secunet wall, Version 6.2.0", "applicant": "Secunet Security Networks AG Kurfürstenstraße 58 45138 Essen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4,ALC_FLR.2,AVA_VAN.5,ASE_TSS.2", "certification_date": "2024-02-22", "expiration_date": "2029-02-21", "entries": [ { "id": "BSI-DSZ-CC-1116-V3-2024-MA-01 (Ausstellungsdatum / Certification Date 01.08.2024)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-1116-V3-2024", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1116-V2-2022-MA-01 (Ausstellungsdatum / Certification Date 08.07.2022) Maintanance Report", "description": "Maintanance Report" }, { "id": "BSI-DSZ-CC-1116-V2-2022" }, { "id": "BSI-DSZ-CC-1116-2020", "description": "Certificate" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1116V3b_pdf.pdf?__blob=publicationFile&v=2", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1116V3a_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1116V3c_pdf.pdf?__blob=publicationFile&v=2", "description": "The secunet wall 6.0.1 comprises a solution set of Linux-based firewall components that enable the controlled transfer of data on a defined interface between internal and external networks or between segments of an internal network. This functionality is performed by the socalled Packet Filter, a part of the TOE. This packet filter enforced the Packet filter rules, defined by the administrator. The TOE is integrated in a Linux operating system platform, where a Packet Filtering module is placed." } }, { "cert_id": "BSI-DSZ-CC-1087-2026", "product": "VMware ESXi, Version 8.0g", "vendor": "Broadcom, Inc.", "certification_date": "2026-02-25", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Virtualisierung/1087.html", "enhanced": { "product": "VMware ESXi, Version 8.0g", "applicant": "Broadcom, Inc. 3421 Hillview Ave California 94304 Palo Alto USA", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4,ALC_FLR.2", "certification_date": "2026-02-25", "expiration_date": "2031-02-24", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1087a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1087b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1087c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is VMware ESXi 8.0g, a VMware software product implementing a hypervisor. The TOE is designed as a virtualization platform, providing the ability to implement and virtualize different workloads across multiple virtual machines (VMs) while providing isolation and efficient use of compute, storage and network resources. This allows for implementation of cloud environments in support of wide array of various data center workloads or on-demand infrastructure." }, "subcategory": "Virtualisation" }, { "cert_id": "BSI-DSZ-CC-1254-2026", "product": "PR/SM for IBM z17 and IBM LinuxONE 5 Systems, Driver Level D61C with Bundle Level H10/S10", "vendor": "IBM Corporation", "certification_date": "2026-01-28", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Virtualisierung/1254.html", "enhanced": { "product": "PR/SM for IBM z17 and IBM LinuxONE 5 Systems, Driver Level D61C with Bundle Level H10/S10", "applicant": "IBM Corporation 2455 South Road, P329 Poughkeepsie NY 12601 USA", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL5,ALC_FLR.3,ALC_TAT.3,ATE_FUN.2,AVA_VAN.5", "certification_date": "2026-01-28", "expiration_date": "2031-01-27", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1254a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1254b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1254c_pdf.pdf?__blob=publicationFile&v=3", "description": "PR/SM is a hardware facility running on IBM z17 and IBM LinuxONE 5 systems that enables the resources of a single physical machine to be divided between distinct, predefined logical machines called \"logical partitions\". Each logical partition is a domain of execution, and is considered to be a subject capable of running a conventional system control program (SCP) such as z/OS™, z/VM™, z/VSE, z/TPF™, or Linux on z System. These operating systems run unmodified in a PR/SM partition." }, "subcategory": "Virtualisation" }, { "cert_id": "BSI-DSZ-CC-1231-2026", "product": "SUSE Linux Enterprise Server, Version 15 SP4", "vendor": "SUSE LLC", "certification_date": "2026-01-27", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Virtualisierung/1231.html", "enhanced": { "product": "SUSE Linux Enterprise Server, Version 15 SP4", "applicant": "SUSE LLC 1221 S Valley Grove Way #500, Pleasant Grove UT 84062 United States", "evaluation_facility": "atsec information security GmbH", "protection_profile": "U.S. Government Approved Protection Profile - Protection Profile for Virtualization Version 1.1, 14 June 2021", "certification_date": "2026-01-27", "expiration_date": "2031-01-26", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1231a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1231b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1231c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the SUSE Linux Enterprise Server 15 SP4, a highly-configurable Linux-based operating system offering virtual machine management support. The virtual machine monitor support is integrated into the operating system. The evaluation covers the KVM virtualization technology. The TOE provides identification and authentication of its users, user data protection, and security audit functionality. Administrators of the TOE may perform local and remote security management." }, "subcategory": "Virtualisation" }, { "cert_id": "BSI-DSZ-CC-1222-2024", "product": "PR/SM for IBM z16 and IBM LinuxONE 4 Systems Driver Level 51C with Bundle Level 19B (D51C/B19B)", "vendor": "IBM Corporation", "certification_date": "2024-03-11", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Virtualisierung/1222.html", "enhanced": { "product": "PR/SM for IBM z16 and IBM LinuxONE 4 Systems Driver Level 51C with Bundle Level 19B (D51C/B19B)", "applicant": "IBM Corporation 2455 South Road, P329 Poughkeepsie NY 12601 USA", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL5,ALC_FLR.3,ALC_TAT.3,ATE_FUN.2,AVA_VAN.5", "certification_date": "2024-03-11", "expiration_date": "2029-03-10", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1222a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1222b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1222c_pdf.pdf?__blob=publicationFile&v=3", "description": "PRPR/SM is a hardware facility running on IBM z16 and IBM LinuxONE Emperor 4 systems that enables the resources of a single physical machine to be divided between distinct, predefined logical machines called \"logical partitions\". Each logical partition is a domain of execution, and is considered to be a subject capable of running a conventional system control program (SCP) such as z/OS™, z/VM™, z/VSE, z/TPF™, or Linux on z System . These operating systems run unmodified in a PR/SM partition." }, "subcategory": "Virtualisation" }, { "cert_id": "BSI-DSZ-CC-1186-2023", "product": "PR/SM for IBM z16 and IBM LinuxONE Emperor 4 Systems, Driver Level D51C with Bundle Level 4B", "vendor": "IBM Corporation", "certification_date": "2023-03-10", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Virtualisierung/1186.html", "enhanced": { "product": "PR/SM for IBM z16 and IBM LinuxONE Emperor 4 Systems, Driver Level D51C with Bundle Level 4B", "applicant": "IBM Corporation 2455 South Road, P328 Poughkeepsie NY 12601 USA", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL5,ALC_FLR.3,ALC_TAT.3,ATE_FUN.2,AVA_VAN.5", "certification_date": "2023-03-10", "expiration_date": "2028-03-09", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1186a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1186b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1186c_pdf.pdf?__blob=publicationFile&v=1", "description": "PR/SM is a hardware facility running on IBM z16 and IBM LinuxONE Emperor 4 Systems that enables the resources of a single physical machine to be divided between distinct, predefined logical machines called \"logical partitions\". Each logical partition is a domain of execution, and is considered to be a subject capable of running a conventional system control program (SCP) such as z/OS™, z/VM™, z/VSE, z/TPF™, or Linux for System z. These operating systems run unmodified in a PR/SM partition.." }, "subcategory": "Virtualisation" }, { "cert_id": "BSI-DSZ-CC-1160-2021", "product": "PR/SM for IBM z15 T02 and IBM LinuxONE III LT2 Systems, Driver Level D41C with Bundle Level H13/S21b", "vendor": "IBM Corporation", "certification_date": "2021-04-21", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Virtualisierung/1160.html", "enhanced": { "product": "PR/SM for IBM z15 T02 and IBM LinuxONE III LT2 Systems, Driver Level D41C with Bundle Level H13/S21b", "applicant": "IBM Corporation 2455 South Road, P329 Poughkeepsie NY 12601 USA", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL5,ALC_FLR.3,ALC_TAT.3,ATE_FUN.2,AVA_VAN.5", "certification_date": "2021-04-21", "expiration_date": "2026-04-20", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1160a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1160b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1160c_pdf.pdf?__blob=publicationFile&v=1", "description": "PR/SM is a hardware facility running on IBM z15 and IBM LinuxONE III systems that enables the resources of a single physical machine to be divided between distinct, predefined logical machines called \"logical partitions\". Each logical partition is a domain of execution, and is considered to be a subject capable of running a conventional system control program (SCP) such as z/OS™, z/VM™, z/VSE, z/TPF™, or Linux for System z. These operating systems run unmodified in a PR/SM partition." }, "subcategory": "Virtualisation" }, { "cert_id": "BSI-DSZ-CC-1265-2026", "product": "Insurance Security Token Server (ISTS), Version 2.1", "vendor": "GDV Dienstleistungs-GmbH", "certification_date": "2026-02-10", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1265.html", "enhanced": { "product": "Insurance Security Token Server (ISTS), Version 2.1", "applicant": "GDV Dienstleistungs-GmbH Frankenstraße 18 20097 Hamburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL2", "certification_date": "2026-02-10", "expiration_date": "2031-02-09", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1265a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1265b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1265c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is a Security Token Service (STS). It has been implemented as a pure software application and due to the field of operation in the context of insurance it is further referenced as Insurance Security Token Service (ISTS). The software application provides software-based security tokens used for authentication purposes of the Trusted German Insurance Cloud (TGIC) web services. In addition, the TOE provides the possibility to validate and to cancel the issued tokens. Further, the security features of the TOE comprise the functionality Security Audit, Identification and Authentication, whereas some authentication mechanisms are provided by the operational environment and finally Security Management." }, "subcategory": "Other server applications" }, { "cert_id": "BSI-DSZ-CC-1235-2025", "product": "BlackBerry Unified Endpoint Management (UEM) Server", "vendor": "BlackBerry Ltd.", "certification_date": "2025-09-08", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1235.html", "enhanced": { "product": "BlackBerry Unified Endpoint Management (UEM) Server", "applicant": "BlackBerry Ltd. 2200 University Anenue East Waterloo, Ontariom, N2K 0A7", "evaluation_facility": "atsec information security GmbH", "assurance_level": "EAL4+,ALC_FLR.3", "certification_date": "2025-09-08", "expiration_date": "2030-09-07", "entries": [ { "id": "BSI-DSZ-CC-1235-2025", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1235a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1235b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1235c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE, BlackBerry Unified Endpoint Management (UEM) Server is a software for centralized management of mobile devices such as smartphones and tablets that are used in an organization. The UEM server allows the configuration of mobile devices using profiles as well as monitoring of different device status. Administration of devices (via device agents) is limited to staff agents. The devices may be grouped and assigned to a dedicated staff agent (manager). TOE connection are TLS protected for all staff agents, enrolled device agents and additional components used by the TOE." }, "subcategory": "Other server applications" }, { "cert_id": "BSI-DSZ-CC-1153-V5-2025", "product": "fiskaly Cloud Crypto Service Provider 1.5.0", "vendor": "fiskaly GmbH", "certification_date": "2025-07-03", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1153.html", "enhanced": { "product": "fiskaly Cloud Crypto Service Provider 1.5.0", "applicant": "fiskaly GmbH Mariahilferstraße 36/5 1170 Wien Österreich", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL2,ALC_CMS.3,ALC_LCD.1", "certification_date": "2025-07-03", "expiration_date": "2030-07-02", "entries": [ { "id": "BSI", "description": "fiskaly Cloud Crypto Service Provider is a Cryptographic Service Provider Light (CSPLight) based on the Protection Profile BSI-CC-PP-0113-2020. The Target of Evaluation is intended to be used with products requiring a certified CSPLight and runs on the PrimeKey SEE and Enforcer R2 hardware platform. Compared to the previous version, NTS is now used to synchronise the system time, new interfaces have been added, bugs have been fixed, dependencies have been updated, and a hardware platform has been added." }, { "id": "BSI", "description": "fiskaly Cloud Crypto Service Provider is a Cryptographic Service Provider Light (CSPLight) based on the Protection Profile BSI-CC-PP-0113-2020. The Target of Evaluation is intended to be used with products requiring a certified CSPLight and runs on the PrimeKey SEE hardware platform. Compared to the previous version, NTS is now used to synchronise the system time, new interfaces have been added, bugs have been fixed, and dependencies have been updated." }, { "id": "BSI-DSZ-CC-1153-V3-2021", "description": "iskaly Cloud Crypto Service Provider is a Cryptographic Service Provider Light (CSPLight) implemented in software and based on the Protection Profile BSI-CC-PP-0111-2019 with modules Time Stamp and Audit (BSI-CC-PP-0112-2020) and Clustering (BSI-CC-PP-0113-2020). It is intended to be used with products requiring a certified Cryptographic Service Provider Light and runs on the PrimeKey SEE hardware platform. This update consists of performance improvements and changes to documentation for acceptance and initial Installation procedures regarding the attestation key." }, { "id": "BSI-DSZ-CC-1153-V2-2021 (20-05.2021)", "description": "Crypto Officer" }, { "id": "BSI-DSZ-CC-1153-2021 (26.02.2021)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1153V5a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1153V5b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1153V5c_pdf.pdf?__blob=publicationFile&v=2", "description": "fiskaly Cloud Crypto Service Provider is a Cryptographic Service Provider Light (CSPLight) implemented in software and based on the Protection Profile BSI-CC-PP-0111-2019 with modules Time Stamp and Audit (BSI-CC-PP-0112-2020) and Clustering (BSI-CC-PP-0113-2020). It is intended to be used with products requiring a certified Cryptographic Service Provider Light and runs on the PrimeKey SEE hardware platform." }, "subcategory": "Other server applications" }, { "cert_id": "BSI-DSZ-CC-1139-V4-2024", "product": "D-TRUST Web-Dienst TSE-CSP, Version 1.4.1", "vendor": "D-Trust GmbH", "certification_date": "2024-02-13", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1139.html", "enhanced": { "product": "D-TRUST Web-Dienst TSE-CSP, Version 1.4.1", "applicant": "D-Trust GmbH Kommandantenstraße 18 10969 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_CMS.3", "protection_profile": "Protection Profile Cryptographic Service Provider Light (CSPL) Version 1.0, 12 November 2019, BSI-CC-PP-0111-2019", "certification_date": "2024-02-13", "expiration_date": "2029-02-12", "entries": [ { "id": "BSI-DSZ-CC-1139-V4-2024", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1139-V3-2021 (10.11.2021)", "description": "Certificate" }, { "id": "BSI", "description": "-protocol to be consumed by other applications.\"" }, { "id": "BSI-DSZ-CC-1139-2020 (30.09.2020)", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1139V4a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1139V4b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1139V4c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is a pure software TOE and is provided as a Java application. It provides the functionality of a CSPL according to the Protection Profiles Cryptographic Service Provider Light (BSI-CC-PP-0111-2019) including its PP-modules for Time Stamp Service and Audit (BSI-CC-PP-0112-2020) and Clustering (BSI-CC-PP-0113-2020). The TOE provides its services in form of RESTful service interfaces based on the HTTP/HTTPS-protocol to be consumed by other applications." }, "subcategory": "Other server applications" }, { "cert_id": "BSI-DSZ-CC-1145-2021", "product": "CryptoServer CSPLight Version 1.0.0", "vendor": "Utimaco IS GmbH", "certification_date": "2021-04-01", "category": "Server applications", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1145.html", "enhanced": { "product": "CryptoServer CSPLight Version 1.0.0", "applicant": "Utimaco IS GmbH Germanusstraße 4 52080 Aachen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL2,ALC_CMS.3,ALC_LCD.1", "protection_profile": "Protection Profile Cryptographic Service Provider Light (CSPL) Version 1.0, 12 November 2019, BSI-CC-PP-0111-2019, Common Criteria Protection Profile Configuration Cryptographic Service Provider Light – Time Stamp Service and Audit (PPC-CSPLight-TS-Au) Version 1.0, 26 February 2020, BSI-CC-PP-0112-2020, Common Criteria Protection Profile Configuration Cryptographic Service Provider Light - Time Stamp Service and Audit – Clustering (PPC-CSPLight-TS-Au-Cl), Version 1.0, 26 February 2020, BSI-CC-PP-0113-2020", "certification_date": "2021-04-01", "expiration_date": "2026-03-31", "entries": [ { "id": "BSI-DSZ-CC-1145-2021-MA-01", "description": "Cryptographic Service Provider Light" }, { "id": "Zertifizierungsreport / Certification Report", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1145a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1145b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1145c_pdf.pdf?__blob=publicationFile&v=2", "description": "Utimaco CryptoServer CSPLight is a Cryptographic Service Provider Light (CSPLight) implemented in software and based on the Protection Profile BSI-CC-PP-0111-2019 with modules Time Stamp and Audit (BSI-CC-PP-0112-2020) and Clustering (BSI-CC-PP-0113-2020). It is intended to be used with products requiring a certified Cryptographic Service Provider Light." }, "subcategory": "Other server applications" }, { "cert_id": "BSI-DSZ-CC-1277-2026", "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v15.25.19744.00", "vendor": "Infineon Technologies AG", "certification_date": "2026-02-23", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1277.html", "enhanced": { "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v15.25.19744.00", "applicant": "Infineon Technologies AG Am Campeon 1-15 85579 Neubiberg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_FLR.1,AVA_VAN.4", "protection_profile": "Protection Profile PC Client Specific TPM, TPM Library specification Family “2.0”, Level 0 Revision 1.59, Version: 1.3, Date: 2021-09-29, ANSSI-CC-PP-2021/02", "certification_date": "2026-02-23", "expiration_date": "2031-02-22", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1277a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1277b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1277c_pdf.pdf?__blob=publicationFile&v=2", "description": "The current evaluation is a re-certification, it exclusively comprises the newsoftware versions v15.25.19744.00, including optimizations and bugfixes. The TOE is still based on the TPM Protection Profile for TPM Specification Revision 1.59." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1279-2026", "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v17 and SLB9673_2.0 v27 v17.25.19774.00 and …", "vendor": "Infineon Technologies AG", "certification_date": "2026-02-23", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1279.html", "enhanced": { "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v17 and SLB9673_2.0 v27 v17.25.19774.00 and v27.25.19812.00", "applicant": "Infineon Technologies AG Am Campeon 1-15 85579 Neubiberg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_FLR.1,AVA_VAN.4", "protection_profile": "Protection Profile PC Client Specific TPM, TPM Library specification Family “2.0”, Level 0 Revision 1.59, Version: 1.3, Date: 2021-09-29, ANSSI-CC-PP-2021/02", "certification_date": "2026-02-23", "expiration_date": "2031-02-22", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1279a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1279b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1279c_pdf.pdf?__blob=publicationFile&v=2", "description": "Die vorliegende Evaluierung ist eine Re-Zertifizierung, basierend auf dem TPM Schutzprofil zur TPM Spezifikation Revision 1.59. Es gibt zwei HW-Varianten (mit \"Serial Peripheral Interface\" oder \"Inter Integrated Circuit Interface\"), das Zertifikat umfasst ausschließlich die neuen FW-Versionen v17.25.19774.00 bzw. v27.25.19812.00, mit Optimierungen und Bugfixes." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1278-2026", "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v16 and SLB9673_2.0 v26 v16.25.19774.00 and …", "vendor": "Infineon Technologies AG", "certification_date": "2026-02-23", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1278.html", "enhanced": { "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v16 and SLB9673_2.0 v26 v16.25.19774.00 and v26.25.19812.00", "applicant": "Infineon Technologies AG Am Campeon 1-15 85579 Neubiberg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_FLR.1,AVA_VAN.4", "protection_profile": "Protection Profile PC Client Specific TPM, TPM Library specification Family “2.0”, Level 0 Revision 1.59, Version: 1.3, Date: 2021-09-29, ANSSI-CC-PP-2021/02", "certification_date": "2026-02-23", "expiration_date": "2031-02-22", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1278a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1278b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1278c_pdf.pdf?__blob=publicationFile&v=2", "description": "The current evaluation is a re-certification, based on the TPM Protection Profile for the TPM specification revision 1.59. Two HW-variants exist (with either \"Serial Peripheral Interface\" or \"Inter Integrated Circuit Interface\"), the certificate exclusively comprises the new FW-versions v16.25.19774.00 or v26.25.19812.00, including optimizations and bugfixes." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1136-V5-2026", "product": "NXP Secure Smart Card Controller N7121 with IC Dedicated Software and Crypto Library (R1/R2/R3/R4)", "vendor": "NXP Semiconductors Germany GmbH", "certification_date": "2026-01-30", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1136.html", "enhanced": { "product": "NXP Secure Smart Card Controller N7121 with IC Dedicated Software and Crypto Library (R1/R2/R3/R4)", "applicant": "NXP Semiconductors Germany GmbH Beiersdorfstraße 12 22529 Hamburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL6+,ALC_FLR.1,ASE_TSS.2", "protection_profile": "Security IC Platform Protection Profile with Augmentation Packages Version 1.0, 13 January 2014, BSI-CC-PP-0084-2014", "certification_date": "2026-01-30", "expiration_date": "2031-01-29", "entries": [ { "id": "BSI", "description": "In Comparison to the TOE forerunner, the documentation (Guidance and ST) was changed also a variety of improved Penetration Tests has been conducted, leading to restrictions in the guidance." }, { "id": "BSI", "description": "In Comparison to the TOE forerunner, the documentation was changed also a variety of improved Penetration Tests has been conducted, leading to restrictions in the guidance." }, { "id": "BSI-DSZ-CC-1136-V3-2022-MA-01", "description": "Re-Evaluation with no changes to the certified product was done. Production and development sites involved in the product life cycle were newly audited or integrated by their re-newed site certificate." }, { "id": "BSI-DSZ-CC-1136-V3-2022 (Ausstellungsdatum / Certification Date 07.09.2022, gültig bis / valid until 06.09.2027) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate Der EVG ist der hard-macro Sicherheitscontroller „NXP Secure Smart Card Controller N7121 with IC Dedicated Software and Crypto Library (R1/R2/R3/R4)“, mit spezieller IC-Software, einer zusätzlichen kryptographischen Bibliothek (Crypto Library) und der dazugehörigen Beschreibung des Befehlssatzes und der Nutzung des EVG. Der N7121 bietet hohe Sicherheit für Smartcard Anwendungen, insbesondere für den Einsatz im Banken- und Finanzsektor, im E-Commerce oder in staatlichen Anwendungen. Kundenspezifische eingebettete Software ist nicht Bestandteil des EVG.", "description": "Software" }, { "id": "BSI-DSZ-CC-1136-V2-2022 (Ausstellungsdatum / Certification Date 07.06.2022, gültig bis / valid until 09.02.2026) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate", "description": "Software" }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1136V5a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1136V5b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1136V5c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the hard macro “NXP Secure Smart Card Controller N7121 with IC Dedicated Software and Crypto Library (R1/R2)”, with IC Dedicated Software and an optional crypto Library and documentation describing instruction set and usage of the TOE. N7121 provides high security for smartcard applications and in particular for being used in the banking and finance market, in electronic commerce, or in governmental applications. The TOE does not include a customer-specific Security IC Embedded Software." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "EUCC-3087-2025-12-0001", "product": "Infineon Security Controller IFX_CCI_00000Fh, IFX_CCI_000010h, IFX_CCI_000026h, IFX_CCI_000027h, IFX_CCI_000028h, …", "vendor": "Infineon Technologies AG", "certification_date": "2025-12-19", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1079.html", "enhanced": { "product": "Infineon Security Controller IFX_CCI_00000Fh, IFX_CCI_000010h, IFX_CCI_000026h, IFX_CCI_000027h, IFX_CCI_000028h, IFX_CCI_000029h, IFX_CCI_00002Ah, IFX_CCI_00002Bh, IFX_CCI_00002Ch in the design step G12", "applicant": "Infineon Technologies AG Am Campeon 1-15 85579 Neubiberg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL5+,ADV_IMP.1,ADV_INT.3,ADV_TDS.5,ALC_CMC.5,ALC_DVS.2,ALC_FLR.3,ALC_TAT.3,ATE_FUN.2,ATE_COV.3,AVA_VAN.5,EAL6+,ALC_FLR.3", "protection_profile": "Security IC Platform Protection Profile with Augmentation Packages Version 1.0, 13 January 2014, BSI-CC-PP-0084-2014", "certification_date": "2025-12-19", "expiration_date": "2030-12-18", "entries": [ { "id": "EUCC", "description": "The new process followed the EUCC standard and uses the CC:2022 documents. Additionally, compared to the previous product, the scope of software libraries was changed and modifications were made to various documents." }, { "id": "BSI-DSZ-CC-1079-V5-2024 (Ausstellungsdatum / Certification Date 08.10.2024, gültig bis / valid until 12.07.2028) Zertifizierungsreport / Certification Report", "description": "documentation were conducted." }, { "id": "BSI-DSZ-CC-1079-V4-2023 (Ausstellungsdatum / Certification Date 13.07.2023, gültig bis / valid until 12.07.2028) Zertifizierungsreport / Certification Report", "description": "forerunner, the documentation was changed also a variety of improved Penetration Tests has been conducted, leading to restrictions in the guidance." }, { "id": "BSI-DSZ-CC-1079-V3-2021 (Ausstellungsdatum / Certification Date 12.11.2021, gültig bis / valid until 11.11.2026)", "description": "Software" }, { "id": "BSI-DSZ-CC-1079-V2-2020 (Ausstellungsdatum / Certification Date 16.06.2020, gültig bis / valid until 15.06.2025)", "description": "Software" }, { "id": "BSI-DSZ-CC-1079-2018-MA-01 (Ausstellungsdatum / Certification Date 03.12.2018)", "description": "Prüfergebnis" }, { "id": "BSI-DSZ-CC-1079-2018 (Ausstellungsdatum / Certification Date 26.09.2018, gültig bis / valid until 25.09.2023)", "description": "Certificate" } ], "description": "The TOE provides a real 16-bit CPU-architecture and is compatible to the Intel 80251 architecture. The major components of the core system are the two CPUs (Central Processing Units), the MMU (Memory Management Unit) and MED (Memory Encryption/Decryption Unit). The dual interface controller is able to communicate using either the contact based or the contactless interface. This TOE is intended to be used in smart cards for particular security relevant applications and as a developing platform for smart card operating systems. The term smartcard embedded software is used in the following for all operating systems and applications stored and executed on the TOE. The TOE is the platform for the smartcard embedded software. Depending on the blocking configuration a product can have e.g. different user available memory sizes and can come with or without individual accessible cryptographic coprocessors. All products are identical in regard to module design, layout and footprint." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-0827-V10-2025", "product": "Infineon Technologies Security Controller M9905 A11 with optional ACL v2.07.003 and v2.09.002", "vendor": "Infineon Technologies AG", "certification_date": "2025-11-04", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/0827.html", "enhanced": { "product": "Infineon Technologies Security Controller M9905 A11 with optional ACL v2.07.003 and v2.09.002", "applicant": "Infineon Technologies AG Melli-Beese-Str. 9 86159 Augsburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL 5+,ALC_DVS.2,AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile, Version 1.0, 15 June 2007, BSI-CC-PP-0035-2007", "certification_date": "2025-11-04", "expiration_date": "2030-11-03", "entries": [ { "id": "BSI-DSZ-CC-0827-V10-2025", "description": "In comparison to the TOE forerunner, the CC version has been updated to version CC-2022. Moreover, the derivates M9900 A22/C22/D22/G11 and M9906 A11 were removed from the certification scope, and the scope of cryptographic functions has been reduced." }, { "id": "BSI-DSZ-CC-0827-V9-2024", "description": "In comparison to the TOE forerunner changes were conducted in TOE documentation (guidance), and the certification scope has been reduced." }, { "id": "BSI-DSZ-CC-0827-V8-2020 (Ausstellungsdatum / Certification Date 06.07.2020, gültig bis / valid until 05.07.2025)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-0827-V7-2018 (Ausstellungsdatum / Certification Date 14.09.2018, gültig bis / valid until 13.09.2023)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-0827-V6-2017 (Ausstellungsdatum / Certification Date 02.11.2017, gültig bis / valid until 01.11.2022)", "description": "forerunner, the changes comprise the addition of new software library versions and change of the respective guidance documentations." }, { "id": "BSI", "description": "design step. Furthermore, adjustments and changes in guidance documentations apply." }, { "id": "BSI-DSZ-CC-0827-V4-2016 (Ausstellungsdatum / Certification Date 23.11.2016, gültig bis / valid until 22.11.2021)", "description": "The changes, compared to the preceding certification, consist of addition of a new configuration as well as addition of optional software libraries." }, { "id": "BSI-DSZ-CC-0827-V3-2015 (Ausstellungsdatum / Certification Date 03.11.2015, gültig bis / valid until 02.11.2020)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0827-V2-2014 (30.04.2014) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target", "description": "in Taiwan." }, { "id": "BSI-DSZ-CC-0827-2013-MA-01 (19.06.2013)", "description": "dedicated software" }, { "id": "BSI", "description": "Security Target" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte08/0827V10c_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte08/0827V10b_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is Infineon smart card IC (Security Controller) M9900 A21 with optional Software Libraries RSA2048 v1.03.006 – RSA4096 v1.03.006 – EC v1.03.006 – Toolbox v1.03.006 – FTL v1.01.0008 and with specific IC dedicated software. The TOE provides a real 32-bit CPU-architecture and is compatible to the ARMv7-M instruction set. The major components of the core system are the 32-bit CPU (Central Processing Unit), the Cache system, the MPU (Memory Protection Unit) and MED (Memory Encryption/Decryption Unit. The TOE consists of the hardware part, the firmware parts and the software parts. The software parts are differentiated into: the cryptographic libraries RSA and EC and the supporting libraries Toolbox, Base and FTL. RSA, EC, Toolbox, and FTL provide certain functionality to the Smartcard Embedded Software. This TOE is intended to be used in smart cards for particularly security relevant applications and for its previous use as developing platform for smart card operating systems. The term Smartcard Embedded Software is used in the following for all operating systems and applications stored and executed on the TOE. The TOE is the platform for the Smartcard Embedded Software." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1252-V2-2025", "product": "IFX_CCI_00007Ch/88h/89h/8Ah/8Bh G12 with firmware version 80.512.03.0 or 80.512.03.1, optional Crypto Suite 5.02.002 and user …", "vendor": "Infineon Technologies AG", "certification_date": "2025-10-01", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1252.html", "enhanced": { "product": "IFX_CCI_00007Ch/88h/89h/8Ah/8Bh G12 with firmware version 80.512.03.0 or 80.512.03.1, optional Crypto Suite 5.02.002 and user guidance documents", "applicant": "Infineon Technologies AG Melli-Beese-Str. 9 86159 Augsburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL6+,ALC_FLR.1,ATE_SDP.1", "protection_profile": "Security IC Platform Protection Profile with Augmentation Packages Version 1.0, 13 January 2014, BSI-CC-PP-0084-2014", "certification_date": "2025-10-01", "expiration_date": "2030-09-30", "entries": [ { "id": "BSI", "description": "The Target of Evaluation (TOE) is the Infineon Security Controller FX_CCI_00007Ch/88h/89h/8Ah/8Bh G12 with firmware version 80.512.03.0 oder 80.512.03.1, optional CryptoSuite 5.02.002 and user guidance documents. The IC is based on a 32-bit ARMv8-M CPU architecture. It is intended to be used in smart cards for particular security relevant applications and as a developing platform for smart card operating systems." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1252V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1252V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1252V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the Infineon Security Controller IFX_CCI_00007Ch/88h/89h/8Ah G12 with firmware version 80.512.03.0 or 80.512.03.1, optional Crypto Suite 5.02.002 and user guidance documents. The IC is based on a 32-bit ARMv8-M CPU architecture. It is intended to be used in smart cards for particular security relevant applications and as a developing platform for smart card operating systems." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1149-V4-2025", "product": "NXP Secure Smart Card Controller N7122 with IC Dedicated Software and Crypto Library (R1/R2/R3)", "vendor": "NXP Semiconductors Germany GmbH", "certification_date": "2025-09-05", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1149.html", "enhanced": { "product": "NXP Secure Smart Card Controller N7122 with IC Dedicated Software and Crypto Library (R1/R2/R3)", "applicant": "NXP Semiconductors Germany GmbH Beiersdorfstraße 12 22529 Hamburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL6+,ALC_FLR.1,ASE_TSS.2", "protection_profile": "Security IC Platform Protection Profile with Augmentation Packages Version 1.0, 13 January 2014, BSI-CC-PP-0084-2014", "certification_date": "2025-09-05", "expiration_date": "2030-09-04", "entries": [ { "id": "BSI-DSZ-CC-1149-V4-2025", "description": "In Comparison to the TOE forerunner, the documentation (Guidance and ST) was changed also a variety of improved Penetration Tests has been conducted, leading to restrictions in the guidance." }, { "id": "BSI-DSZ-CC-1149-V3-2023", "description": "In Comparison to the TOE forerunner, the documentation was changed also a variety of improved Penetration Tests has been conducted, leading to restrictions in the guidance." } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1149V4a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1149V4b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1149V4c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the hard macro “NXP Secure Smart Card Controller N7122 with IC Dedicated Software and Crypto Library (R1)”, or in short “N7122”, and comprises of hardware, software (security IC Dedicated Software), and documentation. The N7122 is self-sufficient at the boundary of the hard macro and can be instantiated within packaged products. The TOE does not include a customer-specific Security IC Embedded Software, however, it provides secure mechanisms for customers to download and execute their code on the TOE. The IC Dedicated Software comprises IC Dedicated Test Software for test purposes and IC Dedicated Support Software. The IC Dedicated Support Software consists of the Boot Software, which controls the boot process of the hardware platform, and a Firmware Interface." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1178-V5-2025", "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v16 and SLB9673_2.0 v26 v16.10.16488.00, …", "vendor": "Infineon Technologies AG", "certification_date": "2025-08-26", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1178_V5.html", "enhanced": { "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v16 and SLB9673_2.0 v26 v16.10.16488.00, v16.12.16858.00, v16.13.17733.00, v26.10.16688.00 and v26.13.17770.00", "applicant": "Infineon Technologies AG Melli-Beese-Str. 9 86159 Augsburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_FLR.1,AVA_VAN.4", "protection_profile": "None", "certification_date": "2025-08-26", "expiration_date": "2028-07-31", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1178V5a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1178V5b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1178V5c_pdf.pdf?__blob=publicationFile&v=3", "description": "The TOE is an integrated circuit and software platform that provides computer manufacturers with the core components of a Trusted Computing Platform. - The present certification is the fourth re-certification. The scope of the security functionalities is reduced to FW upgrade." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1179-V5-2025", "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v17 and SLB9673_2.0 v27 v17.10.16488.00, …", "vendor": "Infineon Technologies AG", "certification_date": "2025-08-26", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_IC_Cryptolib/1179_V5.html", "enhanced": { "product": "Infineon Technologies AG OPTIGA™ Trusted Platform Module SLB9672_2.0 v17 and SLB9673_2.0 v27 v17.10.16488.00, v17.12.16858.00, v17.13.17733.00, v27.10.16688.00, and v27.13.17770.00", "applicant": "Infineon Technologies AG Melli-Beese-Str. 9 86159 Augsburg", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_FLR.1,AVA_VAN.4", "protection_profile": "None", "certification_date": "2025-08-26", "expiration_date": "2028-07-26", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1179V5a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1179V5b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1179V5c_pdf.pdf?__blob=publicationFile&v=3", "description": "The TOE is an integrated circuit and software platform that provides computer manufacturers with the core components of a Trusted Computing Platform. - The present certification is the fourth re-certification. The scope of the security functionalities is reduced to FW upgrade." }, "subcategory": "ICs, Cryptolib" }, { "cert_id": "BSI-DSZ-CC-1264-2026", "product": "TCOS CSP Module Version 2.0 Release 1/P71", "vendor": "Deutsche Telekom Security GmbH", "certification_date": "2026-01-14", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_Betriebssysteme_Anwendungen/1264.html", "enhanced": { "product": "TCOS CSP Module Version 2.0 Release 1/P71", "applicant": "Deutsche Telekom Security GmbH Koblenzer Straße 87-93 57072 Siegen", "evaluation_facility": "SRC Security Research & Consulting GmbH", "assurance_level": "EAL4+,ALC_DVS.2,AVA_VAN.5", "protection_profile": "Cryptographic Service Provider (CSP) Version 0.9.8, 19 February 2019, BSI-CC-PP-0104-2019Protection Profile Configuration Cryptographic Service Provider – Time Stamp Service and Audit (PPC-CSP-TS-Au) Version 0.9.5, 8 April 2019, BSI-CC-PP-0107-2019", "certification_date": "2026-01-14", "expiration_date": "2031-01-13", "entries": [ { "id": "Cryptographic Service Provider (", "description": ") Version 0.9.8, 19 February 2019" }, { "id": "Protection Profile Configuration Cryptographic Service Provider – Time Stamp Service and Audit (PPC-", "description": "-Au) Version 0.9.5, 8 April 2019" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1264a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1264b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1264c_pdf.pdf?__blob=publicationFile&v=3", "description": "The Target of Evaluation (TOE) is a Cryptographic Service Provider (CSP) representing a smart card with contact based interfaces programmed according to the Protection Profile BSI-CC-PP-0104-2019 in conjunction with the Timestamp and Audit functionality Protection Profile BSI-CC-PP-0107-2019." }, "subcategory": "Operating systems and applications" }, { "cert_id": "BSI-DSZ-CC-1119-2023", "product": "cryptovision CSP – Java Card applet providing Cryptographic Service Provider version 2.0", "vendor": "cv cryptovision GmbH", "certification_date": "2023-01-24", "category": "Smart Cards and similar devices", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartCards_Betriebssysteme_Anwendungen/1119.html", "enhanced": { "product": "cryptovision CSP – Java Card applet providing Cryptographic Service Provider version 2.0", "applicant": "cv cryptovision GmbH Munscheidstr. 14 45886 Gelsenkirchen Deutschland", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL4+,ALC_DVS.2,AVA_VAN.5", "protection_profile": "Cryptographic Service Provider (CSP) Version 0.9.8, 19 February 2019, BSI-CC-PP-0104-2019Protection Profile Configuration Cryptographic Service Provider – Time Stamp Service and Audit (PPC-CSP-TS-Au) Version 0.9.5, 8 April 2019, BSI-CC-PP-0107-2019", "certification_date": "2023-01-24", "expiration_date": "2028-01-23", "entries": [ { "id": "Cryptographic Service Provider (", "description": ") Version 0.9.8, 19 February 2019" }, { "id": "Protection Profile Configuration Cryptographic Service Provider – Time Stamp Service and Audit (PPC-", "description": "-Au) Version 0.9.5, 8 April 2019" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1119a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1119b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1119c_pdf.pdf?__blob=publicationFile&v=2", "description": "The composite TOE is named cryptovision CSP – Java Card applet providing Cryptographic Service Provider and was evaluated in version 2.0. It is based on a Java Card and provides cryptographic services according to the respective CSP protection profile in a specific PP configuration \"Timestamp and Auditing\"." }, "subcategory": "Operating systems and applications" }, { "cert_id": "BSI-DSZ-CC-1045-V2-2023", "product": "Qualcomm Secure Processing Unit SPU230 in SDM855 SoC with MCP version spss.a1.1.2_00100", "vendor": "Qualcomm Technologies Inc.", "certification_date": "2023-03-03", "category": "System on a chip (SOC)", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/System_on_a_Chip_SOC/1045.html", "enhanced": { "product": "Qualcomm Secure Processing Unit SPU230 in SDM855 SoC with MCP version spss.a1.1.2_00100", "applicant": "Qualcomm Technologies Inc. 5775 Morehouse drive San Diego, CA 92121 USA", "evaluation_facility": "T-Systems International GmbH atsec information security GmbH", "assurance_level": "EAL4+; ALC_DVS.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile with Augmentation Packages Version 1.0, 13 January 2014, BSI-CC-PP-0084-2014", "certification_date": "2023-03-03", "expiration_date": "2028-03-02", "entries": [ { "id": "BSI-DSZ-CC-1045-V2-2023 (Ausstellungsdatum / Certification Date 03.03.2023, gültig bis / valid until 02.03.2028) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate", "description": "has been extended by additional cryptographic functions." }, { "id": "BSI", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1045V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1045V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1045V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE is the “Qualcomm Secure Processor Unit SPU230 embedded in the SDM855 host SoC combined with a DDR in a PoP (Package on Package) configuration and its corresponding Software and associated documentation. The hardware is a hard macro (sub-unit of a System-on-Chip which is already synthesized, placed and routed, delivered as GDS file) and the special packaging. The TOE is integrated into the SDM855 SoC by the SoC integrator (Qualcomm). The firmware and software comprise the operating system of the Secure Processor Unit and the software API providing cryptographic services to SPU applications. The SPU applications can be developed by the SPU application developer using the software API. The TOE can be used for multiple applications that require a high level of security. Examples are as follows: User authentication and password storage, Content protection, Payment, Subscriber Identity Module (SIM), Storage and management of digital identities, Secure key storage, Root of trust, Storage of sensitive user data." } }, { "cert_id": "BSI-DSZ-CC-1096-V2-2026", "product": "Arbit Data Diode 10 GbE v1.00", "vendor": "Arbit Cyber Defence Systems ApS", "certification_date": "2026-02-19", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/1096.html", "enhanced": { "product": "Arbit Data Diode 10 GbE v1.00", "applicant": "Arbit Cyber Defence Systems ApS Immerkær 54 DK-2650 Hvidovre Denmark", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL7+,ALC_FLR.1", "certification_date": "2026-02-19", "expiration_date": "2031-02-18", "entries": [ { "id": "BSI", "description": "The target of Evaluation is a opto-eletronically working one-way data diodefor optical information. This re-certification serves the purpose to update the certificate's validity period." }, { "id": "BSI-DSZ-CC-1096-2021", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1096V2a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1096V2b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1096V2c_pdf.pdf?__blob=publicationFile&v=2", "description": "The target of Evaluation is a opto-eletronically working one-way data diode for optical information." } }, { "cert_id": "BSI-DSZ-CC-1253-2025", "product": "WEYTEC distributionPLATFORM (WDP MX)", "vendor": "WEY Group AG", "certification_date": "2025-07-28", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/1253.html", "enhanced": { "product": "WEYTEC distributionPLATFORM (WDP MX)", "applicant": "WEY Group AG Dorfstraße 57 CH-8103 Unterengstringen Schweiz", "evaluation_facility": "secuvera GmbH", "assurance_level": "EAL2", "certification_date": "2025-07-28", "expiration_date": "2030-07-27", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1253a_pdf.pdf?__blob=publicationFile&v=2", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1253b_pdf.pdf?__blob=publicationFile&v=2", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1253c_pdf.pdf?__blob=publicationFile&v=2", "description": "The TOE belongs to a smart and secure KVM (keyboard, video, mouse) solution that provides users with flexible access to computers and information sources – even across multiple sites." } }, { "cert_id": "BSI-DSZ-CC-0496-V2-2025", "product": "MAWIS-Security Rev. 4.0", "vendor": "MOBA Mobile Automation AG", "certification_date": "2025-01-24", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/0496.html", "enhanced": { "product": "MAWIS-Security Rev. 4.0", "applicant": "MOBA Mobile Automation AG Kapellenstraße 15 65555 Limburg", "evaluation_facility": "Deutsches Forschungszentrum für Künstliche Intelligenz GmbH", "assurance_level": "EAL1,ASE_SPD.1,ASE_REQ.2,ASE_OBJ.2", "protection_profile": "Protection Profile Waste Bin Identification Systems (WBIS-PP), Version 1.04, 27 May 2004, BSI-PP-0010-2004", "certification_date": "2025-01-24", "expiration_date": "2030-01-23", "entries": [ { "id": "BSI-DSZ-CC-0496-V2-2025", "description": "The TOE is evaluated and certified conform to the „Protection Profile Waste Bin Identification System (WBIS-PP), Version 1.04“. Waste Bin Identification Systems (WBIS) in the sense of this document are systems, which allow to identify waste bins by an ID-tag (e.g. an electronic chip, which is referred to as transponder) in order to determine how often a specific waste bin has been cleared. Note that this type of system does not identify the waste directly but the waste bin, which contains the waste for disposal. The TOE with its security functionality ensures validity, integrity and completeness of the protected data during storage in the vehicle and Transmission between physically separated parts of the TOE." }, { "id": "BSI-DSZ-CC-0496-2017" } ], "description": "The TOE is the Waste Bin Identification Systems (WBIS) MAWIS-Security Rev 4.0. The TOE is evaluated and certified conform to the „Protection Profile Waste Bin Identification System (WBIS-PP), Version 1.04“. Waste Bin Identification Systems (WBIS) in the sense of this document are systems, which allow to identify waste bins by an ID-tag (e.g. an electronic chip, which is referred to as transponder) in order to determine how often a specific waste bin has been cleared. Note that this type of system does not identify the waste directly but the waste bin, which contains the waste for disposal. The TOE with its security functionality ensures validity, integrity and completeness of the protected data during storage in the vehicle and Transmission between physically separated parts of the TOE." } }, { "cert_id": "BSI-DSZ-CC-1043-V2-2023", "product": "DERMALOG Fingerprint PAD Kit ZF1/F1 ZF1, Part No. 9014-0005-02, F1, Part No. 9024-0002-01, DermalogBPZF1Plugin, V. …", "vendor": "DERMALOG Identification Systems GmbH", "certification_date": "2023-12-21", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/1043.html", "enhanced": { "product": "DERMALOG Fingerprint PAD Kit ZF1/F1 ZF1, Part No. 9014-0005-02, F1, Part No. 9024-0002-01, DermalogBPZF1Plugin, V. 1.11.3.2306, DermalogFakeFingerDetectionZF1Plugin, V. 1.7.1.2250, DermalogAuditLogger, V. 1.1.3.1827", "applicant": "DERMALOG Identification Systems GmbH Mittelweg 120 20148 Hamburg Deutschland", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "ADV_ARC.1,ADV_FSP.2,ADV_TDS.1,AGD_OPE.1,AGD_PRE.1,ALC_CMC.2,ALC_CMS.2,ALC_DEL.1,ALC_FLR.1,ASE_CCL.1,ASE_ECD.1,ASE_INT.1,ASE_OBJ.2,ASE_REQ.2,ASE_SPD.1,ASE_TSS.1,ATE_COV.1,ATE_FUN.1,ATE_IND.2", "protection_profile": "Fingerprint Spoof Detection Protection Profile based on Organisational Security Policies (FSDPP_OSP), Version 1.7, 27 November 2009, BSI-CC-PP-0062-2010", "certification_date": "2023-12-21", "expiration_date": "2028-12-20", "entries": [ { "id": "BSI-DSZ-CC-1043-V2-2023 (21.12.2023)", "description": "Certificate" }, { "id": "BSI-DSZ-CC-1043-2018-MA-01 (12.09.2019) Zertifizierungsreport / Certification Report", "description": "Certification Report" }, { "id": "BSI-DSZ-CC-1043-2018", "description": "Certificat" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1043V2a_pdf.pdf?__blob=publicationFile&v=3", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1043V2b_pdf.pdf?__blob=publicationFile&v=2", "description": "The Target of Evaluation (TOE) is the DERMALOG Fingerprint PAD Kit ZF1/F1 consisting of fingerprint sensors (ZF1, Part-No. 9014-0005-02; F1, Part-No. 9024-0002-01) and PC software (DermalogBPZF1Plugin, V 1.2.5.1817, DermalogFakeFingerDetectionZF1Plugin, V 1.3.1.1817, DermalogAuditLogger, V 1.0.1.1803). Its core functionality is classifying whether a finger that is presented to the sensor, is actually a real finger presented by a genuine user or whether an artefact is presented (a so-called artefact presentation or presentation attack). The TOE exists in two different HW configurations: one uses the ZF1 as the sensor device; the other uses the F1 as the sensor device. Both sensors utilize exactly the same internal technology and only differ by the case and one LED for user interaction. Furthermore both sensors use the same TOE SW parts." } }, { "cert_id": "BSI-DSZ-CC-1042-V2-2023", "product": "DERMALOG Fingerprint PAD Kit LF10", "vendor": "DERMALOG Identification Systems GmbH", "certification_date": "2023-03-03", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/1042_1042V2.html", "enhanced": { "product": "DERMALOG Fingerprint PAD Kit LF10", "applicant": "DERMALOG Identification Systems GmbH Mittelweg 120 20148 Hamburg Deutschland", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "ATE_IND.2,ATE_FUN.1,ATE_COV.1,ASE_TSS.1,ASE_SPD.1,ASE_REQ.2,ASE_OBJ.2,ASE_INT.1,ASE_ECD.1,ASE_CCL.1,ALC_FLR.1,ALC_DEL.1,ALC_CMS.2,ALC_CMC.2,AGD_PRE.1,AGD_OPE.1,ADV_TDS.1,ADV_FSP.2,ADV_ARC.1", "protection_profile": "Fingerprint Spoof Detection Protection Profile based on Organisational Security Policies (FSDPP_OSP), Version 1.7, 27 November 2009, BSI-CC-PP-0062-2010", "certification_date": "2023-03-03", "expiration_date": "2028-03-02", "entries": [ { "id": "BSI-DSZ-CC-1042-V2-2023", "description": "presentation attack" }, { "id": "BSI-DSZ-CC-1042-2020-MA-01", "description": "Certification Report" }, { "id": "BSI-DSZ-CC-1042-2020", "description": "Certificate" } ], "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1042V2a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1042V2b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1042V2c_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of Evaluation (TOE) is the DERMALOG Fingerprint PAD Kit LF10 consisting of the fingerprint sensor (LF10, Part-No. 8004-0009-00) and PC software (Dermalog BPLF10Plugin, V 1.3.8.1935, DermalogFakeFingerDetectionLF10Plugin, V 1.3.3.1925, DermalogFourprintSegmentation2, V 1.14.0.1919, DermalogAuditLogger, V 1.1.3.1827). Its core functionality is classifying whether a finger that is presented to the sensor, is actually a real finger presented by a genuine user or whether an artefact is presented (a so-called artefact presentation or presentation attack). The TOE is able to record images of up to four fingerprints that are presented to the sensor at the same time." } }, { "cert_id": "BSI-DSZ-CC-1013-V2-2022", "product": "IMELO-Secure, Version 1.1", "vendor": "SSI Schäfer Plastics GmbH", "certification_date": "2022-12-14", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/1013_1013V2.html", "enhanced": { "product": "IMELO-Secure, Version 1.1", "applicant": "SSI Schäfer Plastics GmbH Kalkofen 6 58638 Iserlohn", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL1,ASE_SPD.1,ASE_REQ.2,ASE_OBJ.2", "protection_profile": "Protection Profile Waste Bin Identification Systems (WBIS-PP), Version 1.04, 27 May 2004, BSI-PP-0010-2004", "certification_date": "2022-12-14", "expiration_date": "2027-12-13", "entries": [ { "id": "BSI-DSZ-CC-1013-V2-2022", "description": "Environment." }, { "id": "BSI-DSZ-CC.1013-2017", "description": "Security Target" } ], "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1013V2b_pdf.pdf?__blob=publicationFile&v=3", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1013V2c_pdf.pdf?__blob=publicationFile&v=3", "description": "The TOE is referred to as IMELO-Secure 1.0. It is a waste bin identification system developed by Institut für Entsorgung und Umwelttechnik GmbH. The TOE is evaluated and certified conform to the PP „Protection Profile Waste Bin Identification System (WBIS-PP), Version 1.04“. Waste bin identification systems (WBIS) in the sense of this document are systems, which allow to identify waste bins by an ID-tag (e.g. an electronic chip which is referred to as transponder) in order to determine how often a specific waste bin has been cleared. Note that this type of system does not identify the waste directly but the waste bin, which contains the waste for disposal." } }, { "cert_id": "BSI-DSZ-CC-0862-V2-2021", "product": "POLYAS CORE Version 2.5.0", "vendor": "POLYAS GmbH", "certification_date": "2021-06-25", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/0862_0862V2.html", "enhanced": { "product": "POLYAS CORE Version 2.5.0", "applicant": "POLYAS GmbH Marie-Calm-Straße 1-5 34131 Kassel", "evaluation_facility": "Deutsches Forschungszentrum für Künstliche Intelligenz GmbH", "assurance_level": "EAL2,ALC_LCD.1,ALC_DVS.1,ALC_CMS.3,ALC_CMC.3", "protection_profile": "Common Criteria Schutzprofil für Basissatz von Sicherheitsanforderungen an Online-Wahlprodukte, Version 1.0, 18. April 2008, BSI-CC-PP-0037-2008", "certification_date": "2021-06-25", "expiration_date": "2026-06-24", "entries": [ { "id": "BSI-DSZ-CC-0862-V2-2021-MA-02 (Ausstellungsdatum / Certification Date 11.03.2022)", "description": "security functionality is unchanged. Configuration management procedures require a change of the product version from version 2.5.3 to version 2.5.4." }, { "id": "BSI-DSZ-CC-0862-V2-2021-MA-01 (Ausstellungsdatum / Certification Date 24.11.2021)", "description": "Security Target" }, { "id": "BSI-DSZ-CC-0862-V2-2021 (Ausstellungsdatum / Certification Date 25.06.2021, gültig bis / valid until 24.06.2026) Zertifizierungsreport / Certification Report", "description": "This re-certification was conducted, because the validity of the previous certificate expired and to include minor product changes in the certified scope." }, { "id": "BSI-DSZ-CC-0862-2016 (Ausstellungsdatum / Certification Date 10.03.2016, gültig bis / valid until 09.03.2021)", "description": "Security Target" } ], "description": "The Target of Evaluation (TOE) is the product for conducting online elections (in short: online voting product) POLYAS CORE Version 2.2.3. Corresponding to the security requirements from the claimed Protection Profile BSI-CC-PP-0037, POLYAS CORE V2.2.3 is sufficient to securely implement elections in associations, for boards and bodies such as at universities, within the scope of education and research, and in particular other non-political elections with low attack potential. The functional and security features of the TOE relate only to the polling phase incl. tallying, but not to the election preparation (such as drawing up the electoral register, for example) or to the archiving of the polling and result data. A client-sided TOE at the endpoint device does not exist. The complete range of functions is provided by the server-sided TOE." } }, { "cert_id": "BSI-DSZ-CC-1106-2021", "product": "BDrive Windows Client, Version 3.50.89.4", "vendor": "Bundesdruckerei GmbH", "certification_date": "2021-05-31", "category": "Other products", "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Sonstiges/1106.html", "enhanced": { "product": "BDrive Windows Client, Version 3.50.89.4", "applicant": "Bundesdruckerei GmbH Kommandantenstraße 18 10969 Berlin", "evaluation_facility": "TÜV Informationstechnik GmbH", "assurance_level": "EAL2", "certification_date": "2021-05-31", "expiration_date": "2026-05-30", "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1106a_pdf.pdf?__blob=publicationFile&v=1", "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1106b_pdf.pdf?__blob=publicationFile&v=1", "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1106c_pdf.pdf?__blob=publicationFile&v=1", "description": "The Target of Evaluation (TOE) defined as Bdrive Windows Client version 3.50.89.4 is the client-side solution for storing and sharing of files of all types, developed to provide a very secure alternative solution of cloud sharing for company data. The TOE is a software component, which implements the client-side functions of the Bdrive System for the Windows platform. It implements a secure, distributed file storage. Each consumer device of a user receives a unique authentication certificate, and files are shared between all devices of the user. Optionally, a user has the possibility to share files and folders with several other users in the same company. The storage scheme realizes forward error correction (erase coding) together with cryptographic means for encryption and authentication." } } ] } }, "IN": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "IN", "timestamp": "2026-03-30T12:06:55.563143", "lists": { "CERTIFIED": [ { "serial_number": "1", "product": "C-DOT Compact Encryption Module (CEM)- an IP Encryptor running CEM1_1_1.23_1 Software", "sponsor": "Centre for Development of Telematics (C-DOT), India", "developer": "Centre for Development of Telematics (C-DOT), India", "level": "EAL 3", "certification_date": "2025-11-03", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2025-12/CR-CDOT-CEM_EAL3_0.pdf", "report_name": "CR-CDOT-CEM_EAL3_0.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2025-12/3.CDOT-FT-ST-IPES_CEM-v07_0.pdf", "target_name": "3.CDOT-FT-ST-IPES_CEM-v07_0.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2025-12/CC%20Certificate-%20CDOT%20CEM%20IP%20Encryptor%20EAL%203_1.pdf", "cert_name": "CC Certificate- CDOT CEM IP Encryptor EAL 3_1.pdf" }, { "serial_number": "2", "product": "Array Networks AppVelocity 10_7_2_5", "sponsor": "Array Networks, Inc, 1371 McCarthy Blvd., Milpitas, CA 95035", "developer": "Array Networks, Inc, 1371 McCarthy Blvd., Milpitas, CA 95035", "level": "EAL2", "certification_date": "2025-02-06", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2025-02/Certification%20Report%20IC3SMUM01ANIPLEAL205240042CR.pdf", "report_name": "Certification Report IC3SMUM01ANIPLEAL205240042CR.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2025-02/Security%20Target%20v1.2.pdf", "target_name": "Security Target v1.2.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2025-02/AppVelocityCertificate.pdf", "cert_name": "AppVelocityCertificate.pdf" }, { "serial_number": "3", "product": "BitRaser Drive Eraser V3.0.0.6", "sponsor": "Stellar Information Technology Private Ltd.", "developer": "Stellar Information Technology Private Ltd.", "level": "EAL2", "certification_date": "2023-12-11", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-12/CR-BitRaser_Drive_Eraser_3_0_0_6_EAL2-version-1.0.pdf", "report_name": "CR-BitRaser_Drive_Eraser_3_0_0_6_EAL2-version-1.0.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-12/Security-Target-v11.pdf", "target_name": "Security-Target-v11.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-12/BitRaser_Driver_CC_Certificate.pdf", "cert_name": "BitRaser_Driver_CC_Certificate.pdf" }, { "serial_number": "4", "product": "ARCON PAM Version 4.8 comprising of Vault Server 4.8 and Application Server 4.8", "sponsor": "ARCON TechSolutions Pvt. Ltd.", "developer": "ARCON TechSolutions Pvt. Ltd.", "level": "EAL2+ ALC_DVS.1", "certification_date": "2023-09-26", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-09/Certification-report.pdf", "report_name": "Certification-report.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-09/ARCON-PAM-Security-Target-1.6.pdf", "target_name": "ARCON-PAM-Security-Target-1.6.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-09/CC-Certificate-ARCON-PAM.pdf", "cert_name": "CC-Certificate-ARCON-PAM.pdf" }, { "serial_number": "5", "product": "Symantec Edge Secure Web Gateway (SWG) with SGOS v7.4", "sponsor": "Symantec Corporation", "developer": "Symantec Corporation", "level": "PP Compliant", "certification_date": "2023-09-25", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-09/CR_SGOS-Version-7.4-Final.pdf", "report_name": "CR_SGOS-Version-7.4-Final.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-09/Symantec-Edge-Secure-Web-Gateway-SWG-with-SGOS_v7.4-Security-Target_v1.0.pdf", "target_name": "Symantec-Edge-Secure-Web-Gateway-SWG-with-SGOS_v7.4-Security-Target_v1.0.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-09/Blue-Coat-ProxySG-v-7.4-certificate-signed.pdf", "cert_name": "Blue-Coat-ProxySG-v-7.4-certificate-signed.pdf" }, { "serial_number": "6", "product": "Scalable Optical Transport Solution FSP 3000 Operating System, version R7 Rel. 21.1.1", "sponsor": "ADVA OPTICAL NETWORKING SE, Germany", "developer": "ADVA OPTICAL NETWORKING SE, Germany", "level": "EAL 2", "certification_date": "2022-10-19", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-01/CR-ADVA-FSP3000R7_%20Rel%2021.1.1%20EAL2%20version%201.0.pdf", "report_name": "CR-ADVA-FSP3000R7_ Rel 21.1.1 EAL2 version 1.0.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-01/FSP_3000_R7_Security_Target-4.0%20%2821.1.1%29.pdf", "target_name": "FSP_3000_R7_Security_Target-4.0 (21.1.1).pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-01/Certificate_FSP_3000R7_Rel.%2021.1.1.pdf", "cert_name": "Certificate_FSP_3000R7_Rel. 21.1.1.pdf" }, { "serial_number": "7", "product": "TJ5500 NMS (Network Management System) and TJ5100 EMS (Element Management System) version 8.1", "sponsor": "Tejas Networks Limited, Bangalore", "developer": "Tejas Networks Limited, Bangalore", "level": "EAL 2", "certification_date": "2022-09-01", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-01/CR-%20TJ15500%20TJ5100%20_EAL2%20version%201.0.pdf", "report_name": "CR- TJ15500 TJ5100 _EAL2 version 1.0.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-01/Tejas_ST_TJ5500-TJ5100_%20V1.9_290422_Final.pdf", "target_name": "Tejas_ST_TJ5500-TJ5100_ V1.9_290422_Final.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-01/IC3S%20Certificate%20TJ5500%20TJ5100.pdf", "cert_name": "IC3S Certificate TJ5500 TJ5100.pdf" }, { "serial_number": "8", "product": "Composite system comprised of ECI LightSOFT Software, STMS Software and Apollo Software", "sponsor": "ECI Telecom Ltd. 30 Hasivim Street PetachTikvah, ISRAEL", "developer": "ECI Telecom Ltd. 30 Hasivim Street PetachTikvah, ISRAEL", "level": "EAL 2", "certification_date": "2022-04-13", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-04/CR-%20ECITL%20EAL2%20version%201.0%20.pdf", "report_name": "CR- ECITL EAL2 version 1.0 .pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-04/ECI%20LightSOFT-STMS-Apollo%20Security%20Target%20v1.3.pdf", "target_name": "ECI LightSOFT-STMS-Apollo Security Target v1.3.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-04/ECI%20CC%20Certificate.pdf", "cert_name": "ECI CC Certificate.pdf" }, { "serial_number": "9", "product": "ECI LightSOFT Software", "sponsor": "ECI Telecom Ltd. 30 Hasivim Street PetachTikvah, ISRAEL", "developer": "ECI Telecom Ltd. 30 Hasivim Street PetachTikvah, ISRAEL", "level": "EAL 2", "certification_date": "2021-09-27", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-ECI-LightSOFT-EMS-NPT_EAL2.pdf", "report_name": "CR-ECI-LightSOFT-EMS-NPT_EAL2.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/ECI%20LightSOFT-EMS-NPT-NPT%20Security%20Target%20v1.3.pdf", "target_name": "ECI LightSOFT-EMS-NPT-NPT Security Target v1.3.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CC_Certificate-ECILightSOFT.pdf", "cert_name": "CC_Certificate-ECILightSOFT.pdf" }, { "serial_number": "10", "product": "Scalable Optical Transport Solution FSP 3000R7 Operating System (CC), Version R7 Rel.19.3.1", "sponsor": "M/s ADVA OPTICAL NETWORKING SE, Munich, Germany", "developer": "M/s ADVA OPTICAL NETWORKING SE, Munich, Germany", "level": "EAL 2", "certification_date": "2021-03-04", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-ADVA-FSP3000R7_%20Rel%2019.3.1%20EAL2%20version%201.0%20.pdf", "report_name": "CR-ADVA-FSP3000R7_ Rel 19.3.1 EAL2 version 1.0 .pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/FSP_3000_R7_Security_Target-3.0%20%2819.3.1%29.pdf", "target_name": "FSP_3000_R7_Security_Target-3.0 (19.3.1).pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CC%20Certificate%20ADVA%20FSP%203000R7%20Rel.19.3.1.pdf", "cert_name": "CC Certificate ADVA FSP 3000R7 Rel.19.3.1.pdf" }, { "serial_number": "11", "product": "Scalable Optical Transport Solution FSP 3000R7 Operating System (CC), Version R7 Rel.17.2.4", "sponsor": "ADVA OPTICAL NETWORKING SE, Munich, Germany", "developer": "ADVA OPTICAL NETWORKING SE, Munich, Germany", "level": "EAL 2", "certification_date": "2021-01-06", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/8.CR-ADVA-FSP3000R7_%20Rel%2017%202%204%20EAL2%20version%201.0.pdf", "report_name": "8.CR-ADVA-FSP3000R7_ Rel 17 2 4 EAL2 version 1.0.pdf", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/2.FSP_3000_R7_Security_Target-2.0%20%2817.2.4%29_20200421.pdf.pdf", "target_name": "2.FSP_3000_R7_Security_Target-2.0 (17.2.4)_20200421.pdf.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CC%20Certificate%20ADVA%20%20FSP%203000R7%20Rel%2017.2.4.pdf", "cert_name": "CC Certificate ADVA FSP 3000R7 Rel 17.2.4.pdf" } ], "ARCHIVED": [ { "serial_number": "1", "product": "TejNOS EN software Version 6.2 and Version 10.0 running on Tejas Networks POTP/PTN Access Systems Model TJ1400 and TJ1600 respectively", "sponsor": "Tejas Networks Limited", "developer": "Tejas Networks Limited", "level": "EAL2+", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Tejas_ST_V1.9.pdf", "target_name": "Tejas_ST_V1.9.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/TejNOS%20EN%20software%20Product%20evaluation%20certificate.pdf", "cert_name": "TejNOS EN software Product evaluation certificate.pdf", "certification_date": "2020-11-27", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Assurance%20Continuity%20Maintenance%20Report%20Tejas.pdf", "report_name": "Assurance Continuity Maintenance Report Tejas.pdf" }, { "serial_number": "2", "product": "CROS-1.8.22-S01 Software running on C-DOT CRAT-100/CRDT-100 Router", "sponsor": "Centre for Development of Telematics (C-DOT), India", "developer": "Centre for Development of Telematics (C-DOT), India", "level": "EAL 3", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CDOT-NGN-ST-CROS-v07.pdf", "target_name": "CDOT-NGN-ST-CROS-v07.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Final%20certificate%20CDOT-CROS.pdf", "cert_name": "Final certificate CDOT-CROS.pdf", "certification_date": "2020-07-15", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-CDOT-CROS-ROUTER_EAL3.pdf", "report_name": "CR-CDOT-CROS-ROUTER_EAL3.pdf" }, { "serial_number": "3", "product": "TejNOS EN software Version 6.2 and Version 10.0 running on Tejas Networks POTP/PTN Access Systems Model TJ1400 and TJ1600 respectively", "sponsor": "Tejas Networks Limited", "developer": "Tejas Networks Limited", "level": "EAL 2", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Tejas_ST_TejNOS_EN_TJ1400_TJ1600_V1.8.pdf", "target_name": "Tejas_ST_TejNOS_EN_TJ1400_TJ1600_V1.8.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Tejas%20EN%20Software%20CC%20certificate%20EAL%202.pdf", "cert_name": "Tejas EN Software CC certificate EAL 2.pdf", "certification_date": "2020-02-25", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-TEJAS-Tj1400-Tj1600_EAL2.pdf", "report_name": "CR-TEJAS-Tj1400-Tj1600_EAL2.pdf" }, { "serial_number": "4", "product": "Cisco ASR900 Series and NCS4200 Series running IOS-XE 16.9", "sponsor": "M/s. Cisco Systems, Inc. 170 West Tasman Dr. San Jose, CA 95", "developer": "M/s. Cisco Systems, Inc. 170 West Tasman Dr. San Jose, CA 95", "level": "cPP", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Cisco_ASR900Series_NCS4200Series_SecurityTarget-20191011_Ver_1.0.pdf", "target_name": "Cisco_ASR900Series_NCS4200Series_SecurityTarget-20191011_Ver_1.0.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Certificate_%20Cisco%20ASR900Series_NCS4200Series_Router.pdf", "cert_name": "Certificate_ Cisco ASR900Series_NCS4200Series_Router.pdf", "certification_date": "2019-12-17", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-CISCO-ASR900-NCS4200_NDcPP.pdf", "report_name": "CR-CISCO-ASR900-NCS4200_NDcPP.pdf" }, { "serial_number": "5", "product": "Tejas Networks TJ1270 SDH/SONET based Optical Networking Equipment running with TejNOS-EN", "sponsor": "Tejas Networks Limited", "developer": "Tejas Networks Limited", "level": "EAL 1", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Security%20Target%20_TJ1270_Version%201.6.pdf", "target_name": "Security Target _TJ1270_Version 1.6.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Certificate_Tejas%20TJ1270.pdf", "cert_name": "Certificate_Tejas TJ1270.pdf", "certification_date": "2019-12-04", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Certification%20Report%20TJ1270_EAL1.pdf", "report_name": "Certification Report TJ1270_EAL1.pdf" }, { "serial_number": "6", "product": "Scalable Optical Transport Solution FSP 3000R7 Operating System (CC), Version R7 Rel.17.2.3", "sponsor": "ADVA OPTICAL NETWORKING SE, Fraunhoferstr.9a 82152 Martinsri", "developer": "ADVA OPTICAL NETWORKING SE, Fraunhoferstr.9a 82152 Martinsri", "level": "EAL 2", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/FSP_3000_R7_Security_Target-1.9%20%2817.2.3%29_24.06.2019.pdf", "target_name": "FSP_3000_R7_Security_Target-1.9 (17.2.3)_24.06.2019.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/IC3S-KOL01-ADVA-EAL2-0615-003.pdf", "cert_name": "IC3S-KOL01-ADVA-EAL2-0615-003.pdf", "certification_date": "2019-09-18", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-ADVA-FSP3000R7_EAL2.pdf", "report_name": "CR-ADVA-FSP3000R7_EAL2.pdf" }, { "serial_number": "7", "product": "HaltDos Mitigation Platform version 1.1 comprising of hdInspector version 1.0, hdDeviceUI version 2.0, hdDetectionService version 1.0 and hdCLI version 2.0.", "sponsor": "Haltdos.com Private Limited", "developer": "Haltdos.com Private Limited .", "level": "EAL2+", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/ST-version1.4.pdf", "target_name": "ST-version1.4.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/HaltDoS%20Certificate.pdf", "cert_name": "HaltDoS Certificate.pdf", "certification_date": "2019-03-06", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-%20HaltDOS_EAL2.pdf", "report_name": "CR- HaltDOS_EAL2.pdf" }, { "serial_number": "8", "product": "OAM (Operation, Administration & Management/Maintenance) Module VCL-MK Version 6 80 E1, 160Mbps Voice & Data Multiplexer", "sponsor": "Valiant Communications Limited", "developer": "Valiant Communications Limited", "level": "EAL 1", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/ST_version1.4.pdf", "target_name": "ST_version1.4.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Valiant_Certificate.pdf", "cert_name": "Valiant_Certificate.pdf", "certification_date": "2019-01-09", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/IC3S-DEL-01-VALIANT-EAL1-03170007.pdf", "report_name": "IC3S-DEL-01-VALIANT-EAL1-03170007.pdf" }, { "serial_number": "9", "product": "Ericsson IPOS Release 15.2 software running on Smart Service Routers SSR 8020 and SSR 8010", "sponsor": "Ericsson India Private Limited.", "developer": "Ericsson India Private Limited", "level": "EAL 3", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/CR-IPOS_EAL3%20version%201.0.pdf", "target_name": "CR-IPOS_EAL3 version 1.0.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/Ericsson%20Certificate.pdf", "cert_name": "Ericsson Certificate.pdf", "certification_date": "2018-08-03", "report_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2023-04/CR-IPOS_EAL3_version_1.0.pdf", "report_name": "CR-IPOS_EAL3_version_1.0.pdf" }, { "serial_number": "10", "product": "ECI LightSoft Software Version 11.2,(build 04113), EMS-APT Software Version 4.0(build 20), NPT-1010 Software Version 4.0, NPT-1020/1021 Software Version 4.0 and NPT-1200 Software Version 4.0 (build 35)", "sponsor": "ECI Telecom India Pvt.Ltd", "developer": "ECI Telecom India Pvt.Ltd.", "level": "EAL 2", "target_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/ECI_LightSoft-EMS-APT-NPT_Security_Targetv1.8.pdf", "target_name": "ECI_LightSoft-EMS-APT-NPT_Security_Targetv1.8.pdf", "cert_link": "https://www.commoncriteria-india.gov.in/sites/default/files/2022-02/ECI_Lightsoft.pdf", "cert_name": "ECI_Lightsoft.pdf", "certification_date": "2017-06-12" } ] } }, "JP": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "JP", "timestamp": "2026-03-30T12:07:03.814233", "lists": { "INEVALUATION": [ { "supplier": "FUJIFILM Business Innovation Corp", "toe_name": "Fuji Xerox ApeosPort C7070 / C6570 / C5570 / C4570 / C3570 / C2570 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.61.0, Fax ROM Ver. 2.2.1", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/Fuji_Xerox_ApeosPort_C7070_IT5937.html", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)" }, { "supplier": "Canon Inc.", "toe_name": "Canon imageFORCE 8105 / 8195 / 8186 with PDL100", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/CanonimageFORCE_8105_PDL_IT5933.html", "claim": "PP Conformance" }, { "supplier": "Canon Inc.", "toe_name": "Canon imageFORCE 710FZ / 710F / 710Z / 710 / 610FZ / 610F / 610Z / 610 / 520FZ / 520F / 520Z / 520 with Fax & PDL100", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/CanonimageFORCE_710FZ_Fax_PDL_IT5931.html", "claim": "PP Conformance" }, { "supplier": "Canon Inc.", "toe_name": "Canon imageFORCE C31950KG / C3150FQ / C3150F / C3150 with Fax & PDL100", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/CanonimageFORCE_C31950KG_Fax_PDL_IT5932.html", "claim": "PP Conformance" }, { "supplier": "Canon Inc.", "toe_name": "Canon imageFORCE C611FZ / C611F / C611Z / C611 / C521FZ / C521F / C521Z / C521 / C431FZ / C431F / C431Z / C431 / C331FZ / C331F / C331Z / C331 with Fax & PDL100", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/CanonimageFORCE_C611ZF_Fax_PDL_IT5930.html", "claim": "PP Conformance" }, { "supplier": "Hitachi Vantara, Ltd.", "toe_name": "Hitachi Virtual Storage Platform One Block 23 / 24 / 26 / 28 with Drive BoxHA-DKC-04A-03X", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/hitachi_virtual_it4908.html", "claim": "PP (collaborative Protection Profile for Network Devices 3.0e dated 6 December 2023)" }, { "supplier": "Canon Inc.", "toe_name": "Canon imageFORCE 6170 / 6160 with Fax & PDL (JP)426", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/Canon_imageFORCE_6170_6160_with_Fax&PDLJP_e.html", "claim": "PP Conformance" }, { "supplier": "Canon Inc.", "toe_name": "Canon imageFORCE C5170F / C5160F / C5150F / C5140F with Fax & PDL426", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/Canon_imageFORCE_C5170F_C5160F_C5150F_C5140F_with_Fax_&_PDL_e.html", "claim": "PP Conformance" }, { "supplier": "TOSHIBA TEC CORPORATION", "toe_name": "TOSHIBA e-STUDIO331AC / 401AC with FAX UnitSYS V2.0", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/TOSHIBAe-STUDIO331AC_401A.html", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)" }, { "supplier": "Sharp Corporation", "toe_name": "SHARP BP-71C65 / 71C55 / 71C45 / 71C36 / 71C31 / 61C45 / 61C36 / 61C31 / 56C26 / 51C65 / 51C55 / 51C45 / 51C36 / 51C31 / 51C26 fax-optional PS-standard model with BP-FR12U; and BP-56C26 / 51C65 / 51C55 / 51C45 / 51C36 / 51C31 / 51C26 fax-optional PS-optional model with BP-FR12U and MX-PK130210Q200", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/SHARP_BP-71C65_71C55_71C45_71C36_71C31_it5924.html", "claim": "PP(collaborative Protection Profile for Hardcopy Devices 1.0e dated 4 March 2024)" }, { "supplier": "Sharp Corporation", "toe_name": "SHARP BP-71M65 / 71M55 / 71M45 / 71M36 / 71M31 / 51M65 / 51M55 / 51M45 / 51M36 / 51M31 / 51M26 fax-optional PS-standard model with BP-FR12U; and BP-51M65 / 51M55 / 51M45 / 51M36 / 51M31 / 51M26 fax-optional PS-optional model with BP-FR12U and MX-PK130210Q200", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/SHARP_BP-71M65_71M55_71M45_it5923.html", "claim": "PP(collaborative Protection Profile for Hardcopy Devices 1.0e dated 4 March 2024)" }, { "supplier": "Sharp Corporation", "toe_name": "SHARP BP-71M65 / 71M55 / 71M45 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-71M65 / 71M55 / 71M45 / 71M36 / 71M31 / 51M65 / 51M55 / 51M45 / 51M36 / 51M31 / 51M26 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-51M65 / 51M55 / 51M45 / 51M36 / 51M31 / 51M26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110210Q200", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/SHARP_BP-71M65_71M55_71M45_it5922.html", "claim": "PP(collaborative Protection Profile for Hardcopy Devices 1.0e dated 4 March 2024)" }, { "supplier": "Sharp Corporation", "toe_name": "SHARP BP-71C65 / 71C55 / 71C45 / 71C36 / 71C26 / 61C36 / 61C31 / 61C26 / 51C65 / 51C55 / 51C45 fax-standard PS-standard model with BP-FR12U; BP-41C36 / 41C26 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-71C65 / 71C55 / 71C45 / 71C36 / 71C31 / 61C45 / 61C36 / 61C31 / 56C26 / 51C65 / 51C55 / 51C45 / 51C36 / 51C31 / 51C26 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-56C26 / 51C65 / 51C55 / 51C45 / 51C36 / 51C31 / 51C26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110210Q200", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/SHARP_BP-71C65_71C55_71C45_71C36_it5921.html", "claim": "PP(collaborative Protection Profile for Hardcopy Devices 1.0e dated 4 March 2024)" }, { "supplier": "FUJIFILM Business Innovation Corp.", "toe_name": "FUJIFILM Apeos 3561 / 3061 / 2561 / 2061 / 3561 GK/ 3061 GK / 2561 GK models with Copy, Print, Fax, Scan and StorageController ROM Ver. 1.0.3, Fax ROM Ver. 2.2.1", "toe_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-in-eval/FUJIFILM_Apeos_3561_3061_2561_2061_3561GK_3061GK_2561_e.html", "claim": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification : JISEC-C0553)" } ], "CERTIFIED": [ { "cert_id": "JISEC-CC-CRP-C0857", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "-----", "expiration_date": "2030-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-10-01", "toe_overseas_link": null, "toe_japan_name": "KONICA MINOLTA AccurioPress C14010 / C12010 / C10500 with UK-112 and PF-713GM0-11", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0857_it5913.html", "enhanced": { "product": "KONICA MINOLTA AccurioPress C14010 / C12010 / C10500 with UK-112 and PF-713", "toe_version": "GM0-11", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0857", "certification_date": "2025-10-29", "expiration_date": "2030-10-29", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r00000388vl-att/c0857_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, scan, and Document storage and retrieval. The TOE provides the security functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and authentication function Access control function Storage encryption function Trusted communications function Security management function Audit function Software update verification function Self-testing function" } }, { "cert_id": "JISEC-CC-CRP-C0856", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C4751iG00-S2", "expiration_date": "2030-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0856_it5910.html", "toe_japan_name": "-----", "enhanced": { "product": "KONICA MINOLTA bizhub C4751i", "toe_version": "G00-S2", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0856", "certification_date": "2025-10-02", "expiration_date": "2030-10-02", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000026xwz-att/c0856_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000026xwz-att/c0856_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000026xwz-att/c0856_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0855", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C2273 models with Copy, Print, Fax, Scan and Overwrite Hard DiskController ROM Ver. 1.61.1, Fax ROM Ver. 2.2.1", "expiration_date": "2030-09-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0855_it5909.html", "toe_japan_name": "Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C2273 models with Copy, Print, Fax, Scan and Overwrite Hard DiskController ROM Ver. 1.61.1, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C2273 models with Copy, Print, Fax, Scan and Overwrite Hard Disk", "toe_version": "Controller ROM Ver. 1.61.1, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0855", "certification_date": "2025-09-17", "expiration_date": "2030-09-17", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r000001hqf8-att/c0855_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r000001hqf8-att/c0855_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r000001hqf8-att/c0855_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hard Disk" } }, { "cert_id": "JISEC-CC-CRP-C0854", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP MX-8081/7081 fax option model with MX-FR65U0180Se00", "expiration_date": "2030-07-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0854_it4904.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP MX-8081/7081 fax option model with MX-FR65U", "toe_version": "0180Se00", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0854", "certification_date": "2025-07-14", "expiration_date": "2030-07-14", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016ufv-att/c0854_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016ufv-att/c0854_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016ufv-att/c0854_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication function Access Control function Stored Data Encryption Function Network Protection Function Security Management function Audit function Software Verification Function Self-testing Function Residual data overwrite function Data purging function" } }, { "cert_id": "JISEC-CC-CRP-C0853", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP MX-8081 fax standard model with MX-FR65U; and MX-8081 / 7081 fax option model with MX-FR65U and MX-FX150180Se00", "expiration_date": "2030-07-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0853_it4901.html", "toe_japan_name": "SHARP MX-8081 fax standard model with MX-FR65U; and MX-8081 / 7081 fax option model with MX-FR65U and MX-FX150180Se00", "enhanced": { "product": "SHARP MX-8081 fax standard model with MX-FR65U; and MX-8081 / 7081 fax option model with MX-FR65U and MX-FX15", "toe_version": "0180Se00", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0853", "certification_date": "2025-07-14", "expiration_date": "2030-07-14", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016u24-att/c0853_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016u24-att/c0853_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016u24-att/c0853_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication function Access Control function Stored Data Encryption Function Network Protection Function Security Management function Audit function Software Verification Function Self-testing Function Fax Line Separation Function Residual data overwrite function Data purging function" } }, { "cert_id": "JISEC-CC-CRP-C0852", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-B550WD / B547WD / B540WR / B537WR fax-standard model with BP-FR12U0302M300", "expiration_date": "2030-07-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0852_it4900.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-B550WD / B547WD / B540WR / B537WR fax-standard model with BP-FR12U", "toe_version": "0302M300", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0852", "certification_date": "2025-07-14", "expiration_date": "2030-07-14", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016tod-att/c0852_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016tod-att/c0852_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016tod-att/c0852_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication function Access Control function Stored Data Encryption Function Network Protection Function Security Management function Audit function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0851", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M90 / 70M75 fax-optional model with BP-FR12U0400t300", "expiration_date": "2030-07-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0851_it4899.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-70M90 / 70M75 fax-optional model with BP-FR12U", "toe_version": "0400t300", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0851", "certification_date": "2025-07-14", "expiration_date": "2030-07-14", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016tam-att/c0851_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016tam-att/c0851_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016tam-att/c0851_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication function Access Control function Stored Data Encryption Function Network Protection Function Security Management function Audit function Software Verification Function Self-testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0850", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M90 / 70M75 fax-standard model with BP-FR12U; and BP-70M90 / 70M75 fax-optional model with BP-FR12U and BP-FX110400t300", "expiration_date": "2030-07-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0850_it4898.html", "toe_japan_name": "SHARP BP-70M90 / 70M75 fax-standard model with BP-FR12U; and BP-70M90 / 70M75 fax-optional model with BP-FR12U and BP-FX110400t300", "enhanced": { "product": "SHARP BP-70M90 / 70M75 fax-standard model with BP-FR12U; and BP-70M90 / 70M75 fax-optional model with BP-FR12U and BP-FX11", "toe_version": "0400t300", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0850", "certification_date": "2025-07-14", "expiration_date": "2030-07-14", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016sut-att/c0850_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016sut-att/c0850_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000016sut-att/c0850_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication function Access Control function Stored Data Encryption Function Network Protection Function Security Management function Audit function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0849", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageFORCE C51970KG / C51960KG / C51950KG / C51940KG / C5170 / C5160 / C5150 / C5140 with Fax & PDL126", "expiration_date": "2030-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0849_it4887.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageFORCE C51970KG / C51960KG / C51950KG / C51940KG / C5170 / C5160 / C5150 / C5140 with Fax & PDL", "toe_version": "126", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0849", "certification_date": "2025-06-02", "expiration_date": "2030-06-02", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000011emn-att/c0849_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000011emn-att/c0849_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000011emn-att/c0849_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0848", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageFORCE 61970KG / 61960KG / 61955KG / 6170 / 6160 / 6155 with Fax & PDL126", "expiration_date": "2030-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0848_it4886.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageFORCE 61970KG / 61960KG / 61955KG / 6170 / 6160 / 6155 with Fax & PDL", "toe_version": "126", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0848", "certification_date": "2025-06-02", "expiration_date": "2030-06-02", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000011ezx-att/c0848_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000011ezx-att/c0848_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/itcfms0000011ezx-att/c0848_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0847", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "EPSON LM-M5500 / AM-M5500 with FAX1.00", "expiration_date": "2030-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2025-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0847_it4890.html", "toe_japan_name": "EPSON LM-M5500 / AM-M5500 with FAX1.00", "enhanced": { "product": "EPSON LM-M5500 / AM-M5500 with FAX", "toe_version": "1.00", "product_type": "Multifunction Peripheral", "cert_id": "JISEC-CC-CRP-C0847", "certification_date": "2025-04-18", "expiration_date": "2030-04-18", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000026t6q-att/c0847_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000026t6q-att/c0847_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000026t6q-att/c0847_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a multifunction peripheral (MFP) that has the functions, such as copy, print, scan, FAX, document storage and retrieval. This TOE provides Security Functions required for \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for MFPs. TOE security functionality The TOE provides the following security functions: Identification and Authentication Function Function to identify and authenticate users. Access Control Function for TOE Function Function to restrict available functions for each authorized user. Document Access Control Function Function to allow only the authorized users and the administrator to access to stored documents. Residual Data Overwrite Function Function to overwrite and delete unnecessary document data in the HDD and the Flash ROM. Network Protection Function Function to protect communication data using encryption communication protocols. Security Management Function Function to allow only the administrator to manage security functions. Self-Test Function Function to verify the integrity of executable codes at startup. Audit Log Function Function to record audit logs related to security events and allow only the administrator to view that log." } }, { "cert_id": "JISEC-CC-CRP-C0846", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "EPSON AM-C550z with FAX 1.00", "expiration_date": "2030-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2025-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0846_it4889.html", "toe_japan_name": "-----", "enhanced": { "product": "EPSON AM-C550z with FAX", "toe_version": "1.00", "product_type": "Multifunction Peripheral", "cert_id": "JISEC-CC-CRP-C0846", "certification_date": "2025-04-18", "expiration_date": "2030-04-18", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000002o4k0-att/c0846_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000002o4k0-att/c0846_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000002o4k0-att/c0846_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a multifunction peripheral (MFP) that has the functions, such as copy, print, scan, FAX, document storage and retrieval. This TOE provides Security Functions required for \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for MFPs. TOE security functionality The TOE provides the following security functions: Identification and Authentication Function Function to identify and authenticate users. Access Control Function for TOE Function Function to restrict available functions for each authorized user. Document Access Control Function Function to allow only the authorized users and the administrator to access to stored documents. Residual Data Overwrite Function Function to overwrite and delete unnecessary document data in the HDD and the Flash ROM. Network Protection Function Function to protect communication data using encryption communication protocols. Security Management Function Function to allow only the administrator to manage security functions. Self-Test Function Function to verify the integrity of executable codes at startup. Audit Log Function Function to record audit logs related to security events and allow only the administrator to view that log." } }, { "cert_id": "JISEC-CC-CRP-C0845", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C3567 / C3067 / C2567 / C3567 GK / C3067 GK / C2567 GK models with Copy, Print, Fax, Scan and StorageController ROM Ver. 1.0.6A, Fax ROM Ver. 3.0.0", "expiration_date": "2030-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0845_it4897.html", "toe_japan_name": "FUJIFILM Apeos C3567 / C3067 / C2567 / C3567 GK / C3067 GK / C2567 GK models with Copy, Print, Fax, Scan and StorageController ROM Ver. 1.0.6A, Fax ROM Ver. 3.0.0", "enhanced": { "product": "FUJIFILM Apeos C3567 / C3067 / C2567 / C3567 GK / C3067 GK / C2567 GK models with Copy, Print, Fax, Scan and Storage", "toe_version": "Controller ROM Ver. 1.0.6A, Fax ROM Ver. 3.0.0", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0845", "certification_date": "2025-04-18", "expiration_date": "2030-04-18", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hjo6-att/c0845_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hjo6-att/c0845_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hjo6-att/c0845_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation" } }, { "cert_id": "JISEC-CC-CRP-C0844", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C3061 / C2561 / C2061 / C3061 GK / C2561 GK / C2061 GK models with Copy, Print, Fax, Scan and StorageController ROM Ver. 1.0.4A, Fax ROM Ver. 3.0.0", "expiration_date": "2030-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0844_it4896.html", "toe_japan_name": "FUJIFILM Apeos C3061 / C2561 / C2061 / C3061 GK / C2561 GK / C2061 GK models with Copy, Print, Fax, Scan and StorageController ROM Ver. 1.0.4A, Fax ROM Ver. 3.0.0", "enhanced": { "product": "FUJIFILM Apeos C3061 / C2561 / C2061 / C3061 GK / C2561 GK / C2061 GK models with Copy, Print, Fax, Scan and Storage", "toe_version": "Controller ROM Ver. 1.0.4A, Fax ROM Ver. 3.0.0", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0844", "certification_date": "2025-04-18", "expiration_date": "2030-04-18", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hjat-att/c0844_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hjat-att/c0844_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hjat-att/c0844_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation" } }, { "cert_id": "JISEC-CC-CRP-C0843", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C7071 / C6571 / C5571 / C4571 / C3571 / C3071 / C2571 / C7071 GK / C6571 GK / C5571 GK / C4571 GK models with Copy, Print, Fax and ScanController ROM Ver. 1.0.7A, Fax ROM Ver. 2.2.1", "expiration_date": "2030-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0843_it4895.html", "toe_japan_name": "FUJIFILM Apeos C7071 / C6571 / C5571 / C4571 / C3571 / C3071 / C2571 / C7071 GK / C6571 GK / C5571 GK / C4571 GK models with Copy, Print, Fax and ScanController ROM Ver. 1.0.7A, Fax ROM Ver. 2.2.1", "enhanced": { "product": "FUJIFILM Apeos C7071 / C6571 / C5571 / C4571 / C3571 / C3071 / C2571 / C7071 GK / C6571 GK / C5571 GK / C4571 GK models with Copy, Print, Fax and Scan", "toe_version": "Controller ROM Ver. 1.0.7A, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0843", "certification_date": "2025-04-18", "expiration_date": "2030-04-18", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hiwe-att/c0843_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hiwe-att/c0843_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000001hiwe-att/c0843_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation" } }, { "cert_id": "JISEC-CC-CRP-C0842", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C5870i / C5860i / C5850i / C5840i with Fax & PDL2522", "expiration_date": "2030-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0842_it4905.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C5870i / C5860i / C5850i / C5840i with Fax & PDL", "toe_version": "2522", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0842", "certification_date": "2025-04-04", "expiration_date": "2030-04-04", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000011jlq-att/c0842_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000011jlq-att/c0842_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000011jlq-att/c0842_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0841", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageFORCE C71965KG / C7165F / C7165 with Fax & PDL119", "expiration_date": "2030-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0841_it4888.html", "toe_japan_name": "Canon imageFORCE C71965KG / C7165F / C7165 with Fax & PDL119", "enhanced": { "product": "Canon imageFORCE C71965KG / C7165F / C7165 with Fax & PDL", "toe_version": "119", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0841", "certification_date": "2025-04-04", "expiration_date": "2030-04-04", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000011j7a-att/c0841_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000011j7a-att/c0841_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m30000011j7a-att/c0841_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0840", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-C545WD / C542WD / C535WD / C535WR / C533WD / C533WR fax-standard model with BP-FR12U0290M300", "expiration_date": "2030-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0840_it4904.html", "toe_japan_name": "SHARP BP-C545WD / C542WD / C535WD / C535WR / C533WD / C533WR fax-standard model with BP-FR12U0290M300", "enhanced": { "product": "SHARP BP-C545WD / C542WD / C535WD / C535WR / C533WD / C533WR fax-standard model with BP-FR12U", "toe_version": "0290M300", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0840", "certification_date": "2025-03-24", "expiration_date": "2030-03-24", "cc_version": "3.1 Release 5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uv0t-att/c0840_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uv0t-att/c0840_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uv0t-att/c0840_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0839", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U and MX-PK130400Q100", "expiration_date": "2030-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0839_it4894.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U and MX-PK13", "toe_version": "0400Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0839", "certification_date": "2025-03-24", "expiration_date": "2030-03-24", "cc_version": "3.1 Release 5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uun7-att/c0839_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uun7-att/c0839_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uun7-att/c0839_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0838", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M65 / 70M55 / 70M45 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110400Q100", "expiration_date": "2030-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0838_it4893.html", "toe_japan_name": "SHARP BP-70M65 / 70M55 / 70M45 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110400Q100", "enhanced": { "product": "SHARP BP-70M65 / 70M55 / 70M45 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX11", "toe_version": "0400Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0838", "certification_date": "2025-03-24", "expiration_date": "2030-03-24", "cc_version": "3.1 Release 5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uu9l-att/c0838_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uu9l-att/c0838_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uu9l-att/c0838_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0837", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U and MX-PK130400Q100", "expiration_date": "2030-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0837_it4892.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U and MX-PK13", "toe_version": "0400Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0837", "certification_date": "2025-03-24", "expiration_date": "2030-03-24", "cc_version": "3.1 Release 5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000utvz-att/c0837_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000utvz-att/c0837_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000utvz-att/c0837_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0836", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70C65 / 70C55 / 70C45 / 70C26 / 60C36 / 60C31 / 60C26 / 50C65 / 50C55 / 50C45 fax-standard PS-standard model with BP-FR12U; BP-40C36 / 40C26 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110400Q100", "expiration_date": "2030-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2025-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0836_it4891.html", "toe_japan_name": "SHARP BP-70C65 / 70C55 / 70C45 / 70C26 / 60C36 / 60C31 / 60C26 / 50C65 / 50C55 / 50C45 fax-standard PS-standard model with BP-FR12U; BP-40C36 / 40C26 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110400Q100", "enhanced": { "product": "SHARP BP-70C65 / 70C55 / 70C45 / 70C26 / 60C36 / 60C31 / 60C26 / 50C65 / 50C55 / 50C45 fax-standard PS-standard model with BP-FR12U; BP-40C36 / 40C26 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX11", "toe_version": "0400Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0836", "certification_date": "2025-03-24", "expiration_date": "2030-03-24", "cc_version": "3.1 Release 5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uth5-att/c0836_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uth5-att/c0836_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/d662m3000000uth5-att/c0836_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0835", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C751i / AccurioPrint C751i with FK-514, DEVELOP ineo+ 751i with FK-514 G00-RB", "expiration_date": "2029-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0835_it4885.html", "toe_japan_name": "KONICA MINOLTA bizhub C751i / AccurioPrint C751i with FK-514, DEVELOP ineo+ 751i with FK-514 G00-RB", "enhanced": { "product": "KONICA MINOLTA bizhub C751i / AccurioPrint C751i with FK-514, DEVELOP ineo+ 751i with FK-514", "toe_version": "G00-RB", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0835", "certification_date": "2024-11-19", "expiration_date": "2029-11-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000002jevq-att/c0835_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000002jevq-att/c0835_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000002jevq-att/c0835_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0834", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C651i with FK-514, DEVELOP ineo+ 651i with FK-514, Sindoh D742 / CM6107 / CM6109 with FK-514G00-RB", "expiration_date": "2029-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0834_it4884_01.html", "toe_japan_name": "KONICA MINOLTA bizhub C651i with FK-514, DEVELOP ineo+ 651i with FK-514 G00-RB", "enhanced": { "product": "KONICA MINOLTA bizhub C651i with FK-514, DEVELOP ineo+ 651i with FK-514, Sindoh D742 / CM6107 / CM6109 with FK-514", "toe_version": "G00-RB", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0834", "expiration_date": "2029-11-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001kdl-att/c0834iz_emar.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001kdl-att/c0834_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001kdl-att/c0834iz_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0833", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 751i with FK-514, DEVELOP ineo 751i with FK-514, Sindoh N923 / MF7125 with FK-514G00-RB", "expiration_date": "2029-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0833_it4883_01.html", "toe_japan_name": "KONICA MINOLTA bizhub 751i with FK-514, DEVELOP ineo 751i with FK-514 G00-RB", "enhanced": { "product": "KONICA MINOLTA bizhub 751i with FK-514, DEVELOP ineo 751i with FK-514, Sindoh N923 / MF7125 with FK-514", "toe_version": "G00-RB", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0833", "expiration_date": "2029-11-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001jzx-att/c0833iz_emar.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001jzx-att/c0833_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001jzx-att/c0833iz_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0832", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "EPSON LM-C400 / AM-C550 / AM-C400 with FAX 1.00", "expiration_date": "2029-11-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2024-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0832_it4873.html", "toe_japan_name": "EPSON LM-C400 / AM-C550 / AM-C400 with FAX 1.00", "enhanced": { "product": "EPSON LM-C400/AM-C550/AM-C400 with FAX", "toe_version": "1.00", "product_type": "Multifunction Peripheral", "cert_id": "JISEC-CC-CRP-C0832", "expiration_date": "2029-11-19", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000002jdrz-att/c0832_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000002jdrz-att/c0832_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000002jdrz-att/c0832_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a multifunction peripheral (MFP) that has the functions, such as copy, print, scan, FAX, document storage and retrieval. This TOE provides Security Functions required for \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for MFPs. TOE security functionality The security functions of this TOE are as follows: Identification and Authentication Function Function to identify and authenticate users. Access Control Function for TOE Function Function to restrict available functions for each authorized user. Document Access Control Function Function to allow only the authorized users and the administrator to access to stored documents. Residual Data Overwrite Function Function to overwrite and delete unnecessary document data in the HDD and the Flash ROM. Network Protection Function Function to protect communication data using encryption communication protocols. Security Management Function Function to allow only the administrator to manage security functions. Self-Test Function Function to verify the integrity of executable codes at startup. Audit Log Function Function to record audit logs related to security events and allow only the administrator to view that log." } }, { "cert_id": "JISEC-CC-CRP-C0831", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C551i / bizhub C451i / bizhub C361i / bizhub C301i / bizhub C251i / bizhub C336DNi / bizhub C330DNi / bizhub C325DNi with FK-514, DEVELOP ineo+ 551i / ineo+ 451i / ineo+ 361i / ineo+ 301i / ineo+ 251i with FK-514, Sindoh D741 / D740 / D472 / D471 / D470 / CM5107 / CM4097 / CM3095 / CM3037 / CM2077 / CM5109 / CM4099 with FK-514G00-R6", "expiration_date": "2029-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0831_it4878_01.html", "toe_japan_name": "KONICA MINOLTA bizhub C551i / bizhub C451i / bizhub C361i / bizhub C301i / bizhub C251i / bizhub C336DNi / bizhub C330DNi / bizhub C325DNi with FK-514, DEVELOP ineo+ 551i / ineo+ 451i / ineo+ 361i / ineo+ 301i / ineo+ 251i with FK-514 G00-R6", "enhanced": { "product": "KONICA MINOLTA bizhub C551i / bizhub C451i / bizhub C361i / bizhub C301i / bizhub C251i / bizhub C336DNi / bizhub C330DNi / bizhub C325DNi with FK-514, DEVELOP ineo+ 551i / ineo+ 451i / ineo+ 361i / ineo+ 301i / ineo+ 251i with FK-514, Sindoh D741 / D740 / D472 / D471 / D470 / CM5107 / CM4097 / CM3095 / CM3037 / CM2077 / CM5109 / CM4099 with FK-514", "toe_version": "G00-R6", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0831", "expiration_date": "2029-10-24", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001jm9-att/c0831iz_emar.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001jm9-att/c0831_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001jm9-att/c0831iz_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0830", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 651i / bizhub 551i / bizhub 451i / bizhub 361i / bizhub 301i with FK-514, DEVELOP ineo 651i / ineo 551i / ineo 451i / ineo 361i / ineo 301i with FK-514, Sindoh N922 / N921 / N920 / MF6113 / MF5103 / MF4095 with FK-514G00-R6", "expiration_date": "2029-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0830_it4877_01.html", "toe_japan_name": "KONICA MINOLTA bizhub 651i / bizhub 551i / bizhub 451i / bizhub 361i / bizhub 301i with FK-514, DEVELOP ineo 651i / ineo 551i / ineo 451i / ineo 361i / ineo 301i with FK-514 G00-R6", "enhanced": { "product": "KONICA MINOLTA bizhub 651i / bizhub 551i / bizhub 451i / bizhub 361i / bizhub 301i with FK-514, DEVELOP ineo 651i / ineo 551i / ineo 451i / ineo 361i / ineo 301i with FK-514, Sindoh N922 / N921 / N920 / MF6113 / MF5103 / MF4095 with FK-514", "toe_version": "G00-R6", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0830", "expiration_date": "2029-10-24", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001j8l-att/c0830iz_emar.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001j8l-att/c0830_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r0000001j8l-att/c0830iz_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0829", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "-----", "expiration_date": "2029-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-10-01", "toe_overseas_link": null, "toe_japan_name": "KONICA MINOLTA AccurioPress 7136 / 7120 GM3-10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0829_it3868.html", "enhanced": { "product": "KONICA MINOLTA AccurioPress 7136/7120", "toe_version": "GM3-10", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0829", "certification_date": "2024-10-02", "expiration_date": "2029-10-02", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000qpje-att/c0829_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000qpje-att/c0829_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000qpje-att/c0829_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, scan, print and Document storage and retrieval. The TOE provides the security functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Storage encryption function Trusted Communications function Security Management function Audit function Software update verification function Self-testing function" } }, { "cert_id": "JISEC-CC-CRP-C0828", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "-----", "expiration_date": "2029-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-10-01", "toe_overseas_link": null, "toe_japan_name": "KONICA MINOLTA AccurioPress 7136P GM3-10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0828_it3867.html", "enhanced": { "product": "KONICA MINOLTA AccurioPress 7136P", "toe_version": "GM3-10", "product_type": "Printer", "cert_id": "JISEC-CC-CRP-C0828", "certification_date": "2024-10-02", "expiration_date": "2029-10-02", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000qp65-att/c0828_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000qp65-att/c0828_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000qp65-att/c0828_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Printer that has the function of printing received documents. The TOE provides the security functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Storage encryption function Trusted Communications function Security Management function Audit function Software update verification function Self-testing function" } }, { "cert_id": "JISEC-CC-CRP-C0827", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C7010, nashuatec IM C7010, Rex Rotary IM C7010, Gestetner IM C7010 with Fax Option Type M52 and HDD Option Type M52 320GB E-1.00", "expiration_date": "2029-09-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2024-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0827_it4876.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C7010, nashuatec IM C7010, Rex Rotary IM C7010, Gestetner IM C7010 with Fax Option Type M52 and HDD Option Type M52 320GB", "toe_version": "E-1.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0827", "certification_date": "2024-09-09", "expiration_date": "2029-09-09", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000bd6l-att/c0827_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000bd6l-att/c0827_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000bd6l-att/c0827_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0826", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2029-09-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2024-09-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C7010 with FAX Unit Type M53 and Extended HDD Type M52 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0826_it4875.html", "enhanced": { "product": "RICOH IM C7010 with FAX Unit Type M53 and Extended HDD Type M52", "toe_version": "J-1.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0826", "certification_date": "2024-09-09", "expiration_date": "2029-09-09", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf0000008vdb-att/c0826_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf0000008vdb-att/c0826_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf0000008vdb-att/c0826_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0825", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2021AC / 2521AC with FAX Unit SYS V5.2", "expiration_date": "2029-09-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0825_it4874.html", "toe_japan_name": "TOSHIBA e-STUDIO2021AC / 2521AC with FAX Unit SYS V5.2", "enhanced": { "product": "TOSHIBA e-STUDIO2021AC/2521AC with FAX Unit", "toe_version": "SYS V5.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0825", "certification_date": "2024-09-09", "expiration_date": "2029-09-09", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000gfjn-att/c0825_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000gfjn-att/c0825_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/s6ckaf000000gfjn-att/c0825_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0824", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C4030 / C3530 models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 21.26.12", "expiration_date": "2029-09-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0824_it4879.html", "toe_japan_name": "-----", "enhanced": { "product": "FUJIFILM Apeos C4030 / C3530 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 21.26.12", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0824", "certification_date": "2024-09-04", "expiration_date": "2029-09-04", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001sa1e-att/c0824_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001sa1e-att/c0824_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001sa1e-att/c0824_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0823", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO4525AC / 5525AC / 6525AC with FAX Unit SYS V6.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0823_it3862.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO4525AC/5525AC/6525AC with FAX Unit", "toe_version": "SYS V6.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0823", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000unrj-att/c0823_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000unrj-att/c0823_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000unrj-att/c0823_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0822", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2525AC / 3025AC / 3525AC with FAX Unit SYS V6.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0822_it3861.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2525AC/3025AC/3525AC with FAX Unit", "toe_version": "SYS V6.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0822", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000un07-att/c0822_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000un07-att/c0822_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000un07-att/c0822_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0821", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2020AC / 2520AC with FAX Unit SYS V6.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0821_it3860.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2020AC/2520AC with FAX Unit", "toe_version": "SYS V6.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0821", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000undv-att/c0821_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000undv-att/c0821_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000undv-att/c0821_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0820", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO5528A / 6528A with FAX Unit SYS V5.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0820_it3859.html", "toe_japan_name": "TOSHIBA e-STUDIO5528A / 6528A with FAX Unit SYS V5.2", "enhanced": { "product": "TOSHIBA e-STUDIO5528A/6528A with FAX Unit", "toe_version": "SYS V5.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0820", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ummj-att/c0820_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ummj-att/c0820_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ummj-att/c0820_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0819", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO4525AC / 5525AC / 6525AC with FAX Unit SYS V5.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0819_it3858.html", "toe_japan_name": "TOSHIBA e-STUDIO4525AC / 5525AC / 6525AC with FAX Unit SYS V5.2", "enhanced": { "product": "TOSHIBA e-STUDIO4525AC/5525AC/6525AC with FAX Unit", "toe_version": "SYS V5.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0819", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000um8v-att/c0819_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000um8v-att/c0819_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000um8v-att/c0819_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0818", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2528A / 3028A / 3528A / 4528A with FAX Unit SYS V5.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0818_it3857.html", "toe_japan_name": "TOSHIBA e-STUDIO2528A / 3028A / 3528A / 4528A with FAX Unit SYS V5.2", "enhanced": { "product": "TOSHIBA e-STUDIO2528A/3028A/3528A/4528A with FAX Unit", "toe_version": "SYS V5.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0818", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ulv7-att/c0818_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ulv7-att/c0818_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ulv7-att/c0818_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0817", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2525AC / 3025AC / 3525AC with FAX Unit SYS V5.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0817_it3856.html", "toe_japan_name": "TOSHIBA e-STUDIO2525AC / 3025AC / 3525AC with FAX Unit SYS V5.2", "enhanced": { "product": "TOSHIBA e-STUDIO2525AC/3025AC/3525AC with FAX Unit", "toe_version": "SYS V5.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0817", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ulhj-att/c0817_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ulhj-att/c0817_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ulhj-att/c0817_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0816", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2020AC / 2520AC with FAX Unit SYS V5.2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0816_it3855.html", "toe_japan_name": "TOSHIBA e-STUDIO2020AC / 2520AC with FAX Unit SYS V5.2", "enhanced": { "product": "TOSHIBA e-STUDIO2020AC/2520AC with FAX Unit", "toe_version": "SYS V5.2", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0816", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ul3v-att/c0816_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ul3v-att/c0816_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000000ul3v-att/c0816_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0815", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C4051i / bizhub C3351i with FK-517,DEVELOP ineo+ 4051i / ineo+ 3351i with FK-517 G00-R2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0815_it3871.html", "toe_japan_name": "KONICA MINOLTA bizhub C4051i / bizhub C3351i with FK-517,DEVELOP ineo+ 4051i / ineo+ 3351i with FK-517 G00-R2", "enhanced": { "product": "KONICA MINOLTA bizhub C4051i/bizhub C3351i with FK-517, DEVELOP ineo+ 4051i/ineo+ 3351i with FK-517", "toe_version": "G00-R2", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0815", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001dbal-att/c0815_erprt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001dbal-att/c0815_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001dbal-att/c0815_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0814", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 4751i / bizhub 4051i with FK-517,DEVELOP ineo 4751i / ineo 4051i with FK-517 G00-R2", "expiration_date": "2029-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0814_it3870.html", "toe_japan_name": "KONICA MINOLTA bizhub 4751i / bizhub 4051i with FK-517,DEVELOP ineo 4751i / ineo 4051i with FK-517 G00-R2", "enhanced": { "product": "KONICA MINOLTA bizhub 4751i/bizhub 4051i with FK-517, DEVELOP ineo 4751i/ineo 4051i with FK-517", "toe_version": "G00-R2", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0814", "certification_date": "2024-08-19", "expiration_date": "2029-08-19", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001c26z-att/c0814_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001c26z-att/c0814_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/dc4m6e000001c26z-att/c0814_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0813", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO6529A / 7529A / 9029A with FAX Unit SYS V5.1", "expiration_date": "2029-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0813_it3850.html", "toe_japan_name": "TOSHIBA e-STUDIO6529A / 7529A / 9029A with FAX Unit SYS V5.1", "enhanced": { "product": "TOSHIBA e-STUDIO6529A/7529A/9029A with FAX Unit", "toe_version": "SYS V5.1", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0813", "certification_date": "2024-06-24", "expiration_date": "2029-06-24", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/mhj8vt000000me3o-att/c0813_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/mhj8vt000000me3o-att/c0813_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/mhj8vt000000me3o-att/c0813_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0812", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO6526AC / 6527AC / 7527AC with FAX Unit SYS V5.1", "expiration_date": "2029-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0812_it3849.html", "toe_japan_name": "TOSHIBA e-STUDIO6526AC / 6527AC / 7527AC with FAX Unit SYS V5.1", "enhanced": { "product": "TOSHIBA e-STUDIO6526AC/6527AC/7527AC with FAX Unit", "toe_version": "SYS V5.1", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0812", "certification_date": "2024-06-24", "expiration_date": "2029-06-24", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/mhj8vt000000l088-att/c0812_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/mhj8vt000000l088-att/c0812_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/mhj8vt000000l088-att/c0812_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0811", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos 5570 / 4570 models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 21.26.11, Fax ROM Ver. 2.2.1", "expiration_date": "2029-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0811_it3872.html", "toe_japan_name": "-----", "enhanced": { "product": "FUJIFILM Apeos 5570 / 4570 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 21.26.11, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0811", "certification_date": "2024-04-24", "expiration_date": "2029-04-24", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp000001lk08-att/c0811_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp000001lk08-att/c0811_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp000001lk08-att/c0811_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0810", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 370, nashuatec IM 370, Rex Rotary IM 370, Gestetner IM 370 E-1.00", "expiration_date": "2029-03-01", "claim": "EAL2", "certification_date": "2024-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0810_it3869.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 370, nashuatec IM 370, Rex Rotary IM 370, Gestetner IM 370", "toe_version": "E-1.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0810", "certification_date": "2024-03-26", "expiration_date": "2029-03-26", "cc_version": "3.1 Release5", "assurance_level": "EAL2", "protection_profile": "none", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp000000b19h-att/c0810_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp000000b19h-att/c0810_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp000000b19h-att/c0810_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, and Document Server functions. The TOE provides security functions to prevent unauthorized disclosure and alteration of user data and security function setting data. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Network Protection Function: Enables the TOE to protect network communications using encryption. Stored Data Protection Function: Enables the TOE to protect the stored data using encryption. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software." } }, { "cert_id": "JISEC-CC-CRP-C0809", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2029-03-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2024-03-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM 460F / 370F with Extended HDD Type M54 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0809_it3865.html", "enhanced": { "product": "RICOH IM 460F/370F with Extended HDD Type M54", "toe_version": "J-1.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0809", "certification_date": "2024-03-12", "expiration_date": "2029-03-12", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp00000059ze-att/c0809_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp00000059ze-att/c0809_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp00000059ze-att/C0809_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0807", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 370F / 460F, nashuatec IM 370F / 460F, Rex Rotary IM 370F / 460F, Gestetner IM 370F / 460F E-1.00", "expiration_date": "2029-03-01", "claim": "EAL2", "certification_date": "2024-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0807_it3863.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 370F/460F, nashuatec IM 370F/460F, Rex Rotary IM 370F/460F, Gestetner IM 370F/460F", "toe_version": "E-1.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0807", "certification_date": "2024-03-04", "expiration_date": "2029-03-04", "cc_version": "3.1 Release5", "assurance_level": "EAL2", "protection_profile": "none", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo000000y1r4-att/c0807_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo000000y1r4-att/c0807_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo000000y1r4-att/c0807_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions to prevent unauthorized disclosure and alteration of user data and security function setting data. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Network Protection Function: Enables the TOE to protect network communications using encryption. Stored Data Protection Function: Enables the TOE to protect the stored data using encryption. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0806", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2029-03-01", "claim": "EAL2", "certification_date": "2024-03-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM 460F / 370F J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0806_it3864.html", "enhanced": { "product": "RICOH IM 460F/370F", "toe_version": "J-1.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0806", "certification_date": "2024-03-04", "expiration_date": "2029-03-04", "cc_version": "3.1 Release5", "assurance_level": "EAL2", "protection_profile": "none", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo000000y1dg-att/c0806_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo000000y1dg-att/c0806_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo000000y1dg-att/c0806_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions to prevent unauthorized disclosure and alteration of user data and security function setting data. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Network Protection Function: Enables the TOE to protect network communications using encryption. Stored Data Protection Function: Enables the TOE to protect the stored data using encryption. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0805", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 7000 / 8000 / 9000, SAVIN IM 7000 / 8000 / 9000, LANIER IM 7000 / 8000 / 9000, nashuatec IM 7000 / 8000 / 9000, Rex Rotary IM 7000 / 8000 / 9000, Gestetner IM 7000 / 8000 / 9000 E-2.00", "expiration_date": "2029-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2024-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0805_it3852.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 7000/8000/9000, SAVIN IM 7000/8000/9000, LANIER IM 7000/8000/9000, nashuatec IM 7000/8000/9000, Rex Rotary IM 7000/8000/9000, Gestetner IM 7000/8000/9000", "toe_version": "E-2.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0805", "certification_date": "2024-01-31", "expiration_date": "2029-01-31", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000002pyo-att/c0805_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000002pyo-att/c0805_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000002pyo-att/c0805_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0804", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2029-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2024-01-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM 9000 / 9000T / 8000 / 7000 J-2.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0804_it3851.html", "enhanced": { "product": "RICOH IM 9000/9000T/8000/7000", "toe_version": "J-2.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0804", "certification_date": "2024-01-31", "expiration_date": "2029-01-31", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000002pnj-att/c0804_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000002pnj-att/c0804_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000002pnj-att/c0804_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0803", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "EPSON LM-C6000 / LM-C5000 / LM-C4000 / AM-C6000 / AM-C5000 / AM-C4000 with FAX 1.00", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2023-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0803_it2837.html", "toe_japan_name": "EPSON LM-C6000 / LM-C5000 / LM-C4000 / AM-C6000 / AM-C5000 / AM-C4000 with FAX 1.00", "enhanced": { "product": "EPSON LM-C6000/LM-C5000/LM-C4000/ AM-C6000/AM-C5000/AM-C4000 with FAX", "toe_version": "1.00", "product_type": "Multifunction Peripheral", "cert_id": "JISEC-CC-CRP-C0803", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000001dch-att/c0803_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000001dch-att/c0803_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000001dch-att/c0803_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a multifunction peripheral (MFP) that has the functions, such as copy, print, scan, FAX, document storage and retrieval. This TOE provides Security Functions required for \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for MFPs. TOE security functionality The security functions of this TOE are as follows: Identification and Authentication Function Function to identify and authenticate users. Access Control Function for TOE Function Function to restrict available functions for each authorized user. Document Access Control Function Function to allow only the authorized users and the administrator to access to stored documents. Residual Data Overwrite Function Function to overwrite and delete unnecessary document data in the HDD and the Flash ROM. Network Protection Function Function to protect communication data using encryption communication protocols. Security Management Function Function to allow only the administrator to manage security functions. Self-Test Function Function to verify the integrity of executable codes at startup. Audit Log Function Function to record audit logs related to security events and allow only the administrator to view that log." } }, { "cert_id": "JISEC-CC-CRP-C0802", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos 3560 / 3060 / 2560 models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 21.26.4, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0802_it3854.html", "toe_japan_name": "-----", "enhanced": { "product": "FUJIFILM Apeos 3560 / 3060 / 2560 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 21.26.4, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0802", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000001cb7-att/c0802_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000001cb7-att/c0802_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo0000001cb7-att/c0802_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0801", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C3060 / C2560 / C2060 models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 21.26.4, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0801_it3853.html", "toe_japan_name": "-----", "enhanced": { "product": "FUJIFILM Apeos C3060 / C2560 / C2060 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 21.26.4, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0801", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo00000018cn-att/c0801_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo00000018cn-att/c0801_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/k4kumo00000018cn-att/c0801_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0800", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C2010 / C2010A / C2510 / C2510A / C3010 / C3010A / C3510 / C3510A, nashuatec IM C2010 / C2010A / C2510 / C2510A / C3010 / C3010A / C3510 / C3510A, Rex Rotary IM C2010 / C2010A / C2510 / C2510A / C3010 / C3010A / C3510 / C3510A, Gestetner IM C2010 / C2010A / C2510 / C2510A / C3010 / C3010A / C3510 / C3510A with Fax Option Type M52 and HDD Option Type M52 320GB E-1.01", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2023-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0800_it2833.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C2010/C2010A/C2510/C2510A/C3010/C3010A/ C3510/C3510A, nashuatec IM C2010/C2010A/C2510/C2510A/C3010/C3010A/ C3510/C3510A, Rex Rotary IM C2010/C2010A/C2510/C2510A/C3010/C3010A/ C3510/C3510A, Gestetner IM C2010/C2010A/C2510/C2510A/C3010/C3010A/ C3510/C3510A with Fax Option Type M52 and HDD Option Type M52 320GB", "toe_version": "E-1.01", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0800", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000per-att/c0800_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000per-att/c0800_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000per-att/c0800_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The TOE provides the following security functions: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0799", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2023-11-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C3510 / C3010 / C2510 / C2010 with FAX Unit Type M52 and HDD Option Type M52, RICOH IM C3510F / C3010F / C2510F / C2010F with HDD Option Type M52 J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0799_it2832.html", "enhanced": { "product": "RICOH IM C3510/C3010/C2510/C2010 with FAX Unit Type M52 and HDD Option Type M52, RICOH IM C3510F/C3010F/C2510F/C2010F with HDD Option Type M52", "toe_version": "J-1.01", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0799", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000p3s-att/c0799_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000p3s-att/c0799_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000p3s-att/c0799_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The TOE provides the following security functions: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0798", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C4510 / C4510A / C5510 / C5510A / C6010, nashuatec IM C4510 / C4510A / C5510 / C5510A / C6010, Rex Rotary IM C4510 / C4510A / C5510 / C5510A / C6010, Gestetner IM C4510 / C4510A / C5510 / C5510A / C6010 with Fax Option Type M52 and HDD Option Type M52 320GB E-1.01", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2023-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0798_it2835.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C4510/C4510A/C5510/C5510A/ C6010, nashuatec IM C4510/C4510A/C5510/C5510A/ C6010, Rex Rotary IM C4510/C4510A/C5510/ C5510A/C6010, Gestetner IM C4510/C4510A/C5510/ C5510A/C6010 with Fax Option Type M52 and HDD Option Type M52 320GB", "toe_version": "E-1.01", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0798", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000obm-att/c0798_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000obm-att/c0798_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000obm-att/c0798_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0797", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2023-11-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C6010 / C5510 / C5510A / C4510 / C4510A with FAX Unit Type M53 and HDD Option Type M52, RICOH IM C6010F / C5510F / C4510F with HDD Option Type M52 J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0797_it2834.html", "enhanced": { "product": "RICOH IM C6010/C5510/C5510A/C4510/ C4510A with FAX Unit Type M53 and HDD Option Type M52, RICOH IM C6010F/C5510F/C4510F with HDD Option Type M52", "toe_version": "J-1.01", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0797", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000nu0-att/c0797_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000nu0-att/c0797_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo0000000nu0-att/c0797_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, Fax, and Document Server functions. The TOE provides security functions that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0796", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 719iFZ / 719iZ / 719iF / 719i / 619iFZ / 619iZ / 619iF / 619i / 529iFZ / 529iZ / 529iF / 529i / 529 with Fax & PDL 311", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0796_it3847.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 719iFZ/719iZ/719iF/719i/619iFZ/619iZ/619iF/ 619i/529iFZ/529iZ/529iF/529i/529 with Fax & PDL", "toe_version": "311", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0796", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000001gs-att/c0796_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000001gs-att/c0796_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000001gs-att/c0796_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0795", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C359iF / C359F / C359i / C359 / C259iF / C259i with Fax & PDL 311", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0795_it3845.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C359iF / C359F / C359i / C359 / C259iF / C259i with Fax & PDL 311", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C359iF/C359F/C359i/C359/C259iF/C259i with Fax & PDL", "toe_version": "311", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0795", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000000vd-att/c0795_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000000vd-att/c0795_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000000vd-att/c0795_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0794", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 6980i with PDL 310", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0794_it3843.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 6980i with PDL", "toe_version": "310", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0794", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000000kn-att/c0794_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000000kn-att/c0794_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000000kn-att/c0794_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0793", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C39935KG / C39930KG / C39926KG / C39922KG / C3935F / C3935i / C3930F / C3930i / C3930 / C3926F / C3926i / C3926 / C3922i / C3922 with Fax & PDL 310", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0793_it3846.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C39935KG / C39930KG / C39926KG / C39922KG / C3935F / C3935i / C3930F / C3930i / C3930 / C3926F / C3926i / C3926 / C3922i / C3922 with Fax & PDL 310", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C39935KG/C39930KG/C39926KG/C39922KG/ C3935F/C3935i/C3930F/C3930i/C3930/C3926F/ C3926i/C3926/C3922i/C3922 with Fax & PDL", "toe_version": "310", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0793", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo00000003fx-att/c0793_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo00000003fx-att/c0793_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo00000003fx-att/c0793_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0792", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 8905i / 8905 / 8995i / 8995 / 8986i / 8986 with PDL 310", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0792_it3844.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 8905i/8905/8995i/8995/8986i/8986 with PDL", "toe_version": "310", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0792", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo0000000354-att/c0792_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo0000000354-att/c0792_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo0000000354-att/c0792_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0791", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 49945KG / 49935KG / 49925KG / 4945F / 4945i / 4945 / 4935F / 4935i / 4935 / 4925F / 4925i / 4925 with Fax & PDL 310", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0791_it3842.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 49945KG / 49935KG / 49925KG / 4945F / 4945i / 4945 / 4935F / 4935i / 4935 / 4925F / 4925i / 4925 with Fax & PDL 310", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 49945KG/49935KG/49925KG/4945F/4945i/ 4945/4935F/4935i/4935/4925F/4925i/4925 with Fax & PDL", "toe_version": "310", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0791", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo00000002t3-att/c0791_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo00000002t3-att/c0791_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/vvmneo00000002t3-att/c0791_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0790", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Revoria Press E1136 / E1125 / E1110 / E1100 models with Copy, Print, Scan, Overwrite Storage and PostScript Controller ROM Ver. 21.21.2", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0790_it3841.html", "toe_japan_name": "-----", "enhanced": { "product": "FUJIFILM Revoria Press E1136 / E1125 / E1110 / E1100 models with Copy, Print, Scan, Overwrite Storage and PostScript", "toe_version": "Controller ROM Ver. 21.21.2", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0790", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000aek-att/c0790_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000aek-att/c0790_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000aek-att/c0790_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0789", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox PrimeLink C9065 / C9070 with Fax Controller ROM Ver. 1.3.5, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0789_it3840.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox PrimeLink C9065 / C9070 with Fax", "toe_version": "Controller ROM Ver. 1.3.5, Fax ROM Ver. 2.2.1", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0789", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000cu9-att/c0789_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000cu9-att/c0789_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000cu9-att/c0789_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, \"Protection Profile for Hardcopy Devices 1.0\". TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hard Disk" } }, { "cert_id": "JISEC-CC-CRP-C0788", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox PrimeLink B9110 / B9125 / B9136 Controller+PS ROM Ver. 1.3.5", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0788_it3839.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox PrimeLink B9110 / B9125 / B9136", "toe_version": "Controller+PS ROM Ver. 1.3.5", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0788", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000chy-att/c0788_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000chy-att/c0788_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000chy-att/c0788_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, \"Protection Profile for Hardcopy Devices 1.0\". TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation Overwrite Hard Disk" } }, { "cert_id": "JISEC-CC-CRP-C0787", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox PrimeLink B9100 with Fax Controller+PS ROM Ver. 1.3.5, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0787_it3838.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox PrimeLink B9100 with Fax", "toe_version": "Controller+PS ROM Ver. 1.3.5, Fax ROM Ver. 2.2.1", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0787", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000c6t-att/c0787_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000c6t-att/c0787_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nph2g60000000c6t-att/c0787_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, \"Protection Profile for Hardcopy Devices 1.0\". TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hard Disk" } }, { "cert_id": "JISEC-CC-CRP-C0786", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 950i / bizhub 850i / AccurioPrint 950i / AccurioPrint 850i with FK-516, DEVELOP ineo 950i / ineo 850i with FK-516 G00-09", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0786_it2836.html", "toe_japan_name": "-----", "enhanced": { "product": "KONICA MINOLTA bizhub 950i/bizhub 850i/ AccurioPrint 950i/AccurioPrint 850i with FK-516, DEVELOP ineo 950i/ineo 850i with FK-516", "toe_version": "G00-09", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0786", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000001g92-att/c0786_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000001g92-att/c0786_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000001g92-att/c0786_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0785", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos 5330 / 4830 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.20.5", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0785_it2831.html", "toe_japan_name": "FUJIFILM Apeos 5330 / 4830 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.20.5", "enhanced": { "product": "FUJIFILM Apeos 5330 / 4830 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.20.5", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0785", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000y1t-att/c0785_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000y1t-att/c0785_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000y1t-att/c0785_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0784", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C4030 / C3530 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.20.5", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0784_it2830.html", "toe_japan_name": "FUJIFILM Apeos C4030 / C3530 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.20.5", "enhanced": { "product": "FUJIFILM Apeos C4030 / C3530 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.20.5", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0784", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000hid-att/c0784_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000hid-att/c0784_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000hid-att/c0784_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0781", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos 7580 / 6580 / 5580 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.20.4, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0781_it2829.html", "toe_japan_name": "FUJIFILM Apeos 7580 / 6580 / 5580 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.20.4, Fax ROM Ver. 2.2.1", "enhanced": { "product": "FUJIFILM Apeos 7580 / 6580 / 5580 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.20.4, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0781", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000r4o-att/c0781_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000r4o-att/c0781_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000r4o-att/c0781_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0780", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C605X / C505X with Disk OverwriteController ROM Ver. 1.90.3", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0780_it2823.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C605X / C505X with Disk Overwrite", "toe_version": "Controller ROM Ver. 1.90.3", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0780", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000qnm-att/c0780_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000qnm-att/c0780_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000qnm-att/c0780_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hard Disk" } }, { "cert_id": "JISEC-CC-CRP-C0779", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C405DNController ROM Ver. 1.90.3", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0779_it2822.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C405DN", "toe_version": "Controller ROM Ver. 1.90.3", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0779", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000q76-att/c0779_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000q76-att/c0779_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000q76-att/c0779_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation" } }, { "cert_id": "JISEC-CC-CRP-C0778", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink B615X / B605X / B615XL / B605XL with Disk OverwriteController ROM Ver. 1.90.3", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0778_it2821.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink B615X / B605X / B615XL / B605XL with Disk Overwrite", "toe_version": "Controller ROM Ver. 1.90.3", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0778", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000pyd-att/c0778_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000pyd-att/c0778_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000pyd-att/c0778_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hard Disk" } }, { "cert_id": "JISEC-CC-CRP-C0777", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink B405DNController ROM Ver. 1.90.3", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0777_it2820.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink B405DN", "toe_version": "Controller ROM Ver. 1.90.3", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0777", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000phx-att/c0777_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000phx-att/c0777_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000phx-att/c0777_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation" } }, { "cert_id": "JISEC-CC-CRP-C0776", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO4525AC / 5525AC / 6525AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0776_it2812.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO4525AC/5525AC/6525AC all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V2.1", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0776", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000p94-att/c0776_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000p94-att/c0776_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000p94-att/c0776_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0775", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2525AC / 3025AC / 3525AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0775_it2811.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2525AC/3025AC/3525AC all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V2.1", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0775", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000osv-att/c0775_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000osv-att/c0775_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000osv-att/c0775_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0774", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2020AC / 2520AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0774_it2810.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2020AC/2520AC all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V2.1", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0774", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000o3j-att/c0774_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000o3j-att/c0774_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000o3j-att/c0774_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0771", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C7070 / C6570 / C5570 / C4570 / C3570 / C3070 models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 21.2.2, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0771_it2818.html", "toe_japan_name": "-----", "enhanced": { "product": "FUJIFILM Apeos C7070 / C6570 / C5570 / C4570 / C3570 / C3070 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 21.2.2, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0771", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf00000010sz-att/c0771_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf00000010sz-att/c0771_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf00000010sz-att/c0771_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0770", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imagePRESS V900 / V800 / V700 with PDL103", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0770_it2826.html", "toe_japan_name": "Canon imagePRESS V900 / V800 / V700 with PDL103", "enhanced": { "product": "Canon imagePRESS V900/V800/V700 with PDL", "toe_version": "103", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0770", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000m7y-att/c0770_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000m7y-att/c0770_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000m7y-att/c0770_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0769", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-12-01", "toe_overseas_link": null, "toe_japan_name": "KONICA MINOLTA bizhub C450i S / bizhub C360i S / bizhub C300i S / bizhub C250i S with FK-514GG4-N4", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0769_it2819.html", "enhanced": { "product": "KONICA MINOLTA bizhub C450i S/ bizhub C360i S/bizhub C300i S/bizhub C250i S with FK-514", "toe_version": "GG4-N4", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0769", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000lzj-att/c0769_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000lzj-att/c0769_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000lzj-att/c0769_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0766", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink B7135 / B7130 / B7125 with Fax and Disk OverwriteController ROM Ver. 1.1.16, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0766_it2807.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink B7135 / B7130 / B7125 with Fax and Disk Overwrite", "toe_version": "Controller ROM Ver. 1.1.16, Fax ROM Ver. 2.2.1", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0766", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ku1-att/c0766_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ku1-att/c0766_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ku1-att/c0766_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hrad Disk" } }, { "cert_id": "JISEC-CC-CRP-C0765", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C7130 / C7125 / C7120 with Fax and Disk Overwrite Controller ROM Ver. 1.1.16, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0765_it2806.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C7130 / C7125 / C7120 with Fax and Disk Overwrite", "toe_version": "Controller ROM Ver. 1.1.16, Fax ROM Ver. 2.2.1", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0765", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center, Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000klm-att/c0765_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000klm-att/c0765_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000klm-att/c0765_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hrad Disk" } }, { "cert_id": "JISEC-CC-CRP-C0763", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imagePRESS C2970KG / imagePRESS C270 / imagePRESS C265 / imagePRESS Lite C270 / imagePRESS Lite C265 with Fax & PDL210", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0763_it2815.html", "toe_japan_name": "Canon imagePRESS C2970KG / imagePRESS C270 / imagePRESS C265 / imagePRESS Lite C270 / imagePRESS Lite C265 with Fax & PDL210", "enhanced": { "product": "Canon imagePRESS C2970KG/ imagePRESS C270/ imagePRESS C265/ imagePRESS Lite C270/ imagePRESS Lite C265 with Fax & PDL", "toe_version": "210", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0763", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000kd0-att/c0763_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000kd0-att/c0763_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000kd0-att/c0763_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0762", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 48945KG / 48935KG / 48925KG / 4845F / 4845i / 4845 / 4835F / 4835i / 4835 / 4825F / 4825i / 4825 with Fax & PDL202", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0762_it2814.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 48945KG / 48935KG / 48925KG / 4845F / 4845i / 4845 / 4835F / 4835i / 4835 / 4825F / 4825i / 4825 with Fax & PDL202", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 48945KG/48935KG/48925KG/4845F/4845i/ 4845/4835F/4835i/4835/4825F/4825i/4825 with Fax & PDL", "toe_version": "202", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0762", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000k47-att/c0762_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000k47-att/c0762_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000k47-att/c0762_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0761", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 6870i / 6870 / 6860i / 6860 / 6855i with Fax & PDL1822", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0761_it2813.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 6870i / 6870 / 6860i / 6860 / 6855i with Fax & PDL1822", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 6870i/6870/6860i/6860/6855i with Fax & PDL", "toe_version": "1822", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0761", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000jny-att/c0761_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000jny-att/c0761_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000jny-att/c0761_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0760", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO5528A / 6528A all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0760_it2809.html", "toe_japan_name": "TOSHIBA e-STUDIO5528A / 6528A all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO5528A/6528A all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0760", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000jfc-att/c0760_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000jfc-att/c0760_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000jfc-att/c0760_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0759", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO4525AC / 5525AC / 6525AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0759_it2808.html", "toe_japan_name": "TOSHIBA e-STUDIO4525AC / 5525AC / 6525AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO4525AC/5525AC/6525AC all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0759", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000iyp-att/c0759_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000iyp-att/c0759_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000iyp-att/c0759_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0758", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2528A / 3028A / 3528A / 4528A all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0758_it1793.html", "toe_japan_name": "TOSHIBA e-STUDIO2528A / 3028A / 3528A / 4528A all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO2528A/3028A/3528A/4528A all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0758", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000iq3-att/c0758_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000iq3-att/c0758_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000iq3-att/c0758_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0757", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2525AC / 3025AC / 3525AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0757_it1792.html", "toe_japan_name": "TOSHIBA e-STUDIO2525AC / 3025AC / 3525AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO2525AC/3025AC/3525AC all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0757", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000i9g-att/c0757_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000i9g-att/c0757_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000i9g-att/c0757_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0756", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2020AC / 2520AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0756_it1791.html", "toe_japan_name": "TOSHIBA e-STUDIO2020AC / 2520AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO2020AC/2520AC all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0756", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000i11-att/c0756_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000i11-att/c0756_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000i11-att/c0756_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0754", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C530F / C530FB, SAVIN IM C530FB, LANIER IM C530FB, nashuatec IM C530F / C530FB, Rex Rotary IM C530F / C530FB, Gestetner IM C530F / C530FBE-1.00", "expiration_date": null, "claim": "EAL2", "certification_date": "2022-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0754_it1790.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C530F/C530FB, SAVIN IM C530FB, LANIER IM C530FB, nashuatec IM C530F/C530FB, Rex Rotary IM C530F/C530FB, Gestetner IM C530F/C530FB", "toe_version": "E-1.00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0754", "cc_version": "3.1 Release5", "assurance_level": "EAL2", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000hci-att/c0754_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000hci-att/c0754_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000hci-att/c0754_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a multifunction product that provides Copy, Printer, Scanner, and Fax functions. The TOE provides security functions to prevent unauthorized disclosure and alteration of user data and security function setting data. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Network Protection Function: Enables the TOE to protect network communications using encryption. Stored Data Protection Function: Enables the TOE to protect the stored data using encryption. Security Management Function: Enables the TOE administrator to control security functions. Integrity Verification Function: Enables the TOE to verify the integrity of executable codes of control software. Fax Line Separation Function: Enables the TOE to prevent unauthorized intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0753", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Revoria Press E1136 / E1125 / E1110 / E1100 / E1100 GK models with Copy, Print, Scan, Overwrite Storage and PostScriptController ROM Ver. 1.1.1", "expiration_date": "2027-07-01", "claim": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0753_it1801_01.html", "toe_japan_name": "FUJIFILM Revoria Press E1136 / E1125 / E1110 / E1100 models with Copy, Print, Scan, Overwrite Storage and PostScriptController ROM Ver. 1.1.1", "enhanced": { "product": "FUJIFILM Revoria Press E1136 / E1125 / E1110 / E1100 / E1100 GK models with Copy, Print, Scan, Overwrite Storage and PostScript", "toe_version": "Controller ROM Ver. 1.1.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0753", "expiration_date": "2027-07-08", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r000003djbn-att/c0753iz_emar.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r000003djbn-att/c0753iz_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/iij53r000003djbn-att/c0753iz_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0752", "supplier": "RISO KAGAKU CORPORATION", "toe_overseas_name": "[Japanese] ORPHIS FT2430 with OR Scanner HS7000 and RISO Security Package for FT [English] ComColor FT2430 with Scanner HS7000 and RISO Security Package F20SORAALL 1.2.000", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2022-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0752_it2804_01.html" } ], "toe_japan_name": "[Japanese] ORPHIS FT2430 with OR Scanner HS7000 and RISO Security Package for FT [English] ComColor FT2430 with Scanner HS7000 and RISO Security Package F20SORAALL 1.1.002" }, { "cert_id": "JISEC-CC-CRP-C0751", "supplier": "RISO KAGAKU CORPORATION", "toe_overseas_name": "[Japanese] ORPHIS FT1430 with OR Scanner HS7000 and RISO Security Package for FT [English] ComColor black FT1430 / ComColor black FT1430R with Scanner HS7000 and RISO Security Package F20SORAALL 1.2.000", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2022-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0751_it2803_01.html" } ], "toe_japan_name": "[Japanese] ORPHIS FT1430 with OR Scanner HS7000 and RISO Security Package for FT [English] ComColor black FT1430 / ComColor black FT1430R with Scanner HS7000 and RISO Security Package F20SORAALL 1.1.002" }, { "cert_id": "JISEC-CC-CRP-C0750", "supplier": "RISO KAGAKU CORPORATION", "toe_overseas_name": "[Japanese] ORPHIS FT5430 / ORPHIS FT5230 / ORPHIS FT5230A / ORPHIS FT5231 with OR Scanner HS7000 and RISO Security Package for FT [English] ComColor FT5430 / ComColor FT5430R / ComColor FT5230 / ComColor FT5230R / ComColor FT5231 / ComColor FT5231R / ComColor FT5000 / ComColor FT5000R with Scanner HS7000 and RISO Security Package F20SORAALL 1.2.000", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2022-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0750_it1800_01.html" } ], "toe_japan_name": "[Japanese] ORPHIS FT5430 / ORPHIS FT5230 / ORPHIS FT5230A / ORPHIS FT5231 with OR Scanner HS7000 and RISO Security Package for FT [English] ComColor FT5430 / ComColor FT5430R / ComColor FT5230 / ComColor FT5230R / ComColor FT5231 / ComColor FT5231R / ComColor FT5000 / ComColor FT5000R with Scanner HS7000 and RISO Security Package F20SORAALL 1.1.002" }, { "cert_id": "JISEC-CC-CRP-C0749", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-06-01", "toe_overseas_link": null, "toe_japan_name": "KONICA MINOLTA AccurioPrint 2100GM2-10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0749_it1802.html", "enhanced": { "product": "KONICA MINOLTA AccurioPrint 2100", "toe_version": "GM2-10", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0749", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000fzg-att/c0749_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000fzg-att/c0749_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000fzg-att/c0749_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, scan, print and Document storage and retrieval. The TOE provides the security functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and authentication function Access control function Storage encryption function Trusted communications function Security management function Audit function Software update verification function Self-testing function" } }, { "cert_id": "JISEC-CC-CRP-C0748", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C568iF / C568iFZ / C478i / C478iF / C478iZ / C478iFZ with Fax1514", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0748_it1784.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C568iF/C568iFZ/C478i/C478iF/C478iZ/C478iFZ with Fax", "toe_version": "1514", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0748", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000fr1-att/c0748_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000fr1-att/c0748_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000fr1-att/c0748_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0747", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2018A / 2518A / 3018A / 3518A / 4518A / 5018A all of the above with FAX Unit and FIPS Hard Disk KitSYS V2.0", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0747_it1799.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2018A/2518A/3018A/3518A/4518A/ 5018A all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V2.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0747", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000fiq-att/c0747_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0746", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2515AC / 3015AC / 3515AC / 4515AC / 5015AC all of the above with FAX Unit and FIPS Hard Disk KitSYS V2.0", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0746_it1798.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2515AC/3015AC/3515AC/4515AC/ 5015AC all of the above with FAX Unit and FIPS Hard Disk Kit", "toe_version": "SYS V2.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0746", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000faf-att/c0746_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Data Encryption Trusted Communication Function TSF Data Protection TSF Self Protection Software Update Verification Audit Function Function which separate PSTN Fax and Network" } }, { "cert_id": "JISEC-CC-CRP-C0745", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C5240 model with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.7", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0745_it1789.html", "toe_japan_name": "FUJIFILM Apeos C5240 modelwith Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.7", "enhanced": { "product": "FUJIFILM Apeos C5240 model with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.0.7", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0745", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000f20-att/c0745_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000f20-att/c0745_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000f20-att/c0745_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0744", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos 6340 model with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.7", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0744_it1787.html", "toe_japan_name": "FUJIFILM Apeos 6340 modelwith Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.7", "enhanced": { "product": "FUJIFILM Apeos 6340 model with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.0.7", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0744", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000et0-att/c0744_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000et0-att/c0744_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000et0-att/c0744_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0743", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C3060 / C2560 / C2360 / C2060 / C3060 GK / C2560 GK / C2060 GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.6, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0743_it1788.html", "toe_japan_name": "FUJIFILM Apeos C3060 / C2560 / C2360 / C2060 / C3060 GK / C2560 GK / C2060 GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.6, Fax ROM Ver. 2.2.1", "enhanced": { "product": "FUJIFILM Apeos C3060 / C2560 / C2360 / C2060 / C3060 GK / C2560 GK / C2060 GK models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.0.6, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0743", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ec6-att/c0743_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ec6-att/c0743_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ec6-att/c0743_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0742", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos 3560 / 3060 / 2560 / 3560 GK / 3060 GK / 2560GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.4, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0742_it1785.html", "toe_japan_name": "FUJIFILM Apeos 3560 / 3060 / 2560 / 3560 GK / 3060 GK / 2560GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.4, Fax ROM Ver. 2.2.1", "enhanced": { "product": "FUJIFILM Apeos 3560 / 3060 / 2560 / 3560 GK / 3060 GK / 2560 GK models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.0.4, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0742", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000dvu-att/c0742_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000dvu-att/c0742_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000dvu-att/c0742_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0741", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos 5570 / 4570 / 3570 / 5570 GK / 4570 GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.8, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0741_it1786.html", "toe_japan_name": "FUJIFILM Apeos 5570 / 4570 / 3570 / 5570 GK / 4570 GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.8, Fax ROM Ver. 2.2.1", "enhanced": { "product": "FUJIFILM Apeos 5570 / 4570 / 3570 / 5570 GK / 4570 GK models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.0.8, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0741", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000dnf-att/c0741_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000dnf-att/c0741_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000dnf-att/c0741_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0740", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 717 / 617 / 527 Series 2600 model1.0", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2022-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0740_it0756.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 717/617/527 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0740", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000d6g-att/c0740_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000d6g-att/c0740_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000d6g-att/c0740_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0739", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C477 Series 2600 model1.0", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2022-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0739_it0754.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C477 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0739", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000cpm-att/c0739_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000cpm-att/c0739_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000cpm-att/c0739_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0736", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 2500 / 2500G / 2509J / 3000 / 3000G / 3009J / 3500 / 3500G / 3509J / 4000 / 4000G / 5000 / 5000G / 6000 / 6000G, SAVIN IM 2500 / 2500G / 3000 / 3000G / 3500 / 3500G / 4000 / 4000G / 5000 / 5000G / 6000 / 6000G, LANIER IM 2500 / 2500G / 3000 / 3000G / 3500 / 3500G / 4000 / 4000G / 5000 / 5000G / 6000 / 6000G, nashuatec IM 2500 / 3000 / 3500 / 4000 / 5000 / 6000, Rex Rotary IM 2500 / 3000 / 3500 / 4000 / 5000 / 6000, Gestetner IM 2500 / 3000 / 3500 / 4000 / 5000 / 6000E-1.01", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2022-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0736_it1780.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 2500/2500G/2509J/3000/3000G/ 3009J/3500/3500G/3509J/4000/4000G/5000/ 5000G/6000/6000G, SAVIN IM 2500/2500G/3000/3000G/3500/ 3500G/4000/4000G/5000/5000G/6000/6000G, LANIER IM 2500/2500G/3000/3000G/3500/ 3500G/4000/4000G/5000/5000G/6000/6000G, nashuatec IM 2500/3000/3500/4000/5000/6000, Rex Rotary IM 2500/3000/3500/4000/5000/6000, Gestetner IM 2500/3000/3500/4000/5000/6000", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0736", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ch7-att/c0736_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ch7-att/c0736_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000ch7-att/c0736_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0735", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2022-01-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM 6000 / 5000 / 4000 / 3500 / 2500J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0735_it1779.html", "enhanced": { "product": "RICOH IM 6000/5000/4000/3500/2500", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0735", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000c8s-att/c0735_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000c8s-att/c0735_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000c8s-att/c0735_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0734", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-01-01", "toe_overseas_link": null, "toe_japan_name": "KONICA MINOLTA AccurioPress C7100 / C7090 with UK-112/PF-713GM4-20", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0734_it1794.html", "enhanced": { "product": "KONICA MINOLTA AccurioPress C7100/C7090 with UK-112/PF-713", "toe_version": "GM4-20", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0734", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000c0d-att/c0734_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000c0d-att/c0734_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000c0d-att/c0734_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, scan and Document storage and retrieval. The TOE provides the security functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and authentication function Access control function Storage encryption function Trusted communications function Security management function Audit function Software update verification function Self-testing function" } }, { "cert_id": "JISEC-CC-CRP-C0733", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C38935KG / C38930KG / C38926KG / C38922KG / C3835 / C3835i / C3835F / C3830 / C3830i / C3830F / C3826 / C3826i / C3826F / C3822 / C3822i with Fax & PDL628", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0733_it1783.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C38935KG / C38930KG / C38926KG / C38922KG / C3835 / C3835i / C3835F / C3830 / C3830i / C3830F / C3826 / C3826i / C3826F / C3822 / C3822i with Fax & PDL628", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C38935KG/C38930KG/C38926KG/C38922KG/ C3835/C3835i/C3835F/C3830/C3830i/C3830F/ C3826/C3826i/C3826F/C3822/C3822i with Fax & PDL", "toe_version": "628", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0733", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bry-att/c0733_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bry-att/c0733_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bry-att/c0733_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0732", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C58970KG / C58960KG / C58950KG / C58940KG / C5870i / C5870F / C5860i / C5860F / C5850i / C5850F / C5840i / C5840F with Fax & PDL619", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0732_it1782.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C58970KG / C58960KG / C58950KG / C58940KG / C5870i / C5870F / C5860i / C5860F / C5850i / C5850F / C5840i / C5840F with Fax & PDL619", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C58970KG/C58960KG/C58950KG/C58940KG/ C5870i/C5870F/C5860i/C5860F/C5850i/ C5850F/C5840i/C5840F with Fax & PDL", "toe_version": "619", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0732", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bjj-att/c0732_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bjj-att/c0732_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bjj-att/c0732_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0731", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 68970KG / 68960KG / 6870 / 6870i / 6860 / 6860i with Fax & PDL619", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0731_it1781.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 68970KG / 68960KG / 6870 / 6870i / 6860 / 6860i with Fax & PDL619", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 68970KG/68960KG/6870/6870i/6860/6860i with Fax & PDL", "toe_version": "619", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0731", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bb4-att/c0731_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bb4-att/c0731_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000bb4-att/c0731_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions SSD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0730", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-09-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM 9000 / 9000T / 8000 / 7000J-1.000", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0730_it1778.html", "enhanced": { "product": "RICOH IM 9000/9000T/8000/7000", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0730", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000b2p-att/c0730_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000b2p-att/c0730_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000b2p-att/c0730_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0729", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 7000 / 8000 / 9000, SAVIN IM 7000 / 8000 / 9000, LANIER IM 7000 / 8000 / 9000, nashuatec IM 7000 / 8000 / 9000, Rex Rotary IM 7000 / 8000 / 9000, Gestetner IM 7000 / 8000 / 9000E-1.00", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0729_it1777.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 7000/8000/9000, SAVIN IM 7000/8000/9000, LANIER IM 7000/8000/9000, nashuatec IM 7000/8000/9000, Rex Rotary IM 7000/8000/9000, Gestetner IM 7000/8000/9000", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0729", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000am8-att/c0729_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000am8-att/c0729_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000am8-att/c0729_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0728", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "EPSON LX-10020M / WF-M21000 with FAX1.00", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0728_it0774.html", "toe_japan_name": "EPSON LX-10020M / WF-M21000 with FAX1.00", "enhanced": { "product": "EPSON LX-10020M/WF-M21000 with FAX", "toe_version": "1.00", "product_type": "Multifunction Peripheral", "cert_id": "JISEC-CC-CRP-C0728", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000a4z-att/c0728_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000a4z-att/c0728_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000a4z-att/c0728_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a multifunction peripheral (MFP) that has the functions, such as copy, print, scan, FAX, document storage and retrieval. This TOE provides Security Functions required for \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for MFPs. TOE Security functions The security functions of this TOE are as follows: Identification and Authentication Function Function to identify and authenticate users. Access Control Function for TOE Function Function to restrict available functions for each authorized user. Document Access Control Function Function to allow only the authorized users and the administrator to access to stored documents. Residual Data Overwrite Function Function to overwrite and delete unnecessary document data in the HDD and the Flash ROM. Network Protection Function Function to protect communication data using encryption communication protocols. Security Management Function Function to allow only the administrator to manage security functions. Self-Test Function Function to verify the integrity of executable codes at startup. Audit Log Function Function to record audit logs related to security events and allow only the administrator to view that log." } }, { "cert_id": "JISEC-CC-CRP-C0727", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-08-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C6000 / C5500 / C4500J-2.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0727_it0769.html", "enhanced": { "product": "RICOH IM C6000/C5500/C4500", "toe_version": "J-2.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0727", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000009w6-att/c0727_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000009w6-att/c0727_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000009w6-att/c0727_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0726", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C4500 / C4500G / C5500 / C6000 / C6000G, SAVIN IM C4500 / C4500G / C6000 / C6000G, LANIER IM C4500 / C4500G / C6000 / C6000G, nashuatec IM C4500 / C5500 / C6000, Rex Rotary IM C4500 / C5500 / C6000, Gestetner IM C4500 / C5500 / C6000E-2.00", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0726_it0768.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C4500/C4500G/C5500/C6000/C6000G, SAVIN IM C4500/C4500G/C6000/C6000G, LANIER IM C4500/C4500G/C6000/C6000G, nashuatec IM C4500/C5500/C6000, Rex Rotary IM C4500/C5500/C6000, Gestetner IM C4500/C5500/C6000", "toe_version": "E-2.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0726", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio1000000097a-att/c0726_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio1000000097a-att/c0726_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio1000000097a-att/c0726_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0725", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C8180 / C7580 / C6580 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.20, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0725_it1776.html", "toe_japan_name": "FUJIFILM Apeos C8180 / C7580 / C6580 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.20, Fax ROM Ver. 2.2.1", "enhanced": { "product": "FUJIFILM Apeos C8180 / C7580 / C6580 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.0.20, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0725", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000007sh-att/c0725_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000007sh-att/c0725_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000007sh-att/c0725_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0724", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "FUJIFILM Apeos C7070 / C6570 / C5570 / C4570 / C3570 / C3070 / C2570 / C7070 GK / C6570 GK / C5570 GK / C4570 GK / C3570 GK / C3070 GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.20, Fax ROM Ver. 2.2.1", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2022-09", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0724_it1775_01.html" } ], "toe_japan_name": "FUJIFILM Apeos C7070 / C6570 / C5570 / C4570 / C3570 / C3070 / C2570 / C7070 GK / C6570 GK / C5570 GK / C4570 GK / C3570 GK / C3070 GK models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.0.20, Fax ROM Ver. 2.2.1" }, { "cert_id": "JISEC-CC-CRP-C0723", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C55960KG (III) / C55950KG (III) / C55940KG (III) / C55935KG (III) / C5560i III / C5560F III / C5550i III / C5550F III / C5540i III / C5540F III / C5535i III / C5535F III with FAX and PDL16.20", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0723_it9712.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C55960KG (III) / C55950KG (III) / C55940KG (III) / C55935KG (III) / C5560i III / C5560F III / C5550i III / C5550F III / C5540i III / C5540F III / C5535i III / C5535F III with FAX and PDL16.20", "enhanced": { "product": "Canon imageRUNNER ADVANCE C55960KG (III)/C55950KG (III)/C55940KG (III)/ C55935KG (III)/C5560i III/C5560F III/C5550i III/ C5550F III/C5540i III/C5540F III/C5535i III/ C5535F III with FAX and PDL", "toe_version": "16.20", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0723", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product that has print, scan, copy, fax, and document storage and retrieval function. The TOE provides the security functionality required by the protection profile for Multifunction Product, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: User Authentication Functions Access Control Functions HDD Data Encryption Function LAN Data Protection Function Signature Verification/Generation Function Management Functions Audit Log Function Highly Reliable Update Function Self-Testing Function PSTN Fax-Network Separation Function HDD Data Erase Function Data Batch Initialization Function" } }, { "cert_id": "JISEC-CC-CRP-C0722", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH Pro C5300SL, nashuatec Pro C5300SL, Rex Rotary Pro C5300SL, Gestetner Pro C5300SL, infotec Pro C5300SLE-1.00", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0722_it0767.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH Pro C5300SL, nashuatec Pro C5300SL, Rex Rotary Pro C5300SL, Gestetner Pro C5300SL, infotec Pro C5300SL", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0722", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006ui-att/c0722_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006ui-att/c0722_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006ui-att/c0722_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0721", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imagePRESS C1970KG / imagePRESS C170 / imagePRESS C165 / imagePRESS Lite C170 / imagePRESS Lite C165 2600 model2.0", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0721_it0771.html", "toe_japan_name": "Canon imagePRESS C1970KG / imagePRESS C170 / imagePRESS C165 / imagePRESS Lite C170 / imagePRESS Lite C165 2600 model2.0", "enhanced": { "product": "Canon imagePRESS C1970KG /imagePRESS C170/imagePRESS C165/imagePRESS Lite C170/imagePRESS Lite C165 2600 model", "toe_version": "2.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0721", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006li-att/c0721_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006li-att/c0721_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006li-att/c0721_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0720", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA AccurioPress C4080 / AccurioPress C4070 / AccurioPrint C4065 with UK-112GM2-20", "expiration_date": null, "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0720_it0772.html", "toe_japan_name": "KONICA MINOLTA AccurioPress C4080 / AccurioPress C4070 / AccurioPrint C4065 with UK-112GM2-20", "enhanced": { "product": "KONICA MINOLTA AccurioPress C4080 / AccurioPress C4070 / AccurioPrint C4065 with UK-112", "toe_version": "GM2-20", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0720", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006bm-att/c0720_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006bm-att/c0720_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000006bm-att/c0720_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, scan and Document storage and retrieval. The TOE provides the security functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and authentication function Access control function Storage encryption function Trusted communications function Security management function Audit function Software update verification function Self-testing function" } }, { "cert_id": "JISEC-CC-CRP-C0719", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH Pro C5300S / C5310S, SAVIN Pro C5300S / C5310S, LANIER Pro C5300S / C5310S, nashuatec Pro C5300S / C5310S, Rex Rotary Pro C5300S / C5310S, Gestetner Pro C5300S / C5310S, infotec Pro C5300S / C5310SE-1.00", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0719_it0766.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH Pro C5300S/C5310S, SAVIN Pro C5300S/C5310S, LANIER Pro C5300S/C5310S, nashuatec Pro C5300S/C5310S, Rex Rotary Pro C5300S/C5310S, Gestetner Pro C5300S/C5310S, infotec Pro C5300S/C5310S", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0719", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000622-att/c0719_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000622-att/c0719_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000622-att/c0719_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0718", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-04-01", "toe_overseas_link": null, "toe_japan_name": "RICOH Pro C5310S / C5300SJ-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0718_it0765.html", "enhanced": { "product": "RICOH Pro C5310S/C5300S", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0718", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001fda-att/c0718_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001fda-att/c0718_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001fda-att/c0718_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0717", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 6000 Series 2600 model1.0", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0717_it0755.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 6000 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 6000 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0717", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001d2t-att/c0717_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001d2t-att/c0717_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001d2t-att/c0717_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0716", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C357 / C257 Series 2600 model1.0", "expiration_date": null, "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0716_it0753.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C357 / C257 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C357/C257 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0716", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001cdo-att/c0716_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001cdo-att/c0716_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001cdo-att/c0716_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0660", "supplier": "JR EAST MECHATRONICS CO, LTD.", "toe_overseas_name": "JREM 6K Contactless Smart Card IC chip with fast processing function for transport1.00", "expiration_date": "2026-09-01", "claim": "EAL5+ ALC_DVS.2, AVA_VAN.5 PP", "certification_date": "2019-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0660_it8673.html", "toe_japan_name": "JREM 6K Contactless Smart Card IC chip with fast processing function for transport1.00", "enhanced": { "product": "JREM 6K Contactless Smart Card IC chip with fast processing function for transport", "toe_version": "1.00", "product_type": "Smartcard", "cert_id": "JISEC-CC-CRP-C0660", "certification_date": "2019-12-25", "expiration_date": "2026-09-30", "cc_version": "3.1 release5", "assurance_level": "EAL5 Augmented with ALC_DVS.2, AVA_VAN.5", "protection_profile": "Public Transportation IC Card Protection Profile Version 1.12", "vendor": "JR EAST MECHATRONICS CO, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000qbq-att/c0660_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000qbq-att/c0660_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000qbq-att/c0660_st.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IC chip for a public transportation IC card compliant with the Public Transportation IC Card Protection Profile. The TOE consists of the IC with a contactless interface and a smartcard embedded software (FeliCa OS). TOE security functionality The main security functions of TOE are shown below. Physical attacks, side channel attacks and perturbation are known as attacks against IC card. The TOE offers the tamper-resistant functionalities that protect IC chip from exploitation of the assets. The TOE offers protection of the confidentiality and integrity of the assets stored in the TOE by the mutual authentication function and the access control function depending on the service. The TOE communicates with the external entity via contactless interface. The TOE offers protection against the eavesdropping and altering by establishing the secure channel. The TOE offers prevention of abuse of functions unavailable after TOE delivery." } }, { "cert_id": "JISEC-CC-CRP-C0649", "supplier": "Maxell, Ltd", "toe_overseas_name": "ID&Trust IDentity-J with SAC (BAC+PACE) and AA version 1.0 on IFX M7892 G12 SLJ 52Gv1.0.7052", "expiration_date": "2026-09-01", "claim": "EAL4+ ALC_DVS.2 PP", "certification_date": "2019-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0649_it8679.html", "toe_japan_name": "ID&Trust IDentity-J with SAC (BAC+PACE) and AA version 1.0 on IFX M7892 G12 SLJ 52Gv1.0.7052", "enhanced": { "product": "ID&Trust IDentity-J with SAC (BAC+PACE) and AA version 1.0 on IFX M7892 G12 SLJ 52G", "toe_version": "v1.0.7052", "product_type": "ICs for e-passports", "cert_id": "JISEC-CC-CRP-C0649", "certification_date": "2019-08-28", "expiration_date": "2026-09-30", "cc_version": "3.1 release5", "assurance_level": "EAL4 Augmented with ALC_DVS.2", "protection_profile": "Protection Profile for ePassport IC with SAC (BAC+PACE) and Active Authentication version 1.00 (Certification Identification : JISEC-C0500)", "vendor": "Maxell, Ltd", "evaluation_facility": "TÜV Informationstechnik GmbH, Evaluation Body for IT Security", "report_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000o9u-att/C0649_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000o9u-att/c0649_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000o9u-att/c0649_st.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an ePassport IC (including necessary software). This ePassport IC is IC chip hardware with the contactless communication interface, and basic software and ePassport application program. The operation of the security functions applied to contactless communication with the terminal comply with the BAC, PACE, and Active Authentication specifications defined by Part11 of “ICAO Doc 9303 Machine readable Travel Documents Seventh Edition”. TOE security functionality The main security functions of the TOE are to protect data stored in the TOE from illicit reading or writing. The TOE provides the main security functions, including: Basic Access Control function; Password Authenticated Connection Establishment function; Active Authentication function; Disable function of BAC function; Write protection function; Protection function in transport; and Tamper resistance." } }, { "cert_id": "JISEC-CC-CRP-C0648", "supplier": "Maxell, Ltd.", "toe_overseas_name": "ID&Trust IDentity-J with SAC (PACE) and AA version 1.0 on IFX M7892 G12 SLJ 52Gv1.0.7052", "expiration_date": "2026-09-01", "claim": "EAL4+ ALC_DVS.2, AVA_VAN.5 PP", "certification_date": "2019-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0648_it8678.html", "toe_japan_name": "ID&Trust IDentity-J with SAC (PACE) and AA version 1.0 on IFX M7892 G12 SLJ 52Gv1.0.7052", "enhanced": { "product": "ID&Trust IDentity-J with SAC (PACE) and AA version 1.0 on IFX M7892 G12 SLJ 52G", "toe_version": "v1.0.7052", "product_type": "ICs for e-passports", "cert_id": "JISEC-CC-CRP-C0648", "certification_date": "2019-08-28", "expiration_date": "2026-09-30", "cc_version": "3.1 release5", "assurance_level": "EAL4 Augmented with ALC_DVS.2, AVA_VAN.5", "protection_profile": "Protection Profile for ePassport IC with SAC (PACE) and Active Authentication version 1.00 (Certification Identification: JISEC-C0499)", "vendor": "Maxell, Ltd.", "evaluation_facility": "TÜV Informationstechnik GmbH, Evaluation Body for IT Security", "report_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000nba-att/C0648_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000nba-att/c0648_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/b9ck990000000nba-att/c0648_st.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an ePassport IC (including necessary software). This ePassport IC is IC chip hardware with the contactless communication interface, and basic software and ePassport application program. The operation of the security functions applied to contactless communication with the terminal comply with the PACE, and Active Authentication specifications defined by Part11 of “ICAO Doc 9303 Machine readable Travel Documents Seventh Edition”. TOE security functionality The main security functions of the TOE are to protect data stored in the TOE from illicit reading or writing. The TOE provides the main security functions, including: Password Authenticated Connection Establishment function; Active Authentication function; Write protection function; Protection function in transport; and Tamper resistance." } }, { "cert_id": "JISEC-CC-CRP-C0517", "supplier": "NTT Communications Corporation", "toe_overseas_name": "-----", "expiration_date": "2026-09-01", "claim": "EAL4+ ALC_DVS.2, AVA_VAN.5", "certification_date": "2016-08-01", "toe_overseas_link": null, "toe_japan_name": "eLWISE-TMN1.0.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0517_it5572.html", "enhanced": { "product": "eLWISE-TMN", "toe_version": "1.0.0", "product_type": "Smartcard", "certification_date": "2016-08-03", "expiration_date": "2026-09-30", "cc_version": "3.1 release4", "assurance_level": "EAL4 Augmented with ALC_DVS.2, AVA_VAN.5", "vendor": "NTT Communications Corporation", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the IC card implementing security functions required for the Personal Number Card. The embodiment of the TOE is the IC card equipped with an IC chip and both contact interface and contactless interface. Within the IC chip, programs and data are embedded for providing services as the Personal Number Card. The programs include the software platform providing an operational environment for each application program (denoted “AP” hereafter), Input Support AP for the personal information printed on the card, Basic Resident Registration AP, Public ID authentication AP, and AP for digitization of the personal information printed on the card. The four APs (from 2. to 5.) are running on 1. the software platform, and are called “the basic APs”. TOE security functionality The TOE controls logical access via external interfaces by the programs inside the TOE (i.e. the software platform and the basic APs), in order to protect its information assets. This is done by identifying and authenticating a user, and permitting the user to access the information/resources within his/her access rights. Also the users and service functions are defined for each programs (i.e. the software platform, and the four APs). The main security features of the TOE are as follows: secure communication The TOE communicates using its external interfaces (i.e. contact interface or contactless interface) with an external device. For communication data which need protection from eavesdropping and/or tampering, the TOE protects confidentiality and/or integrity of those communication data by applying data encryption/decryption and/or generation/verification of message authentication code (MAC). identification and authentication In order to provide services specified for operators depending on their privilege, the TOE performs operator authentication for each service, and enforces access controls. cryptographic functionality The TOE provides the cryptographic processing functionality for services of the software platform and the APs. protection against physical attacks The TOE also mitigates physical attacks against its hardware part." } }, { "cert_id": "JISEC-CC-CRP-C0516", "supplier": "Toshiba Infrastructure Systems & Solutions Corporation", "toe_overseas_name": "-----", "expiration_date": "2026-09-01", "claim": "EAL4+ ALC_DVS.2, AVA_VAN.5", "certification_date": "2016-08-01", "toe_overseas_link": null, "toe_japan_name": "TOSMART-GX11.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0516_it5557.html", "enhanced": { "product": "TOSMART-GX1", "toe_version": "1.00", "product_type": "Smartcard", "certification_date": "2016-08-03", "expiration_date": "2026-09-30", "cc_version": "3.1 release4", "assurance_level": "EAL4 Augmented with ALC_DVS.2, AVA_VAN.5", "vendor": "Toshiba Infrastructure Systems & Solutions Corporation", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a smart card. It is an application-specific product for the Social Security and Tax Number System in Japan. The hardware of TOE is the plastic card in which IC chip and physical external interface parts were embedded. A physical external interface is equipped with both IC module terminal interface and a contactless interface. The software of TOE is the program and data which provide service of the Personal Number Card. This software consists of a platform which has HAL, OS, and platform functions of ISD and SSD, and AP (Application program). On a platform, four types of APs work for particular usages. These four types APs are “Input Support AP for the personal information printed on the card”, “Basic Resident Registration AP”, Public ID authentication AP” and “AP for digitization of the personal information printed on the card”. TOE security functionality TOE is equipped with the security function (security features) for protecting the information property. Software part of TOE (a platform and a basic AP) manages logical access through an external interface. In other words, it identifies and authenticates the user, and makes the user use the information and resources of TOE according to the user’s authority. The main security functions of TOE are shown below. Communication data protection TOE communicates with an external terminal through two communication interfaces, IC module terminal interface and a contactless interface. Communication which needs to be protected from tapping and tampering protects the confidentiality and/or integrity by applying “secure messaging” function which performs communication data encryption and decoding and /or MAC (Message Authentication Code) generation and verification. User authentication and access control In order to provide the service according to the user's authority, TOE performs user authentication for every service, and carries out access control. Cryptographic operation TOE offers the cryptographic operation function in connection with service of a platform or each AP. The cryptographic operation function is used for secure messaging, user authentication, or signature and user authentication for the public ID authentication AP and so on. Defense against physical attacks The security function of TOE also protects own hardware from physical attacks." } }, { "cert_id": "JISEC-CC-CRP-C0476", "supplier": "NTT Communications Corporation", "toe_overseas_name": "-----", "expiration_date": "2026-09-01", "claim": "EAL4+ ALC_DVS.2, AVA_VAN.5", "certification_date": "2015-06-01", "toe_overseas_link": null, "toe_japan_name": "eLWISE-S MN1.0.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0476_it4513.html", "enhanced": { "product": "eLWISE-S MN", "toe_version": "1.0.0", "product_type": "Smartcard", "certification_date": "2015-06-18", "expiration_date": "2026-09-30", "cc_version": "3.1 release4", "assurance_level": "EAL4 Augmented with ALC_DVS.2, AVA_VAN.5", "vendor": "NTT Communications Corporation", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the IC card implementing security functions required for the Personal Number Card. The embodiment of the TOE is the IC card equipped with an IC chip and both contact interface and contactless interface. Within the IC chip, programs and data are embedded for providing services as the Personal Number Card. The programs include the software platform providing an operational environment for each application program (denoted “AP” hereafter), Input Support AP for the personal information printed on the card, Basic Resident Registration AP, Public ID authentication AP, and AP for digitization of the personal information printed on the card. The four APs (from 2. to 5.) are running on 1. the software platform, and are called \"the basic APs\". TOE security functionality The TOE controls logical access via external interfaces by the programs inside the TOE (i.e. the software platform and the basic APs), in order to protect its information assets. This is done by identifying and authenticating a user, and permitting the user to access the information/resources within his/her access rights. Also the users and service functions are defined for each programs (i.e. the software platform, and the four APs). The main security features of the TOE are as follows: secure communication The TOE communicates using its external interfaces (i.e. contact interface or contactless interface) with an external device. For communication data which need protection from eavesdropping and/or tampering, the TOE protects confidentiality and/or integrity of those communication data by applying data encryption/decryption and/or generation/verification of message authentication code (MAC). identification and authentication In order to provide services specified for operators depending on their privilege, the TOE performs operator authentication for each service, and enforces access controls. cryptographic functionality The TOE provides the cryptographic processing functionality for services of the software platform and the APs. protection against physical attacks The TOE also mitigates physical attacks against its hardware part." } }, { "cert_id": "JISEC-CC-CRP-C0440", "supplier": "Renesas Electronics Corporation", "toe_overseas_name": "RS47X integrated circuit03", "expiration_date": "2026-09-01", "claim": "EAL5+ ALC_DVS.2, AVA_VAN.5 PP", "certification_date": "2014-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0440_it3468.html", "toe_japan_name": "RS47X integrated circuit03", "enhanced": { "product": "RS47X integrated circuit", "toe_version": "03", "product_type": "Security Controller (integrated circuit)", "certification_date": "2014-10-20", "expiration_date": "2026-09-30", "cc_version": "3.1 release4", "assurance_level": "EAL5 Augmented with ALC_DVS.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile Version 1.0, BSI-CC-PP-0035-2007", "vendor": "Renesas Electronics Corporation", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the security IC, which is designed for security purpose, to provide basic functionalities requested for the hardware on which security embedded software runs. TOE security functionality The TOE provides following security functions: Transition to the secure state upon detection of the exposure to the critical conditions for, such as supplied voltage, frequency, and temperature DES coprocessor with Triple-DES capability AES coprocessor with AES capability Physical random number generator" } }, { "cert_id": "JISEC-CC-CRP-C0428", "supplier": "Toshiba Corporation", "toe_overseas_name": "T6ND7 Integrated Circuit4.0", "expiration_date": "2026-09-01", "claim": "EAL4+ ALC_DVS.2, AVA_VAN.5 PP", "certification_date": "2014-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0428_it3470.html", "toe_japan_name": "T6ND7 Integrated Circuit4.0", "enhanced": { "product": "T6ND7 Integrated Circuit", "toe_version": "4.0", "product_type": "Security Controller (integrated circuit)", "certification_date": "2014-03-31", "expiration_date": "2026-09-30", "cc_version": "3.1 release4", "assurance_level": "EAL4 Augmented with ALC_DVS.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile Version 1.0, BSI-CC-PP-0035-2007", "vendor": "Toshiba Corporation", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the security IC, which is designed for security purpose, to provide basic functionalities requested for the hardware on which security embedded software runs. TOE security functionality The TOE provides following security functions: Cipher functions (TDES) Physical random number generator Deterministic random number generator" } }, { "cert_id": "JISEC-CC-CRP-C0418", "supplier": "Renesas Electronics Corporation", "toe_overseas_name": "R5F39106D 1.0", "expiration_date": "2026-09-01", "claim": "EAL4", "certification_date": "2013-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0418_it1365.html", "toe_japan_name": "R5F39106D 1.0", "enhanced": { "product": "R5F39106D", "toe_version": "1.0", "product_type": "Security Controller (integrated circuit)", "certification_date": "2013-12-03", "expiration_date": "2026-09-30", "cc_version": "3.1", "assurance_level": "EAL4", "vendor": "Renesas Electronics Corporation", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an integrated circuit (IC), supposing being used for a security purpose, which takes charge of the main control of an embedded system. TOE security functionality The TOE provides following security functions: Data protection function Encryption functions (AES, TDES, RSA), Hash function (SHA-256) Access control function Countermeasure to physical attack" } }, { "cert_id": "JISEC-CC-CRP-C0400", "supplier": "Renesas Electronics Corporation", "toe_overseas_name": "HD65256D1 smartcard integrated circuit03NS", "expiration_date": "2026-09-01", "claim": "EAL4+ ALC_DVS.2, AVA_VAN.5 PP", "certification_date": "2013-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0400_it1366.html", "toe_japan_name": "HD65256D1 smartcard integrated circuit03NS", "enhanced": { "product": "HD65256D1 smartcard integrated circuit", "toe_version": "03NS", "product_type": "Security Controller (integrated circuit)", "certification_date": "2013-08-06", "expiration_date": "2026-09-30", "cc_version": "3.1", "assurance_level": "EAL4 Augmented with ALC_DVS.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile Version 1.0, BSI-CC-PP-0035-2007", "vendor": "Renesas Electronics Corporation", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the security IC, which is designed for security purpose, to provide basic functionalities requested for the hardware on which security embedded software runs. TOE security functionality The TOE provides following security functions: Transition to the secure state upon detection of the exposure to the critical conditions for, such as supplied voltage, frequency, and temperature Physical random number generator" } }, { "cert_id": "JISEC-CC-CRP-C0380", "supplier": "Renesas Electronics Corporation", "toe_overseas_name": "RS45C integrated circuit01J", "expiration_date": "2026-09-01", "claim": "EAL5+ ALC_DVS.2, AVA_VAN.5 PP", "revalidations": [ { "date": "2014-11", "link": "https://www.ipa.go.jp/en/security/jisec/hardware/certified-cert/c0380_it0307_01.html" } ], "toe_japan_name": "RS45C integrated circuit01J" } ], "ARCHIVED": [ { "cert_id": "JISEC-CC-CRP-C0808", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-B550WD / B547WD / B540WR / B537WR fax-standard model with BP-FR12U 0110M300", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2024-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0808_it3848.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-B550WD / B547WD / B540WR / B537WR fax-standard model with BP-FR12U", "toe_version": "0110M300", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0808", "certification_date": "2024-03-08", "expiration_date": "2029-03-08", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp0000003u03-att/c0808_eimg.pdf", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp0000003u03-att/c0808_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0epbp0000003u03-att/C0808_ST_en.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0783", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M90 / 70M75 fax-standard model with BP-FR12U; and BP-70M90 / 70M75 fax-optional model with BP-FR12U and BP-FX110220t300", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0783_it2828.html", "toe_japan_name": "SHARP BP-70M90 / 70M75 fax-standard model with BP-FR12U; and BP-70M90 / 70M75 fax-optional model with BP-FR12U and BP-FX110220t300", "enhanced": { "product": "SHARP BP-70M90 / 70M75 fax-standard model with BP-FR12U; and BP-70M90 / 70M75 fax-optional model with BP-FR12U and BP-FX11", "toe_version": "0220t300", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0783", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000mqz-att/c0783_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000mqz-att/c0783_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000mqz-att/c0783_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0782", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M90 / 70M75 fax-optional model with BP-FR12U 0220t300", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0782_it2827.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-70M90 / 70M75 fax-optional model with BP-FR12U", "toe_version": "0220t300", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0782", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000lu2-att/c0782_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000lu2-att/c0782_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/nqklaf0000000lu2-att/c0782_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0773", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U and MX-PK130240Q100", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0773_it2825.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U and MX-PK13", "toe_version": "0240Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0773", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000nev-att/c0773_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000nev-att/c0773_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000nev-att/c0773_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0772", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70M65 / 70M55 / 70M45 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110240Q100", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2023-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0772_it2824.html", "toe_japan_name": "SHARP BP-70M65 / 70M55 / 70M45 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110240Q100", "enhanced": { "product": "SHARP BP-70M65 / 70M55 / 70M45 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70M65 / 70M55 / 70M45 / 70M36 / 70M31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-50M65 / 50M55 / 50M45 / 50M36 / 50M31 / 50M26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX11", "toe_version": "0240Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0772", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000mxv-att/c0772_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000mxv-att/c0772_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000mxv-att/c0772_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0768", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U and MX-PK130220Q100", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0768_it2817.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U and MX-PK13", "toe_version": "0220Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0768", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000lj3-att/c0768_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000lj3-att/c0768_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000lj3-att/c0768_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0767", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-70C65 / 70C55 / 70C45 / 70C26 / 60C36 / 60C31 / 60C26 / 50C65 / 50C55 / 50C45 fax-standard PS-standard model with BP-FR12U; BP-40C36 / 40C26 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110220Q100", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2022-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0767_it2816.html", "toe_japan_name": "SHARP BP-70C65 / 70C55 / 70C45 / 70C26 / 60C36 / 60C31 / 60C26 / 50C65 / 50C55 / 50C45 fax-standard PS-standard model with BP-FR12U; BP-40C36 / 40C26 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX110220Q100", "enhanced": { "product": "SHARP BP-70C65 / 70C55 / 70C45 / 70C26 / 60C36 / 60C31 / 60C26 / 50C65 / 50C55 / 50C45 fax-standard PS-standard model with BP-FR12U; BP-40C36 / 40C26 fax-standard PS-optional model with BP-FR12U and MX-PK13; BP-70C65 / 70C55 / 70C45 / 70C36 / 70C31 / 60C45 / 60C36 / 60C31 fax-optional PS-standard model with BP-FR12U and BP-FX11; and BP-55C26 / 50C65 / 50C55 / 50C45 / 50C36 / 50C31 / 50C26 fax-optional PS-optional model with BP-FR12U, MX-PK13 and BP-FX11", "toe_version": "0220Q100", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0767", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000laa-att/c0767_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000laa-att/c0767_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000000laa-att/c0767_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0715", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "-----", "expiration_date": "2026-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-03-01", "toe_overseas_link": null, "toe_japan_name": "KONICA MINOLTA AccurioPress C14000 / C12000 with UK-112 / PF-713GM0-20", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0715_it0770.html", "enhanced": { "product": "KONICA MINOLTA AccurioPress C14000/C12000 with UK-112/PF-713", "toe_version": "GM0-20", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0715", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001bp0-att/c0715_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001bp0-att/c0715_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001bp0-att/c0715_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Product (MFP) that has the functions, such as copy, scan and Document storage and retrieval. The TOE provides the security functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and authentication function Access control function Storage encryption function Trusted communications function Security management function Audit function Software update verification function Self-testing function" } }, { "cert_id": "JISEC-CC-CRP-C0714", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 4750i / bizhub 4050i with FK-517, DEVELOP ineo 4750i / ineo 4050i with FK-517G00-19", "expiration_date": "2026-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0714_it0762.html", "toe_japan_name": "KONICA MINOLTA bizhub 4750i / bizhub 4050i with FK-517, DEVELOP ineo 4750i / ineo 4050i with FK-517G00-19", "enhanced": { "product": "KONICA MINOLTA bizhub 4750i/bizhub 4050i with FK-517, DEVELOP ineo 4750i/ineo 4050i with FK-517", "toe_version": "G00-19", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0714", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001b34-att/c0714_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001b34-att/c0714_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001b34-att/c0714_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0713", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C287i / bizhub C257i / bizhub C227i with FK-513, DEVELOP ineo+ 287i / ineo+ 257i / ineo+ 227i with FK-513, Sindoh D322 / D332A / D332E / D331E / D320 / D330A / D330E / CM2103 / CM2043 with FK-513G00-16", "expiration_date": "2026-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2021-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0713_it0761_01.html" } ], "certification_date": "2021-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0713_it0761.html", "toe_japan_name": "KONICA MINOLTA bizhub C287i / bizhub C257i / bizhub C227i with FK-513, DEVELOP ineo+ 287i / ineo+ 257i / ineo+ 227i with FK-513G00-16", "enhanced": { "product": "KONICA MINOLTA bizhub C287i/bizhub C257i/bizhub C227i with FK-513, DEVELOP ineo+ 287i/ineo+ 257i/ineo+ 227i with FK-513", "toe_version": "G00-16", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0713", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000030ub-att/c0713_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000030ub-att/c0713_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000030ub-att/c0713_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0712", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C6500 / C8000, SAVIN IM C6500 / C8000, LANIER IM C6500 / C8000, nashuatec IM C6500 / C8000, Rex Rotary IM C6500 / C8000, Gestetner IM C6500 / C8000E-1.00", "expiration_date": "2026-03-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0712_it9733.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C6500/C8000, SAVIN IM C6500/C8000, LANIER IM C6500/C8000, nashuatec IM C6500/C8000, Rex Rotary IM C6500/C8000, Gestetner IM C6500/C8000", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0712", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001ak1-att/c0712_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001ak1-att/c0712_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001ak1-att/c0712_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0711", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2026-03-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-03-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C8000 / C6500J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0711_it9732.html", "enhanced": { "product": "RICOH IM C8000/C6500", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0711", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001a7d-att/c0711_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001a7d-att/c0711_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001a7d-att/c0711_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0710", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP MX-8081 fax standard model with MX-FR65U; and MX-8081 / 7081 fax option model with MX-FR65U and MX-FX150110Se00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0710_it0764.html", "toe_japan_name": "SHARP MX-8081 fax standard model with MX-FR65U; and MX-8081 / 7081 fax option model with MX-FR65U and MX-FX150110Se00", "enhanced": { "product": "SHARP MX-8081 fax standard model with MX-FR65U; and MX-8081 / 7081 fax option model with MX-FR65U and MX-FX15", "toe_version": "0110Se00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0710", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000019x5-att/c0710_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000019x5-att/c0710_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000019x5-att/c0710_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0709", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP MX-8081/7081 fax option model with MX-FR65U0110Se00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0709_it0763.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP MX-8081/7081 fax option model with MX-FR65U", "toe_version": "0110Se00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0709", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000019o5-att/c0709_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000019o5-att/c0709_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000019o5-att/c0709_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0708", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort 5570 / 4570 / 3570 / 5570 G / 4570 G models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "expiration_date": "2026-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0708_it0773.html", "toe_japan_name": "Fuji Xerox ApeosPort 5570 / 4570 / 3570 / 5570 G / 4570 G models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort 5570/4570/3570/5570 G/4570 G models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0708", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000196m-att/c0708_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000196m-att/c0708_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000196m-att/c0708_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0707", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort-VII 5022 / 5021 / 4021 models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 1.5.3", "expiration_date": "2026-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0707_it0752.html", "toe_japan_name": "Fuji Xerox ApeosPort-VII 5022 / 5021 / 4021 models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 1.5.3", "enhanced": { "product": "Fuji Xerox ApeosPort-VII 5022/5021/4021 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.5.3", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0707", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000018ko-att/c0707_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000018ko-att/c0707_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000018ko-att/c0707_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0706", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort-VII C4422 / C4421 / C3322 / C3321 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3", "expiration_date": "2026-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0706_it0751.html", "toe_japan_name": "Fuji Xerox ApeosPort-VII C4422 / C4421 / C3322 / C3321 models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3", "enhanced": { "product": "Fuji Xerox ApeosPort-VII C4422/C4421/C3322/C3321 models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.5.3", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0706", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000018b0-att/c0706_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000018b0-att/c0706_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000018b0-att/c0706_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0705", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort 3560 / 3060 / 2560 / 3560 G / 3060 G / 2560 G models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "expiration_date": "2026-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0705_it0750.html", "toe_japan_name": "Fuji Xerox ApeosPort 3560 / 3060 / 2560 / 3560 G / 3060 G / 2560 G models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort 3560/3060/2560/ 3560 G/3060 G/2560 G models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0705", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000017r9-att/c0705_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000017r9-att/c0705_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000017r9-att/c0705_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0704", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort C3060 / C2560 / C2360 / C2060 / C3060 G / C2560 G / C2060 G models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "expiration_date": "2026-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0704_it0749.html", "toe_japan_name": "Fuji Xerox ApeosPort C3060 / C2560 / C2360 / C2060 / C3060 G / C2560 G / C2060 G models with Copy, Print, Fax, Scan and Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort C3060/C2560/C2360/C2060/ C3060 G/C2560 G/C2060 G models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0704", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000179e-att/c0704_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000179e-att/c0704_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000179e-att/c0704_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0703", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 8700 Series 2600 model1.0", "expiration_date": "2026-02-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0703_it0739.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 8700 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 8700 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0703", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001707-att/c0703_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001707-att/c0703_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001707-att/c0703_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0702", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C7700 Series 2600 model1.0", "expiration_date": "2026-02-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0702_it0738.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C7700 Series 2600 mode1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C7700 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0702", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000016jr-att/c0702_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000016jr-att/c0702_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000016jr-att/c0702_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0701", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 6700 Series 2600 model1.0", "expiration_date": "2026-02-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0701_it0737.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 6700 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 6700 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0701", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001634-att/c0701_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001634-att/c0701_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000001634-att/c0701_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0700", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "EPSON LX-10050MF / LX-10050KF / LX-7550MF / LX-6050MF / WF-C21000 / WF-C20750 / WF-C20600 with FAX2.00", "expiration_date": "2026-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2021-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0700_it0740.html", "toe_japan_name": "EPSON LX-10050MF / LX-10050KF / LX-7550MF / LX-6050MF / WF-C21000 / WF-C20750 / WF-C20600 with FAX2.00", "enhanced": { "product": "EPSON LX-10050MF/LX-10050KF/ LX-7550MF/LX-6050MF/WF-C21000/ WF-C20750/WF-C20600 with FAX", "toe_version": "2.00", "product_type": "Multifunction Peripheral", "cert_id": "JISEC-CC-CRP-C0700", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000015ma-att/c0700_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000015ma-att/c0700_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000015ma-att/c0700_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a multifunction peripheral(MFP) that has the functions, such as copy, print, scan, FAX, document storage and retrieval. This TOE provides Security Functions required for \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for MFPs. TOE Security functions The security functions of this TOE are as follows: Identification and Authentication Function Function to identify and authenticate users. Access Control Function for TOE Function Function to restrict available functions for each authorized user. Document Access Control Function Function to allow only the authorized users and the administrator to access to stored documents. Residual Data Overwrite Function Function to overwrite and delete unnecessary document data in the HDD and the Flash ROM. Network Protection Function Function to protect communication data using encryption communication protocols. Security Management Function Function to allow only the administrator to manage security functions. Self-Test Function Function to verify the integrity of executable codes at startup. Audit Log Function Function to record audit logs related to security events and allow only the administrator to view that log." } }, { "cert_id": "JISEC-CC-CRP-C0699", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 650i / bizhub 550i with FK-514, DEVELOP ineo 650i / ineo 550i with FK-514, Sindoh N802 / N801 / MF6111 / MF5101 with FK-514G00-31", "expiration_date": "2026-01-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0699_it0760.html", "toe_japan_name": "KONICA MINOLTA bizhub 650i / bizhub 550i with FK-514, DEVELOP ineo 650i / ineo 550i with FK-514G00-31", "enhanced": { "product": "KONICA MINOLTA bizhub 650i/bizhub 550i with FK-514, DEVELOP ineo 650i/ineo 550i with FK-514", "toe_version": "G00-31", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0699", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000030dh-att/c0699_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000030dh-att/c0699_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio100000030dh-att/c0699_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0698", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 450i / bizhub 360i / bizhub 300i with FK-514, DEVELOP ineo 450i / ineo 360i / ineo 300i with FK-514, Sindoh N800 / MF4093 with FK-514G00-31", "expiration_date": "2026-01-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2022-05", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0698_it0759_01.html" } ], "certification_date": "2021-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0698_it0759.html", "toe_japan_name": "KONICA MINOLTA bizhub 450i / bizhub 360i / bizhub 300i with FK-514, DEVELOP ineo 450i / ineo 360i / ineo 300i with FK-514G00-31", "enhanced": { "product": "KONICA MINOLTA bizhub 450i/bizhub 360i/ bizhub 300i with FK-514, DEVELOP ineo 450i/ineo 360i/ineo 300i with FK-514", "toe_version": "G00-31", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0698", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002zwn-att/c0698_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002zwn-att/c0698_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002zwn-att/c0698_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0697", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort C7070 / C6570 / C5570 / C4570 / C3570 / C3070 / C2570 / C7070 G / C6570 G / C5570 G / C4570 G / C3570 G / C3070 G models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "expiration_date": "2026-01-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2021-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0697_it0747.html", "toe_japan_name": "Fuji Xerox ApeosPort C7070 / C6570 / C5570 / C4570 / C3570 / C3070 / C2570 / C7070 G / C6570 G / C5570 G / C4570 G / C3570 G / C3070 G models with Copy, Print, Fax, Scan and Overwrite Storage Controller ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort C7070/C6570/C5570/C4570/C3570/C3070/ C2570/C7070 G/C6570 G/C5570 G/C4570 G/C3570 G/C3070 G models with Copy, Print, Fax, Scan and Overwrite Storage", "toe_version": "Controller ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0697", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000155g-att/c0697_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000155g-att/c0697_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000155g-att/c0697_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Storage" } }, { "cert_id": "JISEC-CC-CRP-C0696", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub 750i with FK-514, DEVELOP ineo 750i with FK-514, Sindoh N803 / MF7123 with FK-514G00-34", "expiration_date": "2025-12-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2022-05", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0696_it0757_01.html" } ], "certification_date": "2020-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0696_it0757.html", "toe_japan_name": "KONICA MINOLTA bizhub 750i with FK-514, DEVELOP ineo 750i with FK-514G00-34", "enhanced": { "product": "KONICA MINOLTA bizhub 750i with FK-514, DEVELOP ineo 750i with FK-514", "toe_version": "G00-34", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0696", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002zft-att/c0696_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002zft-att/c0696_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002zft-att/c0696_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0695", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imagePRESS C910 / C810 / C710 / C660 2600 model1.0", "expiration_date": "2025-12-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0695_it9728.html", "toe_japan_name": "Canon imagePRESS C910 / C810 / C710 / C660 2600 model1.0", "enhanced": { "product": "Canon imagePRESS C910/C810/C710/C660 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0695", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014x1-att/c0695_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014x1-att/c0695_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014x1-att/c0695_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0694", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-30C25 fax standard model with BP-FR10U; and BP-30C25 fax option model with BP-FR10U, MX-PK13 and MX-FX150110Uc00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0694_it0743.html", "toe_japan_name": "SHARP BP-30C25 fax standard model with BP-FR10U; and BP-30C25 fax option model with BP-FR10U, MX-PK13 and MX-FX150110Uc00", "enhanced": { "product": "SHARP BP-30C25 fax standard model with BP-FR10U; and BP-30C25 fax option model with BP-FR10U, MX-PK13 and MX-FX15", "toe_version": "0110Uc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0694", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014om-att/c0694_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014om-att/c0694_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014om-att/c0694_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0693", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP BP-30C25 fax option model with BP-FR10U0110Uc00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0693_it0742.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP BP-30C25 fax option model with BP-FR10U", "toe_version": "0110Uc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0693", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014g7-att/c0693_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014g7-att/c0693_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000014g7-att/c0693_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function" } }, { "cert_id": "JISEC-CC-CRP-C0692", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C750i / AccurioPrint C750i with FK-514, DEVELOP ineo+ 750i with FK-514G00-33", "expiration_date": "2025-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0692_it0758.html", "toe_japan_name": "KONICA MINOLTA bizhub C750i / AccurioPrint C750i with FK-514, DEVELOP ineo+ 750i with FK-514G00-33", "enhanced": { "product": "KONICA MINOLTA bizhub C750i/AccurioPrint C750i with FK-514, DEVELOP ineo+ 750i with FK-514", "toe_version": "G00-33", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0692", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000147s-att/c0692_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000147s-att/c0692_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000147s-att/c0692_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0691", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C450i with FK-514, DEVELOP ineo+ 450i with FK-514, Sindoh D730 / CM4093 / CM4095 with FK-514GG1-7B", "expiration_date": "2025-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2021-02", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0691_it0745_01.html" } ], "certification_date": "2020-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0691_it0745.html", "toe_japan_name": "KONICA MINOLTA bizhub C450i with FK-514, DEVELOP ineo+ 450i with FK-514 GG1-7B", "enhanced": { "product": "KONICA MINOLTA bizhub C450i with FK-514, DEVELOP ineo+ 450i with FK-514", "toe_version": "GG1-7B", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0691", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002yqr-att/c0691_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002yqr-att/c0691_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002yqr-att/c0691_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0690", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C650i / bizhub C550i with FK-514, DEVELOP ineo+ 650i / ineo+ 550i with FK-514, Sindoh D732 / D731 / CM6013 / CM5103 / CM6015 / CM5105 with FK-514GG1-2B", "expiration_date": "2025-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2021-02", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0690_it0746_01.html" } ], "certification_date": "2020-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0690_it0746.html", "toe_japan_name": "KONICA MINOLTA bizhub C650i / bizhub C550i with FK-514, DEVELOP ineo+ 650i / ineo+ 550i with FK-514GG1-2B", "enhanced": { "product": "KONICA MINOLTA bizhub C650i/bizhub C550i with FK-514, DEVELOP ineo+ 650i/ineo+ 550i with FK-514", "toe_version": "GG1-2B", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0690", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002y9e-att/c0690_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002y9e-att/c0690_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002y9e-att/c0690_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0689", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort 5570 / 4570 / 3570 / 5570 G / 4570 G models with Copy, Print, Fax, Scan and without Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "expiration_date": "2025-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0689_it0748.html", "toe_japan_name": "Fuji Xerox ApeosPort 5570 / 4570 / 3570 / 5570 G / 4570 G model swith Copy, Print, Fax, Scan and without Overwrite StorageController ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort 5570/4570/3570/5570 G/4570 G models with Copy, Print, Fax, Scan and without Overwrite Storage", "toe_version": "Controller ROM Ver. 1.5.3, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0689", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000013zd-att/c0689_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000013zd-att/c0689_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000013zd-att/c0689_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation" } }, { "cert_id": "JISEC-CC-CRP-C0688", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C300 / C400 / C400SR, SAVIN IM C300 / C400 / C400SR, LANIER IM C300 / C400 / C400SR, nashuatec IM C300 / C400 / C400SR, Rex Rotary IM C300 / C400 / C400SR, Gestetner IM C300 / C400 / C400SRE-1.00", "expiration_date": "2025-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0688_it9724.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C300/C400/C400SR, SAVIN IM C300/C400/C400SR, LANIER IM C300/C400/C400SR, nashuatec IM C300/C400/C400SR, Rex Rotary IM C300/C400/C400SR, Gestetner IM C300/C400/C400SR", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0688", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000013qy-att/c0688_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000013qy-att/c0688_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000013qy-att/c0688_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0687", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2025-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-10-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C300J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0687_it9723.html", "enhanced": { "product": "RICOH IM C300", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0687", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000131j-att/c0687_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000131j-att/c0687_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck99000000131j-att/c0687_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0686", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C57900KG / C5700 Series 2600 model1.0", "expiration_date": "2025-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0686_it0744.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C57900KG / C5700 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C57900KG/C5700 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0686", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000012ji-att/c0686_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000012ji-att/c0686_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000012ji-att/c0686_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0685", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX 47900KG / 4700 Series 2600 model1.0", "expiration_date": "2025-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0685_it0736.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX 47900KG / 4700 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX 47900KG/4700 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0685", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000012b3-att/c0685_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000012b3-att/c0685_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck9900000012b3-att/c0685_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0684", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO330AC / 400AC Models with FAX unit and FIPS Hard DiskSYS V1.0", "expiration_date": "2025-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0684_it9734.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO330AC/400AC Models with FAX unit and FIPS Hard Disk", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0684", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000boi-att/c0684_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000boi-att/c0684_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000boi-att/c0684_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE Security functions The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0683", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE DX C37900KG / C3700 Series 2600 model1.0", "expiration_date": "2025-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0683_it0735.html", "toe_japan_name": "Canon imageRUNNER ADVANCE DX C37900KG / C3700 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE DX C37900KG/C3700 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0683", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000xlv-att/c0683_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000xlv-att/c0683_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000xlv-att/c0683_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0682", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C3372 / C2273 DocuCentre-VII C7773 / C6673 / C5573 / C4473 / C3373 / C3372 / C2273 models with Overwrite Hard Disk, Copy, Print, Fax and ScanController ROM Ver. 1.3.8, Fax ROM Ver. 2.2.1", "expiration_date": "2025-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0682_it0741.html", "toe_japan_name": "Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C3372 / C2273 DocuCentre-VII C7773 / C6673 / C5573 / C4473 / C3373 / C3372 / C2273 models with Overwrite Hard Disk, Copy, Print, Fax and ScanController ROM Ver. 1.3.8, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort-VII C7773/C6673/C5573/C4473/C3373/C3372/ C2273 DocuCentre-VII C7773/C6673/C5573/C4473/C3373/C3372/ C2273 models with Overwrite Hard Disk, Copy, Print, Fax and Scan", "toe_version": "Controller ROM Ver. 1.3.8, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0682", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000xbn-att/c0682_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000xbn-att/c0682_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000xbn-att/c0682_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hard Disk" } }, { "cert_id": "JISEC-CC-CRP-C0681", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imagePRESS C165 / imagePRESS Lite C165 2600 model1.0", "expiration_date": "2025-09-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0681_it9727.html", "toe_japan_name": "Canon imagePRESS C165 /imagePRESS Lite C165 2600 model1.0", "enhanced": { "product": "Canon imagePRESS C165 / imagePRESS Lite C165 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0681", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0679", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP MX-B476W / B456W / B376W / B356W with MX-FR63U0210md00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0679_it9721.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP MX-B476W / B456W / B376W / B356W with MX-FR63U", "toe_version": "0210md00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0679", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000wo9-att/c0679_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000wo9-att/c0679_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000wo9-att/c0679_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0678", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP MX-M6071 / M5071 / M4071 / M3571 / M3071 fax option model with MX-FR64U; MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD standard model with MX-FR64U and MX-PK13; and MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD option model with MX-FR64U, MX-HD16 and MX-PK130210zd00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0678_it9720.html", "toe_japan_name": "-----", "enhanced": { "product": "SHARP MX-M6071 / M5071 / M4071 / M3571 / M3071 fax option model with MX-FR64U; MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD standard model with MX-FR64U and MX-PK13; and MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD option model with MX-FR64U, MX-HD16 and MX-PK13", "toe_version": "0210zd00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0678", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000wfu-att/c0678_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000wfu-att/c0678_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000wfu-att/c0678_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0677", "supplier": "SHARP CORPORATION", "toe_overseas_name": "SHARP MX-M6071 / M5071 / M4071 / M3531 fax standard model with MX-FR64U and MX-PK13; MX-M6071 / M5071 / M4071 / M3571 / M3071 fax option model with MX-FR64U and MX-FX15; MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD standard model with MX-FR64U, MX-PK13 and MX-FX15; and MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD option model with MX-FR64U, MX-HD16, MX-PK13 and MX-FX150210zd00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0677_it9719.html", "toe_japan_name": "SHARP MX-M6071 / M5071 / M4071 / M3531 fax standard model with MX-FR64U and MX-PK13; MX-M6071 / M5071 / M4071 / M3571 / M3071 fax option model with MX-FR64U and MX-FX15; MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD standard model with MX-FR64U, MX-PK13 and MX-FX15; and MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD option model with MX-FR64U, MX-HD16, MX-PK13 and MX-FX150210zd00", "enhanced": { "product": "SHARP MX-M6071 / M5071 / M4071 / M3531 fax standard model with MX-FR64U and MX-PK13; MX-M6071 / M5071 / M4071 / M3571 / M3071 fax option model with MX-FR64U and MX-FX15; MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD standard model with MX-FR64U, MX-PK13 and MX-FX15; and MX-M6051 / M5051 / M4051 / M3551 / M3051 / M2651 HDD option model with MX-FR64U, MX-HD16, MX-PK13 and MX-FX15", "toe_version": "0210zd00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0677", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000w4i-att/c0677_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000w4i-att/c0677_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000w4i-att/c0677_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0676", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox PrimeLink C9065 / C9070 Printer + FaxController ROM Ver. 1.1.3, Fax ROM Ver. 2.2.1", "expiration_date": "2025-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0676_it9731.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox PrimeLink C9065/C9070 Printer + Fax", "toe_version": "Controller ROM Ver. 1.1.3, Fax ROM Ver. 2.2.1", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0676", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000vvp-att/c0676_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000vvp-att/c0676_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000vvp-att/c0676_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hrad Disk" } }, { "cert_id": "JISEC-CC-CRP-C0675", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox PrimeLink B9110 / B9125 / B9136 Copier / PrinterController+PS ROM Ver. 1.1.4", "expiration_date": "2025-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0675_it9730.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox PrimeLink B9110/B9125/B9136 Copier/Printer", "toe_version": "Controller+PS ROM Ver. 1.1.4", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0675", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000vlp-att/c0675_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000017vn-att/c0675_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/kcrmqo00000017vn-att/c0675_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation Overwrite Hrad Disk" } }, { "cert_id": "JISEC-CC-CRP-C0674", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox PrimeLink B9100 Copier / Printer + Fax Controller+PS ROM Ver. 1.1.4, Fax ROM Ver. 2.2.1", "expiration_date": "2025-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015", "certification_date": "2020-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0674_it9729.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox PrimeLink B9100 Copier/Printer + Fax", "toe_version": "Controller+PS ROM Ver. 1.1.4, Fax ROM Ver. 2.2.1", "product_type": "Multifunction Device", "cert_id": "JISEC-CC-CRP-C0674", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000uwu-att/c0674_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000uwu-att/c0674_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000uwu-att/c0674_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Overwrite Hrad Disk" } }, { "cert_id": "JISEC-CC-CRP-C0673", "supplier": "Microsoft Corporation", "toe_overseas_name": "Microsoft SQL Server 2017 on Linux Database Engine Enterprise Edition x64 (English)14.0.3223.3", "expiration_date": "2025-07-01", "claim": "EAL2+ALC_FLR.2 PP(DBMS Working Group Technical Community, Protection Profile for Database Management Systems (DBMS PP) Base Package, Version 2.12, March 23rd, 2017 and DBMS Working Group Technical Community, DBMS PP Extended Package - Access History (DBMS PP_EP_AH), Version 1.02, March 23rd, 2017 (Certification Identification: BSI-CC-PP-0088-V2-2017))", "certification_date": "2020-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0673_it9726.html", "toe_japan_name": "-----", "enhanced": { "product": "Microsoft SQL Server 2017 on Linux Database Engine Enterprise Edition x64 (English)", "toe_version": "14.0.3223.3", "product_type": "Database Management System (DBMS)", "cert_id": "JISEC-CC-CRP-C0673", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "DBMS Working Group Technical Community, Protection Profile for Database Management Systems (DBMS PP) Base Package, Version 2.12, March 23rd, 2017 and DBMS Working Group Technical Community, DBMS PP Extended Package - Access History (DBMS PP_EP_AH), Version 1.02, March 23rd, 2017 (Certification Identification: BSI-CC-PP-0088-V2-2017)", "vendor": "Microsoft Corporation", "evaluation_facility": "TÜV Informationstechnik GmbH, Evaluation Body for IT-Security", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of Microsoft SQL Server 2017 on Linux. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functionality The security functionality of the TOE comprises Security Management Access Control Identification and Authentication Security Audit Session Handling" } }, { "cert_id": "JISEC-CC-CRP-C0672", "supplier": "Microsoft Corporation", "toe_overseas_name": "Microsoft SQL Server 2017 Database Engine Enterprise Edition x64 (English)14.0.3223.3", "expiration_date": "2025-05-01", "claim": "EAL2+ALC_FLR.2 PP(DBMS Working Group Technical Community, Protection Profile for Database Management Systems (DBMS PP) Base Package, Version 2.12, March 23rd, 2017 and DBMS Working Group Technical Community, DBMS PP Extended Package - Access History (DBMS PP_EP_AH), Version 1.02, March 23rd, 2017 (Certification Identification: BSI-CC-PP-0088-V2-2017))", "certification_date": "2020-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0672_it9725.html", "toe_japan_name": "-----", "enhanced": { "product": "Microsoft SQL Server 2017 Database Engine Enterprise Edition x64 (English)", "toe_version": "14.0.3223.3", "product_type": "Database Management System (DBMS)", "cert_id": "JISEC-CC-CRP-C0672", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "DBMS Working Group Technical Community, Protection Profile for Database Management Systems (DBMS PP) Base Package, Version 2.12, March 23rd, 2017 and DBMS Working Group Technical Community, DBMS PP Extended Package - Access History (DBMS PP_EP_AH), Version 1.02, March 23rd, 2017 (Certification Identification: BSI-CC-PP-0088-V2-2017)", "vendor": "Microsoft Corporation", "evaluation_facility": "TÜV Informationstechnik GmbH, Evaluation Body for IT-Security", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of Microsoft SQL Server 2017. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functionality The security functionality of the TOE comprises Security Management Access Control Identification and Authentication Security Audit Session Handling" } }, { "cert_id": "JISEC-CC-CRP-C0671", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C2509J / C3509JE-1.01", "expiration_date": "2025-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0671_it9710.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C2509J/C3509J", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0671", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000tzu-att/c0671_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000tzu-att/c0671_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000tzu-att/c0671_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0670", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C4050i / bizhub C3350i with FK-517, DEVELOP ineo+ 4050i / ineo+ 3350i with FK-517G00-45", "expiration_date": "2025-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0670_it9718.html", "toe_japan_name": "KONICA MINOLTA bizhub C4050i / bizhub C3350i with FK-517, DEVELOP ineo+ 4050i / ineo+ 3350i with FK-517G00-45", "enhanced": { "product": "KONICA MINOLTA bizhub C4050i/bizhub C3350i with FK-517, DEVELOP ineo+ 4050i/ineo+ 3350i with FK-517", "toe_version": "G00-45", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0670", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Section, Multimedia Technology team, Information and Communication Research Division", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000tfb-att/c0670_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000tfb-att/c0670_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000tfb-att/c0670_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0669", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "KONICA MINOLTA bizhub C360i / bizhub C300i / bizhub C250i / bizhub C036DNi / bizhub C030DNi / bizhub C025DNi with FK-514, DEVELOP ineo+ 360i / ineo+ 300i / ineo+ 250i with FK-514 Sindoh D452 / D451 / D450 / CM3093 / CM3035 / CM2075 with FK-514G00-45", "expiration_date": "2025-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2020-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0669_it9717_01.html" } ], "certification_date": "2020-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0669_it9717.html", "toe_japan_name": "KONICA MINOLTA bizhub C360i / bizhub C300i / bizhub C250i / bizhub C036DNi / bizhub C030DNi / bizhub C025DNi with FK-514, DEVELOP ineo+ 360i / ineo+ 300i / ineo+ 250i with FK-514G00-45", "enhanced": { "product": "KONICA MINOLTA bizhub C360i/bizhub C300i/bizhub C250i/bizhub C036DNi/bizhub C030DNi/bizhub C025DNi with FK-514, DEVELOP ineo+ 360i/ineo+ 300i/ineo+ 250i with FK-514", "toe_version": "G00-45", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0669", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Section, Multimedia Technology team, Information and Communication Research Division", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002xcb-att/c0669_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002xcb-att/c0669_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002xcb-att/c0669_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer (MFP) that has the functions, such as Copy, Scan, Print, Fax and Document storage and retrieval functions. The TOE provides the security functions required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security functions: Identification and Authentication function Access Control function Encryption function Trusted Communications function Security Management function Audit function Trusted Operation function FAX Separation function" } }, { "cert_id": "JISEC-CC-CRP-C0668", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 550 / 550G / 600 / 600SR / 600SRG, SAVIN IM 550 / 550G / 600 / 600SR / 600SRG, LANIER IM 550 / 550G / 600 / 600SR / 600SRG, nashuatec IM 550 / 600 / 600SR, Rex Rotary IM 550 / 600 / 600SR, Gestetner IM 550 / 600 / 600SRE-1.01", "expiration_date": "2025-03-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0668_it9708.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 550/550G/600/600SR/600SRG, SAVIN IM 550/550G/600/600SR/600SRG, LANIER IM 550/550G/600/600SR/600SRG, nashuatec IM 550/600/600SR, Rex Rotary IM 550/600/600SR, Gestetner IM 550/600/600SR", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0668", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000sro-att/c0668_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000sro-att/c0668_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000sro-att/c0668_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0667", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort-VII C7788 / C6688 / C5588 DocuCentre-VII C7788 / C6688 / C5588 models with Data Security and FaxController ROM Ver. 1.3.2, Fax ROM Ver. 2.2.1", "expiration_date": "2025-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0667_it9716.html", "toe_japan_name": "Fuji Xerox ApeosPort-VII C7788 / C6688 / C5588 DocuCentre-VII C7788 / C6688 / C5588 models with Data Security and FaxController ROM Ver. 1.3.2, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort-VII C7788/C6688/C5588 DocuCentre-VII C7788/C6688/C5588 models with Data Security and Fax", "toe_version": "Controller ROM Ver. 1.3.2, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0667", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000sde-att/c0667_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000sde-att/c0667_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000sde-att/c0667_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Data Clearing" } }, { "cert_id": "JISEC-CC-CRP-C0666", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH Pro 8300S / 8310S / 8320S, SAVIN Pro 8300S / 8310S / 8320S, LANIER Pro 8300S / 8310S / 8320S, nashuatec Pro 8300S / 8310S / 8320S, Rex Rotary Pro 8300S / 8310S / 8320S, Gestetner Pro 8300S / 8310S / 8320SE-1.01", "expiration_date": "2025-03-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0666_it8686.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH Pro 8300S/8310S/8320S, SAVIN Pro 8300S/8310S/8320S, LANIER Pro 8300S/8310S/8320S, nashuatec Pro 8300S/8310S/8320S, Rex Rotary Pro 8300S/8310S/8320S, Gestetner Pro 8300S/8310S/8320S", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0666", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000rxc-att/c0666_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000rxc-att/c0666_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000rxc-att/c0666_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0665", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2025-03-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2020-02-01", "toe_overseas_link": null, "toe_japan_name": "RICOH Pro 8320S / 8310S / 8300SJ-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0665_it8685.html", "enhanced": { "product": "RICOH Pro 8320S/8310S/8300S", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0665", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000rms-att/c0665_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000rms-att/c0665_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000rms-att/c0665_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0664", "supplier": "RISO KAGAKU CORPORATION", "toe_overseas_name": "[Japanese] ORPHIS GD9630 / ORPHIS GD9630C / ORPHIS GD9631 / ORPHIS GD7330 / ORPHIS GD7330C with OR Scanner HS7000 and RISO Security Package for GD [English] ComColor GD9630 / ComColor GD9630R / ComColor GD9631 / ComColor GD9631R / ComColor GD7330 / ComColor GD7330R with Scanner HS7000 and RISO Security Package G10SOAPALL 1.1.026", "expiration_date": "2025-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2020-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0664_it9711.html", "toe_japan_name": "[Japanese] ORPHIS GD9630 / ORPHIS GD9630C / ORPHIS GD9631 / ORPHIS GD7330 / ORPHIS GD7330C with OR Scanner HS7000 and RISO Security Package for GD [English] ComColor GD9630 / ComColor GD9630R / ComColor GD9631 / ComColor GD9631R / ComColor GD7330 / ComColor GD7330R with Scanner HS7000 and RISO Security Package G10SOAPALL 1.1.026", "enhanced": { "product": "[Japanese] ORPHIS GD9630 / ORPHIS GD9630C / ORPHIS GD9631 / ORPHIS GD7330 / ORPHIS GD7330C with OR Scanner HS7000 and RISO Security Package for GD [English] ComColor GD9630 / ComColor GD9630R / ComColor GD9631 / ComColor GD9631R / ComColor GD7330 / ComColor GD7330R with Scanner HS7000 and RISO Security Package G10", "toe_version": "SOAPALL 1.1.026", "product_type": "Hardcopy Device", "cert_id": "JISEC-CC-CRP-C0664", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "RISO KAGAKU CORPORATION", "evaluation_facility": "ECSEC Laboratory Inc., Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000qxk-att/c0664_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a hardcopy device that has the functions such as print, copy, scan and box. The TOE provides the security functionality required by the protection profile for Multifunction Printer, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification ,Authentication and Authorization Access Control Encryption of Stored Data Communication Protection Security Management Audit log Self-test and Firmware Verification" } }, { "cert_id": "JISEC-CC-CRP-C0663", "supplier": "NORMEE Limited.", "toe_overseas_name": "Palm Vein Authentication Software Windows VersionVer2.00.s11", "expiration_date": "2025-02-01", "claim": "PP(Protection Profile for Biometric Verification Product Version 1.2)", "revalidations": [ { "date": "2020-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0663_it8698_01.html" } ], "certification_date": "2020-01-01", "toe_overseas_link": null, "toe_japan_name": "Palm Vein Authentication Software Windows Version Ver2.00.s10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0663_it8698.html", "enhanced": { "product": "Palm Vein Authentication Software Windows Version", "toe_version": "Ver2.00.s10", "product_type": "Biometric verification product", "cert_id": "JISEC-CC-CRP-C0663", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.1", "protection_profile": "Protection Profile for Biometric Verification Product Version 1.2 (JISEC Certification No. C0501).", "vendor": "NORMEE Limited.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Section, Multimedia Technology Team, Information and Communication Research Division", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a biometric verification product for mobile devices with Windows OS and embedded front camera, such as note PC or tablets. TOE is a software library, incorporated into application programs by application developers. TOE security functionality TOE provides biometric verification function with sufficiently low False Accept Rate and False Reject Rate, and presentation attack detection. TOE provides the following functions. Extraction: Biometric features are extracted from captured raw data. PAD Feature Extraction: PAD feature data is extracted from raw data to determine whether it is a presentation attack or not. Quality Check: This function checks whether raw data have sufficient quality. Enrol: This function outputs extracted biometric features extracted from the Extraction function as a biometric template. GetRef:This function is responsible for getting the enrolled and stored biometric template corresponding to a user's ID. Comparator: This function compares the biometric features against the biometric template and calculates a similarity score. Decision: This function determines whether the verification succeeds or not based on the output from the Quality Check, the PAD Extraction and Comparator. Clear Memory: This function clears the content of memory which includes biometric templates, biometric features and raw data after use. Enrolment of biometric template Biometric verification" } }, { "cert_id": "JISEC-CC-CRP-C0662", "supplier": "NORMEE Limited.", "toe_overseas_name": "-----", "expiration_date": "2025-02-01", "claim": "PP(Protection Profile for Biometric Verification Product Version 1.2)", "certification_date": "2020-01-01", "toe_overseas_link": null, "toe_japan_name": "Palm Vein Authentication Software iOS VersionVer2.00.b10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0662_it8697.html", "enhanced": { "product": "Palm Vein Authentication Software iOS Version", "toe_version": "Ver2.00.b10", "product_type": "Biometric verification product", "cert_id": "JISEC-CC-CRP-C0662", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.1", "protection_profile": "Protection Profile for Biometric Verification Product Version 1.2 (JISEC Certification No. C0501).", "vendor": "NORMEE Limited.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Section, Multimedia Technology Team, Information and Communication Research Division", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a biometric verification product for mobile devices with iOS, such as smartphones with embedded rear camera or tablets with embedded front camera. TOE is a software library, incorporated into application programs by application developers. TOE security functionality TOE provides biometric verification function with sufficiently low False Accept Rate and False Reject Rate, and presentation attack detection. TOE provides the following functions. Extraction: Biometric features are extracted from captured raw data. PAD Feature Extraction: PAD feature data is extracted from raw data to determine whether it is a presentation attack or not. Quality Check: This function checks whether raw data have sufficient quality. Enrol: This function outputs extracted biometric features extracted from the Extraction function as a biometric template. GetRef:This function is responsible for getting the enrolled and stored biometric template corresponding to a user's ID. Comparator: This function compares the biometric features against the biometric template and calculates a similarity score. Decision: This function determines whether the verification succeeds or not based on the output from the Quality Check, the PAD Extraction and Comparator. Clear Memory: This function clears the content of memory which includes biometric templates, biometric features and raw data after use. Enrolment of biometric template Biometric verification" } }, { "cert_id": "JISEC-CC-CRP-C0661", "supplier": "NORMEE Limited.", "toe_overseas_name": "-----", "expiration_date": "2025-02-01", "claim": "PP(Protection Profile for Biometric Verification Product Version 1.2)", "certification_date": "2020-01-01", "toe_overseas_link": null, "toe_japan_name": "Palm Vein Authentication Software Android VersionVer2.00.m10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0661_it8696.html", "enhanced": { "product": "Palm Vein Authentication Software Android Version", "toe_version": "Ver2.00.m10", "product_type": "Biometric verification product", "cert_id": "JISEC-CC-CRP-C0661", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.1", "protection_profile": "Protection Profile for Biometric Verification Product Version 1.2 (JISEC Certification No. C0501).", "vendor": "NORMEE Limited.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Section, Multimedia Technology Team, Information and Communication Research Division", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a biometric verification product for mobile devices with Android OS and embedded rear camera, such as smartphones and tablet PCs. TOE is a software library, incorporated into application programs by application developers. TOE security functionality TOE provides biometric verification function with sufficiently low False Accept Rate and False Reject Rate, and presentation attack detection. TOE provides the following functions. Extraction: Biometric features are extracted from captured raw data. PAD Feature Extraction: PAD feature data is extracted from raw data to determine whether it is a presentation attack or not. Quality Check: This function checks whether raw data have sufficient quality. Enrol: This function outputs extracted biometric features extracted from the Extraction function as a biometric template. GetRef:This function is responsible for getting the enrolled and stored biometric template corresponding to a user's ID. Comparator: This function compares the biometric features against the biometric template and calculates a similarity score. Decision: This function determines whether the verification succeeds or not based on the output from the Quality Check, the PAD Extraction and Comparator. Clear Memory: This function clears the content of memory which includes biometric templates, biometric features and raw data after use. Enrolment of biometric template Biometric verification" } }, { "cert_id": "JISEC-CC-CRP-C0659", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C2273 DocuCentre-VII C7773 / C6673 / C5573 / C4473 / C3373 / C2273 models with Scan and Fax as standard features and Data Security as an optional feature Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C3372 / C2273 DocuCentre-VII C7773 / C6673 / C5573 / C4473 models with Scan and Data Security as standard features and Fax as an optional feature Fuji Xerox DocuCentre-VII C3373 / C2273 models without Scan and Fax as standard features and with Data Security, Scan and Fax as optional features Fuji Xerox DocuCentre-VII C3373 / C3372 / C2273 models with Data Security as standard features and Scan and Fax as optional featuresController ROM Ver. 1.1.14, Fax ROM Ver. 2.2.1", "expiration_date": "2025-01-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "revalidations": [ { "date": "2019-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0659_it9709_01.html" } ], "certification_date": "2019-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0659_it9709.html", "toe_japan_name": "Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C2273 DocuCentre-VII C7773 / C6673 / C5573 / C4473 / C3373 / C2273 models with Scan and Fax as standard features and Data Security as an optional feature Fuji Xerox ApeosPort-VII C7773 / C6673 / C5573 / C4473 / C3373 / C3372 / C2273 DocuCentre-VII C7773 / C6673 / C5573 / C4473 models with Scan and Data Security as standard features and Fax as an optional featureController ROM Ver. 1.1.14, Fax ROM Ver. 2.2.1", "enhanced": { "product": "Fuji Xerox ApeosPort-VII C7773/C6673/C5573/C4473/C3373/C2273 DocuCentre-VII C7773/C6673/C5573/C4473/C3373/C2273 models with Scan and Fax as standard features and Data Security as an optional feature Fuji Xerox ApeosPort-VII C7773/C6673/C5573/C4473/C3373/C3372 /C2273 DocuCentre-VII C7773/C6673/C5573/C4473 models with Scan and Data Security as standard features and Fax as an optional feature", "toe_version": "Controller ROM Ver. 1.1.14, Fax ROM Ver. 2.2.1", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0659", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002weu-att/c0659_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002weu-att/c0659_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/snqio10000002weu-att/c0659_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device that has the functions such as copy, scan, print, fax, document storage and retrieval. The TOE provides the security functionality required by the protection profile for Multifunction Device, “Protection Profile for Hardcopy Devices 1.0”. TOE security functionality The TOE provides the following security functions: Identification and Authentication Access Control Data Encryption Trusted Communications Security Management Security Auditing Trusted Operation PSTN Fax-Network Separation Data Clearing" } }, { "cert_id": "JISEC-CC-CRP-C0658", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE715 III / 615 III / 525 III Series 2600 model1.0", "expiration_date": "2025-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0658_it9715.html", "toe_japan_name": "Canon imageRUNNER ADVANCE715 III / 615 III / 525 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 715 III/615 III/525 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0658", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000p4p-att/c0658_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0657", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C475 III Series 2600 model1.0", "expiration_date": "2025-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0657_it9714.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C475 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C475 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0657", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000oud-att/c0657_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0656", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C356 III / C256 III Series 2600 model1.0", "expiration_date": "2025-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0656_it9713.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C356 III / C256 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C356 III/C256 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0656", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000ol2-att/c0656_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0655", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 8500 III Series 2600 model1.0", "expiration_date": "2024-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0655_it8707.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 8500 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 8500 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0655", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000ocp-att/c0655_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0654", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C7500 III Series 2600 model1.0", "expiration_date": "2024-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0654_it8706.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C7500 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C7500 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0654", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000np7-att/copy_of_c0654_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0653", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C55900KG (III)/ C5500 III Series 2600 model1.0", "expiration_date": "2024-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0653_it8704.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C55900KG (III)/ C5500 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C55900KG (III)/ C5500 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0653", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000ngb-att/c0653_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0652", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C35900KG (III)/C3500 III Series 2600 model1.0", "expiration_date": "2024-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0652_it8702.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C35900KG (III)/C3500 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C35900KG (III)/C3500 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0652", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000n3g-att/c0652_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0651", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 6500 III Series 2600 model1.0", "expiration_date": "2024-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0651_it8705.html", "toe_japan_name": "Canon imageRUNNER ADVANCE6500 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 6500 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0651", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000md9-att/c0651_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0650", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 45900KG (III)/4500 III Series 2600 model1.0", "expiration_date": "2024-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0650_it8703.html", "toe_japan_name": "Canon imageRUNNER ADVANCE45900KG (III)/4500 III Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 45900KG (III)/4500 III Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0650", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000m4x-att/c0650_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. User Authentication Function Function for identifying and authenticating the user. Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. HDD Data Encryption Function Function for encrypting all data stored in the HDD. LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. Self-Test Function Function for testing the integrity of the executable code at startup. Audit Log Function Function for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external server. Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0647", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-2631 / 3631 with MX-FR62U and MX-PK13; MX-4151 / 5151 / 6151 / 2661 / 3161 / 3661 / 4171 / 5171 / 6171 with MX-FR62U; MX-2651 / 3051 / 3551 / 4051 / 5051 / 6051 with MX-FR62U, MX-PK13 and MX-FX15; and MX-3061 / 3561 / 4061 / 3071 / 3571 / 4071 / 5071 / 6071 with MX-FR62U and MX-FX150310Zd00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0647_it8701.html", "toe_japan_name": "-----", "enhanced": { "product": "MX-2631 / 3631 with MX-FR62U and MX-PK13; MX-4151 / 5151 / 6151 / 2661 / 3161 / 3661 / 4171 / 5171 / 6171 with MX-FR62U; MX-2651 / 3051 / 3551 / 4051 / 5051 / 6051 with MX-FR62U, MX-PK13 and MX-FX15; and MX-3061 / 3561 / 4061 / 3071 / 3571 / 4071 / 5071 / 6071 with MX-FR62U and MX-FX15", "toe_version": "0310Zd00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0647", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lwi-att/c0647_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lwi-att/c0647_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lwi-att/c0647_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0646", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-2651 / 3051 / 3551 / 4051 / 5051 / 6051 with MX-FR62U and MX-PK13; and MX-3061 / 3561 / 4061 / 3071 / 3571 / 4071 / 5071 / 6071 with MX-FR62U0310Zd00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0646_it8700.html", "toe_japan_name": "-----", "enhanced": { "product": "MX-2651 / 3051 / 3551 / 4051 / 5051 / 6051 with MX-FR62U and MX-PK13; and MX-3061 / 3561 / 4061 / 3071 / 3571 / 4071 / 5071 / 6071 with MX-FR62U", "toe_version": "0310Zd00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0646", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lnf-att/c0646_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lnf-att/c0646_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lnf-att/c0646_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0645", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-C303W / C304W / C305W / C306W with MX-FR61U0210Md00", "expiration_date": "2024-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0645_it8699.html", "toe_japan_name": "-----", "enhanced": { "product": "MX-C303W / C304W / C305W / C306W with MX-FR61U", "toe_version": "0210Md00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0645", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lei-att/c0645_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lei-att/c0645_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000lei-att/c0645_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: Identification and Authentication Function Access Control Function Stored Data Encryption Function Network Protection Function Security Management Function Audit Function Software Verification Function Self-testing Function Fax Line Separation Function Residual Data Overwrite Function Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0644", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2024-08-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-07-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IP 500, IM 430J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0644_it8669.html", "enhanced": { "product": "RICOH IP 500, IM 430", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0644", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000l25-att/c0644_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000l25-att/c0644_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000l25-att/c0644_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0643", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 350F/430F/430Fb, SAVIN IM 350F/430F/430Fb, LANIER IM 350F/430F/430Fb, nashuatec IM 350F/430F, Rex Rotary IM 350F/430F, Gestetner IM 350F/430FE-1.00", "expiration_date": "2024-08-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0643_it8667.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 350F/430F/430Fb, SAVIN IM 350F/430F/430Fb, LANIER IM 350F/430F/430Fb, nashuatec IM 350F/430F, Rex Rotary IM 350F/430F, Gestetner IM 350F/430F", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0643", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000ksk-att/c0643_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000ksk-att/c0643_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000ksk-att/c0643_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0642", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM 350, nashuatec IM 350, Rex Rotary IM 350, Gestetner IM 350E-1.00", "expiration_date": "2024-07-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0642_it8668.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM 350, nashuatec IM 350, Rex Rotary IM 350, Gestetner IM 350", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0642", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000kih-att/c0642_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000kih-att/c0642_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000kih-att/c0642_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: Audit Function: Enables the TOE to record information related to security events and allows users to review it. Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. Network Protection Function: Enables the TOE to protect network communications using encryption. Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. Security Management Function: Enables the TOE administrator to control security functions. Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0641", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "ECOSYS M3660idn, ECOSYS M3655idn, ECOSYS M3645idn, ECOSYS M3660idnG, ECOSYS M3655idnG, ECOSYS M3645idnG(KYOCERA), P-6036i MFP, P-5536i MFP, P-4536i MFP(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and SSDSystem: 2TA_S0IS.C01.010", "expiration_date": "2024-07-01", "claim": "EAL2", "certification_date": "2019-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0641_it8664.html", "toe_japan_name": "ECOSYS M3660idn, ECOSYS M3655idn, ECOSYS M3645idn, ECOSYS M3660idnG, ECOSYS M3655idnG, ECOSYS M3645idnG(KYOCERA), P-6036i MFP, P-5536i MFP, P-4536i MFP(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and SSDSystem: 2TA_S0IS.C01.010", "enhanced": { "product": "ECOSYS M3660idn, ECOSYS M3655idn, ECOSYS M3645idn, ECOSYS M3660idnG, ECOSYS M3655idnG, ECOSYS M3645idnG(KYOCERA), P-6036i MFP, P-5536i MFP,P-4536i MFP(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and SSD", "toe_version": "System: 2TA_S0IS.C01.010", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0641", "cc_version": "3.1 Release5", "assurance_level": "EAL2", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000kak-att/c0641_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities to prevent unauthorized disclosure and alteration of user data. TOE security functionality This TOE provides the following security functionalities. User Authentication The functionality that performs user identification and authentication. Document Access Control The functionality that restricts access to user data to authorized users only. SSD Data Encryption The functionality that encrypts data stored in SSD. Security Management The functionality that restricts management of the security functionalities to authorized users only. Network Data Protection The functionality that encrypts communication data. FAX Data Flow Control The functionality that does not transfer FAX data received from public lines to the internal network." } }, { "cert_id": "JISEC-CC-CRP-C0640", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "ECOSYS M6635cidn, ECOSYS M6630cidn, ECOSYS M6635cidnG, ECOSYS M6630cidnG, TASKalfa 351ci(KYOCERA), P-C3566i MFP, P-C3066i MFP, 356ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and SSDSystem: 2V1_S0IS.C01.010", "expiration_date": "2024-07-01", "claim": "EAL2", "certification_date": "2019-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0640_it8663.html", "toe_japan_name": "ECOSYS M6635cidn, ECOSYS M6630cidn, ECOSYS M6635cidnG, ECOSYS M6630cidnG, TASKalfa 351ci(KYOCERA), P-C3566i MFP, P-C3066i MFP, 356ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and SSDSystem: 2V1_S0IS.C01.010", "enhanced": { "product": "ECOSYS M6635cidn, ECOSYS M6630cidn, ECOSYS M6635cidnG, ECOSYS M6630cidnG, TASKalfa 351ci(KYOCERA), P-C3566i MFP, P-C3066i MFP, 356ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and SSD", "toe_version": "System: 2V1_S0IS.C01.010", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0640", "cc_version": "3.1 Release5", "assurance_level": "EAL2", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/b9ck990000000k2n-att/c0640_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities to prevent unauthorized disclosure and alteration of user data. TOE security functionality This TOE provides the following security functionalities. User Authentication The functionality that performs user identification and authentication. Document Access Control The functionality that restricts access to user data to authorized users only. SSD Data Encryption The functionality that encrypts data stored in SSD. Security Management The functionality that restricts management of the security functionalities to authorized users only. Network Data Protection The functionality that encrypts communication data. FAX Data Flow Control The functionality that does not transfer FAX data received from public lines to the internal network." } }, { "cert_id": "JISEC-CC-CRP-C0639", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 9002i, TASKalfa 9002iG(KYOCERA), CS 9002i(Copystar) all of the above with Data Security Kit and FAX System System: 2NJ_20IS.C04.010 Panel: 2ND_70IS.C04.010 FAX: 3R2_5100.003.012", "expiration_date": "2024-05-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0639_it8662.html", "toe_japan_name": "-----", "enhanced": { "product": "TASKalfa 9002i, TASKalfa 9002iG(KYOCERA), CS 9002i(Copystar) all of the above with Data Security Kit and FAX System", "toe_version": "System: 2NJ_20IS.C04.010 Panel: 2ND_70IS.C04.010 FAX: 3R2_5100.003.012", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0639", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0639_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User AuthenticationThe functionality that performs user identification and authentication. - Job AuthorizationThe functionality that restricts the available functions of a user. - Document Access ControlThe functionality that restricts access to user document data to authorized users only. - Hard Disk Data EncryptionThe functionality that encrypts data stored in hard disk drive. - Data OverwriteThe functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit LogsThe functionality that records audit logs relevant to the security functionalities. - Security ManagementThe functionality that restricts management of the security functionalities to authorized users only. - Self TestThe functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data ProtectionThe functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0638", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C2000/C2000G/C2500/C2500G/C3000/C3000G/C3500/C3500G, SAVIN IM C2000/ C2000G/C2500/C2500G/C3000/C3000G/C3500/C3500G, LANIER IM C2000/C2000G/C2500/ C2500G/C3000/C3000G/C3500/C3500G, nashuatec IM C2000/C2500/C3000/C3500, Rex Rotary IM C2000/C2500/C3000/C3500, Gestetner IM C2000/C2500/C3000/C3500 E-1.01", "expiration_date": "2024-05-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0638_it8682.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C2000/C2000G/C2500/ C2500G/C3000/C3000G/C3500/C3500G, SAVIN IM C2000/C2000G/C2500/ C2500G/C3000/C3000G/C3500/C3500G, LANIER IM C2000/C2000G/C2500/ C2500G/C3000/C3000G/C3500/C3500G, nashuatec IM C2000/C2500/C3000/C3500, Rex Rotary IM C2000/C2500/C3000/C3500, Gestetner IM C2000/C2500/C3000/C3500", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0638", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0638_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0638_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0638_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0637", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2024-05-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-04-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C3500/C3000/C2500/C2000 J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0637_it8681.html", "enhanced": { "product": "RICOH IM C3500/C3000/C2500/C2000", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0637", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0637_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0637_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0637_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0636", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH IM C4500/C4500G/C5500/C6000/C6000G, SAVIN IM C4500/C4500G/C6000/C6000G,LANIER IM C4500/C4500G/C6000/C6000G,nashuatec IM C4500/C5500/C6000,Rex Rotary IM C4500/C5500/C6000, Gestetner IM C4500/C5500/C6000E-1.01", "expiration_date": "2024-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0636_it8684.html", "toe_japan_name": "-----", "enhanced": { "product": "RICOH IM C4500/C4500G/C5500/C6000/C6000G,SAVIN IM C4500/C4500G/C6000/C6000G,LANIER IM C4500/C4500G/C6000/C6000G,nashuatec IM C4500/C5500/C6000,Rex Rotary IM C4500/C5500/C6000,Gestetner IM C4500/C5500/C6000", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0636", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0636_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0636_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0636_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0635", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2024-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-03-01", "toe_overseas_link": null, "toe_japan_name": "RICOH IM C6000/C5500/C4500J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0635_it8683.html", "enhanced": { "product": "RICOH IM C6000/C5500/C4500", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0635", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0635_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0635_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0635_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0634", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "-----", "expiration_date": "2024-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2019-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-VI C2264 model with Hard Disk, Data Security, Scan, and Fax Controller ROM Ver. 1.1.3,FAX ROM Ver. 2.2.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0634_it8674.html", "enhanced": { "product": "Fuji Xerox DocuCentre-VI C2264 model with Hard Disk, Data Security, Scan, and Fax", "toe_version": "Controller ROM Ver. 1.1.3, FAX ROM Ver. 2.2.0", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0634", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0634_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0634_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0634_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, scan, network scan, fax, and mailbox. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0633", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2515AC/3015AC/3515AC/4515AC/5015AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230) SYS V1.0", "expiration_date": "2024-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0633_it8690.html", "toe_japan_name": "TOSHIBA e-STUDIO2515AC/3015AC/3515AC/4515AC/5015AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230) SYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO2515AC/3015AC/3515AC/4515AC/ 5015AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0633", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0633_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0633_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0633_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE Security functions The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0632", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO5516AC/6516AC/7516AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)SYS V1.0", "expiration_date": "2024-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0632_it8693.html", "toe_japan_name": "TOSHIBA e-STUDIO5516AC/6516AC/7516AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230) SYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO5516AC/6516AC/7516A all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0632", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0632_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0632_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0632_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE Security functions The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0631", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2018A/2518A/3018A/3518A/4518A/5018A all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230) SYS V1.0", "expiration_date": "2024-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0631_it8692.html", "toe_japan_name": "TOSHIBA e-STUDIO2018A/2518A/3018A/3518A/4518A/5018A all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)SYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO2018A/2518A/3018A/3518A/4518A/ 5018A all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0631", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0631_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0631_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0631_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE Security functions The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0630", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO5518A/6518A/7518A/8518A all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230) SYS V1.0", "expiration_date": "2024-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0630_it8691.html", "toe_japan_name": "TOSHIBA e-STUDIO5518A/6518A/7518A/8518A all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230) SYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO5518A/6518A/7518A/8518A all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0630", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0630_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0630_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0630_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE Security functions The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0629", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "TOSHIBA e-STUDIO2010AC/2510AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230) SYS V1.0", "expiration_date": "2024-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0629_it8689.html", "toe_japan_name": "TOSHIBA e-STUDIO2010AC/2510AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)SYS V1.0", "enhanced": { "product": "TOSHIBA e-STUDIO2010AC/2510AC all of the above with FAX Unit(GD-1370J/GD-1370NA/GD-1370EU) and FIPS Hard Disk Kit(GE-1230)", "toe_version": "SYS V1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0629", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0629_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0629_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0629_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan and fax. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE Security functions The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function" } }, { "cert_id": "JISEC-CC-CRP-C0628", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress C3080P G00-25", "expiration_date": "2024-04-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0628_it8694.html", "toe_japan_name": "AccurioPress C3080PG00-25", "enhanced": { "product": "AccurioPress C3080P", "toe_version": "G00-25", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0628", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Printer that has the function of printing received documents and saved documents. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0627", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress C3080 / C3070 G00-25", "expiration_date": "2024-03-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0627_it8695.html", "toe_japan_name": "AccurioPress C3080 / C3070G00-25", "enhanced": { "product": "AccurioPress C3080 / C3070", "toe_version": "G00-25", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0627", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Printer (MFP) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0626", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress 6136P G00-20", "expiration_date": "2024-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0626_it8688.html", "toe_japan_name": "AccurioPress 6136PG00-20", "enhanced": { "product": "AccurioPress 6136P", "toe_version": "G00-20", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0626", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Printer that has the function of printing received documents and saved documents. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0625", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress 6136/6120 G00-20", "expiration_date": "2024-02-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2019-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0625_it8687.html", "toe_japan_name": "AccurioPress 6136/6120G00-20", "enhanced": { "product": "AccurioPress 6136 / 6120", "toe_version": "G00-20", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0625", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Printer (MFP) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0624", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-M7570 / M6570 fax option model with MX-FR60U 0130td00", "expiration_date": "2024-01-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0624_it8677.html", "toe_japan_name": "-----", "enhanced": { "product": "MX-M7570 / M6570 fax option model with MX-FR60U", "toe_version": "0130td00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0624", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0624_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0624_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0624_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0623", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-M7570 / M6570 fax standard model with MX-FR60U; and MX-M7570 / M6570 fax option model with MX-FR60U and MX-FX15 0130td00", "expiration_date": "2024-01-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0623_it8676.html", "toe_japan_name": "MX-M7570 / M6570 fax standard model with MX-FR60U; and MX-M7570 / M6570 fax option model with MX-FR60U and MX-FX15 0130td00", "enhanced": { "product": "MX-M7570 / M6570 fax standard model with MX-FR60U; and MX-M7570 / M6570 fax option model with MX-FR60U and MX-FX15", "toe_version": "0130td00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0623", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0623_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0623_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0623_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0621", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress C6100 / C6235 with PF-711 G00-31", "expiration_date": "2023-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0621_it8680.html", "toe_japan_name": "AccurioPress C6100 / C6085 with PF-711 G00-31", "enhanced": { "product": "AccurioPress C6100 / C6085 with PF-711", "toe_version": "G00-31", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0621", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Printer (MFP) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0620", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C501 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner) E-1.00", "expiration_date": "2023-11-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0620_it8675.html", "toe_japan_name": "MP C501 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner)", "enhanced": { "product": "MP C501 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0620", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/C0620_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0620_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0620_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0619", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox D136 Copier/Printer Controller+PS ROM Ver. 1.200.15", "expiration_date": "2023-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0619_it7651.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox D136 Copier/Printer", "toe_version": "Controller+PS ROM Ver. 1.200.15", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0619", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0619_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0619_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0619_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, and scan. The TOE is assumed to be used at general office, from the control panel, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE Security functions To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0618", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox D95/D110/D125 Copier/Printer Controller+PS ROM Ver. 1.204.17", "expiration_date": "2023-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0618_it7650.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox D95/D110/D125 Copier/Printer", "toe_version": "Controller+PS ROM Ver. 1.204.17", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0618", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0618_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0618_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0618_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, and scan. The TOE is assumed to be used at general office, from the control panel, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE Security functions To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0617", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3212i, TASKalfa 3212iG(KYOCERA), 3262i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and FAX System System: 2V6_20IS.C01.010 Panel: 2V6_70IS.C01.010 FAX: 3R2_5100.003.012", "expiration_date": "2023-10-01", "claim": "EAL2", "certification_date": "2018-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0617_it8661.html", "toe_japan_name": "TASKalfa 3212i, TASKalfa 3212iG(KYOCERA), 3262i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and FAX System System: 2V6_20IS.C01.010 Panel: 2V6_70IS.C01.010 FAX: 3R2_5100.003.012", "enhanced": { "product": "TASKalfa 3212i, TASKalfa 3212iG(KYOCERA), 3262i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit and FAX System", "toe_version": "System: 2V6_20IS.C01.010 Panel: 2V6_70IS.C01.010 FAX: 3R2_5100.003.012", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0617", "cc_version": "3.1 Release5", "assurance_level": "EAL2", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0617_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities to prevent unauthorized disclosure and alteration of user data. . TOE security functionality This TOE provides the following security functionalities. - User AuthenticationThe functionality that performs user identification and authentication. - Document Access ControlThe functionality that restricts access to user data to authorized users only. - SSD Data EncryptionThe functionality that encrypts data stored in SSD. - Audit LogsThe functionality that records audit logs relevant to the security functionalities. - Security ManagementThe functionality that restricts management of the security functionalities to authorized users only. - Self TestThe functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data ProtectionThe functionality that encrypts communication data. - FAX Data Flow ControlThe functionality that controls transmission of FAX data received from public lines." } }, { "cert_id": "JISEC-CC-CRP-C0616", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 4012i, TASKalfa 3212i, TASKalfa 4012iG, TASKalfa 3212iG(KYOCERA), CS 4012i, CS 3212i(Copystar), 4062i, 3262i(TA Triumph-Adler/UTAX) all of the above with Hard Disk, Data Security Kit and FAX System System: 2V6_20IS.C01.010 Panel: 2V6_70IS.C01.010 FAX: 3R2_5100.003.012", "expiration_date": "2023-10-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0616_it8660.html", "toe_japan_name": "TASKalfa 4012i, TASKalfa 3212i, TASKalfa 4012iG, TASKalfa 3212iG(KYOCERA), CS 4012i, CS 3212i(Copystar), 4062i, 3262i(TA Triumph-Adler/UTAX) all of the above with Hard Disk, Data Security Kit and FAX System System: 2V6_20IS.C01.010 Panel: 2V6_70IS.C01.010 FAX: 3R2_5100.003.012", "enhanced": { "product": "TASKalfa 4012i, TASKalfa 3212i, TASKalfa 4012iG, TASKalfa 3212iG(KYOCERA), CS 4012i, CS 3212i(Copystar), 4062i, 3262i(TA Triumph-Adler/UTAX) all of the above with Hard Disk, Data Security Kit and FAX System", "toe_version": "System: 2V6_20IS.C01.010 Panel: 2V6_70IS.C01.010 FAX: 3R2_5100.003.012", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0616", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0616_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User AuthenticationThe functionality that performs user identification and authentication. - Job AuthorizationThe functionality that restricts the available functions of a user. - Document Access ControlThe functionality that restricts access to user document data to authorized users only. - Hard Disk Data EncryptionThe functionality that encrypts data stored in hard disk drive. - Data OverwriteThe functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit LogsThe functionality that records audit logs relevant to the security functionalities. - Security ManagementThe functionality that restricts management of the security functionalities to authorized users only. - Self TestThe functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data ProtectionThe functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0615", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress C2060 G00-21", "expiration_date": "2023-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0615_it8672.html", "toe_japan_name": "AccurioPress C2060G00-21", "enhanced": { "product": "AccurioPress C2060", "toe_version": "G00-21", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0615", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Printer (MFP) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0614", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress C2070P G00-21", "expiration_date": "2023-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0614_it8671.html", "toe_japan_name": "AccurioPress C2070P G00-21", "enhanced": { "product": "AccurioPress C2070P", "toe_version": "G00-21", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0614", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Printer that has the function of printing received documents and saved documents. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0613", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "AccurioPress C2070 G00-21", "expiration_date": "2023-10-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0613_it8670.html", "toe_japan_name": "AccurioPress C2070 G00-21", "enhanced": { "product": "AccurioPress C2070", "toe_version": "G00-21", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0613", "cc_version": "3.1 Release5", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Printer (MFP) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function. - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0611", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C505 Color Multifunction Printer Diskless model Controller ROM Ver. 1.12.32", "expiration_date": "2023-09-01", "claim": "EAL2+ ALC_FLR.2", "certification_date": "2018-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0611_it7631.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C505 Color Multifunction Printer Diskless model", "toe_version": "Controller ROM Ver. 1.12.32", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0611", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0611_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0611_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0611_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network and scan. The TOE is assumed to be used at general office, from the control panel, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Flash Memory Data EncryptionA function to encrypt the document data before the data is stored into the internal eMMC memory. - User AuthenticationA function to identify and authenticate users. This function also allows only owners of document data and system administrators to handle document data stored in the TOE. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0610", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink B605/B615 Multifunction Printer models with Fax Controller ROM Ver. 1.13.32", "expiration_date": "2023-09-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0610_it7632.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink B605/B615 Multifunction Printer models with Fax", "toe_version": "Controller ROM Ver. 1.13.32", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0610", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0610_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0610_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0610_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE Security functions To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0609", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C505/C605 Color Multifunction Printer models with Hard Disk, Fax Controller ROM Ver. 1.12.32", "expiration_date": "2023-09-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0609_it7630.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C505/C605 Color Multifunction Printer models with Hard Disk, Fax", "toe_version": "Controller ROM Ver. 1.12.32", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0609", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0609_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0609_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0609_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE Security functions To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0608", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD standard model with MX-FR56U; and MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD option model with MX-FR56U and MX-HD16 0220zc00", "expiration_date": "2023-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0608_it8659.html", "toe_japan_name": "-----", "enhanced": { "product": "MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD standard model with MX-FR56U; and MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD option model with MX-FR56U and MX-HD16", "toe_version": "0220zc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0608", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0608_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0608_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0608_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0607", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD standard model with MX-FR56U and MX-FX15; and MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD option model with MX-FR56U, MX-HD16 and MX-FX15 0220zc00", "expiration_date": "2023-08-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0607_it8658.html", "toe_japan_name": "-----", "enhanced": { "product": "MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD standard model with MX-FR56U and MX-FX15; and MX-M6050 / M5050 / M4050 / M3550 / M3050 / M2630 HDD option model with MX-FR56U, MX-HD16 and MX-FX15", "toe_version": "0220zc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0607", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0607_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0607_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0607_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0606", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 4752/bizhub 4052/ineo 4752/ineo 4052 G00-11", "expiration_date": "2023-08-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0606_it7643.html", "toe_japan_name": "bizhub 4752/bizhub 4052/ineo 4752/ineo 4052G00-11", "enhanced": { "product": "bizhub 4752/bizhub 4052/ineo 4752/ineo 4052", "toe_version": "G00-11", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0606", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0606_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0606_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0606_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0605", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 658e/bizhub 558e/bizhub 458e/ineo 658e/ineo 558e/ineo 458e G00-09", "expiration_date": "2023-07-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0605_it7638.html", "toe_japan_name": "bizhub 658e/bizhub 558e/bizhub 458e/ineo 658e/ineo 558e/ineo 458eG00-09", "enhanced": { "product": "bizhub 658e/bizhub 558e/bizhub 458e/ ineo 658e/ineo 558e/ineo 458e", "toe_version": "G00-09", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0605", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0605_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0605_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0605_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security features: - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0604", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C759 / AccurioPrint C759 / bizhub C659 / ineo+ 759 / ineo+ 659 G00-09", "expiration_date": "2023-07-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0604_it7637.html", "toe_japan_name": "bizhub C759 / AccurioPrint C759 / bizhub C659 / ineo+ 759 / ineo+ 659G00-09", "enhanced": { "product": "bizhub C759 / AccurioPrint C759 / bizhub C659 / ineo+ 759 / ineo+ 659", "toe_version": "G00-09", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0604", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0604_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0604_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0604_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security features: - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0603", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 368e/bizhub 308e/ineo 368e/ineo 308e G00-09", "expiration_date": "2023-07-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0603_it7636.html", "toe_japan_name": "bizhub 368e/bizhub 308e/ineo 368e/ineo 308eG00-09", "enhanced": { "product": "bizhub 368e/bizhub 308e/ineo 368e/ineo 308e", "toe_version": "G00-09", "product_type": "Multi-Function Printer", "cert_id": "JISEC-CC-CRP-C0603", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0603_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0603_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0603_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security features: - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0602", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "LX-10000F/LX-7000F/WF-C20590/WF-C17590 2.00", "expiration_date": "2023-07-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0602_it7653.html", "toe_japan_name": "LX-10000F/LX-7000F/WF-C20590/WF-C175902.00", "enhanced": { "product": "LX-10000F/LX-7000F/WF-C20590/WF-C17590", "toe_version": "2.00", "product_type": "Multifunction Peripheral", "cert_id": "JISEC-CC-CRP-C0602", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0602_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0602_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0602_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a multifunction peripheral(MFP) that has the functions, such as copy, print, scan and FAX. This TOE provides Security Functions required for \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for MFPs. TOE Security functions The security functions of this TOE are as follows: - Identification and Authentication FunctionFunction to identify and authenticate users. - Access Control Function for TOE FunctionFunction to restrict available functions for each authorized user. - Document Access Control FunctionFunction to allow only the authorized users and the administrator to access to stored documents. - Residual Data Overwrite FunctionFunction to overwrite and delete unnecessary document data in the HDD and the Flash ROM. - Network Protection FunctionFunction to protect communication data using encryption communication protocols. - Security Management FunctionFunction to allow only the administrator to manage security functions. - Self-Test FunctionFunction to verify the integrity of executable codes at startup. - Audit Log FunctionFunction to record audit logs related to security events and allow only the administrator to view that log." } }, { "cert_id": "JISEC-CC-CRP-C0601", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "-----", "expiration_date": "2023-07-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-06-01", "toe_overseas_link": null, "toe_japan_name": "bizhub PRO 1100G00-30", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0601_it7635.html", "enhanced": { "product": "bizhub PRO 1100", "toe_version": "G00-30", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0601", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Printer (MFP) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFP. TOE Security functions The TOE provides the following security features: - Identification and authentication function - Data access control function - User access control function - Security management function - Software update verification function - Self-testing function - Network Communications protection function - Audit function - Storage encryption function - Cryptographic key material protection function" } }, { "cert_id": "JISEC-CC-CRP-C0600", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C7020/C7025/C7030 Color Multifunction Printer Diskless models Controller ROM Ver. 1.11.33, FAX ROM Ver. 2.0.8", "expiration_date": "2023-06-01", "claim": "EAL2+ ALC_FLR.2", "certification_date": "2018-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0600_it7629.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C7020/C7025/C7030 Color Multifunction Printer Diskless models", "toe_version": "Controller ROM Ver. 1.11.33, FAX ROM Ver. 2.0.8", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0600", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0600_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0600_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0600_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Flash Memory Data EncryptionA function to encrypt the document data before the data is stored into the internal SD memory. - User AuthenticationA function to identify and authenticate users. This function also allows only owners of document data and system administrators to handle document data stored in the TOE. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Fax Flow SecurityA function to restrict the unpermitted communication between public telephone line and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0599", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C7020/C7025/C7030 Color Multifunction Printer models with Hard Disk, Fax Controller ROM Ver. 1.11.33, FAX ROM Ver. 2.0.8", "expiration_date": "2023-06-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0599_it7628.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C7020/C7025/C7030 Color Multifunction Printer models with Hard Disk, Fax", "toe_version": "Controller ROM Ver. 1.11.33, FAX ROM Ver. 2.0.8", "product_type": "Multi-Function Device", "cert_id": "JISEC-CC-CRP-C0599", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0599_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0599_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0599_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0598", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-B455W / B355W with MX-FR59U 0210mc00", "expiration_date": "2023-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0598_it7657.html", "toe_japan_name": "MX-B455W / B355W with MX-FR59U0210mc00", "enhanced": { "product": "MX-B455W / B355W with MX-FR59U", "toe_version": "0210mc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0598", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0598_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0598_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0598_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0597", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-M6070 / M5070 / M4070 / M3570 / M3070 fax option model with MX-FR57U0210zc00", "expiration_date": "2023-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0597_it7656.html", "toe_japan_name": "-----", "enhanced": { "product": "MX-M6070 / M5070 / M4070 / M3570 / M3070 fax option model with MX-FR57U", "toe_version": "0210zc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0597", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0597_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0597_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0597_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0596", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-M6070 / M5070 / M4070 fax standard model with MX-FR57U and MX-PK13; and MX-M6070 / M5070 / M4070 / M3570 / M3070 fax option model with MX-FR57U and MX-FX150210zc00", "expiration_date": "2023-06-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2018-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0596_it7655.html", "toe_japan_name": "MX-M6070 / M5070 / M4070 fax standard model with MX-FR57U and MX-PK13; and MX-M6070 / M5070 / M4070 / M3570 / M3070 fax option model with MX-FR57U and MX-FX150210zc00", "enhanced": { "product": "MX-M6070 / M5070 / M4070 fax standard model with MX-FR57U and MX-PK13; and MX-M6070 / M5070 / M4070 / M3570 / M3070 fax option model with MX-FR57U and MX-FX15", "toe_version": "0210zc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0596", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0596_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0596_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0596_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Fax Line Separation Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0595", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink B405 Multifunction Printer Diskless modelController ROM Ver.1.0.31", "expiration_date": "2023-05-01", "claim": "EAL2+ ALC_FLR.2", "certification_date": "2018-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0595_it6609.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink B405 Multifunction Printer Diskless model", "toe_version": "Controller ROM Ver.1.0.31", "product_type": "Multi-Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0595_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0595_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0595_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Flash Memory Data EncryptionA function to encrypt the document data before the data is stored into the internal eMMC memory. - User AuthenticationA function to identify and authenticate users. This function also allows only owners of document data and system administrators to handle document data stored in the TOE. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Fax Flow SecurityA function to restrict the unpermitted communication between public telephone line and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0594", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink C405 Color Multifunction Printer Diskless modelController ROM Ver.1.0.31", "expiration_date": "2023-05-01", "claim": "EAL2+ ALC_FLR.2", "certification_date": "2018-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0594_it6608.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink C405 Color Multifunction Printer Diskless model", "toe_version": "Controller ROM Ver.1.0.31", "product_type": "Multi-Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0594_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0594_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0594_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Flash Memory Data EncryptionA function to encrypt the document data before the data is stored into the internal eMMC memory. - User AuthenticationA function to identify and authenticate users. This function also allows only owners of document data and system administrators to handle document data stored in the TOE. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Fax Flow SecurityA function to restrict the unpermitted communication between public telephone line and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0593", "supplier": "Dell Inc.", "toe_overseas_name": "Dell Color MFP S3845cdnController ROM Ver. 1.0.31", "expiration_date": "2023-04-01", "claim": "EAL2", "certification_date": "2018-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0593_it6625.html", "toe_japan_name": "-----", "enhanced": { "product": "Dell Color MFP S3845cdn", "toe_version": "Controller ROM Ver. 1.0.31", "product_type": "Multi-Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2", "vendor": "Dell Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0593_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0593_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0593_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Flash Memory Data EncryptionA function to encrypt the document data before the data is stored into the internal eMMC memory. - User AuthenticationA function to identify and authenticate users. This function also allows only owners of document data and system administrators to handle document data stored in the TOE. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Fax Flow SecurityA function to restrict the unpermitted communication between public telephone line and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0592", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink B7025/B7030/B7035 Multifunction Printer Diskless modelsController ROM Ver. 1.10.33, FAX ROM Ver. 2.0.8", "expiration_date": "2023-04-01", "claim": "EAL2+ ALC_FLR.2", "certification_date": "2018-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0592_it6607.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink B7025/B7030/B7035 Multifunction Printer Diskless models", "toe_version": "Controller ROM Ver. 1.10.33, FAX ROM Ver. 2.0.8", "product_type": "Multi-Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0592_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0592_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0592_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Flash Memory Data EncryptionA function to encrypt the document data before the data is stored into the internal SD memory. - User AuthenticationA function to identify and authenticate users. This function also allows only owners of document data and system administrators to handle document data stored in the TOE. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Fax Flow SecurityA function to restrict the unpermitted communication between public telephone line and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0591", "supplier": "Sindoh Co., Ltd.", "toe_overseas_name": "Sindoh CM 2073/CM 3033/CM 30811.00", "expiration_date": "2023-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0591_it7654.html", "toe_japan_name": "-----", "enhanced": { "product": "Sindoh CM 2073/CM 3033/CM 3081", "toe_version": "1.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0591", "cc_version": "3.1 Release5", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Sindoh Co., Ltd.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0591_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0591_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0591_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2TM-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0590", "supplier": "Xerox Corporation", "toe_overseas_name": "Xerox VersaLink B7025/B7030/B7035 Multifunction Printer models with Hard Disk, Fax Controller ROM Ver. 1.10.33, FAX ROM Ver. 2.0.8", "expiration_date": "2023-04-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0590_it6606.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox VersaLink B7025/B7030/B7035 Multifunction Printer models with Hard Disk, Fax", "toe_version": "Controller ROM Ver. 1.10.33, FAX ROM Ver. 2.0.8", "product_type": "Multi-Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Xerox Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0590_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0590_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0590_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi-Function Device (MFD) that provides such functions as copy, print, network scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0589", "supplier": "NORMEE Limited.", "toe_overseas_name": "-----", "expiration_date": "2023-04-01", "claim": "PP(Protection Profile for Biometric Verification Product Version 1.2)", "certification_date": "2018-03-01", "toe_overseas_link": null, "toe_japan_name": "Palm Vein Authentication Software Android OS Version Ver1.00.m01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0589_it6605.html", "enhanced": { "product": "Palm Vein Authentication Software Android OS Version", "toe_version": "Ver1.00.m01", "product_type": "Biometric verification product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.1", "protection_profile": "Protection Profile for Biometric Verification Product Version 1.2 (Certification Identification: JISEC-C0501)", "vendor": "NORMEE Limited.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Officer", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a biometric verification product for mobile devices with Android OS and embedded rear camera, such as smartphones and tablet PCs. TOE is a software library, incorporated into application programs by application developers. TOE security functionality TOE provides biometric verification function with sufficiently low False Accept Rate and False Reject Rate, and presentation attack detection.TOE provides the following functions. - Extraction: Biometric features are extracted from captured raw data. - PAD Feature Extraction: PAD feature data is extracted from raw data to determine whether it is a presentation attack or not. - Quality Check: This function checks whether raw data have sufficient quality. - Enrol: This function outputs extracted biometric features extracted from the Extraction function as a biometric template. - GetRef:This function is responsible for getting the enrolled and stored biometric template corresponding to a user's ID. - Comparator: This function compares the biometric features against the biometric template and calculates a similarity score. - Decision: This function determines whether the verification succeeds or not based on the output from the Quality Check, the PAD Extraction and Comparator. - Clear Memory: This function clears the content of memory which includes biometric templates, biometric features and raw data after use." } }, { "cert_id": "JISEC-CC-CRP-C0588", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C307G/C407G (Ricoh/Savin/Lanier) E-2.00", "expiration_date": "2023-03-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "certification_date": "2018-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0588_it7649.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C307G/C407G (Ricoh/Savin/Lanier)", "toe_version": "E-2.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0588", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0588_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0588_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0588_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2TM-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0587", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C4504ex/C4504exG/C6004ex/C6004exG (Ricoh/Savin/Lanier)E-3.00", "expiration_date": "2023-02-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)PP", "certification_date": "2018-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0587_it7648.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C4504ex/C4504exG/C6004ex/C6004exG (Ricoh/Savin/Lanier)", "toe_version": "E-3.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0587", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™「-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0587_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0587_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0587_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2TM-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0586", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C356/C256 Series 2600 model1.0", "expiration_date": "2023-02-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)PP", "certification_date": "2018-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0586_it7652.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C356/C256 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C356/C256 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0586", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™「-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0586_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0586_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0586_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™「-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication FunctionFunction for identifying and authenticating the user. - Function Use Restriction FunctionFunction for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction FunctionFunction for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs FunctionFunction for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase FunctionFunction for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption FunctionFunction for encrypting all data stored in the HDD. - LAN Data Protection FunctionFunction for protecting all IP packets that are communicated with an IT device. - Self-Test FunctionFunction for testing the integrity of the executable code at startup. - Audit Log FunctionFunction for generating audit logs on security events, allowing them to be viewed by the administrator and sending them to an external file server. - Management FunctionFunction for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0585", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C2004ex/C2004exG/C2504ex/C2504exG/C3004ex/C3004exG/C3504ex/C3504exG (Ricoh/Savin/Lanier)E-3.00", "expiration_date": "2023-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)PP", "certification_date": "2017-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0585_it7647.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C2004ex/C2004exG/C2504ex/C2504exG/ C3004ex/C3004exG/C3504ex/C3504exG (Ricoh/Savin/Lanier)", "toe_version": "E-3.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0585", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0585_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0585_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0585_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0584", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 501/601(Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec),MP 501G/601G(Ricoh/Savin/Lanier)E-1.01", "expiration_date": "2023-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)PP", "certification_date": "2017-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0584_it6593.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 501/601(Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP 501G/601G(Ricoh/Savin/Lanier)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0584_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0584_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0584_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0583", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 2555G/3055G/3555G/4055G/5055G/6055G(Ricoh/Savin/Lanier)E-2.00", "expiration_date": "2023-01-01", "claim": "PP(U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)PP", "certification_date": "2017-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0583_it7646.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 2555G/3055G/3555G/4055G/5055G/6055G (Ricoh/Savin/Lanier)", "toe_version": "E-2.00", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0583", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented by ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0583_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0583_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0583_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0582", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-6170FN / 6170FV / 5170FN / 5170FV / 4170FN / 4170FV with MX-FR52U; and MX-6070N / 6070V / 5070N / 5070V / 4070N / 4070V / 3570N / 3570V / 3070N / 3070V / 4060N / 4060V / 3560N / 3560V / 3060N / 3060V with MX-FR52U and MX-FX150700Zc00", "expiration_date": "2022-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2017-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0582_it7642.html", "toe_japan_name": "MX-6170FN / 6170FV / 5170FN / 5170FV / 4170FN / 4170FV with MX-FR52U; and MX-6070N / 6070V / 5070N / 5070V / 4070N / 4070V / 3570N / 3570V / 3070N / 3070V / 4060N / 4060V / 3560N / 3560V / 3060N / 3060V with MX-FR52U and MX-FX150700Zc00", "enhanced": { "product": "MX-6170FN / 6170FV / 5170FN / 5170FV / 4170FN / 4170FV with MX-FR52U; and MX-6070N / 6070V / 5070N / 5070V / 4070N / 4070V / 3570N / 3570V / 3070N / 3070V / 4060N / 4060V / 3560N / 3560V / 3060N / 3060V with MX-FR52U and MX-FX15", "toe_version": "0700Zc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0582", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0582_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0582_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0582_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Fax Line Separation Function - Self-testing Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0581", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-6070N / 6070V / 5070N / 5070V / 4070N / 4070V / 3570N / 3570V / 3070N / 3070V / 4060N / 4060V / 3560N / 3560V / 3060N / 3060V with MX-FR52U0700Zc00", "expiration_date": "2022-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2017-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0581_it7641.html", "toe_japan_name": "MX-6070N / 6070V / 5070N / 5070V / 4070N / 4070V / 3570N / 3570V / 3070N / 3070V / 4060N / 4060V / 3560N / 3560V / 3060N / 3060V with MX-FR52U0700Zc00", "enhanced": { "product": "MX-6070N / 6070V / 5070N / 5070V / 4070N / 4070V / 3570N / 3570V / 3070N / 3070V / 4060N / 4060V / 3560N / 3560V / 3060N / 3060V with MX-FR52U", "toe_version": "0700Zc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0581", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0581_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0581_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0581_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0580", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-6150FN / 6150FV / 5150FN / 5150FV / 4150FN / 4150FV / 3650FN / 3650FV / 3150FN / 3150FV / 2650FN / 2650FV with MX-FR51U; MX-3630FN / 2630FN with MX-FR51U and MX-PK13; and MX-6050N / 6050V / 5050N / 5050V / 4050N / 4050V / 3550N / 3550V / 3050N / 3050V / 2630N with MX-FR51U, MX-FX15 and MX-PK130700Kc00", "expiration_date": "2022-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2017-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0580_it7640.html", "toe_japan_name": "MX-6150FN / 6150FV / 5150FN / 5150FV / 4150FN / 4150FV / 3650FN / 3650FV / 3150FN / 3150FV / 2650FN / 2650FV with MX-FR51U; MX-3630FN / 2630FN with MX-FR51U and MX-PK13; and MX-6050N / 6050V / 5050N / 5050V / 4050N / 4050V / 3550N / 3550V / 3050N / 3050V / 2630N with MX-FR51U, MX-FX15 and MX-PK130700Kc00", "enhanced": { "product": "MX-6150FN / 6150FV / 5150FN / 5150FV / 4150FN / 4150FV / 3650FN / 3650FV / 3150FN / 3150FV / 2650FN / 2650FV with MX-FR51U; MX-3630FN / 2630FN with MX-FR51U and MX-PK13; and MX-6050N / 6050V / 5050N / 5050V / 4050N / 4050V / 3550N / 3550V / 3050N / 3050V / 2630N with MX-FR51U, MX-FX15 and MX-PK13", "toe_version": "0700Kc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0580", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0580_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0580_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0580_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan, fax and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Fax Line Separation Function - Self-testing Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0579", "supplier": "SHARP CORPORATION", "toe_overseas_name": "MX-6050N / 6050V / 5050N / 5050V / 4050N / 4050V / 3550N / 3550V / 3050N / 3050V / 2630N with MX-FR51U and MX-PK130700Kc00", "expiration_date": "2022-11-01", "claim": "PP(Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015)", "certification_date": "2017-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0579_it7639.html", "toe_japan_name": "MX-6050N / 6050V / 5050N / 5050V / 4050N / 4050V / 3550N / 3550V / 3050N / 3050V / 2630N with MX-FR51U and MX-PK130700Kc00", "enhanced": { "product": "MX-6050N / 6050V / 5050N / 5050V / 4050N / 4050V / 3550N / 3550V / 3050N / 3050V / 2630N with MX-FR51U and MX-PK13", "toe_version": "0700Kc00", "product_type": "Multifunction Product", "cert_id": "JISEC-CC-CRP-C0579", "cc_version": "3.1 Release4", "assurance_level": "ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_ECD.1, ASE_REQ.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1", "protection_profile": "Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 (Certification Identification: JISEC-C0553)", "vendor": "SHARP CORPORATION", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0579_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0579_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0579_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Device (MFD) that has the functions, such as copy, print, scan and filing. The TOE is capable of implementing the functionality required by the Protection Profile for Hardcopy Devices 1.0 dated September 10, 2015 defined as the Protection Profile for MFD. TOE security functionality The TOE provides the following security features: - Identification and Authentication Function - Access Control Function - Stored Data Encryption Function - Network Protection Function - Security Management Function - Audit Function - Software Verification Function - Self-testing Function - Residual Data Overwrite Function - Data Purging Function" } }, { "cert_id": "JISEC-CC-CRP-C0578", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Pro C5200/C5210(RICOH/Savin/Lanier)E-1.01", "expiration_date": "2022-11-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0578_it6597.html", "toe_japan_name": "-----", "enhanced": { "product": "Pro C5200/C5210(RICOH/Savin/Lanier)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0578_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0578_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0578_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0577", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-11-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-10-01", "toe_overseas_link": null, "toe_japan_name": "RICOH Pro C5210/C5200J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0577_it6596.html", "enhanced": { "product": "RICOH Pro C5210/C5200", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0577_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0577_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0577_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0576", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C307/C407 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.00", "expiration_date": "2022-11-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0576_it6623.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C307/C407 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0576_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0576_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0576_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0575", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-11-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-10-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C307J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0575_it6622.html", "enhanced": { "product": "RICOH MP C307", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0575_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0575_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0575_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0574", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C3851/bizhub C3351/bizhub C3851FS/ineo+ 3851/ineo+ 3351/ineo+ 3851FSG00-11", "expiration_date": "2022-11-01", "claim": "EAL2+ALC_FLR.2 PP", "certification_date": "2017-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0574_it6618.html", "toe_japan_name": "bizhub C3851/bizhub C3351/bizhub C3851FS/ineo+ 3851/ineo+ 3351/ineo+ 3851FSG00-11", "enhanced": { "product": "bizhub C3851/bizhub C3351/bizhub C3851FS/ineo+ 3851/ineo+ 3351/ineo+ 3851FS", "toe_version": "G00-11", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0574_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0574_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0574_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0573", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C4504ex/C6004ex(Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP C5504ex (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec) E-2.03", "expiration_date": "2022-10-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2018-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0573_it7634_01.html" } ], "certification_date": "2017-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0573_it7634.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C4504/C6004 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP C5504 (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-2.03", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0573", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0573_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0573_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0573_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0572", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-10-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-09-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C6004/C5504/C4504J-2.03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0572_it7633.html", "enhanced": { "product": "RICOH MP C6004/C5504/C4504", "toe_version": "J-2.03", "product_type": "Multi Function Product", "cert_id": "JISEC-CC-CRP-C0572", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0572_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0572_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0572_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0571", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C2004exSP/C2504exSP/C3004exSP/ C3504exSP(Ricoh/Savin/Lanier/nashuatec/ Rex-Rotary/Gestetner/infotec), MP C2004exASP/C2504exASP/C3004exASP/ C3504exASP(Ricoh/nashuatec/Rex-Rotary/ Gestetner/infotec), MP C2094exSPJ/C2594exSPJ (Ricoh) E-2.03", "expiration_date": "2022-09-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-11", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0571_it5580_01.html" } ], "certification_date": "2017-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0571_it5580.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C2004SP/C2504SP/C3004SP/C3504SP (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/ Gestetner/infotec), MP C2004ASP/C2504ASP/C3004ASP/ C3504ASP (Ricoh/nashuatec/Rex-Rotary/ Gestetner/infotec), MP C2094SPJ/C2594SPJ (Ricoh)", "toe_version": "E-2.03", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0571_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0571_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0571_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0570", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-09-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-08-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C3504/C3004/C2504 J-2.03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0570_it5579.html", "enhanced": { "product": "RICOH MP C3504/C3004/C2504", "toe_version": "J-2.03", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0570_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0570_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0570_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0569", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 402 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.00", "expiration_date": "2022-08-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0569_it6621.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 402 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0569_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0569_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0569_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0568", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 305+ (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.00", "expiration_date": "2022-08-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0568_it5573.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 305+ (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0568_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0568_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0568_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0567", "supplier": "Hewlett Packard Enterprise Company", "toe_overseas_name": "HP XP7 Device Manager Software, HP XP7 Tiered Storage Manager Software 8.0.1-02", "expiration_date": "2022-08-01", "claim": "EAL2+ALC_FLR.1", "certification_date": "2017-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0567_it6602.html", "toe_japan_name": "-----", "enhanced": { "product": "HP XP7 Device Manager Software, HP XP7 Tiered Storage Manager Software", "toe_version": "8.0.1-02", "product_type": "Access Control Device and Systems", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0567_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0567_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0567_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is HP XP7 Device Manager software and HP XP7 Tiered Storage Manager software. The TOE has functionality to manage the input or modification of information that expresses a storage system configuration (abbreviated hereafter to storage resource information). TOE Security functions The TOE provides the following security functionality: - Identification/authentication functionality (The TOE also makes it possible to use external authentication functionality provided by external authentication servers, and to use functionality for linking with external authentication groups.) - Access control functionality for storage resource information and for warning banner information - Warning banner functionality" } }, { "cert_id": "JISEC-CC-CRP-C0566", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO3508LP/4508LP/5008LP? Loops LP35/LP45/LP50 MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V1.0", "expiration_date": "2022-08-01", "claim": "EAL2+ALC_FLR.2 PP", "certification_date": "2017-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0566_it6624.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO3508LP/4508LP/5008LP、Loops LP35/LP45/LP50 MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0566_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit/ deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0565", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Pro 8200S/8210S/8220S(Ricoh/Savin/Lanier/nashuatec/ Rex-Rotary/Gestetner/infotec) E-1.01", "expiration_date": "2022-08-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0565_it6620.html", "toe_japan_name": "-----", "enhanced": { "product": "Pro 8200S/8210S/8220S (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0565_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0565_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0565_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0564", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-08-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-07-01", "toe_overseas_link": null, "toe_japan_name": "RICOH Pro 8220S/8210S/8200SJ-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0564_it6619.html", "enhanced": { "product": "RICOH Pro 8220S/8210S/8200S", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0564_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0564_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0564_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0563", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imagePRESS C850/C750/C650 2600 model1.1", "expiration_date": "2022-08-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-10", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0563_it6626_01.html" } ], "certification_date": "2017-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0563_it6626.html", "toe_japan_name": "Canon imagePRESS C850/C750/C650 2600 model1.0", "enhanced": { "product": "Canon imagePRESS C850/C750/C650 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0563_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0563_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0563_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication FunctionFunction for identifying and authenticating the user. - Function Use Restriction FunctionFunction for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction FunctionFunction for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs FunctionFunction for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase FunctionFunction for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption FunctionFunction for encrypting all data stored in the HDD. - LAN Data Protection FunctionFunction for protecting all IP packets that are communicated with an IT device. - Self-Test FunctionFunction for testing the integrity of the executable code at startup. - Audit Log FunctionFunction for generating audit logs on security events and allowing them to be viewed by the administrator. - Management FunctionFunction for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0562", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 6500 Series 2600 model2.1", "expiration_date": "2022-07-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0562_it6614_01.html" } ], "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0562_it6614.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 6500 Series 2600 model2.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 6500 Series 2600 model", "toe_version": "2.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0561", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 45900KG/4500 Series 2600 model1.1", "expiration_date": "2022-07-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0561_it6613_01.html" } ], "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0561_it6613.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 45900KG/4500 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 45900KG/4500 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0561_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0561_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0561_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0560", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C355/ C255 Series 2600 model1.1", "expiration_date": "2022-07-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0560_it6612_01.html" } ], "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0560_it6612.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C355/ C255 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C355/C255 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0560_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0560_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0560_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0559", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C75900KG/C7500 Series 2600 model1.1", "expiration_date": "2022-07-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0559_it6611_01.html" } ], "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0559_it6611.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C75900KG/C7500 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C75900KG/C7500 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0559_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0559_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0559_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0558", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C6503/C8003 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.01", "expiration_date": "2022-07-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0558_it6595.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C6503/C8003 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0558_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0558_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0558_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0557", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-07-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-06-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C8003/C6503J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0557_it6594.html", "enhanced": { "product": "RICOH MP C8003/C6503", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0557_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0557_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0557_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0556", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C35900KG/C3500 Series 2600 model1.1", "expiration_date": "2022-07-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0556_it6615_01.html" } ], "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0556_it6615.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C35900KG/C3500 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C35900KG/C3500 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0556_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0556_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0556_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0555", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 8052ci, TASKalfa 7052ci,TASKalfa 8052ciG, TASKalfa 7052ciG(KYOCERA), CS 8052ci, CS 7052ci (Copystar), 8006ci, 7006ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12 System: 2NH_20IS.C01.010HS Panel: 2ND_70IS.CM1.010 FAX: 3R2_5100.002.005", "expiration_date": "2022-07-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0555_it5569.html", "toe_japan_name": "TASKalfa 8052ci, TASKalfa 7052ci,TASKalfa 8052ciG, TASKalfa 7052ciG(KYOCERA), CS 8052ci, CS 7052ci (Copystar), 8006ci, 7006ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12 System: 2NH_20IS.C01.010HS Panel: 2ND_70IS.CM1.010 FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 8052ci, TASKalfa 7052ci, TASKalfa 8052ciG, TASKalfa 7052ciG(KYOCERA), CS 8052ci, CS 7052ci(Copystar), 8006ci, 7006ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12", "toe_version": "System: 2NH_20IS.C01.010HS Panel: 2ND_70IS.CM1.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0555_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0555_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0555_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0554", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 8002i, TASKalfa 7002i, TASKalfa 8002iG, TASKalfa 7002iG(KYOCERA), CS 8002i, CS 7002i(Copystar), 8056i, 7056i(TA Triumph-Adler/UTAX)all of the above with Data Security Kit (E), FAX System 12 System: 2NJ_20IS.C01.010HS Panel: 2ND_70IS.CM1.010 FAX: 3R2_5100.002.005", "expiration_date": "2022-07-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2017-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0554_it5568.html", "toe_japan_name": "TASKalfa 8002i, TASKalfa 7002i, TASKalfa 8002iG, TASKalfa 7002iG(KYOCERA), CS 8002i, CS 7002i(Copystar), 8056i, 7056i(TA Triumph-Adler/UTAX)all of the above with Data Security Kit (E), FAX System 12 System: 2NJ_20IS.C01.010HS Panel: 2ND_70IS.CM1.010 FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 8002i, TASKalfa 7002i, TASKalfa 8002iG, TASKalfa 7002iG(KYOCERA), CS 8002i, CS 7002i(Copystar), 8056i, 7056i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12", "toe_version": "System: 2NJ_20IS.C01.010HS Panel: 2ND_70IS.CM1.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0554_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0554_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0554_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0552", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 6503/7503/9003 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)E-1.01", "expiration_date": "2022-06-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0552_it6592.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 6503/7503/9003 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0552_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0552_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0552_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0551", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-06-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-05-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP 9003/7503/6503J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0551_it6591.html", "enhanced": { "product": "RICOH MP 9003/7503/6503", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0551_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0551_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0551_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0550", "supplier": "FUJIFILM Business Innovation Corp.", "toe_overseas_name": "Fuji Xerox ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C3370/C2271 DocuCentre-VI C7771/C6671/C5571/C4471/C3371/C3370/C2271 Series Controller Software Controller ROM Ver. 1.0.19", "expiration_date": "2022-06-01", "claim": "EAL2+ALC_FLR.2", "certification_date": "2017-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0550_it6588.html", "toe_japan_name": "Fuji Xerox ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C2271 DocuCentre-VI C7771/C6671/C5571/C4471/C3371/C2271 Series Controller Software Controller ROM Ver. 1.0.19", "enhanced": { "product": "Japanese: Fuji Xerox ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C2271 DocuCentre-VI C7771/C6671/C5571/C4471/ C3371/C2271 Series Controller Software English: Fuji Xerox ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C3370/ C2271 DocuCentre-VI C7771/C6671/C5571/ C4471/C3371/C3370/C2271 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.19", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "vendor": "FUJIFILM Business Innovation Corp.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0550_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0550_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0550_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0549", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 6052ci, TASKalfa 5052ci,TASKalfa 4052ci, TASKalfa 3552ci, TASKalfa 6052ciG, TASKalfa 5052ciG,TASKalfa 4052ciG(KYOCERA), CS 6052ci,CS 5052ci, CS 4052ci, CS 3552ci(Copystar), 6006ci, 5006ci, 4006ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E),FAX System 12System: 2ND_20IS.C01.010HS Panel: 2ND_70IS.CI1.010FAX: 3R2_5100.002.005", "expiration_date": "2022-06-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2017-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0549_it5567.html", "toe_japan_name": "TASKalfa 6052ci, TASKalfa 5052ci,TASKalfa 4052ci, TASKalfa 3552ci, TASKalfa 6052ciG, TASKalfa 5052ciG,TASKalfa 4052ciG(KYOCERA), CS 6052ci,CS 5052ci, CS 4052ci, CS 3552ci(Copystar), 6006ci, 5006ci, 4006ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E),FAX System 12System: 2ND_20IS.C01.010HS Panel: 2ND_70IS.CI1.010FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 6052ci, TASKalfa 5052ci, TASKalfa 4052ci, TASKalfa 3552ci, TASKalfa 6052ciG, TASKalfa 5052ciG, TASKalfa 4052ciG(KYOCERA), CS 6052ci, CS 5052ci, CS 4052ci, CS 3552ci(Copystar), 6006ci, 5006ci, 4006ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12", "toe_version": "System: 2ND_20IS.C01.010HS Panel: 2ND_70IS.CI1.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0549_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0549_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0549_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0548", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 6002i, TASKalfa 5002i,TASKalfa 4002i, TASKalfa 6002iG, TASKalfa 5002iG, TASKalfa 4002iG(KYOCERA),CS 6002i, CS 5002i, CS 4002i(Copystar), 6056i, 5056i, 4056i(TA Triumph-Adler/UTAX)all of the above with Data Security Kit (E), FAX System 12System: 2NK_20IS.C01.010HSPanel: 2ND_70IS.CI1.010FAX: 3R2_5100.002.005", "expiration_date": "2022-06-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2017-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0548_it5566.html", "toe_japan_name": "TASKalfa 6002i, TASKalfa 5002i,TASKalfa 4002i, TASKalfa 6002iG,TASKalfa 5002iG, TASKalfa 4002iG(KYOCERA), CS 6002i, CS 5002i, CS 4002i(Copystar),6056i, 5056i, 4056i(TA Triumph-Adler/UTAX)all of the above with Data Security Kit (E), FAX System 12System: 2NK_20IS.C01.010HSPanel: 2ND_70IS.CI1.010FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 6002i, TASKalfa 5002i, TASKalfa 4002i, TASKalfa 6002iG, TASKalfa 5002iG, TASKalfa 4002iG(KYOCERA), CS 6002i, CS 5002i, CS 4002i(Copystar), 6056i, 5056i, 4056i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12", "toe_version": "System: 2NK_20IS.C01.010HS Panel: 2ND_70IS.CI1.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0548_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0548_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0548_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0547", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 558/bizhub 458/ineo 558/ineo 458G00-16", "expiration_date": "2022-04-01", "claim": "EAL2+ALC_FLR.2 PP", "certification_date": "2017-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0547_it6610.html", "toe_japan_name": "bizhub 558/bizhub 458/ineo 558/ineo 458G00-16", "enhanced": { "product": "bizhub 558/bizhub 458/ineo 558/ineo 458", "toe_version": "G00-16", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0547_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0547_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0547_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0546", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 368/bizhub 308/ineo 368/ineo 308G00-09", "expiration_date": "2022-04-01", "claim": "EAL2+ALC_FLR.2 PP", "certification_date": "2017-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0546_it6604.html", "toe_japan_name": "bizhub 368/bizhub 308/ineo 368/ineo 308G00-09", "enhanced": { "product": "bizhub 368/bizhub 308/ineo 368/ineo 308", "toe_version": "G00-09", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0546_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0546_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0546_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0545", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 2555SP/3055SP/3555SP/4055SP/5055SP/6055SP (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP 2555SPG/3055SPG/3555SPG/4055SPG/5055SPG/6055SPG (Ricoh/Savin/Lanier), MP 2555ASP/3055ASP/3555ASP/4055ASP/5055ASP (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec), MP 2595SPJ/3095SPJ/3595SPJ(Ricoh) E-1.02", "expiration_date": "2022-04-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0545_it6617.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 2555SP/3055SP/3555SP/4055SP/ 5055SP/6055SP (Ricoh/Savin/Lanier/ nashuatec/Rex-Rotary/Gestetner/infotec), MP 2555SPG/3055SPG/3555SPG/4055SPG/ 5055SPG/6055SPG (Ricoh/Savin/Lanier), MP 2555ASP/3055ASP/3555ASP/4055ASP/ 5055ASP (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec), MP 2595SPJ/3095SPJ/3595SPJ(Ricoh)", "toe_version": "E-1.02", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0545_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0545_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0545_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0544", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-04-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-03-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP 6055/5055/4055/3555/2555J-1.02", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0544_it6616.html", "enhanced": { "product": "RICOH MP 6055/5055/4055/3555/2555", "toe_version": "J-1.02", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0544_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0544_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0544_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0543", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3511i, TASKalfa 3011i, TASKalfa 3011iG(KYOCERA), 3561i, 3061i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12System: 2RH_20IS.C01.010SPanel: 2ND_70IS.CT1.010 FAX: 3R2_5100.002.005", "expiration_date": "2022-03-01", "claim": "EAL2", "certification_date": "2017-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0543_it5570.html", "toe_japan_name": "TASKalfa 3511i, TASKalfa 3011i, TASKalfa 3011iG(KYOCERA), 3561i, 3061i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12System: 2RH_20IS.C01.010SPanel: 2ND_70IS.CT1.010 FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 3511i, TASKalfa 3011i, TASKalfa 3011iG(KYOCERA), 3561i, 3061i(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12", "toe_version": "System: 2RH_20IS.C01.010S Panel: 2ND_70IS.CT1.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0543_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities to prevent unauthorized disclosure and alteration of user data. TOE security functionality This TOE provides the following security functionalities. - User Authentication:The functionality that performs user identification and authentication. - Document Access Control:The functionality that restricts access to user data to authorized users only. - SSD Data Encryption:The functionality that encrypts data stored in SSD. - Audit Logs:The functionality that records audit logs relevant to the security functionalities. - Security Management:The functionality that restricts management of the security functionalities to authorized users only. - Self Test:The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection:The functionality that encrypts communication data. - FAX Data Flow Control:The functionality that controls transmission of FAX data received from public lines." } }, { "cert_id": "JISEC-CC-CRP-C0542", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3511i, TASKalfa 3011i, TASKalfa 3511iG, TASKalfa 3011iG(KYOCERA), CS 3511i, CS 3011i(Copystar), 3561i, 3061i (TA Triumph-Adler/UTAX) all of the above with HD-12, Data Security Kit (E), FAX System 12System: 2RH_20IS.C01.010HSPanel: 2ND_70IS. CT1.010FAX: 3R2_5100.002.005", "expiration_date": "2022-03-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2017-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0542_it5564.html", "toe_japan_name": "TASKalfa 3511i, TASKalfa 3011i, TASKalfa 3511iG, TASKalfa 3011iG(KYOCERA), CS 3511i, CS 3011i(Copystar), 3561i, 3061i (TA Triumph-Adler/UTAX) all of the above with HD-12, Data Security Kit (E), FAX System 12System: 2RH_20IS.C01.010HSPanel: 2ND_70IS. CT1.010FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 3511i, TASKalfa 3011i, TASKalfa 3511iG, TASKalfa 3011iG(KYOCERA), CS 3511i, CS 3011i(Copystar), 3561i, 3061i (TA Triumph-Adler/UTAX) all of the above with HD-12, Data Security Kit (E), FAX System 12", "toe_version": "System: 2RH_20IS.C01.010HS Panel: 2ND_70IS. CT1.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0542_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0542_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0542_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication:The functionality that performs user identification and authentication. - Job Authorization:The functionality that restricts the available functions of a user. - Document Access Control:The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption:The functionality that encrypts data stored in hard disk drive. - Data Overwrite:The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs:The functionality that records audit logs relevant to the security functionalities. - Security Management:The functionality that restricts management of the security functionalities to authorized users only. - Self Test:The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection:The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0541", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3252ci, TASKalfa 2552ci, TASKalfa 3252ciG, TASKalfa 2552ciG(KYOCERA), 3206ci, 2506ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12System: 2RL_20IS.C01.010SPanel: 2ND_70IS.C01.010 FAX: 3R2_5100.002.005", "expiration_date": "2022-03-01", "claim": "EAL2", "certification_date": "2017-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0541_it5571.html", "toe_japan_name": "TASKalfa 3252ci, TASKalfa 2552ci, TASKalfa 3252ciG, TASKalfa 2552ciG(KYOCERA), 3206ci, 2506ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12System: 2RL_20IS.C01.010SPanel: 2ND_70IS.C01.010 FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 3252ci, TASKalfa 2552ci, TASKalfa 3252ciG, TASKalfa 2552ciG(KYOCERA), 3206ci, 2506ci(TA Triumph-Adler/UTAX) all of the above with Data Security Kit (E), FAX System 12", "toe_version": "System: 2RL_20IS.C01.010S Panel: 2ND_70IS.C01.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0541_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities to prevent unauthorized disclosure and alteration of user data. TOE security functionality This TOE provides the following security functionalities. - User Authentication:The functionality that performs user identification and authentication. - Document Access Control:The functionality that restricts access to user data to authorized users only. - SSD Data Encryption:The functionality that encrypts data stored in SSD. - Audit Logs:The functionality that records audit logs relevant to the security functionalities. - Security Management:The functionality that restricts management of the security functionalities to authorized users only. - Self Test:The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection:The functionality that encrypts communication data. - FAX Data Flow Control:The functionality that controls transmission of FAX data received from public lines." } }, { "cert_id": "JISEC-CC-CRP-C0540", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3252ci, TASKalfa 2552ci, TASKalfa 3252ciG, TASKalfa 2552ciG(KYOCERA), CS 3252ci, CS 2552ci(Copystar), 3206ci, 2506ci(TA Triumph-Adler/UTAX) all of the above with HD-12, Data Security Kit (E), FAX System 12System: 2RL_20IS.C01.010HSPanel: 2ND_70IS.C01.010FAX: 3R2_5100.002.005", "expiration_date": "2022-03-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2017-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0540_it5565.html", "toe_japan_name": "TASKalfa 3252ci, TASKalfa 2552ci, TASKalfa 3252ciG, TASKalfa 2552ciG(KYOCERA), CS 3252ci, CS 2552ci(Copystar), 3206ci, 2506ci(TA Triumph-Adler/UTAX) all of the above with HD-12, Data Security Kit (E), FAX System 12System: 2RL_20IS.C01.010HSPanel: 2ND_70IS.C01.010FAX: 3R2_5100.002.005", "enhanced": { "product": "TASKalfa 3252ci, TASKalfa 2552ci, TASKalfa 3252ciG, TASKalfa 2552ciG(KYOCERA), CS 3252ci, CS 2552ci(Copystar), 3206ci, 2506ci(TA Triumph-Adler/UTAX) all of the above with HD-12, Data Security Kit (E), FAX System 12", "toe_version": "System: 2RL_20IS.C01.010HS Panel: 2ND_70IS.C01.010 FAX: 3R2_5100.002.005", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0540_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0540_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0540_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication:The functionality that performs user identification and authentication. - Job Authorization:The functionality that restricts the available functions of a user. - Document Access Control:The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption:The functionality that encrypts data stored in hard disk drive. - Data Overwrite:The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs:The functionality that records audit logs relevant to the security functionalities. - Security Management:The functionality that restricts management of the security functionalities to authorized users only. - Self Test:The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection:The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0539", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C4504/C6004 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP C5504 (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.01", "expiration_date": "2022-03-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0539_it5548.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C4504/C6004 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP C5504 (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0539_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0539_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0539_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0538", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2022-03-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2017-02-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C6004/C5504/C4504J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0538_it5547.html", "enhanced": { "product": "RICOH MP C6004/C5504/C4504", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0538_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0538_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0538_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0537", "supplier": "Microsoft Corporation", "toe_overseas_name": "SQL Server 2016 Database Engine Enterprise Edition x64 (English)13.0.4001.0 (including Service Pack 1)", "expiration_date": "2022-03-01", "claim": "EAL2+ALC_FLR.2 PP", "certification_date": "2017-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0537_it5563.html", "toe_japan_name": "-----", "enhanced": { "product": "SQL Server 2016 Database Engine Enterprise Edition x64 (English)", "toe_version": "13.0.4001.0 (including Service Pack 1)", "product_type": "Database Management System (DBMS)", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "Base Protection Profile for Database Management Systems (DBMS PP), Version 2.07", "vendor": "Microsoft Corporation", "evaluation_facility": "TÜV Informationstechnik GmbH, Evaluation Body for IT-Security", "report_link": "https://www.ipa.go.jp/en/security/c0537_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0537_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0537_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of SQL Server 2016. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functionality This TOE provides the following security functionality: - The Access Control function of the TOE controls the access of users to user data and metadata stored in the TOE. - The Session Handling function of the TOE limits the possibilities of users to establish sessions with the TOE. - The Security Audit function of the TOE produces log files about all security relevant events. - The Security Management function allows authorized administrators to manage the behavior of the security functionality of the TOE. - The Identification and Authentication function of the TOE is able to identify and authenticate users. - The Residual Information Protection function of the TOE overwrites the residual information on the memory that will be used for user sessions." } }, { "cert_id": "JISEC-CC-CRP-C0536", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "Hitachi Device Manager Software, Hitachi Tiered Storage Manager Software8.0.1-02", "expiration_date": "2022-03-01", "claim": "EAL2+ALC_FLR.1", "certification_date": "2017-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0536_it5576.html", "toe_japan_name": "Hitachi Device Manager Software, Hitachi Tiered Storage Manager Software8.0.1-02", "enhanced": { "product": "Hitachi Device Manager Software, Hitachi Tiered Storage Manager Software", "toe_version": "8.0.1-02", "product_type": "Access Control Device and Systems", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0536_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0536_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0536_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is Hitachi Device Manager software and Hitachi Tiered Storage Manager software. The TOE has functionality to manage the input or modification of information that expresses a storage system configuration (abbreviated hereafter to storage resource information). TOE security functionality The TOE provides the following security functionality: - Identification/authentication functionality(The TOE also makes it possible to use external authentication functionality provided by external authentication servers, and to use functionality for linking with external authentication groups.) - Access control functionality for storage resource information and for warning banner information - Warning banner functionality" } }, { "cert_id": "JISEC-CC-CRP-C0535", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "RICOH Remote Communication Gate A2V1.0.2", "expiration_date": "2022-01-01", "claim": "EAL2+ALC_FLR.2", "certification_date": "2016-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0535_it4523.html", "toe_japan_name": "RICOH Remote Communication Gate A2V1.0.2", "enhanced": { "product": "RICOH Remote Communication Gate A2", "toe_version": "V1.0.2", "product_type": "Appliance for remote service", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "none", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0535_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0535_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0535_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a communication device that enables digital MFPs and printers (hereafter \"devices\") to be connected to the communication server (hereafter \"CS\") in the maintenance center. Information that the TOE obtains from the device and sends to the CS is also sent to the designated email address. Functions this TOE can provide include notification of device troubles (service call function), automatic counter checking of prints of each devices (machine counter notice function), automatic counter checking of prints by each user (counter per user retrieval function), automatic ordering of supplies such as toner (supply call function), and device firmware updating. It also provides Web-based user interface functions for TOE operations. TOE security functionality The major security functions this TOE can provide are as follows: - Communication data protection function between the TOE and the device for the service This function is used for communication between the TOE and devices for the service if the service call function, the machine counter notice function, the counter per user retrieval function, and the supply call function are enabled. The communication data between the TOE and the Ricoh device will be secured, and the data tampering will be detected by using a TLS protocol. - Communication data protection function between the TOE and the CS The TOE specifies only the genuine CS as the communication destination via Internet. The communication data between the TOE and the CS will be secured, and the data tampering will be detected by using a TLS protocol. - Communication data protection function between the TOE and computers This function is applied to data communication between the TOE and computers if Web-based functions are enabled. The communication data will be secured and the data tampering will be detected by using a TLS protocol. - Email protection function This function is applied to make mail sent from the TOE. The contents of the mail will be secured and the data tampering will be detected by using S/MIME. - User identification and authentication function The TOE identifies and authenticates users who access Web-based user interface functions. - RC Gate firmware verification function This function enables the TOE to check that the firmware (applications, shared parts of firmware, platforms, and the operating system) is genuine. - Security management function This function provides TOE management methods for the Administrator only. - Audit logging function This function enables the TOE to record the information related to security relevant events and allows only the administrator to review the audit logging." } }, { "cert_id": "JISEC-CC-CRP-C0534", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C55900KG/C5500 Series 2600 model1.0", "expiration_date": "2022-01-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2016-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0534_it6603.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C55900KG/C5500 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C55900KG/C5500 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0534_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0534_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0534_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication FunctionFunction for identifying and authenticating the user. - Function Use Restriction FunctionFunction for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction FunctionFunction for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs FunctionFunction for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase FunctionFunction for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption FunctionFunction for encrypting all data stored in the HDD. - LAN Data Protection FunctionFunction for protecting all IP packets that are communicated with an IT device. - Self-Test FunctionFunction for testing the integrity of the executable code at startup. - Audit Log FunctionFunction for generating audit logs on security events and allowing them to be viewed by the administrator. - Management FunctionFunction for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0533", "supplier": "NEC Corporation", "toe_overseas_name": "-----", "expiration_date": "2022-01-01", "claim": "EAL1+ASE_OBJ.2,ASE_REQ.2,ASE_SPD.1", "certification_date": "2016-12-01", "toe_overseas_link": null, "toe_japan_name": "NEC Firewall SG Software3.0.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0533_it6599.html", "enhanced": { "product": "NEC Firewall SG Software", "toe_version": "3.0.1", "product_type": "Firewall Software", "cc_version": "3.1 Release4", "assurance_level": "EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "vendor": "NEC Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the entire software of \"NEC Firewall SG,\" an integrated firewall product of hardware and software. It does not include the hardware. This TOE provides a packet filter function for blocking network communication not permitted by the administrator, a function for preventing unauthorized setting management by a person other than the administrator, and an auditing function for them. TOE Security functions This TOE provides the following security functions. - Packet filter functionA function to control passing and discarding of IP packets relayed by the TOE. - Setting management functionA function to manage TOE settings. It includes a function to identify and authenticate the administrator and a function to encrypt the communication between the TOE and the management terminal. - Log alert functionA function to store audit records and notify alerts." } }, { "cert_id": "JISEC-CC-CRP-C0532", "supplier": "Humming Heads, Inc.", "toe_overseas_name": "-----", "expiration_date": "2022-01-01", "claim": "EAL3", "certification_date": "2016-12-01", "toe_overseas_link": null, "toe_japan_name": "Defense Platform Business Edition CCVer.3.6.1.5", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0532_it5526.html", "enhanced": { "product": "Defense Platform Business Edition CC", "toe_version": "Ver.3.6.1.5", "product_type": "Whitelisting Anti-Malware Software", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Humming Heads, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a whitelisting anti-malware product for PCs which have either Windows 8.1 Enterprise 64bit or Windows Server 2012 R2 Standard 64bit installed. The TOE focuses on typical activities of malware such as concealing themselves and network transmission, and in order to prevent the said typical activities, the TOE provides security functions to control permission and rejection of a program’s action based on the whitelist which contains authorized actions as registered and permitted by the administrator. Because the pre-set information in the TOE is program actions authorized by the administrator, there is no need to list or update information to detect individual malware. TOE Security functions The TOE provides the following security functions. - Judgment functionA function to control permission and rejection of program actions (e.g., network transmission and writing to system files and programs in execution) based on the whitelist. - Management functionA function to let the administrator change and configure whitelist settings and delete audit records. - Audit functionA function to generate audit records and let the administrator extract them for analysis." } }, { "cert_id": "JISEC-CC-CRP-C0531", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 356ci, TASKalfa 406ci, TASKalfa 356ciG, TASKalfa 406ciG(KYOCERA), CS 356ci, CS 406ci(Copystar), 350ci, 400ci(TA Triumph-Adler/UTAX) all of the above with HD11, Data Security Kit (E) and FAX System 10System:2R6_20IS.C01.011HPanel:2R6_70IS.C01.010FAX:3R2_5100.001.009", "expiration_date": "2021-12-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2016-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0531_it5551.html", "toe_japan_name": "TASKalfa 356ci, TASKalfa 406ci, TASKalfa 356ciG, TASKalfa 406ciG(KYOCERA), CS 356ci, CS 406ci(Copystar), 350ci, 400ci(TA Triumph-Adler/UTAX) all of the above with HD11, Data Security Kit (E) and FAX System 10System:2R6_20IS.C01.011HPanel:2R6_70IS.C01.010FAX:3R2_5100.001.009", "enhanced": { "product": "TASKalfa 356ci, TASKalfa 406ci, TASKalfa 356ciG, TASKalfa 406ciG(KYOCERA), CS 356ci, CS 406ci(Copystar), 350ci, 400ci(TA Triumph-Adler/UTAX) all of the above with HD11, Data Security Kit (E) and FAX System 10", "toe_version": "System:2R6_20IS.C01.011H Panel:2R6_70IS.C01.010 FAX:3R2_5100.001.009", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0531_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0531_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0531_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE Security functions This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0530", "supplier": "Hewlett Packard Enterprise Company", "toe_overseas_name": "HP XP7 Storage System Control Program80-01-42-00/00", "expiration_date": "2021-12-01", "claim": "EAL2+ALC_FLR.1", "certification_date": "2016-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0530_it5533.html", "toe_japan_name": "-----", "enhanced": { "product": "HP XP7 Storage System Control Program", "toe_version": "80-01-42-00/00", "product_type": "Control Program for storage system", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0530_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0530_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0530_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software program operating on the storage system: \"HP XP7 Storage System\". This TOE receives a request for access to a storage device in a storage system from a host computer (hereinafter referred to as “host”) and controls data transmission between the host and the storage device. TOE Security functions The major security functions of this TOE are as follows. - Function that identifies the host and controls access, so that the host can access only the designated storage area - Function that erases data by overwriting it with dummy data in the storage device - Function that manages an encryption key to encrypt data written to the storage device - Function that identifies/authenticates fibre channel switches - Function that identifies/authenticates users and limits settings related to security to specific roles - Function that records events related to security in logs and enables persons who have a specific role to read it" } }, { "cert_id": "JISEC-CC-CRP-C0529", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO5508A/6508A/7508A/8508A MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V1.0", "expiration_date": "2021-12-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2016-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0529_it5585.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO5508A/6508A/7508A/8508A MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0529_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication functionFunction that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control functionFunction to perform the control of permit deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase functionFunction to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel functionFunction to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review functionFunction to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection functionFunction that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection functionFunction to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0528", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO5506AC/6506AC/7506AC MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V1.0", "expiration_date": "2021-12-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2016-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0528_it5584.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO5506AC/6506AC/7506AC MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0528_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication functionFunction that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control functionFunction to perform the control of permit deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase functionFunction to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel functionFunction to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review functionFunction to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection functionFunction that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection functionFunction to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0527", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 4750 / bizhub 4050 / ineo 4750 / ineo 4050G0804-W99", "expiration_date": "2021-12-01", "claim": "EAL2+ALC_FLR.2 PP", "certification_date": "2016-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0527_it6600.html", "toe_japan_name": "bizhub 4750 / bizhub 4050 / ineo 4750 / ineo 4050G0804-W99", "enhanced": { "product": "bizhub 4750 / bizhub 4050 / ineo 4750 / ineo 4050", "toe_version": "G0804-W99", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.2™-2009", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0527_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0527_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0527_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to IEEE Std 2600.2™-2009 which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of the executable codes of security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0526", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C3004/C3504 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.00", "expiration_date": "2021-11-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2016-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0526_it5578.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C3004/C3504 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0526_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0526_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0526_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0525", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2021-11-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2016-10-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C3504/C3004J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0525_it5577.html", "enhanced": { "product": "RICOH MP C3504/C3004", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0525_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0525_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0525_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0524", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO2008A/2508A/3008A/3508A/4508A/5008A MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V1.0", "expiration_date": "2021-10-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2016-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0524_it5583.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2008A/ 2508A/3008A/3508A/4508A/5008A MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0524_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication functionFunction that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control functionFunction to perform the control of permit deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase functionFunction to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel functionFunction to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review functionFunction to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection functionFunction that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection functionFunction to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0523", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO2505AC/3005AC/3505AC/4505AC/5005AC MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V1.0", "expiration_date": "2021-10-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2016-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0523_it5582.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2505AC/ 3005AC/3505AC/4505AC/5005AC MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0523_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication functionFunction that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control functionFunction to perform the control of permit deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase functionFunction to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel functionFunction to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review functionFunction to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection functionFunction that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection functionFunction to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0522", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO2000AC/2500AC MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V1.0", "expiration_date": "2021-10-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2016-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0522_it5581.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2000AC/2500AC MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0522_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication functionFunction that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control functionFunction to perform the control of permit deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase functionFunction to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel functionFunction to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review functionFunction to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection functionFunction that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection functionFunction to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0521", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C658/bizhub C558/bizhub C458/ineo+ 658/ineo+ 558/ineo+ 458/Sindoh D722/Sindoh D721/Sindoh D720/Sindoh CM6011/Sindoh CM5101/Sindoh CM4091 G00-10", "expiration_date": "2021-10-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-11", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0521_it6598_01.html" } ], "certification_date": "2016-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0521_it6598.html", "toe_japan_name": "bizhub C658/bizhub C558/bizhub C458/ineo+ 658/ineo+ 558/ineo+ 458G00-10", "enhanced": { "product": "bizhub C658/bizhub C558/bizhub C458/ineo+ 658/ineo+ 558/ineo+ 458", "toe_version": "G00-10", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0521_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0521_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0521_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authenticationFunction to identify and authenticate users. - User restriction control functionFunction to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control functionFunction to control the access to accumulated documents only to the authorized users. - HDD encryption functionFunction to encrypt the data that is stored in HDD. - Residual information deletion functionFunction to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log functionFunction to record audit log related to security functions. - Network communication protection functionFunction to encrypt communication data on the LAN. - Self-test functionFunction to verify the integrity of executable codes of HDD encryption function and security functions. - Security management functionFunction to control the management of security functions only to the authorized users. - External interface separation functionFunction to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0520", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 8500 Series 2600 model1.0", "expiration_date": "2021-09-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2016-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0520_it6590.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 8500 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 8500 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "Certification/Validation Report : (376 KB)(2017-01-25) CC Certificate Image : (466 KB)(2016-09-15) Security Target : (813 KB)(2017-01-25)" } }, { "cert_id": "JISEC-CC-CRP-C0519", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 6500 Series 2600 model1.0", "expiration_date": "2021-09-01", "claim": "EAL2+ALC_FLR.2PP", "certification_date": "2016-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0519_it6589.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 6500 Series 2600 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE 6500 Series 2600 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "Certification/Validation Report : (376 KB)(2017-01-25) CC Certificate Image : (465 KB)(2016-09-15) Security Target : (808 KB)(2017-01-25)" } }, { "cert_id": "JISEC-CC-CRP-C0518", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Pro 8100/8110/8120 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.00", "expiration_date": "2017-02-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0518_it6601.html", "toe_japan_name": "-----", "enhanced": { "product": "Pro 8100/8110/8120 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0518_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0518_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0518_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0515", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 958/bizhub PRO 958/bizhub 808/bizhub 758/ineo 958/ineo 758/Sindoh N911/Sindoh N910/Sindoh MF9141/Sindoh MF7121G00-14", "expiration_date": "2021-07-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-11", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0515_it5586_01.html" } ], "certification_date": "2016-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0515_it5586.html", "toe_japan_name": "bizhub 958/bizhub PRO 958/bizhub 808/bizhub 758/ineo 958/ineo 758G00-14", "enhanced": { "product": "bizhub 958/bizhub PRO 958/bizhub 808/bizhub 758/ineo 958/ineo 758", "toe_version": "G00-14", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0515_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0515_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0515_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0514", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "Hitachi Virtual Storage Platform G1000, Hitachi Virtual Storage Platform VX7 Control Program80-01-25-00/00(R8-01A-06_Z)", "expiration_date": "2021-07-01", "claim": "EAL2+ALC_FLR.1", "certification_date": "2016-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0514_it4504.html", "toe_japan_name": "Hitachi Virtual Storage Platform G1000, Hitachi Virtual Storage Platform VX7 Control Program 80-01-25-00/00(R8-01A-06_Z)", "enhanced": { "product": "Hitachi Virtual Storage Platform G1000, Hitachi Virtual Storage Platform VX7 Control Program", "toe_version": "80-01-25-00/00(R8-01A-06_Z)", "product_type": "Control Program for storage system", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0514_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0514_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0514_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software program operating on the storage system : \" Hitachi Unified Storage VM\" (as known as “Hitachi Virtual Storage Platform VX7”). This TOE receives a request for access to a storage device in a storage system from a host computer (hereinafter referred to as “host”) and controls data transmission between the host and the storage device. TOE Security functions The major security functions of this TOE are as follows. - Function that identifies the host and controls access, so that the host can access only the designated storage area - Function that erases data by overwriting it with dummy data in the storage device - Function that manages an encryption key to encrypt data written to the storage device - Function that identifies/authenticates fibre channel switches - Function that identifies/authenticates users and limits settings related to security to specific roles - Function that records events related to security in logs and enables persons who have a specific role to read it" } }, { "cert_id": "JISEC-CC-CRP-C0513", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "Hitachi Unified Storage VM Control Program73-03-09-00/00(H7-03-10_Z)", "expiration_date": "2021-07-01", "claim": "EAL2+ALC_FLR.1", "certification_date": "2016-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0513_it4503.html", "toe_japan_name": "Hitachi Unified Storage VM Control Program73-03-09-00/00(H7-03-10_Z)", "enhanced": { "product": "Hitachi Unified Storage VM Control Program", "toe_version": "73-03-09-00/00(H7-03-10_Z)", "product_type": "Control Program for storage system", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0513_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0513_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0513_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software program operating on the storage system : \" Hitachi Unified Storage VM\". This TOE receives a request for access to a storage device in a storage system from a host computer (hereinafter referred to as “host”) and controls data transmission between the host and the storage device. TOE Security functions The major security functions of this TOE are as follows. - Function that identifies the host and controls access, so that the host can access only the designated storage area - Function that erases data by overwriting it with dummy data in the storage device - Function that manages an encryption key to encrypt data written to the storage device - Function that identifies/authenticates fibre channel switches - Function that identifies/authenticates users and limits settings related to security to specific roles - Function that records events related to security in logs and enables persons who have a specific role to read it" } }, { "cert_id": "JISEC-CC-CRP-C0512", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C287/bizhub C227/bizhub C228DN/bizhub C222DN/ineo+ 287/ineo+ 227/Sindoh D301/Sindoh D300/Sindoh D311/Sindoh D310/Sindoh CM2101/Sindoh CM2041 G00-11", "expiration_date": "2021-06-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0512_it5561_01.html" } ], "certification_date": "2016-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0512_it5561.html", "toe_japan_name": "bizhub C287/bizhub C227/bizhub C228DN/bizhub C222DN/ineo+ 287/ineo+ 227G00-11", "enhanced": { "product": "bizhub C287/bizhub C227/bizhub C228DN/bizhub C222DN/ineo+ 287/ineo+ 227", "toe_version": "G00-11", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0512_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0512_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0512_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0511", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C368/bizhub C308/bizhub C258/bizhub C236DN/bizhub C230DN/bizhub C225DN/ineo+ 368/ineo+ 308/ineo+ 258/Sindoh D422/Sindoh D421/Sindoh D420/Sindoh CM3091/Sindoh CM3031/Sindoh CM2071 G00-83", "expiration_date": "2021-06-01", "claim": "EAL2+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0511_it5553_01.html" } ], "certification_date": "2016-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0511_it5553.html", "toe_japan_name": "bizhub C368/bizhub C308/bizhub C258/bizhub C236DN/bizhub C230DN/bizhub C225DN/ineo+ 368/ineo+ 308/ineo+ 258G00-83", "enhanced": { "product": "bizhub C368/bizhub C308/bizhub C258/bizhub C236DN/bizhub C230DN/bizhub C225DN/ineo+ 368/ineo+ 308/ineo+ 258", "toe_version": "G00-83", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0511_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0511_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0511_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions The TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0510", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C306Z/C406Z (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.01", "expiration_date": "2021-05-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0510_it5531.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C306Z/C406Z (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0510_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0510_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0510_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0509", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-04-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C306Z J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0509_it5530.html", "enhanced": { "product": "RICOH MP C306Z", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0509_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0509_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0509_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0508", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 367/bizhub 287/bizhub 227/bizhub 136DN/bizhub 128DN/bizhub 122DN/ineo 367/ineo 287/ineo 227/Sindoh N502/Sindoh N501/Sindoh N500/Sindoh MF3091/Sindoh MF2101/Sindoh MF2041/Sindoh N512/Sindoh N511/Sindoh N510/Sindoh N517/Sindoh N516/Sindoh N515 G00-27", "expiration_date": "2021-05-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0508_it5539.html", "toe_japan_name": "bizhub 367/bizhub 287/bizhub 227/bizhub 136DN/bizhub 128DN/bizhub 122DN/ineo 367/ineo 287/ineo 227/Sindoh N502/Sindoh N501/Sindoh N500/Sindoh MF3091/Sindoh MF2101/Sindoh MF2041/Sindoh N512/Sindoh N511/Sindoh N510/Sindoh N517/Sindoh N516/Sindoh N515 G00-27", "enhanced": { "product": "bizhub 367/bizhub 287/bizhub 227/bizhub 136DN/bizhub 128DN/bizhub 122DN/ineo 367/ineo 287/ineo 227/Sindoh N502/Sindoh N501/Sindoh N500/Sindoh MF3091/Sindoh MF2101/Sindoh MF2041/Sindoh N512/Sindoh N511/Sindoh N510/Sindoh N517/Sindoh N516/Sindoh N515", "toe_version": "G00-27", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0508_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0508_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0508_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions This TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0507", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C3850 / bizhub C3350 / bizhub C3850FS / ineo+ 3850 / ineo+ 3350 / ineo+ 3850FS G0607-999", "expiration_date": "2021-05-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0507_it5538.html", "toe_japan_name": "bizhub C3850 / bizhub C3350 / bizhub C3850FS / ineo+ 3850 / ineo+ 3350 / ineo+ 3850FS G0607-999", "enhanced": { "product": "bizhub C3850 / bizhub C3350 / bizhub C3850FS / ineo+ 3850 / ineo+ 3350 / ineo+ 3850FS", "toe_version": "G0607-999", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std. 2600.2™-2009", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0507_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0507_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0507_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to IEEE Std 2600.2™-2009 which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE Security functions This TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of the executable codes of security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0506", "supplier": "Canon Inc.", "toe_overseas_name": "HDD Data Encryption Kit E-Series 2.11", "expiration_date": "2021-05-01", "claim": "EAL3", "revalidations": [ { "date": "2017-04", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0506_it5534_02.html" } ], "certification_date": "2016-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0506_it5534.html", "toe_japan_name": "HDD Data Encryption Kit E-Series 2.10", "enhanced": { "product": "HDD Data Encryption Kit E-Series", "toe_version": "2.10", "product_type": "Cryptographic hardware for MFPs and printers", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0506_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0506_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0506_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an optional hardware product to encrypt data to be stored in the HDD of Canon Multifunctional Product (MFP) and printer. By using this product, data to be stored in the HDD can be encrypted without compromising the scalability or processing performance of the Canon MFP and printer. TOE security functionality The TOE provides the following security functions. - HDD Data Encryption - Cryptographic Key Management - Self-Test" } }, { "cert_id": "JISEC-CC-CRP-C0505", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V 3065/3060/2060 DocuCentre-V 3065/3060/2060 models with Hard Disk, Data Security, Scan, Print, and FaxController ROM Ver. 1.0.13, FAX ROM Ver. 2.0.8", "expiration_date": "2021-04-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0505_it5559.html", "toe_japan_name": "Fuji Xerox ApeosPort-V 3065/3060/2060 DocuCentre-V 3065/3060/2060 models with Hard Disk, Data Security, Scan, Print, and FaxController ROM Ver. 1.0.13, FAX ROM Ver. 2.0.8", "enhanced": { "product": "Fuji Xerox ApeosPort-V 3065/3060/2060 DocuCentre-V 3065/3060/2060 models with Hard Disk, Data Security, Scan, Print, and Fax", "toe_version": "Controller ROM Ver. 1.0.13, FAX ROM Ver. 2.0.8", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0505_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0505_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0505_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0504", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-V C2265/C2263 models with Hard Disk, Data Security, Scan, and FaxController ROM Ver. 1.0.13, FAX ROM Ver. 2.0.8", "expiration_date": "2021-04-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0504_it5558.html", "toe_japan_name": "Fuji Xerox DocuCentre-V C2265/C2263 models with Hard Disk, Data Security, Scan, and FaxController ROM Ver. 1.0.13, FAX ROM Ver. 2.0.8", "enhanced": { "product": "Fuji Xerox DocuCentre-V C2265/C2263 models with Hard Disk, Data Security, Scan, and Fax", "toe_version": "Controller ROM Ver. 1.0.13, FAX ROM Ver. 2.0.8", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0504_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0504_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0504_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data OverwriteA function to overwrite and delete the document data in the internal HDD. - Hard Disk Data EncryptionA function to encrypt the document data before the data is stored into the internal HDD. - User AuthenticationA function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security ManagementA function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation RestrictionA function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit LogA function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data ProtectionA function to protect communication data by using encryption communication protocols. - Information Flow SecurityA function to restrict the unpermitted communication between the TOE interface and internal network. - Self testA function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0503", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2021-04-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-03-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP 305+J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0503_it5535.html", "enhanced": { "product": "RICOH MP 305+", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0503_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0503_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0503_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0502", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2021-04-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2016-03-01", "toe_overseas_link": null, "toe_japan_name": "RICOH SP 4510,RICOH MP 401J-1.02", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0502_it4492.html", "enhanced": { "product": "RICOH SP 4510,RICOH MP 401", "toe_version": "J-1.02", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0502_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0502_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0502_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0498", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type M191.02", "expiration_date": "2021-04-01", "claim": "EAL2", "revalidations": [ { "date": "2017-10", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0498_it5536_01.html" } ], "certification_date": "2016-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0498_it5536.html", "toe_japan_name": "Security Card Type M191.02", "enhanced": { "product": "Security Card Type M19 (Japanese name) DataOverwriteSecurity Unit Type M19 (English name)", "toe_version": "1.02", "product_type": "Software to overwrite data", "cc_version": "3.1 Release4", "assurance_level": "EAL2", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0498_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0498_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0498_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product(MFP). This product is available for the following MFPs; - RICOH MP CW2201/CW1201 series TOE security functionality Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0497", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C350/C250 Series 2600.1 model1.0", "expiration_date": "2021-03-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2016-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0497_it3444.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C350/C250 Series 2600.1 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C350/C250 Series 2600.1 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0497_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0497_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0497_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, and I-Fax capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0496", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub PRESS 2250P control softwareImage Control Program ( Image Control I1 ) : A64F0Y0-00I1-G00-15 IC Control Program ( IC Control P ) : A64F-00P1-G00-15", "expiration_date": "2021-02-01", "claim": "EAL3", "certification_date": "2016-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0496_it4505.html", "toe_japan_name": "bizhub PRESS 2250P control softwareImage Control Program ( Image Control I1 ) : A64F0Y0-00I1-G00-15 IC Control Program ( IC Control P ) : A64F-00P1-G00-15", "enhanced": { "product": "Japanese : bizhub PRESS 2250P control software English : bizhub PRESS 2250P control software", "toe_version": "Image Control Program ( Image Control I1 ) : A64F0Y0-00I1-G00-15 IC Control Program ( IC Control P ) : A64F-00P1-G00-15", "product_type": "Control Software for printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0496_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE, that is installed with printer manufactured by KONICA MINOLTA, INC., is a software product that provide the function of printer. TOE Security functions This TOE provides the following security functions. - Identification and authentication function - Access control function - Audit function - Management function - CE function - Test function of HDD lock system" } }, { "cert_id": "JISEC-CC-CRP-C0495", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C33900KG/C3300KG/C3300 Series 2600.1 model1.1", "expiration_date": "2021-01-01", "claim": "EAL3+ALC_FLR.2 PP", "revalidations": [ { "date": "2017-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0495_it5552_01.html" } ], "certification_date": "2015-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0495_it5552.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C3300 Series 2600.1 model1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C3300 Series 2600.1 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0495_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0495_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0495_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0494", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imagePRESS C800/C700/C700L/C600 2600.1 model1.0", "expiration_date": "2021-01-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2015-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0494_it4495.html", "toe_japan_name": "Canon imagePRESS C800/C700/C700L/C600 2600.1 model1.0", "enhanced": { "product": "Canon imagePRESS C800/C700/C700L/C600 2600.1 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0494_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0494_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0494_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE Security functions The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0493", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 266ci with both Data Security Kit (E) and HD-7System:2PY_2F7K.C02.011 Panel:2PX_707K.C02.010 FAX:2NM_5100.004.001", "expiration_date": "2021-01-01", "claim": "EAL1", "certification_date": "2015-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0493_it5544.html", "toe_japan_name": "-----", "enhanced": { "product": "TASKalfa 266ci with both Data Security Kit (E) and HD-7", "toe_version": "System:2PY_2F7K.C02.011 Panel:2PX_707K.C02.010 FAX:2NM_5100.004.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL1", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0493_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE Security functions This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - SSD Encryption: The functionality that encrypts data stored in SSD. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Network Data Protection: The functionality that encrypts communication data. - FAX Data Flow Control: The functionality that prevents unauthorized transmission to an internal network via public lines." } }, { "cert_id": "JISEC-CC-CRP-C0492", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "ECOSYS M3540idn, ECOSYS M3550idn, ECOSYS M3560idn Series, all of the above with both Data Security Kit (E) and HD-7System:2NM_207K.C02.011 Panel:2NM_707K.C02.010 FAX:2NM_5100.004.001", "expiration_date": "2021-01-01", "claim": "EAL1", "certification_date": "2015-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0492_it5543.html", "toe_japan_name": "-----", "enhanced": { "product": "ECOSYS M3540idn, ECOSYS M3550idn, ECOSYS M3560idn Series, all of the above with both Data Security Kit (E) and HD-7", "toe_version": "System:2NM_207K.C02.011 Panel:2NM_707K.C02.010 FAX:2NM_5100.004.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL1", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0492_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE Security functions This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - SSD Encryption: The functionality that encrypts data stored in SSD. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Network Data Protection: The functionality that encrypts communication data. - FAX Data Flow Control: The functionality that prevents unauthorized transmission to an internal network via public lines." } }, { "cert_id": "JISEC-CC-CRP-C0491", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO5560C/6560C/6570C MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V3.0", "expiration_date": "2020-12-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2015-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0491_it4484.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO5560C/6560C/6570C MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V3.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0491_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit / deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0490", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO557/657/757/857 MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V3.0", "expiration_date": "2020-12-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2015-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0490_it4483.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO557/657/757/857 MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V3.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0490_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit / deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0489", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO207L/257/307/357/457/507 MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V3.0", "expiration_date": "2020-12-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2015-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0489_it4482.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO207L/257/307/357/457/507 MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V3.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0489_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit / deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the TLS protocol when the TOE communicates with the various servers or client PC. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0488", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C2003SP/C2503SP (Ricoh/Savin/Lanier/Gestetner), MP C2003SPG/C2503SPG (Ricoh/Savin/Lanier), MP C2003SPJ/C2503SPJ (Ricoh) ENGAK-1.03", "expiration_date": "2020-11-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0488_it5556.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C2003SP/C2503SP (Ricoh/Savin/Lanier/Gestetner), MP C2003SPG/C2503SPG (Ricoh/Savin/Lanier), MP C2003SPJ/C2503SPJ (Ricoh)", "toe_version": "ENGAK-1.03", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0488_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0488_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0488_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0487", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 2554SP/3054SP/3554SP/4054SP/ 5054SP/6054SP (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP 2554SPG/3054SPG/3554SPG/4054SPG/ 5054SPG/6054SPG (Ricoh/Savin/Lanier), MP 4054ASP/5054ASP (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec), MP 2554SPJ/3054SPJ/3554SPJ (Ricoh) E-1.02", "expiration_date": "2020-11-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0487_it5555.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 2554SP/3054SP/3554SP/4054SP/5054SP/ 6054SP (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP 2554SPG/3054SPG/3554SPG/4054SPG/ 5054SPG/6054SPG (Ricoh/Savin/Lanier), MP 4054ASP/5054ASP (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec), MP 2554SPJ/3054SPJ/3554SPJ (Ricoh)", "toe_version": "E-1.02", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0487_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0487_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0487_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0486", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V C7785/C6685/C5585 DocuCentre-V C7785/C6685/C5585 Series Controller Software Controller ROM Ver. 1.0.7", "expiration_date": "2020-11-01", "claim": "EAL3+ ALC_FLR.2", "certification_date": "2015-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0486_it5528.html", "toe_japan_name": "Fuji Xerox ApeosPort-V C7785/C6685/C5585 DocuCentre-V C7785/C6685/C5585 Series Controller Software Controller ROM Ver. 1.0.7", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V C7785/C6685/C5585 DocuCentre-V C7785/C6685/C5585 Series Controller Software English : Fuji Xerox ApeosPort-V C7785/C6685/C5585 DocuCentre-V C7785/C6685/C5585 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.7", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0486_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0486_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0486_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0485", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V C7776/C6676/C5576/C4476/C3376/C3374/C2276 DocuCentre-V C7776/C6676/C5576/C4476/C3376/C3374/C2276 Series Controller Software Controller ROM Ver. 1.0.7", "expiration_date": "2020-11-01", "claim": "EAL3", "certification_date": "2015-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0485_it5527.html", "toe_japan_name": "Fuji Xerox ApeosPort-V C7776/C6676/C5576/C4476/C3376/C2276 DocuCentre-V C7776/C6676/C5576/C4476/C3376/C2276 Series Controller Software Controller ROM Ver. 1.0.7", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V C7776/C6676/C5576/C4476/C3376/C2276 DocuCentre-V C7776/C6676/C5576/C4476/ C3376/C2276 Series Controller Software English : Fuji Xerox ApeosPort-V C7776/ C6676/C5576/C4476/C3376/C3374/C2276 DocuCentre-V C7776/C6676/C5576/C4476/ C3376/C3374/C2276 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.7", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0485_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0485_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0485_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0484", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR47C.10", "expiration_date": "2020-10-01", "claim": "EAL2", "certification_date": "2015-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0484_it5532.html", "toe_japan_name": "MX-FR47C.10", "enhanced": { "product": "MX-FR47", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL2", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0484_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0484_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0484_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an \"MFD\"). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD in the MFD, - the cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - the data erasure function, which automatically overwrites to erase image data no longer in use in the HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - the authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - the confidential file function, which provides image data filed by users with password protection, and - the network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0483", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V C3320 Series Controller SoftwareController ROM Ver. 1.2.0", "expiration_date": "2020-10-01", "claim": "EAL3+ ALC_FLR.2", "certification_date": "2015-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0483_it4512.html", "toe_japan_name": "Fuji Xerox ApeosPort-V C3320 Series Controller SoftwareController ROM Ver. 1.2.0", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V C3320 Series Controller Software English : Fuji Xerox ApeosPort-V C3320 Series Controller Software", "toe_version": "Controller ROM Ver. 1.2.0", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0483_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0483_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0483_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0482", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V 4020 Series Controller SoftwareController ROM Ver. 1.2.0", "expiration_date": "2020-10-01", "claim": "EAL3+ ALC_FLR.2", "certification_date": "2015-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0482_it4511.html", "toe_japan_name": "Fuji Xerox ApeosPort-V 4020 Series Controller SoftwareController ROM Ver. 1.2.0", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V 4020 Series Controller Software English : Fuji Xerox ApeosPort-V 4020 Series Controller Software", "toe_version": "Controller ROM Ver. 1.2.0", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0482_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0482_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0482_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0481", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V 7080/6080 DocuCentre-V 7080/6080 Series Controller SoftwareController ROM Ver. 1.0.7", "expiration_date": "2020-09-01", "claim": "EAL3+ ALC_FLR.2", "certification_date": "2015-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0481_it4521.html", "toe_japan_name": "Fuji Xerox ApeosPort-V 7080/6080/5080 DocuCentre-V 7080/6080/5080 Series Controller SoftwareController ROM Ver. 1.0.7", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V 7080/6080/5080 DocuCentre-V 7080/6080/5080 Series Controller Software English : Fuji Xerox ApeosPort-V 7080/6080 DocuCentre-V 7080/6080 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.7", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0481_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0481_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0481_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0480", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V 5070/4070 DocuCentre-V 5070/4070 Series Controller Software Controller ROM Ver. 1.0.8", "expiration_date": "2020-09-01", "claim": "EAL3+ ALC_FLR.2", "certification_date": "2015-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0480_it4520.html", "toe_japan_name": "Fuji Xerox ApeosPort-V 4070/3070 DocuCentre-V 4070/3070 Series Controller Software Controller ROM Ver. 1.0.8", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V 4070/3070 DocuCentre-V 4070/3070 Series Controller Software English : Fuji Xerox ApeosPort-V 5070/4070 DocuCentre-V 5070/4070 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.8", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0480_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0480_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0480_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0479", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 4750 / bizhub 4050 PKI Card System Control SoftwareA6F730G0273999P", "expiration_date": "2020-09-01", "claim": "EAL3", "certification_date": "2015-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0479_it4507.html", "toe_japan_name": "bizhub 4750 / bizhub 4050 PKI Card System Control SoftwareA6F730G0273999P", "enhanced": { "product": "bizhub 4750 / bizhub 4050 PKI Card System Control Software", "toe_version": "A6F730G0273999P", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0479_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0479_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0479_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as \"MFP\"), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the image data written in HDD. - All Area Overwrite Deletion Function The function that deletes data area including the image data of HDD completely by deletion method compliant with various overwrite deletion standards." } }, { "cert_id": "JISEC-CC-CRP-C0478", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C3850 / bizhub C3850 / bizhub C3350 PKI Card System Control SoftwareA3GN30G0213999P", "expiration_date": "2020-09-01", "claim": "EAL3", "certification_date": "2015-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0478_it4506.html", "toe_japan_name": "bizhub C3850 / bizhub C3350 PKI Card System Control SoftwareA3GN30G0213999P", "enhanced": { "product": "bizhub C3850 / bizhub C3350 PKI Card System Control Software", "toe_version": "A3GN30G0213999P", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0478_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0478_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0478_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as \"MFP\"), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the image data written in HDD. - All Area Overwrite Deletion Function The function that deletes data area including the image data of HDD completely by deletion method compliant with various overwrite deletion standards." } }, { "cert_id": "JISEC-CC-CRP-C0477", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C2003/C2003G/C2503/C2503G (Ricoh/Savin/Lanier)ENG-1.01", "expiration_date": "2020-07-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0477_it5537.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C2003/C2003G/C2503/C2503G (Ricoh/Savin/Lanier)", "toe_version": "ENG-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0477_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0477_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0477_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0475", "supplier": "Microsoft Corporation", "toe_overseas_name": "Microsoft SQL Server 2014 Database Engine Enterprise Edition x64 (English)12.0.2000.8", "expiration_date": "2020-07-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0475_it3480.html", "toe_japan_name": "-----", "enhanced": { "product": "Microsoft SQL Server 2014 Database Engine Enterprise Edition x64 (English)", "toe_version": "12.0.2000.8", "product_type": "Database Management System (DBMS)", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Protection Profile for Database Management Systems, Version 1.3", "vendor": "Microsoft Corporation", "evaluation_facility": "TÜV Informationstechnik GmbH, Evaluation Body for IT-Security", "report_link": "https://www.ipa.go.jp/en/security/c0475_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0475_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0475_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of SQL Server 2014. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functionality This TOE provides the following security functionality: - The Access Control function of the TOE controls the access of users to user data and metadata stored in the TOE. - The Session Handling function of the TOE limits the possibilities of users to establish sessions with the TOE. - The Security Audit function of the TOE produces log files about all security relevant events. - The Security Management function allows authorized administrators to manage the behavior of the security functionality of the TOE. - The Identification and Authentication function of the TOE is able to identify and authenticate users. - The Residual Information Protection function of the TOE overwrites the residual information on the memory that will be used for user sessions." } }, { "cert_id": "JISEC-CC-CRP-C0474", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 4900KB/4200 Series 2600.1 model1.3", "expiration_date": "2020-06-01", "claim": "EAL3+ALC_FLR.2 PP", "revalidations": [ { "date": "2016-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0474_it3443_01.html" } ], "certification_date": "2015-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0474_it3443.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 4200 Series 2600.1 model1.2", "enhanced": { "product": "Canon imageRUNNER ADVANCE 4200 Series 2600.1 model", "toe_version": "1.2", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0474_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0474_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0474_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0473", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 401 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec),SP 4510 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner) E-1.02", "expiration_date": "2020-06-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0473_it4493.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 401 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), SP 4510 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner)", "toe_version": "E-1.02", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0473_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0473_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0473_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0472", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 4750 / bizhub 4050 / ineo 4750 / ineo 4050 Control SoftwareA6F730G0139-999", "expiration_date": "2020-05-01", "claim": "EAL3", "certification_date": "2015-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0472_it4486.html", "toe_japan_name": "bizhub 4750 / bizhub 4050 / ineo 4750 / ineo 4050 Control SoftwareA6F730G0139-999", "enhanced": { "product": "bizhub 4750 / bizhub 4050 / ineo 4750 / ineo 4050 Control Software", "toe_version": "A6F730G0139-999", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0472_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the software which is installed in a digital Multi Function Peripheral (hereinafter referred to as \"MFP\") consisting of a copier, printer, scanner, and fax function, and controls the overall operation of the MFP. TOE security functionality This TOE offers a security function against disclosure of highly-confidential information stored in an MFP. In compliance with all sorts of overwritting standards, this TOE also offers an overwritting function to completely erase data on recording media such as HDD. This function is used when discarding an MFP or returning a leased one in order to prevent information leakage of an organization using the MFP. In addition, all image files, passwords, and so on saved in the HDD of the MFP are protected from unlawful access as they are encrypted by TOE when written on the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0471", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C401(Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec)EE-1.00", "expiration_date": "2020-04-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0471_it5525.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C401(Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "EE-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0471_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0471_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0471_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0470", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 2554/3054/3554/4054/5054/6054 (Ricoh/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)EEA-1.00", "expiration_date": "2020-04-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0470_it4524.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 2554/3054/3554/4054/5054/6054 (Ricoh/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "EEA-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0470_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0470_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0470_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0469", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C3110 / ineo+ 3110 Control SoftwareA6DT30G0116-999", "expiration_date": "2020-04-01", "claim": "EAL3", "certification_date": "2015-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0469_it4498.html", "toe_japan_name": "bizhub C3110 / ineo+ 3110 Control SoftwareA6DT30G0116-999", "enhanced": { "product": "bizhub C3110 / ineo+ 3110 Control Software", "toe_version": "A6DT30G0116-999", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0469_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the software which is installed in a digital Multi Function Peripheral (hereinafter referred to as \"MFP\") consisting of a copier, printer, and scanner, and controls the overall operation of the MFP. TOE security functionality This TOE offers a security function against disclosure of highly-confidential information stored in an MFP. In compliance with all sorts of overwritting standards, this TOE also offers an overwritting function to completely erase data on recording media such as HDD. This function is used when discarding an MFP or returning a leased one in order to prevent information leakage of an organization using the MFP. In addition, all image files, passwords, and so on saved in the HDD of the MFP are protected from unlawful access as they are encrypted by TOE when written on the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0468", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C2003/C2503 (Ricoh/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)EEA-1.00", "expiration_date": "2020-03-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0468_it4522.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C2003/C2503 (Ricoh/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "EEA-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0468_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0468_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0468_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0467", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V C7780/C6680/C5580 T2 DocuCentre-V C7780/C6680/C5580 T2 Series Controller SoftwareController ROM Ver. 2.0.13", "expiration_date": "2020-03-01", "claim": "EAL3", "certification_date": "2015-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0467_it4519.html", "toe_japan_name": "Fuji Xerox ApeosPort-V C7780/C6680/C5580 T2 DocuCentre-V C7780/C6680/C5580 T2 Series Controller SoftwareController ROM Ver. 2.0.13", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V C7780/C6680/C5580 T2 DocuCentre-V C7780/C6680/C5580 T2 Series Controller Software English : Fuji Xerox ApeosPort-V C7780/C6680/C5580 T2 DocuCentre-V C7780/C6680/C5580 T2 Series Controller Software", "toe_version": "Controller ROM Ver. 2.0.13", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0467_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0467_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0467_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0466", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V C7775/C6675/C5575/C4475/C3375 /C3373/C2275 T2 DocuCentre-V C7775/C6675/C5575 /C4475/C3375/C3373/C2275 T2 Series Controller SoftwareController ROM Ver. 2.0.12", "expiration_date": "2020-03-01", "claim": "EAL3", "certification_date": "2015-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0466_it4518.html", "toe_japan_name": "Fuji Xerox ApeosPort-V C7775/C6675 /C5575/C4475/C3375/C2275 T2 DocuCentre-V C7775/C6675 /C5575/C4475/C3375/C2275 T2 Series Controller SoftwareController ROM Ver. 2.0.12", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V C7775/ C6675/C5575/C4475/C3375/C2275 T2 DocuCentre-V C7775/C6675/C5575/C4475/ C3375/C2275 T2 Series Controller Software English : Fuji Xerox ApeosPort-V C7775/ C6675/C5575/C4475/C3375/C3373/C2275 T2 DocuCentre-V C7775/C6675/C5575/C4475/ C3375/C3373/C2275 T2 Series Controller Software", "toe_version": "Controller ROM Ver. 2.0.12", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0466_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0466_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0466_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0465", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 6501i, TASKalfa 8001i, TASKalfa 6501iG, TASKalfa 8001iG, CS 6501i, CS 8001i, 6555i, 8055i with Data Security Kit (E), FAX System (W)System:2N7_2000.C02.201Panel:2N4_7000.C02.010 FAX:3N6_5100.B04.001", "expiration_date": "2020-03-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2015-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0465_it2416.html", "toe_japan_name": "TASKalfa 6501i, TASKalfa 8001i, TASKalfa 6501iG, TASKalfa 8001iG, CS 6501i, CS 8001i, 6555i, 8055i with Data Security Kit (E), FAX System (W)System:2N7_2000.C02.201Panel:2N4_7000.C02.010 FAX:3N6_5100.B04.001", "enhanced": { "product": "TASKalfa 6501i, TASKalfa 8001i, TASKalfa 6501iG, TASKalfa 8001iG, CS 6501i, CS 8001i, 6555i, 8055i with Data Security Kit (E), FAX System (W)", "toe_version": "System:2N7_2000.C02.201 Panel:2N4_7000.C02.010 FAX:3N6_5100.B04.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0465_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0465_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0465_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0464", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 6551ci, TASKalfa 7551ci, TASKalfa 6551ciG, TASKalfa 7551ciG, CS 6551ci, CS 7551ci, 6505ci, 7505ci with Data Security Kit (E), FAX System (W)System:2N2_2000.C02.201Panel:2N4_7000.C02.010FAX:3N6_5100.B04.001", "expiration_date": "2020-03-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2015-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0464_it2414.html", "toe_japan_name": "TASKalfa 6551ci, TASKalfa 7551ci, TASKalfa 6551ciG, TASKalfa 7551ciG, CS 6551ci, CS 7551ci, 6505ci, 7505ci with Data Security Kit (E), FAX System (W)System:2N2_2000.C02.201Panel:2N4_7000.C02.010FAX:3N6_5100.B04.001", "enhanced": { "product": "TASKalfa 6551ci, TASKalfa 7551ci, TASKalfa 6551ciG, TASKalfa 7551ciG, CS 6551ci, CS 7551ci, 6505ci, 7505ci with Data Security Kit (E), FAX System (W)", "toe_version": "System:2N2_2000.C02.201 Panel:2N4_7000.C02.010 FAX:3N6_5100.B04.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0464_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0464_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0464_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0463", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C401/C401SR(Ricoh/Savin/Lanier)EN-1.00", "expiration_date": "2020-02-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2015-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0463_it3479.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C401/C401SR(Ricoh/Savin/Lanier)", "toe_version": "EN-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0463_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0463_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0463_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of “U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)”, which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0462", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox Color C60/C70 Controller ROM Ver. 1.200.17, IOT ROM Ver. 67.20.0, ADF ROM Ver. 13.19.3", "expiration_date": "2020-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0462_it4496.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox Color C60/C70", "toe_version": "Controller ROM Ver. 1.200.17, IOT ROM Ver. 67.20.0, ADF ROM Ver. 13.19.3", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0462_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0462_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0462_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite A function to overwrite and delete the document data in the internal HDD. - Hard Disk Data Encryption A function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0461", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV 3065/3060/2060 for Asia Pacific Controller ROM Ver. 1.140.21, IOT ROM Ver. 40.2.0, ADF ROM Ver. 7.9.0", "expiration_date": "2020-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0461_it4491.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV 3065/3060/2060 for Asia Pacific", "toe_version": "Controller ROM Ver. 1.140.21, IOT ROM Ver. 40.2.0, ADF ROM Ver. 7.9.0", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0461_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0461_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0461_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite A function to overwrite and delete the document data in the internal HDD. - Hard Disk Data Encryption A function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0460", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 4000 Series 2600.1 model 1.3", "expiration_date": "2020-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0460_it4515.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 4000 Series 2600.1 model 1.3", "enhanced": { "product": "Canon imageRUNNER ADVANCE 4000 Series 2600.1 model", "toe_version": "1.3", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™;-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0460_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0459", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C5000 Series 2600.1 model 1.3", "expiration_date": "2020-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0459_it4514.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C5000 Series 2600.1 model 1.3", "enhanced": { "product": "Canon imageRUNNER ADVANCE C5000 Series 2600.1 model", "toe_version": "1.3", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0459_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP, except for the fax function which is not included in this constitution. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0458", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C3850 / bizhub C3350 / ineo+ 3850 / ineo+ 3350 Control Software A3GN30G0142-999", "expiration_date": "2020-01-01", "claim": "EAL3", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0458_it3471.html", "toe_japan_name": "bizhub C3850 / bizhub C3350 / ineo+ 3850 / ineo+ 3350 Control Software A3GN30G0142-999", "enhanced": { "product": "bizhub C3850 / bizhub C3350 / ineo+ 3850 / ineo+ 3350 Control Software", "toe_version": "A3GN30G0142-999", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0458_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the software which is installed in a digital Multi Function Peripheral (hereinafter referred to as \"MFP\") consisting of a copier, printer, scanner, and fax function, and controls the overall operation of the MFP. TOE security functionality This TOE offers a security function against disclosure of highly-confidential information stored in an MFP. In compliance with all sorts of overwritting standards, this TOE also offers an overwritting function to completely erase data on recording media such as HDD. This function is used when discarding an MFP or returning a leased one in order to prevent information leakage of an organization using the MFP. In addition, all image files, passwords, and so on saved in the HDD of the MFP are protected from unlawful access as they are encrypted by TOE when written on the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0457", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 2554SP/2554SPG/3054SP/3054SPG /3554SP/3554SPG/4054SP/4054SPG /5054SP/5054SPG/6054SP/6054SPG (Ricoh/Savin/Lanier) ENG-1.00", "expiration_date": "2020-01-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0457_it4488.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 2554SP/2554SPG/3054SP/3054SPG/3554SP/ 3554SPG/054SP/4054SPG/5054SP/5054SPG/ 6054SP/6054SPG(Ricoh/Savin/Lanier)", "toe_version": "ENG-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0457_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0457_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0457_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0456", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-01-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP 6054SP/6054SPF/5054SP/5054SPF/4054SP/4054SPF/3554SP/3554SPF/2554SP/2554SPF J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0456_it4487.html", "enhanced": { "product": "RICOH MP 6054SP/6054SPF/5054SP/ 5054SPF/4054SP/4054SPF/3554SP/ 3554SPF/2554SP/2554SPF", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0456_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0456_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0456_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0455", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 754e/bizhub 654e/ineo 754e/ineo 654e G00-60", "expiration_date": "2020-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0455_it3473.html", "toe_japan_name": "bizhub 754e/bizhub 654e/ineo 754e/ineo 654e G00-60", "enhanced": { "product": "bizhub 754e/bizhub 654e/ineo 754e/ineo 654e", "toe_version": "G00-60", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0455_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0455_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0455_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to IEEE Std 2600.1™-2009 which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE security functionality This TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0454", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub 554e / bizhub 454e / bizhub 364e /bizhub 284e / bizhub 224e / ineo 554e / ineo 454e / ineo 364e / ineo 284e / ineo 224e G00-09", "expiration_date": "2020-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0454_it3464.html", "toe_japan_name": "bizhub 554e / bizhub 454e / bizhub 364e /bizhub 284e / bizhub 224e / ineo 554e / ineo 454e / ineo 364e / ineo 284e / ineo 224e G00-09", "enhanced": { "product": "bizhub 554e / bizhub 454e / bizhub 364e / bizhub 284e /bizhub 224e / ineo 554e / ineo 454e / ineo 364e /ineo 284e / ineo 224e", "toe_version": "G00-09", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0454_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0454_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0454_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to IEEE Std 2600.1™-2009 which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE security functionality This TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0453", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C754e / bizhub C654e / ineo+ 754e / ineo+ 654e G00-80", "expiration_date": "2020-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0453_it3461.html", "toe_japan_name": "bizhub C754e / bizhub C654e / ineo+ 754e / ineo+ 654e G00-80", "enhanced": { "product": "bizhub C754e / bizhub C654e / ineo+ 754e / ineo+ 654e", "toe_version": "G00-80", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0453_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0453_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0453_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to IEEE Std 2600.1™-2009 which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. . TOE security functionality This TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0452", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub PRESS C1100 / bizhub PRESS C1085 control software Image Control Program ( Image Control I1 ) :A5AW0Y0-00I1-G00-10 IC Control Program ( IC Control P1 ) : A5AW0Y0-00P1-G00-10", "expiration_date": "2020-01-01", "claim": "EAL3", "certification_date": "2014-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0452_it3481.html", "toe_japan_name": "bizhub PRESS C1100 / bizhub PRESS C1085 control software Image Control Program ( Image Control I1 ) :A5AW0Y0-00I1-G00-10 IC Control Program ( IC Control P1 ) : A5AW0Y0-00P1-G00-10", "enhanced": { "product": "Japanese : bizhub PRESS C1100 / bizhub PRESS C1085 control software English : bizhub PRESS C1100 / bizhub PRESS C1085 control software", "toe_version": "Image Control Program ( Image Control I1 ) : A5AW0Y0-00I1-G00-10 IC Control Program ( IC Control P1 ) : A5AW0Y0-00P1-G00-10", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0452_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE, that is installed with digital MFP manufactured by KONICA MINOLTA, INC., is a software product that provide the function of copier, printer and scanner. TOE security functionality This TOE provides the following security functions. - Identification and authentication function - Access control function - Audit function - Management function - CE function - Test function of HDD lock system" } }, { "cert_id": "JISEC-CC-CRP-C0451", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C2003/C2003G/C2503/C2503G(Ricoh/Savin/Lanier) ENG-1.00", "expiration_date": "2019-12-01", "claim": "EAL2+ALC_FLR.2 PP", "certification_date": "2014-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0451_it3478.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C2003/C2003G/C2503/C2503G(Ricoh/Savin/Lanier)", "toe_version": "ENG-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0451_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0451_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0451_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of “U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)”, which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0450", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR44C.10", "expiration_date": "2019-12-01", "claim": "EAL3", "certification_date": "2014-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0450_it4497.html", "toe_japan_name": "MX-FR44C.10", "enhanced": { "product": "MX-FR44", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0450_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0450_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0450_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an“MFD”). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD in the MFD, - the cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - the data erasure function, which automatically overwrites to erase image data no longer in use in the HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - the authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - the confidential file function, which provides image data filed by users with password protection, and - the network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0449", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR42D.10", "expiration_date": "2019-12-01", "claim": "EAL3", "certification_date": "2014-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0449_it4490.html", "toe_japan_name": "MX-FR42D.10", "enhanced": { "product": "MX-FR42", "toe_version": "D.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0449_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0449_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0449_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an“MFD”). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD in the MFD, - the cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - the data erasure function, which automatically overwrites to erase image data no longer in use in the HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - the authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - the confidential file function, which provides image data filed by users with password protection, and - the network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0448", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 500/400 Series 2600.1 model1.3", "expiration_date": "2019-12-01", "claim": "EAL3+ALC_FLR.2 PP", "revalidations": [ { "date": "2016-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0448_it4517_01.html" } ], "certification_date": "2014-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0448_it4517.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 500/400 Series 2600.1 model1.3", "enhanced": { "product": "Canon imageRUNNER ADVANCE 500/400 Series 2600.1 model", "toe_version": "1.3", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0448_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0448_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0448_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, and I-Fax capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0447", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C5900KB/C5200 Series 2600.1 model1.4", "expiration_date": "2019-12-01", "claim": "EAL3+ALC_FLR.2 PP", "revalidations": [ { "date": "2015-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0447_it4516_01.html" } ], "certification_date": "2014-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0447_it4516.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C5200 Series 2600.1 model1.3", "enhanced": { "product": "Canon imageRUNNER ADVANCE C5200 Series 2600.1 model", "toe_version": "1.3", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0447_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0447_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0447_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0446", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3010i, TASKalfa 3510i, TASKalfa 3010iG, TASKalfa 3510iG, CS 3010i, CS 3510i, 3060i, 3560i with Data Security Kit (E), FAX System (W)System:2NL_2000.C01.201Panel:2NP_7000.C01.200FAX:3N6_5100.B04.001", "expiration_date": "2019-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0446_it3475.html", "toe_japan_name": "TASKalfa 3010i, TASKalfa 3510i, TASKalfa 3010iG, TASKalfa 3510iG, CS 3010i, CS 3510i, 3060i, 3560i with Data Security Kit (E), FAX System (W)System:2NL_2000.C01.201Panel:2NP_7000.C01.200FAX:3N6_5100.B04.001", "enhanced": { "product": "TASKalfa 3010i, TASKalfa 3510i, TASKalfa 3010iG, TASKalfa 3510iG, CS 3010i, CS 3510i, 3060i, 3560i with Data Security Kit (E), FAX System (W)", "toe_version": "System:2NL_2000.C01.201 Panel:2NP_7000.C01.200 FAX:3N6_5100.B04.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0446_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0446_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0446_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0445", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 2551ci, TASKalfa 2551ciG, CS 2551ci, 2500ciwith Data Security Kit (E), FAX System (W)System:2NP_2000.C01.201Panel:2NP_7000.C01.200FAX:3N6_5100.B04.001", "expiration_date": "2019-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0445_it3474.html", "toe_japan_name": "TASKalfa 2551ci, TASKalfa 2551ciG, CS 2551ci, 2500ciwith Data Security Kit (E), FAX System (W)System:2NP_2000.C01.201Panel:2NP_7000.C01.200FAX:3N6_5100.B04.001", "enhanced": { "product": "TASKalfa 2551ci, TASKalfa 2551ciG, CS 2551ci, 2500ci with Data Security Kit (E), FAX System (W)", "toe_version": "System:2NP_2000.C01.201 Panel:2NP_7000.C01.200 FAX:3N6_5100.B04.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0445_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0445_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0445_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0444", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3501i, TASKalfa 4501i, TASKalfa 5501i, TASKalfa 3501iG, TASKalfa 4501iG, TASKalfa 5501iG, CS 3501i, CS 4501i, CS 5501i, 3555i, 4555i, 5555i with Data Security Kit (E), FAX System (W)System:2N9_2000.C02.201Panel:2N4_7000.C02.010FAX:3N6_5100.B04.001", "expiration_date": "2019-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0444_it2415.html", "toe_japan_name": "TASKalfa 3501i, TASKalfa 4501i, TASKalfa 5501i, TASKalfa 3501iG, TASKalfa 4501iG, TASKalfa 5501iG, CS 3501i, CS 4501i, CS 5501i, 3555i, 4555i, 5555i with Data Security Kit (E), FAX System (W)System:2N9_2000.C02.201Panel:2N4_7000.C02.010FAX:3N6_5100.B04.001", "enhanced": { "product": "TASKalfa 3501i, TASKalfa 4501i, TASKalfa 5501i, TASKalfa 3501iG, TASKalfa 4501iG, TASKalfa 5501iG, CS 3501i, CS 4501i, CS 5501i, 3555i, 4555i, 5555i with Data Security Kit (E), FAX System (W)", "toe_version": "System:2N9_2000.C02.201 Panel:2N4_7000.C02.010 FAX:3N6_5100.B04.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0444_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0444_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0444_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0443", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub PRESS C1070 / bizhub PRESS C1060 / bizhub PRESS C1070P / bizhub PRO C1060L / ineo+ 1070 / ineo+ 1060 / ineo+ 1060L control softwareImage Control Program ( Image Control I1 ) : A50U0Y0-00I1-G00-11 IC Control Program ( IC Control P1 ) : A50U0Y0-00P1-G00-11", "expiration_date": "2019-11-01", "claim": "EAL3", "certification_date": "2014-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0443_it2425.html", "toe_japan_name": "bizhub PRESS C1070 / bizhub PRESS C1060 / bizhub PRESS C1070P / bizhub PRO C1060L / ineo+ 1070 / ineo+ 1060 / ineo+ 1060L control softwareImage Control Program ( Image Control I1 ) : A50U0Y0-00I1-G00-11 IC Control Program ( IC Control P1 ) : A50U0Y0-00P1-G00-11", "enhanced": { "product": "Japanese : bizhub PRESS C1070 / bizhub PRESS C1060 / bizhub PRESS C1070P / bizhub PRO C1060L / ineo+ 1070 / ineo+ 1060 / ineo+ 1060L control software English : bizhub PRESS C1070 / bizhub PRESS C1060 / bizhub PRESS C1070P / bizhub PRO C1060L / ineo+ 1070 / ineo+ 1060 / ineo+ 1060L control software", "toe_version": "Image Control Program ( Image Control I1 ) : A50U0Y0-00I1-G00-11 IC Control Program ( IC Control P1 ) : A50U0Y0-00P1-G00-11", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release3", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0443_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE, that is installed with digital MFP manufactured by KONICA MINOLTA, INC., is a software product that provide the function of copier, printer and scanner. TOE security functionality This TOE provides the following security functions. - Identification and authentication function - Access control function - Audit function - Management function - CE function - Test function of HDD lock system" } }, { "cert_id": "JISEC-CC-CRP-C0442", "supplier": "KONICA MINOLTA,INC.", "toe_overseas_name": "bizhub C554e/bizhub C454e/bizhub C364e/bizhub C284e/bizhub C224e/ineo+ 554e/ineo+ 454e/ineo+ 364e/ineo+ 284e/ineo+ 224eG00-19", "expiration_date": "2019-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0442_it2434.html", "toe_japan_name": "bizhub C554e/bizhub C454e/bizhub C364e/bizhub C284e/bizhub C224e/ineo+ 554e/ineo+ 454e/ineo+ 364e/ineo+ 284e/ineo+ 224eG00-19", "enhanced": { "product": "bizhub C554e/bizhub C454e/bizhub C364e/bizhub C284e/bizhub C224e/ineo+ 554e/ineo+ 454e/ineo+ 364e/ineo+ 284e/ineo+ 224e", "toe_version": "G00-19", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0442_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0442_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0442_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions. The TOE provides security functions that conform to IEEE Std 2600.1™-2009 which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data. TOE security functionality The TOE provides the following security functions. - Identification and authentication Function to identify and authenticate users. - User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. - Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. - HDD encryption function Function to encrypt the data that is stored in HDD. - Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. - Audit log function Function to record audit log related to security functions. - Network communication protection function Function to encrypt communication data on the LAN. - Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. - Security management function Function to control the management of security functions only to the authorized users. - External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc." } }, { "cert_id": "JISEC-CC-CRP-C0441", "supplier": "KYOCERA Document Solutions Inc.", "toe_overseas_name": "TASKalfa 3051ci, TASKalfa 3551ci, TASKalfa 4551ci, TASKalfa 5551ci, TASKalfa 3051ciG, TASKalfa 3551ciG, TASKalfa 4551ciG, TASKalfa 5551ciG, CS 3051ci, CS 3551ci, CS 4551ci, CS 5551ci, 3005ci, 3505ci, 4505ci, 5505ci with Data Security Kit (E), FAX System (W)System:2N4_2000.C02.013 Panel:2N4_7000.C02.010FAX:3N6_5100.B04.001", "expiration_date": "2019-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0441_it2413.html", "toe_japan_name": "TASKalfa 3051ci, TASKalfa 3551ci, TASKalfa 4551ci, TASKalfa 5551ci, TASKalfa 3051ciG, TASKalfa 3551ciG, TASKalfa 4551ciG, TASKalfa 5551ciG, CS 3051ci, CS 3551ci, CS 4551ci, CS 5551ci, 3005ci, 3505ci, 4505ci, 5505ci with Data Security Kit (E), FAX System (W)System:2N4_2000.C02.013 Panel:2N4_7000.C02.010FAX:3N6_5100.B04.001", "enhanced": { "product": "TASKalfa 3051ci, TASKalfa 3551ci, TASKalfa 4551ci, TASKalfa 5551ci, TASKalfa 3051ciG, TASKalfa 3551ciG, TASKalfa 4551ciG, TASKalfa 5551ciG, CS 3051ci, CS 3551ci, CS 4551ci, CS 5551ci, 3005ci, 3505ci, 4505ci, 5505ci with Data Security Kit (E), FAX System (W)", "toe_version": "System:2N4_2000.C02.013 Panel:2N4_7000.C02.010 FAX:3N6_5100.B04.001", "product_type": "Multi-Function Printer", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "KYOCERA Document Solutions Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0441_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0441_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0441_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multi-Function Printer, which has Copy, Scan, Print, FAX and Document Box functionality. This TOE provides security functionalities, which conform to IEEE Std 2600.1™-2009 that is a protection profile for Hardcopy devices, for a purpose of preventing unauthorized disclosure and alteration of user document data. TOE security functionality This TOE provides the following security functionalities. - User Authentication: The functionality that performs user identification and authentication. - Job Authorization: The functionality that restricts the available functions of a user. - Document Access Control: The functionality that restricts access to user document data to authorized users only. - Hard Disk Data Encryption: The functionality that encrypts data stored in hard disk drive. - Data Overwrite: The functionality that overwrites data stored in a product, and disables the data to be re-used. - Audit Logs: The functionality that records audit logs relevant to the security functionalities. - Security Management: The functionality that restricts management of the security functionalities to authorized users only. - Self Test: The functionality that verifies the integrity of executable codes of security functionality and setting data. - Network Data Protection: The functionality that encrypts communication data, and prevents unauthorized transmission to an internal network via external interfaces such as public lines." } }, { "cert_id": "JISEC-CC-CRP-C0438", "supplier": "Dell Inc.", "toe_overseas_name": "Dell C7765dn Color Multifunction PrinterController ROM Ver. 2.205.5, IOT ROM Ver. 41.1.0, ADF ROM Ver. 12.5.0", "expiration_date": "2019-10-01", "claim": "EAL3", "certification_date": "2014-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0438_it3446.html", "toe_japan_name": "Dell C7765dn Color Multifunction PrinterController ROM Ver. 2.205.5, IOT ROM Ver. 41.1.0, ADF ROM Ver. 12.5.0", "enhanced": { "product": "Dell C7765dn Color Multifunction Printer", "toe_version": "Controller ROM Ver. 2.205.5 IOT ROM Ver. 41.1.0 ADF ROM Ver. 12.5.0", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Dell Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0438_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0438_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0438_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0437", "supplier": "Dell Inc.", "toe_overseas_name": "Dell C5765dn Color Laser Multifunction PrinterController ROM Ver. 2.205.1, IOT ROM Ver. 3.0.2, ADF ROM Ver. 11.1.0, Fax ROM Ver. 100.19.0", "expiration_date": "2019-10-01", "claim": "EAL3", "certification_date": "2014-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0437_it3445.html", "toe_japan_name": "Dell C5765dn Color Laser Multifunction PrinterController ROM Ver. 2.205.1, IOT ROM Ver. 3.0.2, ADF ROM Ver. 11.1.0, Fax ROM Ver. 100.19.0", "enhanced": { "product": "Dell C5765dn Color Laser Multifunction Printer", "toe_version": "Controller ROM Ver. 2.205.1 IOT ROM Ver. 3.0.2 ADF ROM Ver. 11.1.0 Fax ROM Ver. 100.19.0", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Dell Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0437_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0437_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0437_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0436", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2019-09-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2014-08-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C2503/C1803 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0436_it3477.html", "enhanced": { "product": "RICOH MP C2503/C1803", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0436_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0436_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0436_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of “U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)”, which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0435", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V C7775/C6675/C5575/C4475 /C3375/C3373/C2275 DocuCentre-V C7775/C6675/C5575/C4475 /C3375/C3373/C2275 Series Controller Software Controller ROM Ver. 1.0.14", "expiration_date": "2019-08-01", "claim": "EAL3", "certification_date": "2014-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0435_it3453.html", "toe_japan_name": "Fuji Xerox ApeosPort-V C7775/C6675/C5575/C4475 /C3375/C3373/C2275 DocuCentre-V C7775/C6675/C5575/C4475 /C3375/C3373/C2275 Series Controller Software Controller ROM Ver. 1.0.14", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V C7775/C6675/C5575/C4475/C3375/ C2275 DocuCentre-V C7775/C6675/ C5575/C4475/C3375/C2275 Series Controller Software English : Fuji Xerox ApeosPort-V C7775/C6675/C5575/C4475/C3375/ C3373/C2275 DocuCentre-V C7775/C6675/ C5575/C4475/C3375/C3373/C2275 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.14", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0435_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0435_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0435_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0434", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-V C7780/C6680/C5580 DocuCentre-V C7780/C6680/C5580 Series Controller Software Controller ROM Ver. 1.0.13", "expiration_date": "2019-08-01", "claim": "EAL3", "certification_date": "2014-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0434_it3452.html", "toe_japan_name": "Fuji Xerox ApeosPort-V C7780/C6680/C5580 DocuCentre-V C7780/C6680/C5580 Series Controller Software Controller ROM Ver. 1.0.13", "enhanced": { "product": "Japanese : Fuji Xerox ApeosPort-V C7780/C6680/C5580 DocuCentre-V C7780/C6680/C5580 Series Controller Software English : Fuji Xerox ApeosPort-V C7780/C6680/C5580 DocuCentre-V C7780/C6680/C5580 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.13", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0434_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0434_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0434_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security - Self Test" } }, { "cert_id": "JISEC-CC-CRP-C0433", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2019-07-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2014-06-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C305 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0433_it3476.html", "enhanced": { "product": "RICOH MP C305", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0433_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0433_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0433_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of “U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)”, which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0432", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-01-01", "claim": "EAL2+ ALC_FLR.2 PP", "certification_date": "2014-05-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C6003Z/C5503AZ/C4503AZ J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0432_it3460.html", "enhanced": { "product": "RICOH MP C6003Z/C5503AZ/C4503AZ", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "protection_profile": "U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0432_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0432_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0432_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)\", which is a protection profile for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0430", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "bizhub 754e/bizhub 654e PKI Card System Control SoftwareA55V0Y0-0100-G00-60pki", "expiration_date": "2019-05-01", "claim": "EAL3", "certification_date": "2014-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0430_it3472.html", "toe_japan_name": "bizhub 754e/bizhub 654e PKI Card System Control SoftwareA55V0Y0-0100-G00-60pki", "enhanced": { "product": "bizhub 754e / bizhub 654e PKI Card System Control Software", "toe_version": "A55V0Y0-0100-G00-60pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0430_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0430_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0430_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the image data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes data area including the image data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0429", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "bizhub 554e/bizhub 454e/bizhub 364e/bizhub 284e/bizhub 224e PKI Card System Control SoftwareA61F0Y0-0100-G00-09pki", "expiration_date": "2019-05-01", "claim": "EAL3", "certification_date": "2014-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0429_it3463.html", "toe_japan_name": "bizhub 554e/bizhub 454e/bizhub 364e/bizhub 284e/bizhub 224e PKI Card System Control SoftwareA61F0Y0-0100-G00-09pki", "enhanced": { "product": "bizhub 554e / bizhub 454e / bizhub 364e / bizhub 284e / bizhub 224e PKI Card System Control Software", "toe_version": "A61F0Y0-0100-G00-09pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0429_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0429_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0429_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the image data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes data area including the image data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0426", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Pro 8100EX/8100S/8110S/8120S (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.01", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0426_it3457.html", "toe_japan_name": "-----", "enhanced": { "product": "Pro 8100EX/8100S/8110S/8120S(Ricoh/Savin/ Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0426_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0426_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0426_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0425", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2014-01-01", "toe_overseas_link": null, "toe_japan_name": "RICOH Pro 8120S/8110S/8100S J-1.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0425_it3456.html", "enhanced": { "product": "RICOH Pro 8120S/8110S/8100S", "toe_version": "J-1.01", "product_type": "Multi Function Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0425_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0425_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0425_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software." } }, { "cert_id": "JISEC-CC-CRP-C0424", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR41D.11", "expiration_date": "2019-01-01", "claim": "EAL3", "revalidations": [ { "date": "2014-02", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0424_it3467_01.html" } ], "certification_date": "2013-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0424_it3467.html", "toe_japan_name": "MX-FR41D.10", "enhanced": { "product": "MX-FR41", "toe_version": "D.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0424_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0424_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0424_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an \"MFD\"). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD in the MFD, - the cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - the data erasure function, which automatically overwrites to erase image data no longer in use in the HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - the authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - the confidential file function, which provides image data filed by users with password protection, and - the network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0423", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP 2553/3053/3353 (Ricoh/Savin/Lanier/nashuatec /Rex-Rotary/Gestetner/infotec) E-1.00", "expiration_date": "2017-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0423_it2436.html", "toe_japan_name": "-----", "enhanced": { "product": "MP 2553/3053/3353(Ricoh/Savin/Lanier/ nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0423_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0423_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0423_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0422", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-12-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP 3353/2553 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0422_it2435.html", "enhanced": { "product": "RICOH MP 3353/2553", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0422_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0422_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0422_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0421", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "Hitachi Unified Storage 110 Microprogram0917/A", "expiration_date": "2019-01-01", "claim": "EAL2", "certification_date": "2013-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0421_it2418.html", "toe_japan_name": "Hitachi Unified Storage 110 Microprogram0917/A", "enhanced": { "product": "Hitachi Unified Storage 110 Microprogram", "toe_version": "0917/A", "product_type": "Storage System control software", "cc_version": "3.1 Release3", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0421_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0421_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0421_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a control program (software) operating in the disk array “Hitachi Unified Storage 110” that is a storage product. The TOE controls accesses to its storage areas from host computers connected to the disk array. The TOE does not have assumed threats. Security functions of TOE satisfy the assumed organizational security policy and are provided to customers. TOE security functionality Three kinds of main security functions of this TOE exist as follows. - Exclusive control of storage areaFunction to access control to storage area according to requests from host computer. - Account AuthenticationUser's login facility and control of access to each function of the TOE. - AuditAudit log function that records event of administrative operations." } }, { "cert_id": "JISEC-CC-CRP-C0420", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "Hitachi Unified Storage 130 Microprogram0917/A", "expiration_date": "2019-01-01", "claim": "EAL2", "certification_date": "2013-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0420_it2417.html", "toe_japan_name": "Hitachi Unified Storage 130 Microprogram0917/A", "enhanced": { "product": "Hitachi Unified Storage 130 Microprogram", "toe_version": "0917/A", "product_type": "Storage System control software", "cc_version": "3.1 Release3", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0420_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0420_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0420_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a control program (software) operating in the disk array “Hitachi Unified Storage 130” that is a storage product. The TOE controls accesses to its storage areas from host computers connected to the disk array. The TOE does not have assumed threats. Security functions of TOE satisfy the assumed organizational security policy and are provided to customers. TOE security functionality Three kinds of main security functions of this TOE exist as follows. - Exclusive control of storage areaFunction to access control to storage area according to requests from host computer. - Account AuthenticationUser's login facility and control of access to each function of the TOE. - AuditAudit log function that records event of administrative operations." } }, { "cert_id": "JISEC-CC-CRP-C0419", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "Hitachi Unified Storage 150 Microprogram0917/A", "expiration_date": "2019-01-01", "claim": "EAL2", "certification_date": "2013-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0419_it2406.html", "toe_japan_name": "Hitachi Unified Storage 150 Microprogram0917/A", "enhanced": { "product": "Hitachi Unified Storage 150 Microprogram", "toe_version": "0917/A", "product_type": "Storage System control software", "cc_version": "3.1 Release3", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0419_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0419_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0419_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a control program (software) operating in the disk array “Hitachi Unified Storage 150” that is a storage product. The TOE controls accesses to its storage areas from host computers connected to the disk array. The TOE does not have assumed threats. Security functions of TOE satisfy the assumed organizational security policy and are provided to customers. TOE security functionality Three kinds of main security functions of this TOE exist as follows. - Exclusive control of storage areaFunction to access control to storage area according to requests from host computer. - Account AuthenticationUser's login facility and control of access to each function of the TOE. - AuditAudit log function that records event of administrative operations." } }, { "cert_id": "JISEC-CC-CRP-C0417", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type I1.02m", "expiration_date": "2018-12-01", "claim": "EAL3", "revalidations": [ { "date": "2015-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0417_it3459_05.html" } ], "certification_date": "2013-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0417_it3459.html", "toe_japan_name": "imagio Security Card Type 91.02m", "enhanced": { "product": "imagio Security Card Type 9 (Japanese name) DataOverwriteSecurity Unit Type I (English name)", "toe_version": "1.02m", "product_type": "Software to overwrite data", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0417_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0417_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0417_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product(MFP). This product is available for the following MFPs; - RICOH MP C3503 - RICOH MP C3003 - Ricoh MP C3003 - Ricoh MP C3003G - Ricoh MP C3503 - Ricoh MP C3503G - Savin MP C3003 - Savin MP C3003G - Savin MP C3503 - Savin MP C3503G - Lanier MP C3003 - Lanier MP C3003G - Lanier MP C3503 - Lanier MP C3503G - nashuatec MP C3003 - nashuatec MP C3503 - Rex-Rotary MP C3003 - Rex-Rotary MP C3503 - Gestetner MP C3003 - Gestetner MP C3503 - infotec MP C3003 - infotec MP C3503 TOE security functionality Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0416", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type H 1.02x", "expiration_date": "2018-12-01", "claim": "EAL3", "revalidations": [ { "date": "2015-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0416_it3458_04.html" } ], "certification_date": "2013-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0416_it3458.html", "toe_japan_name": "imagio Security Card Type 71.02x", "enhanced": { "product": "imagio Security Card Type 7 (Japanese name) DataOverwriteSecurity Unit Type H (English name)", "toe_version": "1.02x", "product_type": "Software to overwrite data", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0416_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0416_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0416_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product(MFP). This product is available for the following MFPs; - RICOH MP C5503 - RICOH MP C4503 - RICOH MP C6003 - RICOH MP C5503A - RICOH MP C4503A - Ricoh MP C4503 - Ricoh MP C4503G - Ricoh MP C4503A - Ricoh MP C5503 - Ricoh MP C5503G - Ricoh MP C5503A - Ricoh MP C6003 - Ricoh MP C6003G - Savin MP C4503 - Savin MP C4503G - Savin MP C5503 - Savin MP C5503G - Savin MP C6003 - Savin MP C6003G - Lanier MP C4503 - Lanier MP C4503G - Lanier MP C5503 - Lanier MP C5503G - Lanier MP C6003 - Lanier MP C6003G - nashuatec MP C4503 - nashuatec MP C4503A - nashuatec MP C5503 - nashuatec MP C5503A - nashuatec MP C6003 - Rex-Rotary MP C4503 - Rex-Rotary MP C4503A - Rex-Rotary MP C5503 - Rex-Rotary MP C5503A - Rex-Rotary MP C6003 - Gestetner MP C4503 - Gestetner MP C4503A - Gestetner MP C5503 - Gestetner MP C5503A - Gestetner MP C6003 - infotec MP C4503 - infotec MP C4503A - infotec MP C5503 - infotec MP C5503A - infotec MP C6003 TOE security functionality Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0415", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "bizhub C754e / bizhub C654e PKI Card System Control SoftwareA2X00Y0-0100-G00-80pki", "expiration_date": "2018-12-01", "claim": "EAL3", "certification_date": "2013-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0415_it3462.html", "toe_japan_name": "bizhub C754e / bizhub C654e PKI Card System Control SoftwareA2X00Y0-0100-G00-80pki", "enhanced": { "product": "bizhub C754e / bizhub C654e PKI Card System Control Software", "toe_version": "A2X00Y0-0100-G00-80pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA,INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0415_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0415_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0415_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions.: - Encryption Print Function: The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function: The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function: The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function: The function to encrypt the image data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function: The function that deletes data area including the image data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function: The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0414", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C6502/C8002(Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) E-1.00", "expiration_date": "2017-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0414_it2424.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C6502/C8002 (Ricoh/Savin/Lanier/nashuatec/ Rex-Rotary/Gestetner/infotec)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0414_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0414_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0414_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0413", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-11-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C8002/C6502 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0413_it2423.html", "enhanced": { "product": "RICOH MP C8002/C6502", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0413_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0413_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0413_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0412", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA Loops LP30/e-STUDIO306LP MULTIFUNCTIONAL DIGITAL SYSTEMSSYS V1.0", "expiration_date": "2018-12-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0412_it3465.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA Loops LP30/e-STUDIO306LP MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0412_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit/ deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the SSL protocol when the TOE communicates with the various servers or client PC. - Data Encryption function Function to encrypt and decrypt the document data stored in the HDD of the TOE. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0411", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox D136 Copier/Printer Controller+PS ROM Ver. 1.200.6, IOT ROM Ver. 113.27.0, IIT ROM Ver. 13.1.0, ADF ROM Ver. 13.17.1", "expiration_date": "2018-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0411_it3451.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox D136 Copier/Printer", "toe_version": "Controller+PS ROM Ver. 1.200.6 IOT ROM Ver. 113.27.0 IIT ROM Ver. 13.1.0 ADF ROM Ver. 13.17.1", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0411_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0411_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0411_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, and scan. The TOE does not provide fax function. The TOE is assumed to be used at general office, from the control panel, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data Overwrite A function to overwrite and delete the document data in the internal HDD. - Hard Disk Data Encryption A function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0410", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox Color 560/570 Printer Controller ROM Ver. 1.208.1, IOT ROM Ver. 64.19.0, IIT ROM Ver. 6.16.1, ADF ROM Ver. 12.11.0", "expiration_date": "2018-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0410_it3450.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox Color 560/570 Printer", "toe_version": "Controller ROM Ver. 1.208.1 IOT ROM Ver. 64.19.0 IIT ROM Ver. 6.16.1 ADF ROM Ver. 12.11.0", "product_type": "Multi Function Device", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0410_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0410_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0410_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data Overwrite A function to overwrite and delete the document data in the internal HDD. - Hard Disk Data Encryption A function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0409", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 500/400 Series 2600.1 model 1.0 (Certification of this product has been revoked 2015-03)", "expiration_date": "2015-03-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0409_it3442.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 500/400 Series 2600.1 model 1.0 (Certification of this product has been revoked 2015-03)", "enhanced": { "product": "Canon imageRUNNER ADVANCE 500/400 Series 2600.1 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1 Release4", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, and I-Fax capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0408", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C4503/C5503 (Ricoh/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec) EA-1.00", "expiration_date": "2018-10-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0408_it2431.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C4503/C5503 (Ricoh/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "EA-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0408_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0408_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0408_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0407", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-09-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C5503/C4503 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0407_it2430.html", "enhanced": { "product": "RICOH MP C5503/C4503", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0407_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0407_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0407_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0406", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C4503/C4503G/C5503/C5503G /C6003G (Ricoh/Savin/Lanier), MP C4503A/C5503A (Ricoh /nashuatec/Rex-Rotary /Gestetner/infotec), MP C6003 (Ricoh/Savin /Lanier/nashuatec/Rex-Rotary /Gestetner/infotec) ES-1.00", "expiration_date": "2018-10-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0406_it2429.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C4503/C4503G/C5503/C5503G/C6003G (Ricoh/Savin/Lanier), MP C4503A/C5503A (Ricoh/nashuatec/Rex-Rotary/Gestetner/infotec), MP C6003 (Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec)", "toe_version": "ES-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0406_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0406_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0406_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0405", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-09-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C6003/C5503A/C4503A J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0405_it2428.html", "enhanced": { "product": "RICOH MP C6003/C5503A/C4503A", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0405_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0405_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0405_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0404", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "MP C3003/C3503 (Ricoh/Savin/Lanier/nashuatec /Rex-Rotary/Gestetner/infotec), MP C3003G/C3503G (Ricoh/Savin/Lanier) E-1.00", "expiration_date": "2018-09-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0404_it2427.html", "toe_japan_name": "-----", "enhanced": { "product": "MP C3003/C3503(Ricoh/Savin/Lanier/nashuatec/Rex-Rotary/Gestetner/infotec), MP C3003G/C3503G(Ricoh/Savin/Lanier)", "toe_version": "E-1.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0404_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0404_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0404_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0403", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-01-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-08-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP C3503/C3003 J-1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0403_it2426.html", "enhanced": { "product": "RICOH MP C3503/C3003", "toe_version": "J-1.00", "product_type": "Multi Function Product", "cc_version": "3.1 Release3", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0403_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0403_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0403_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0402", "supplier": "RISO KAGAKU CORPORATION", "toe_overseas_name": "RISO Security Package2.0", "expiration_date": "2018-09-01", "claim": "EAL3", "certification_date": "2013-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0402_it2437.html", "toe_japan_name": "RISO Security Package2.0", "enhanced": { "product": "Japanese name: RISO Security Package English name: RISO Security Package", "toe_version": "2.0", "product_type": "Data security option software for the Multi Function Printer", "cc_version": "3.1 Release3", "assurance_level": "EAL3", "vendor": "RISO KAGAKU CORPORATION", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is an optional software of data security for the Multi Function Printer (MFP) RISO KAGAKU CORPORATION offers. The software encrypts image data, including temporary image data, that are handled in Printer Function or Copy Function of the MFP when the image data are written into a Hard Disc Drive (HDD) in the MFP, decrypts the image data when they are read from the HDD, and overwrites random data not to reproduce the image data when the image data are deleted from the HDD. TOE security functionality This TOE provides the following security functions. - Encrypt and decrypt confidential information in HDD - Overwrite to erase the residual data - Overwrite to erase the data all at once" } }, { "cert_id": "JISEC-CC-CRP-C0399", "supplier": "TF PAYMENT SERVICE CO.,LTD.", "toe_overseas_name": "-----", "expiration_date": "2018-09-01", "claim": "EAL1+ ASE_SPD.1, ASE_OBJ.2, ASE_REQ.2", "certification_date": "2013-08-01", "toe_overseas_link": null, "toe_japan_name": "Cloud-based payment system Thincacloud core modulesThincacloud Payment Server 1.0.0, Thincacloud Payment Client Windows CE Edition 1.0.0, Thinca Payment App for Osaifu-keitai 1.0.0, Thinca Payment App for NFC 1.0.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0399_it2422.html", "enhanced": { "product": "Cloud-based payment system Thincacloud core modules", "toe_version": "Thincacloud Payment Server 1.0.0 Thincacloud Payment Client Windows CE Edition 1.0.0 Thinca Payment App for Osaifu-keitai 1.0.0 Thinca Payment App for NFC 1.0.0", "product_type": "Cloud-based e-money payment system core module", "cc_version": "3.1 Release3", "assurance_level": "EAL1 Augmented with ASE_SPD.1, ASE_OBJ.2, ASE_REQ.2", "vendor": "TF PAYMENT SERVICE CO.,LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the core modules of the system which enables to provide cloud-based payment processing functions of prepaid electronic money for the FeliCa IC chip. Those functions are used to be built separately for each store. The system is scheduled to be composed of multiple applications built on top of the common platform. TOE scope is a single application for nanaco payment service and the common platform. TOE security functionality The TOE provides the following security functions. - FeliCa IC chip identification and authentication function Ability to verify that the FeliCa IC chip used for the electronic money payment is legitimate. - Terminal validation Ability to verify that the terminal to connect to the service is legitimate. - Payment data protection Ability to protect against exposing and tampering payment data to be transferred to the FeliCa IC chip. - Audit function Ability to record the operating status of the security functions of the server." } }, { "cert_id": "JISEC-CC-CRP-C0398", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "bizhub 754 / bizhub 654 / ineo 754 / ineo 654 / N906 / N905 / N901 / N900 Control Software A55V0Y0-0100-G00-10", "expiration_date": "2018-08-01", "claim": "EAL3", "revalidations": [ { "date": "2014-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0398_it3440_01.html" } ], "certification_date": "2013-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0398_it3440.html", "toe_japan_name": "bizhub 754 / bizhub 654 / ineo 754 / ineo 654 Zentai Seigyo SoftwareA55V0Y0-0100-G00-10", "enhanced": { "product": "Japanese : bizhub 754 / bizhub 654 / ineo 754 / ineo 654 Zentai Seigyo Software English : bizhub 754 / bizhub 654 / ineo 754 / ineo 654 Control Software", "toe_version": "A55V0Y0-0100-G00-10", "product_type": "Control Software for digital MFP", "cc_version": "3.1 Release4", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0398_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0398_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0398_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Identification / Authentication and Access Control Function The function that identifies/authenticates a user and controls the access to highly confidential image data stored in MFP. - Audit Log Function The function that records the audit log contributing to detect the infringement of Identification/Authentication and Access Control Function. - HDD Encryption Function The function to encrypt the image data written in HDD by using the function of ASIC. - Overwrite Deletion Function The function that deletes the image data area no longer required of HDD by deletion method compliant with various overwrite deletion standards. Possible to overwrite data area including the image data of HDD to delete depends on the operation. - Safety Transmitting and Receiving Function of Image file The function to encrypt image data by S/MIME when transmitting the image data by e-mail, and to use safety communication path by SSL/TLS when transmitting and receiving it by other way. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0397", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C9200 PRO Series / C7200 Series 2600.1 model (EX)1.1", "expiration_date": "2018-08-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0397_it3447.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE C9200 PRO Series / C7200 Series 2600.1 model (EX)", "toe_version": "1.1", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0397_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0397_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0397_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0396", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "bizhub C554e / bizhub C454e / bizhub C364e / bizhub C284e / bizhub C224e PKI Card System Control SoftwareA5C10Y0-0100-G00-17pki", "expiration_date": "2018-08-01", "claim": "EAL3", "certification_date": "2013-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0396_it2433.html", "toe_japan_name": "bizhub C554e / bizhub C454e / bizhub C364e / bizhub C284e / bizhub C224e PKI Card System Control SoftwareA5C10Y0-0100-G00-17pki", "enhanced": { "product": "bizhub C554e / bizhub C454e / bizhub C364e / bizhub C284e / bizhub C224e PKI Card System Control Software", "toe_version": "A5C10Y0-0100-G00-17pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0396_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0396_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0396_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the image data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes data area including the image data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0395", "supplier": "Canon Inc.", "toe_overseas_name": "-----", "expiration_date": "2018-08-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-07-01", "toe_overseas_link": null, "toe_japan_name": "Canon imageRUNNER ADVANCE C9200 PRO Series / C7200 Series 2600.1 model (JP)1.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0395_it2397.html", "enhanced": { "product": "Canon imageRUNNER ADVANCE C9200 PRO Series / C7200 Series 2600.1 model (JP)", "toe_version": "1.1", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0394", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C2200 Series 2600.1 model1.1", "expiration_date": "2018-08-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0394_it2396.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C2200 Series 2600.1 model1.1", "enhanced": { "product": "Canon imageRUNNER ADVANCE C2200 Series 2600.1 model", "toe_version": "1.1", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0394_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0394_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0394_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0393", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 6200 Series 2600.1 model (EX)1.0", "expiration_date": "2018-07-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0393_it3449.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE 6200 Series 2600.1 model (EX)", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0393_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0393_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0393_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0392", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 8200 Series 2600.1 model (EX)1.0", "expiration_date": "2018-07-01", "claim": "EAL3+ALC_FLR.2 PP", "certification_date": "2013-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0392_it3448.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon imageRUNNER ADVANCE 8200 Series 2600.1 model (EX)", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0392_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0392_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0392_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0391", "supplier": "KONICA MINOLTA, INC.", "toe_overseas_name": "bizhub 754 / bizhub 654 PKI Card System Control SoftwareA55V0Y0-0100-G00-10pki", "expiration_date": "2018-07-01", "claim": "EAL3", "certification_date": "2013-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0391_it3441.html", "toe_japan_name": "bizhub 754 / bizhub 654 PKI Card System Control SoftwareA55V0Y0-0100-G00-10pki", "enhanced": { "product": "bizhub 754 / bizhub 654 PKI Card System Control Software", "toe_version": "A55V0Y0-0100-G00-10pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0391_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0391_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0391_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the image data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes data area including the image data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0390", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh MP 2001/2501, Savin MP 2501, Lanier MP 2001/2501, nashuatec MP 2001/2501, Rex-Rotary MP 2001/2501, Gestetner MP 2001/2501, infotec MP 2001/2501 all of the above with Fax function and HDD unit - Software: System/Copy 1.01, Network Support 12.38, Fax 01.00.00, RemoteFax 01.00.00, NetworkDocBox 1.00, Web Support 1.00.2, Web Uapl 1.00, animation 1.00, Scanner 01.02, Printer 1.00, PCL 1.01, PCL Font 1.13, Data Erase Onb 1.03m, GWFCU3.8-3(WW) 01.00.00, Engine 1.03:08, OpePanel 1.02 - Hardware: Ic Key 01020714, Ic Hdd 3330", "expiration_date": "2018-06-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0390_it2412.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh MP 2001/2501, Savin MP 2501, Lanier MP 2001/2501, nashuatec MP 2001/2501, Rex-Rotary MP 2001/2501, Gestetner MP 2001/2501, infotec MP 2001/2501 all of the above with Fax function and HDD unit", "toe_version": "-Software: System/Copy 1.01 Network Support 12.38 Fax 01.00.00 RemoteFax 01.00.00 NetworkDocBox 1.00 Web Support 1.00.2 Web Uapl 1.00 animation 1.00 Scanner 01.02 Printer 1.00 PCL 1.01 PCL Font 1.13 Data Erase Onb 1.03m GWFCU3.8-3(WW) 01.00.00 Engine 1.03:08 OpePanel 1.02 -Hardware: Ic Key 01020714 Ic Hdd 3330", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0390_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0390_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0390_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0389", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2018-06-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-05-01", "toe_overseas_link": null, "toe_japan_name": "RICOH MP 1601/1301 all of the above with Fax function and HDD unit - Software: System/Copy 1.01, Network Support 12.38, Fax 01.00.00, RemoteFax 01.00.00, NetworkDocBox 1.00, Web Support 1.00.2, Web Uapl 1.00, animation 1.00, Scanner 01.02, Printer 1.00, RPCS 3.12.28, RPCS Font 1.00, Data Erase Onb 1.03m, GWFCU3.8-3(WW) 01.00.00, Engine 1.03:08, OpePanel 1.02 - Hardware: Ic Key 01020714, Ic Hdd 3330", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0389_it2411.html", "enhanced": { "product": "RICOH MP 1601/1301 all of the above with Fax function and HDD unit", "toe_version": "-Software: System/Copy 1.01 Network Support 12.38 Fax 01.00.00 RemoteFax 01.00.00 NetworkDocBox 1.00 Web Support 1.00.2 Web Uapl 1.00 animation 1.00 Scanner 01.02 Printer 1.00 RPCS 3.12.28 RPCS Font 1.00 Data Erase Onb 1.03m GWFCU3.8-3(WW) 01.00.00 Engine 1.03:08 OpePanel 1.02 -Hardware: Ic Key 01020714 Ic Hdd 3330", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0389_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0389_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0389_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0388", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO 2555C/3055C/3555C/ 4555C/5055C/2555CSE/3055CSE/3555CSE/ 4555CSE/5055CSE MULTIFUNCTIONAL DIGITAL SYSTEMS SYS V1.0", "expiration_date": "2018-05-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0388_it2432.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2555C/3055C/ 3555C/4555C/5055C/2555CSE/3055CSE/ 3555CSE/4555CSE/5055CSE MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0388_erpt2.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0388_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0388_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit/ deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the SSL protocol when the TOE communicates with the various servers or client PC. - Data Encryption function Function to encrypt and decrypt the document data stored in the HDD of the TOE. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0387", "supplier": "Canon Inc.", "toe_overseas_name": "-----", "expiration_date": "2018-05-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-04-01", "toe_overseas_link": null, "toe_japan_name": "Canon imageRUNNER ADVANCE 6200 Series 2600.1 model (JP) 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0387_it2399.html", "enhanced": { "product": "Canon imageRUNNER ADVANCE 6200 Series 2600.1 model (JP)", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0386", "supplier": "Canon Inc.", "toe_overseas_name": "-----", "expiration_date": "2018-05-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2013-04-01", "toe_overseas_link": null, "toe_japan_name": "Canon imageRUNNER ADVANCE 8200 Series 2600.1 model (JP) 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0386_it2398.html", "enhanced": { "product": "Canon imageRUNNER ADVANCE 8200 Series 2600.1 model (JP)", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0383", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR37 C.11", "expiration_date": "2018-03-01", "claim": "EAL3", "revalidations": [ { "date": "2014-02", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0383_it2421_01.html" } ], "certification_date": "2013-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0383_it2421.html", "toe_japan_name": "MX-FR37 C.10", "enhanced": { "product": "MX-FR37", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0383_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0383_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0383_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an \"MFD\"). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the storages in the MFD such as the HDD, - the cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - the data erasure function, which automatically overwrites to erase image data no longer in use in the HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - the authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - the confidential file function, which provides image data filed by users with password protection, and - the network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0382", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP 301, Savin MP 301, Lanier MP 301, nashuatec MP 301, Rex-Rotary MP 301, Gestetner MP 301, infotec MP 301 all of the above with Facsimile Function / Hard Disk Drive - Software: System/Copy 1.08, Network Support 12.25.3, Fax 03.00.00, RemoteFax 01.03.00, NetworkDocBox 1.00, Web Support 1.04, Web Uapl 1.02, animation 2.00, Scanner 01.05, Printer 1.05, PCL 1.06, PCL Font 1.13, Data Erase Onb 1.03m, GWFCU3.5-7(WW) 03.00.00, Engine 1.02:05, OpePanel 1.16 - Hardware: Ic Key 01020714, Ic Hdd 01", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0382_it2402.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP 301, Savin MP 301, Lanier MP 301, nashuatec MP 301, Rex-Rotary MP 301, Gestetner MP 301, infotec MP 301 all of the above with Facsimile Function / Hard Disk Drive", "toe_version": "-Software: System/Copy 1.08 Network Support 12.25.3 Fax 03.00.00 RemoteFax 01.03.00 NetworkDocBox 1.00 Web Support 1.04 Web Uapl 1.02 animation 2.00 Scanner 01.05 Printer 1.05 PCL 1.06 PCL Font 1.13 Data Erase Onb 1.03m GWFCU3.5-7(WW) 03.00.00 Engine 1.02:05 OpePanel 1.16 -Hardware: Ic Key 01020714 Ic Hdd 01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0382_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0382_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0382_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0381", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C305, Savin MP C305, Lanier MP C305, nashuatec MP C305, Rex-Rotary MP C305, Gestetner MP C305, infotec MP C305 all of the above with Facsimile Function / Hard Disk Drive - Software: System/Copy 1.08, Network Support 12.25.3, Fax 03.00.00, RemoteFax 01.03.00, NetworkDocBox 1.00, Web Support 1.04, Web Uapl 1.02, animation 1.00, Scanner 01.05, Printer 1.05, PCL 1.07, PCL Font 1.13, Data Erase Onb 1.03m, GWFCU3.5-5(WW) 03.00.00, Engine 1.08:02, OpePanel 1.16 - Hardware: Ic Key 01020714, Ic Hdd 01", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0381_it2401.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C305, Savin MP C305, Lanier MP C305, nashuatec MP C305, Rex-Rotary MP C305, Gestetner MP C305, infotec MP C305 all of the above with Facsimile Function / Hard Disk Drive", "toe_version": "-Software: System/Copy 1.08 Network Support 12.25.3 Fax 03.00.00 RemoteFax 01.03.00 NetworkDocBox 1.00 Web Support 1.04 Web Uapl 1.02 animation 1.00 Scanner 01.05 Printer 1.05 PCL 1.07 PCL Font 1.13 Data Erase Onb 1.03m GWFCU3.5-5(WW) 03.00.00 Engine 1.08:02 OpePanel 1.16 -Hardware: Ic Key 01020714 Ic Hdd 01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0381_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0381_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0381_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0379", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C554 / bizhub C454 / bizhub C364 / bizhub C284 / bizhub C224 PKI Card System Control Software A2XK0Y0-0100-G00-56pki", "expiration_date": "2017-12-01", "claim": "EAL3", "certification_date": "2012-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0379_it1387.html", "toe_japan_name": "bizhub C554 / bizhub C454 / bizhub C364 / bizhub C284 / bizhub C224 PKI Card System Control Software A2XK0Y0-0100-G00-56pki", "enhanced": { "product": "bizhub C554 / bizhub C454 / bizhub C364 / bizhub C284 / bizhub C224 PKI Card System Control Software", "toe_version": "A2XK0Y0-0100-G00-56pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0379_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0379_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0379_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0378", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C554 / bizhub C454 / bizhub C364 / bizhub C284 / bizhub C224 / bizhub C7828 / bizhub C7822 / ineo+ 554 / ineo+ 454 / ineo+ 364 / ineo+ 284 / ineo+ 224 / D410 / D411 / D412 / D415 / D416 / D417 / D710 / D711 / D715 / D716 Control Software A2XK0Y0-0100-G00-56", "expiration_date": "2017-12-01", "claim": "EAL3", "revalidations": [ { "date": "2013-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0378_it1386_01.html" } ], "certification_date": "2012-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0378_it1386.html", "toe_japan_name": "bizhub C554 / bizhub C454 / bizhub C364 / bizhub C284 / bizhub C224 / bizhub C7828 / bizhub C7822 / ineo+ 554 / ineo+ 454 / ineo+ 364 / ineo+ 284 / ineo+ 224 Zentai Seigyo Software A2XK0Y0-0100-G00-56", "enhanced": { "product": "Japanese : bizhub C554 / bizhub C454 / bizhub C364 / bizhub C284 / bizhub C224 / bizhub C7828 / bizhub C7822 / ineo+ 554 / ineo+ 454 / ineo+ 364 / ineo+ 284 / ineo+ 224 Zentai Seigyo Software English : bizhub C554 / bizhub C454 / bizhub C364 / bizhub C284 / bizhub C224 / bizhub C7828 / bizhub C7822 / ineo+ 554 / ineo+ 454 / ineo+ 364 / ineo+ 284 / ineo+ 224 Control Software", "toe_version": "A2XK0Y0-0100-G00-56", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0378_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0378_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0378_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Identification / Authentication and Access Control Function The function that identifies/authenticates a user and controls the access to highly confidential image data stored in MFP. - Audit Log Function The function to record the audit log contributing to detect the infringement of Identification/Authentication and Access Control Function. - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - Overwrite Deletion Function The function that deletes the data no longer required of HDD by deletion method compliant with various overwrite deletion standards. Possible to overwrite all to delete depends on the operation. - Safety Transmitting and Receiving Function of Image file The function to encrypt image data by S/MIME when transmitting the image data by e-mail, and to use safety communication path by SSL/TLS when transmitting and receiving it by other way. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0377", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C5200 Series 2600.1 model 1.0 (Certification of this product has been revoked 2015-03)", "expiration_date": "2015-03-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0377_it1378.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C5200 Series 2600.1 model 1.0 (Certification of this product has been revoked 2015-03)", "enhanced": { "product": "Canon imageRUNNER ADVANCE C5200 Series 2600.1 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0376", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e- STUDIO2050C/2550C MULTIFUNCTIONAL DIGITAL SYSTEMS SYS V1.0", "expiration_date": "2017-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0376_it2409.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2050C/2550C MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0376_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0376_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0376_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit/ deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the SSL protocol when the TOE communicates with the various servers or client PC. - Data Encryption function Function to encrypt and decrypt the document data stored in the HDD of the TOE. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0375", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C754 / bizhub C654 PKI Card System Control Software A2X00Y0-0100-G00-53pki", "expiration_date": "2017-11-01", "claim": "EAL3", "certification_date": "2012-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0375_it1385.html", "toe_japan_name": "bizhub C754 / bizhub C654 PKI Card System Control Software A2X00Y0-0100-G00-53pki", "enhanced": { "product": "bizhub C754 / bizhub C654 PKI Card System Control Software", "toe_version": "A2X00Y0-0100-G00-53pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0375_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0375_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0375_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0374", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C754 / bizhub C654 / ineo+ 754 / ineo+ 654 Control Software A2X00Y0-0100-G00-53", "expiration_date": "2017-11-01", "claim": "EAL3", "certification_date": "2012-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0374_it1384.html", "toe_japan_name": "bizhub C754 / bizhub C654 / ineo+ 754 / ineo+ 654 Zentai Seigyo Software A2X00Y0-0100-G00-53", "enhanced": { "product": "Japanese:bizhub C754 / bizhub C654 / ineo+ 754 / ineo+ 654 Zentai Seigyo Software English:bizhub C754 / bizhub C654 / ineo+ 754 / ineo+ 654 Control Software", "toe_version": "A2X00Y0-0100-G00-53", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "report_link": "https://www.ipa.go.jp/en/security/c0374_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0374_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0374_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Identification / Authentication and Access Control Function The function that identifies/authenticates a user and controls the access to highly confidential image data stored in MFP. - Audit Log Function The function to record the audit log contributing to detect the infringement of Identification/Authentication and Access Control Function. - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - Overwrite Deletion Function The function that deletes the data no longer required of HDD by deletion method compliant with various overwrite deletion standards. Possible to overwrite all to delete depends on the operation. - Safety Transmitting and Receiving Function of Image file The function to encrypt image data by S/MIME when transmitting the image data by e-mail, and to use safety communication path by SSL/TLS when transmitting and receiving it by other way. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0373", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP 6002/7502/9002, Gestetner MP 6002/7502/9002, Lanier MP 6002/7502/9002, nashuatec MP 6002/7502/9002, Rex-Rotary MP 6002/7502/9002, infotec MP 6002/7502/9002, Savin MP 6002/7502/9002 all of above with Printer/Scanner/Facsimile Functions - Software: System/Copy 1.00.3, Network Support 11.90, Fax 01.00.01, RemoteFax 01.00.00, NetworkDocBox 1.00.1, Web Support 1.00, Web Uapl 1.00, animation 1.00, Scanner 01.02, Printer 1.00, PCL 1.01, PCL Font 1.06, Data Erase Onb 1.01x, GWFCU3.5-3(WW) 01.00.00, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0373_it1377.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP 6002/7502/9002, Gestetner MP 6002/7502/9002, Lanier MP 6002/7502/9002, nashuatec MP 6002/7502/9002, Rex-Rotary MP 6002/7502/9002, infotec MP 6002/7502/9002, Savin MP 6002/7502/9002 all of above with Printer/Scanner/Facsimile Functions", "toe_version": "-Software: System/Copy 1.00.3 Network Support 11.90 Fax 01.00.01 RemoteFax 01.00.00 NetworkDocBox 1.00.1 Web Support 1.00 Web Uapl 1.00 animation 1.00 Scanner 01.02 Printer 1.00 PCL 1.01 PCL Font 1.06 Data Erase Onb 1.01x GWFCU3.5-3(WW) 01.00.00 Engine 1.00:01 OpePanel 1.01 LANG0 1.01 LANG1 1.01 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0373_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0373_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0373_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0372", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-10-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP 9002/9002T/7502/6002/6002GP all of above with Printer/Scanner/Facsimile Functions - Software: System/Copy 1.00.3, Network Support 11.90, Fax 01.00.01, RemoteFax 01.00.00, NetworkDocBox 1.00.1, Web Support 1.00, Web Uapl 1.00, animation 1.00, Scanner 01.02, Printer 1.00, RPCS 3.12.27, RPCS Font 1.03, Data Erase Onb 1.01x, GWFCU3.5-3(WW) 01.00.00, Engine 1.00:01, OpePanel 1.01, LANG0 1.01, LANG1 1.01 - Hardware: Ic Key 01020700, Ic Ctlr 03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0372_it1376.html", "enhanced": { "product": "Ricoh imagio MP 9002/9002T/7502/6002/6002GP all of above with Printer/Scanner/Facsimile Functions", "toe_version": "-Software: System/Copy 1.00.3 Network Support 11.90 Fax 01.00.01 RemoteFax 01.00.00 NetworkDocBox 1.00.1 Web Support 1.00 Web Uapl 1.00 animation 1.00 Scanner 01.02 Printer 1.00 RPCS 3.12.27 RPCS Font 1.03 Data Erase Onb 1.01x GWFCU3.5-3(WW) 01.00.00 Engine 1.00:01 OpePanel 1.01 LANG0 1.01 LANG1 1.01 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0372_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0372_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0372_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0371", "supplier": "Microsoft Corporation", "toe_overseas_name": "Microsoft SQL Server 2012 Database Engine Enterprise Edition x64 (English) 11.0.2100.60", "expiration_date": "2017-10-01", "claim": "EAL2", "certification_date": "2012-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0371_it1383.html", "toe_japan_name": "-----", "enhanced": { "product": "Microsoft SQL Server 2012 Database Engine Enterprise Edition x64 (English)", "toe_version": "11.0.2100.60", "product_type": "Database Management System (DBMS)", "assurance_level": "EAL2", "vendor": "Microsoft Corporation", "evaluation_facility": "TワV Informationstechnik GmbH, Evaluation Body for IT-Security", "report_link": "https://www.ipa.go.jp/en/security/c0371_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0371_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0371_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the database engine of SQL Server 2012. SQL Server is a Database Management System (DBMS). The TOE has been developed as the core module of the DBMS to store and manage data in a secure way. TOE security functions This TOE provides the following security functionality: - The Access Control function of the TOE controls the access of users to user and metadata stored in the TOE. - The Security Audit function of the TOE produces log files about all security relevant events. - The Security Management function allows authorized administrators to manage the behavior of the security functionality of the TOE. - The Identification and Authentication function of the TOE is able to identify and authenticate users." } }, { "cert_id": "JISEC-CC-CRP-C0370", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR33 C.10", "expiration_date": "2017-10-01", "claim": "EAL3", "certification_date": "2012-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0370_it2395.html", "toe_japan_name": "MX-FR33 C.10", "enhanced": { "product": "MX-FR33", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0370_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0370_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0370_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an \"MFD\"). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD or the Flash memory in the MFD, - the cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - the data erasure function, which automatically overwrites to erase image data no longer in use in storages such as HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - the authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - the confidential file function, which provides image data filed by users with password protection, and - the network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0369", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR30 C.10", "expiration_date": "2017-10-01", "claim": "EAL3", "certification_date": "2012-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0369_it1390.html", "toe_japan_name": "MX-FR30 C.10", "enhanced": { "product": "MX-FR30", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0369_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0369_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0369_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an \"MFD\"). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD or the Flash memory in the MFD, - the cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - the data erasure function, which automatically overwrites to erase image data no longer in use in storages such as HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - the authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - the confidential file function, which provides image data filed by users with password protection, and - the network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0368", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRESS 1250 / bizhub PRESS 1250P / bizhub PRESS 1052 / bizhub PRO 951 / ineo 1250 / ineo 1052 / ineo 951 control software Image Control Program ( Image ControlI1 ) : A4EU0Y0-00I1-G00-15 IC Control Program ( IC ControlP ) : A4E-00P1-G00-15", "expiration_date": "2017-09-01", "claim": "EAL3", "certification_date": "2012-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0368_it2391.html", "toe_japan_name": "bizhub PRESS 1250 / bizhub PRESS 1250P / bizhub PRESS 1052 / bizhub PRO 951 / ineo 1250 / ineo 1052 / ineo 951 control Software Image Control Program ( Image ControlI1 ) : A4EU0Y0-00I1-G00-15 IC Control Program ( IC ControlP ) : A4E-00P1-G00-15", "enhanced": { "product": "Japanese:bizhub PRESS 1250 / bizhub PRESS 1250P / bizhub PRESS 1052 / bizhub PRO 951 / ineo 1250 / ineo 1052 / ineo 951 control Software English:bizhub PRESS 1250 / bizhub PRESS 1250P / bizhub PRESS 1052 / bizhub PRO 951 / ineo 1250 / ineo 1052 / ineo 951 control software", "toe_version": "Image Control Program ( Image ControlI1 ) : A4EU0Y0-00I1-G00-15 IC Control Program ( IC ControlP ) : A4E-00P1-G00-15", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "cert_link": "https://www.ipa.go.jp/en/security/c0368_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE, that is installed with digital MFP manufactured by Konica Minolta Business Technologies, Inc., is a software product that provide the function of copier , printer and scanner. It prevents document data in HDD from disclosing during the abuse of functions such as copier ,printer and scanner. TOE security functionality This TOE provides the following security functions. - Identification and authentication function - Access control function - Audit function - Management function - CE function - Test function of HDD lock system" } }, { "cert_id": "JISEC-CC-CRP-C0367", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C300/C300SR/C400/C400SR, Savin C230/C230SR/C240/C240SR, Lanier LD130C/LD130CSR/LD140C/LD140CSR, Lanier MP C300/C300SR/C400/C400SR, nashuatec MP C300/C300SR/C400/C400SR, Rex-Rotary MP C300/C300SR/C400/C400SR, Gestetner MP C300/C300SR/C400/C400SR, infotec MP C300/C300SR/C400/C400SR all of above with Facsimile Function - Software: System/Copy 2.05, Network Support 10.57, Fax 02.00.00, RemoteFax 01.00.00, NetworkDocBox 1.04, Web Support 1.02, Web Uapl 1.01, animation 1.00, Scanner 01.04, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0367_it1382.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C300/C300SR/C400/C400SR, Savin C230/C230SR/C240/C240SR, Lanier LD130C/LD130CSR/LD140C/LD140CSR, Lanier MP C300/C300SR/C400/C400SR, nashuatec MP C300/C300SR/C400/C400SR, Rex-Rotary MP C300/C300SR/C400/C400SR, Gestetner MP C300/C300SR/C400/C400SR, infotec MP C300/C300SR/C400/C400SR all of above with Facsimile Function", "toe_version": "-Software: System/Copy 2.05 Network Support 10.57 Fax 02.00.00 RemoteFax 01.00.00 NetworkDocBox 1.04 Web Support 1.02 Web Uapl 1.01 animation 1.00 Scanner 01.04 Printer 1.01 PCL 1.07 OptionPCLFont 1.02 Data Erase Std 1.01x GWFCU3-23(WW) 03.00.00 Engine 1.02:02 OpePanel 1.03 LANG0 1.03 LANG1 1.03 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0367_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0367_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0367_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0366", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio SP 5200S/5210SF/5210SR, Savin SP 5200S/5210SF/5210SR, Lanier SP 5200S/5210SF/5210SR, nashuatec SP 5200S/5210SF/5210SR, Rex-Rotary SP 5200S/5210SF/5210SR, Gestetner SP 5200S/5210SF/5210SR, Ricoh Aficio SP 5200SG/5210SFG/5210SRG, Savin SP 5200SG/5210SFG/5210SRG, Lanier SP 5200SG/5210SFG/5210SRG all of above with Facsimile Function - Software: System/Copy 2.05, Network Support 10.65, Fax 03.00.00, RemoteFax 01.00.00, NetworkDocBox 1.04, Web Support 1.03, Web Uapl 1.02, animation 1.01, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "revalidations": [ { "date": "2014-11", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0366_it1381_01.html" } ], "certification_date": "2012-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0366_it1381.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio SP 5200S/5210SF/5210SR, Savin SP 5200S/5210SF/5210SR, Lanier SP 5200S/5210SF/5210SR, nashuatec SP 5200S/5210SF/5210SR, Rex-Rotary SP 5200S/5210SF/5210SR, Gestetner SP 5200S/5210SF/5210SR all of above with Facsimile Function", "toe_version": "-Software: System/Copy 2.02 Network Support 10.63 Fax 02.00.00 RemoteFax 01.00.00 NetworkDocBox 1.04 Web Support 1.02 Web Uapl 1.02 animation 1.01 Scanner 01.03 Printer 1.02.1 PCL 1.02 PCL Font 1.05 Data Erase Std 1.01m GWFCU3-24(WW) 02.00.00 Engine A2.0:20 Engine(Scanner) 1.01:00 OpePanel 1.02 LANG0 1.02 LANG1 1.02 -Hardware: Ic Key 01020714 Ic Hdd 01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1™-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "ECSEC Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0366_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0366_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0366_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0365", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-IV C2265/C2263(SSD Model)Series Controller Software for Asia Pacific Controller ROM Ver. 1.111.4", "expiration_date": "2017-08-01", "claim": "EAL3", "certification_date": "2012-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0365_it2405.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-IV C2265/C2263(SSD Model) Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.111.4", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0365_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0365_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0365_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - SSD Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security Note that the TOE does not provide the data overwrite function for SSD." } }, { "cert_id": "JISEC-CC-CRP-C0364", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-IV 3065/3060/2060 (SSD Model)Series Controller Software for Asia Pacific Controller ROM Ver. 1.120.13", "expiration_date": "2017-08-01", "claim": "EAL3", "certification_date": "2012-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0364_it2404.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-IV 3065/3060/2060 (SSD Model) Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.120.13", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0364_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0364_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0364_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - SSD Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security Note that the TOE does not provide the data overwrite function for SSD." } }, { "cert_id": "JISEC-CC-CRP-C0363", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-08-01", "claim": "EAL3", "certification_date": "2012-07-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-IV 3060/2060(SSD Model) Series Controller Software Controller ROM Ver. 1.0.13", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0363_it2403.html", "enhanced": { "product": "Fuji Xerox DocuCentre-IV 3060/2060(SSD Model) Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.13", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0363_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0363_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0363_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - SSD Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security Note that the TOE does not provide the data overwrite function for SSD." } }, { "cert_id": "JISEC-CC-CRP-C0362", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox D110/D125 Copier/Printer Controller+PS ROM Ver. 1.201.1, IOT ROM Ver. 83.25.0, IIT ROM Ver. 9.8.0, ADF ROM Ver. 13.10.0", "expiration_date": "2017-08-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0362_it1380.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox D110/D125 Copier/Printer", "toe_version": "Controller+PS ROM Ver. 1.201.1 IOT ROM Ver. 83.25.0 IIT ROM Ver. 9.8.0 ADF ROM Ver. 13.10.0", "product_type": "Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0362_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0362_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0362_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, and scan. The TOE does not provide fax function. The TOE is assumed to be used at general office, from the control panel, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data Overwrite A function to overwrite and delete the document data in the internal HDD. - Hard Disk Data Encryption A function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0361", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox D95 Copier/Printer Controller+PS ROM Ver. 1.201.1, IOT ROM Ver. 83.25.0, IIT ROM Ver. 9.8.0, ADF ROM Ver. 13.10.0", "expiration_date": "2017-08-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0361_it1379.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox D95 Copier/Printer", "toe_version": "Controller+PS ROM Ver. 1.201.1 IOT ROM Ver. 83.25.0 IIT ROM Ver. 9.8.0 ADF ROM Ver. 13.10.0", "product_type": "Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0361_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0361_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0361_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, and scan. The TOE does not provide fax function. The TOE is assumed to be used at general office, from the control panel, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data Overwrite A function to overwrite and delete the document data in the internal HDD. - Hard Disk Data Encryption A function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0360", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-08-01", "claim": "EAL3", "certification_date": "2012-07-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-IV C2263(SSD Model) Series Controller Software Controller ROM Ver. 1.1.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0360_it2394.html", "enhanced": { "product": "Fuji Xerox DocuCentre-IV C2263(SSD Model) Series Controller Software", "toe_version": "Controller ROM Ver. 1.1.1", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0360_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0360_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0360_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - SSD Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security Note that the TOE does not provide the data overwrite function for SSD." } }, { "cert_id": "JISEC-CC-CRP-C0359", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C3373/C2275 DocuCentre-IV C5575/C4475/C3375/C3373(SSD Model) Series Controller Software for Asia Pacific Controller ROM Ver. 1.102.7", "expiration_date": "2017-08-01", "claim": "EAL3", "certification_date": "2012-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0359_it2393.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C3373/C2275 DocuCentre-IV C5575/C4475/C3375/C3373(SSD Model) Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.102.7", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0359_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0359_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0359_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - SSD Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security Note that the TOE does not provide the data overwrite function for SSD." } }, { "cert_id": "JISEC-CC-CRP-C0358", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-08-01", "claim": "EAL3", "certification_date": "2012-07-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C2275 DocuCentre-IV C5575/C4475/C3375/C2275(SSD Model) Series Controller Software Controller ROM Ver. 1.1.7", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0358_it2392.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C2275 DocuCentre-IV C5575/C4475/C3375/C2275(SSD Model) Series Controller Software", "toe_version": "Controller ROM Ver. 1.1.7", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0358_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0358_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0358_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - SSD Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security Note that the TOE does not provide the data overwrite function for SSD." } }, { "cert_id": "JISEC-CC-CRP-C0357", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C4502/C4502G/C5502/C5502G, Savin MP C4502/C4502G/C5502/C5502G, Lanier MP C4502/C4502G/C5502/C5502G, nashuatec MP C4502/C5502, Rex-Rotary MP C4502/C5502, Gestetner MP C4502/C5502, infotec MP C4502/C5502 all of above with Facsimile Function - Software: System/Copy 1.05.4, Network Support 11.77, Fax 02.00.00, RemoteFax 02.00.00, NetworkDocBox 1.04, Web Support 1.07, Web Uapl 1.03, animation 1.00, Scanner 01.09, Printer 1.05.1, PCL 1.07, PCL Font 1.06, Data Erase Onb 1.01x, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0357_it1375.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C4502/C4502G/C5502/C5502G, Savin MP C4502/C4502G/C5502/C5502G, Lanier MP C4502/C4502G/C5502/C5502G, nashuatec MP C4502/C5502, Rex-Rotary MP C4502/C5502, Gestetner MP C4502/C5502, infotec MP C4502/C5502 all of above with Facsimile Function", "toe_version": "-Software: System/Copy 1.05.4 Network Support 11.77 Fax 02.00.00 RemoteFax 02.00.00 NetworkDocBox 1.04 Web Support 1.07 Web Uapl 1.03 animation 1.00 Scanner 01.09 Printer 1.05.1 PCL 1.07 PCL Font 1.06 Data Erase Onb 1.01x GWFCU3.5-4(WW) 01.00.04 Engine 0.16:04 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0357_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0357_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0357_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0356", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-06-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C5002 SP/C5002 SPF/C4002 SP/C4002 SPF all of above with Facsimile Function - Software: System/Copy 1.05.4, Network Support 11.77, Fax 02.00.00, RemoteFax 02.00.00, NetworkDocBox 1.04, Web Support 1.07, Web Uapl 1.03, animation 1.00, Scanner 01.09, Printer 1.05.1, RPCS 3.12.23, RPCS Font 1.03, Data Erase Onb 1.01x, GWFCU3.5-4(WW) 01.00.04, Engine 0.16:04, OpePanel 1.04, LANG0 1.03, LANG1 1.03 - Hardware: Ic Key 01020700, Ic Ctlr 03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0356_it1374.html", "enhanced": { "product": "Ricoh imagio MP C5002 SP/C5002 SPF/ C4002 SP/C4002 SPF all of above with Facsimile Function", "toe_version": "-Software: System/Copy 1.05.4 Network Support 11.77 Fax 02.00.00 RemoteFax 02.00.00 NetworkDocBox 1.04 Web Support 1.07 Web Uapl 1.03 animation 1.00 Scanner 01.09 Printer 1.05.1 RPCS 3.12.23 RPCS Font 1.03 Data Erase Onb 1.01x GWFCU3.5-4(WW) 01.00.04 Engine 0.16:04 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0356_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0356_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0356_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0355", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C4502A/C5502A, Savin MP C4502A/C5502A, Lanier MP C4502A/C5502A, nashuatec MP C4502A/C5502A, Rex-Rotary MP C4502A/C5502A, Gestetner MP C4502A/C5502A, infotec MP C4502A/C5502A all of above with Facsimile Function - Software: System/Copy 1.05.4, Network Support 11.77, Fax 02.00.00, RemoteFax 02.00.00, NetworkDocBox 1.04, Web Support 1.07, Web Uapl 1.03, animation 1.00, Scanner 01.09, Printer 1.05.1, PCL 1.07, PCL Font 1.06, Data Erase Onb 1.01x, GWFCU3.5-4(WW) 01.00.04, Engine 0.16:02, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0355_it1373.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C4502A/C5502A, Savin MP C4502A/C5502A, Lanier MP C4502A/C5502A, nashuatec MP C4502A/C5502A, Rex-Rotary MP C4502A/C5502A, Gestetner MP C4502A/C5502A, infotec MP C4502A/C5502A all of above with Facsimile Function", "toe_version": "-Software: System/Copy 1.05.4 Network Support 11.77 Fax 02.00.00 RemoteFax 02.00.00 NetworkDocBox 1.04 Web Support 1.07 Web Uapl 1.03 animation 1.00 Scanner 01.09 Printer 1.05.1 PCL 1.07 PCL Font 1.06 Data Erase Onb 1.01x GWFCU3.5-4(WW) 01.00.04 Engine 0.16:02 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0355_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0355_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0355_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0354", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-06-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C5002A SP/C4002A SP all of above with Facsimile Function - Software: System/Copy 1.05.4, Network Support 11.77, Fax 02.00.00, RemoteFax 02.00.00, NetworkDocBox 1.04, Web Support 1.07, Web Uapl 1.03, animation 1.00, Scanner 01.09, Printer 1.05.1, RPCS 3.12.23, RPCS Font 1.03, Data Erase Onb 1.01x, GWFCU3.5-4(WW) 01.00.04, Engine 0.16:02, OpePanel 1.04, LANG0 1.03, LANG1 1.03 - Hardware: Ic Key 01020700, Ic Ctlr 03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0354_it1372.html", "enhanced": { "product": "Ricoh imagio MP C5002A SP/C4002A SP all of above with Facsimile Function", "toe_version": "-Software: System/Copy 1.05.4 Network Support 11.77 Fax 02.00.00 RemoteFax 02.00.00 NetworkDocBox 1.04 Web Support 1.07 Web Uapl 1.03 animation 1.00 Scanner 01.09 Printer 1.05.1 RPCS 3.12.23 RPCS Font 1.03 Data Erase Onb 1.01x GWFCU3.5-4(WW) 01.00.04 Engine 0.16:02 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware: Ic Key 01020700 c Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0354_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0354_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0354_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0353", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C3002/C3002G/C3502/C3502G, Savin MP C3002/C3002G/C3502/C3502G, Lanier MP C3002/C3002G/C3502/C3502G, nashuatec MP C3002/C3502, Rex-Rotary MP C3002/C3502, Gestetner MP C3002/C3502, infotec MP C3002/C3502 all of above with Facsimile Function - Software: System/Copy 1.05.4, Network Support 11.77, Fax 02.00.00, RemoteFax 02.00.00, NetworkDocBox 1.04, Web Support 1.07, Web Uapl 1.03, animation 1.00, Scanner 01.09, Printer 1.05.1, PCL 1.07, PCL Font 1.06, Data Erase Onb 1.01x, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0353_it1371.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C3002/C3002G/C3502/C3502G, Savin MP C3002/C3002G/C3502/C3502G, Lanier MP C3002/C3002G/C3502/C3502G, nashuatec MP C3002/C3502, Rex-Rotary MP C3002/C3502, Gestetner MP C3002/C3502, infotec MP C3002/C3502 all of above with Facsimile Function", "toe_version": "-Software: System/Copy 1.05.4 Network Support 11.77 Fax 02.00.00 RemoteFax 02.00.00 NetworkDocBox 1.04 Web Support 1.07 Web Uapl 1.03 animation 1.00 Scanner 01.09 Printer 1.05.1 PCL 1.07 PCL Font 1.06 Data Erase Onb 1.01x GWFCU3.5-4(WW) 01.00.04 Engine 0.16:04 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0353_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0353_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0353_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0352", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-06-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C3302 SP/C3302 SPF/C2802 SP/C2802 SPF all of above with Facsimile Function - Software: System/Copy 1.05.4, Network Support 11.77, Fax 02.00.00, RemoteFax 02.00.00, NetworkDocBox 1.04, Web Support 1.07, Web Uapl 1.03, animation 1.00, Scanner 01.09, Printer 1.05.1, RPCS 3.12.23, RPCS Font 1.03, Data Erase Onb 1.01x, GWFCU3.5-4(WW) 01.00.04, Engine 0.16:04, OpePanel 1.04, LANG0 1.03, LANG1 1.03 - Hardware: Ic Key 01020700, Ic Ctlr 03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0352_it1370.html", "enhanced": { "product": "Ricoh imagio MP C3302 SP/C3302 SPF/C2802 SP/C2802 SPF all of above with Facsimile Function", "toe_version": "-Software: System/Copy 1.05.4 Network Support 11.77 Fax 02.00.00 RemoteFax 02.00.00 NetworkDocBox 1.04 Web Support 1.07 Web Uapl 1.03 animation 1.00 Scanner 01.09 Printer 1.05.1 RPCS 3.12.23 RPCS Font 1.03 Data Erase Onb 1.01x GWFCU3.5-4(WW) 01.00.04 Engine 0.16:04 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware: Ic Key 01020700 Ic Ctlr 03", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0352_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0352_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0352_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0351", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-06-01", "claim": "EAL2+ ALC_FLR.2", "certification_date": "2012-05-01", "toe_overseas_link": null, "toe_japan_name": "HiRDB Server Version 9 (Linux Edition) 09-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0351_it1361.html", "enhanced": { "product": "HiRDB Server Version 9 (Linux Edition)", "toe_version": "09-01", "product_type": "Data Base Management System", "cc_version": "3.1", "assurance_level": "EAL2 Augmented with ALC_FLR.2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a software product for Relational Database Management System(RDBMS). The TOE acts as a database server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. TOE security functionality This TOE has the following functionality as main security functionality. - TOE prevents the unauthorized access to a database by identifying a user, and authenticating it, and making access control. - TOE supports accountability of the access to a database by recording the access to the database by an authorised user." } }, { "cert_id": "JISEC-CC-CRP-C0350", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 42 / bizhub 36 / ineo 42 / ineo 36 Control Software A3EW30G0224 (Controller ROM) A3EW99G0010000 (Boot ROM)", "expiration_date": "2017-06-01", "claim": "EAL3", "certification_date": "2012-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0350_it1362.html", "toe_japan_name": "bizhub 42 / bizhub 36 / ineo 42 / ineo 36 Zentai Seigyo Software A3EW30G0224 (Controller ROM), A3EW99G0010000 (Boot ROM)", "enhanced": { "product": "Japanese : bizhub 42 / bizhub 36 / ineo 42 / ineo 36 Zentai Seigyo Software English : bizhub 42 / bizhub 36 / ineo 42 / ineo 36 Control Software", "toe_version": "A3EW30G0224 (Controller ROM) A3EW99G0010000 (Boot ROM)", "product_type": "Control Software for digital mfp", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0350_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the software which is installed in a digital Multi Function Peripheral (hereinafter referred to as \"mfp\") consisting of a copier, printer, scanner, and fax function, and controls the overall operation of the mfp. TOE security functionality This TOE offers a security function against disclosure of highly-confidential information stored in an mfp. In compliance with all sorts of overwritting standards, this TOE also offers an overwritting function to completely erase data on recording media such as HDD. This function is used when discarding an mfp or returning a leased one in order to prevent information leakage of an organization using the mfp." } }, { "cert_id": "JISEC-CC-CRP-C0349", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO556/656/756/856/ 556SE/656SE/756SE/856SE MULTIFUNCTIONAL DIGITAL SYSTEMS SYS V1.0", "expiration_date": "2017-06-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0349_it1389.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO556/656/756/856/ 556SE/656SE/756SE/856SE MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0349_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit/ deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the SSL protocol when the TOE communicates with the various servers or client PC. - Data Encryption function Function to encrypt and decrypt the document data stored in the HDD of the TOE. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0348", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO206L/256/306 /356/456/506/256SE/306SE/356SE /456SE/506SE MULTIFUNCTIONAL DIGITAL SYSTEMS SYS V1.0", "expiration_date": "2017-06-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0348_it1388.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO206L/256/306/356/ 456/506/256SE/306SE/356SE/456SE/506SE MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0348_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a Multifunction Peripheral (MFP) that has the functions, such as copy, print, scan, filing, and internet fax. In general office environment, it is assumed that MFPs are utilized from the control panel of the TOE or the user terminal connected to LAN or USB with the TOE. TOE Security functions The TOE provides the following security features: - User Authentication function Function that allows the use of the TOE to only users who succeeded in the identification and authentication. - User Access Control function Function to perform the control of permit/ deny for the operation of various functions and user data, based on the privileges granted to the users who are identified and authenticated. - Secure Erase function Function to erase and overwrite the area in the HDD, where the document data has been stored, upon completion of copy function, etc. - Secure Channel function Function to protect communication data using the SSL protocol when the TOE communicates with the various servers or client PC. - Data Encryption function Function to encrypt and decrypt the document data stored in the HDD of the TOE. - Audit Data Generation and Review function Function to generate security audit log when security events occurred to be audited, and to allow only specific administrators to view that log. - TSF Data Protection function Function that allows the change of TOE configuration information only to the TOE administrator. - TSF Self Protection function Function to verify the integrity of the executable code of the security features. If any abnormalities are detected TOE will be unusable." } }, { "cert_id": "JISEC-CC-CRP-C0347", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP 4002/4002G/5002/5002G, Savin MP 4002/4002G/5002/5002G, Lanier MP 4002/4002G/5002/5002G, nashuatec MP 4002/5002, Rex-Rotary MP 4002/5002, Gestetner MP 4002/5002, infotec MP 4002/5002 all of above with Printer/Scanner/Facsimile Functions - Software: System/Copy 1.00.2, Network Support 11.75, Fax 01.01.00, RemoteFax 01.01.00, NetworkDocBox 1.00.1, Web Support 1.03, Web Uapl 1.02, animation 1.00, Scanner 01.04, Printer 1.00.1, PCL, 1.04, PCL Font 1.13, Data Erase Onb 1.03m, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0347_it1364.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP 4002/4002G/5002/5002G, Savin MP 4002/4002G/5002/5002G, Lanier MP 4002/4002G/5002/5002G, nashuatec MP 4002/5002, Rex-Rotary MP 4002/5002, Gestetner MP 4002/5002, infotec MP 4002/5002 all of above with Printer/Scanner/Facsimile Functions", "toe_version": "-Software: System/Copy 1.00.2 Network Support 11.75 Fax 01.01.00 RemoteFax 01.01.00 NetworkDocBox 1.00.1 Web Support 1.03 Web Uapl 1.02 animation 1.00 Scanner 01.04 Printer 1.00.1 PCL 1.04 PCL Font 1.13 Data Erase Onb 1.03m GWFCU3.5-2(WW) 01.00.01 Engine 1.00:03 OpePanel 1.02 LANG0 1.02 LANG1 1.02 -Hardware: Ic Key 01020714 Ic Hdd 01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0347_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0347_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0347_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0346", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-04-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP 5002/4002 all of above with Printer/Scanner/Facsimile Functions - Software: System/Copy 1.00.2, Network Support 11.75, Fax 01.01.00, RemoteFax 01.01.00, NetworkDocBox 1.00.1, Web Support, 1.03, Web Uapl 1.02, animation 1.00, Scanner 01.04, Printer 1.00.1, RPCS 3.12.18, RPCS Font 1.03, Data Erase Onb 1.03m, GWFCU3.5-2(WW) 01.00.01, Engine 1.00:03, OpePanel 1.02, LANG0 1.02, LANG1 1.02 - Hardware: Ic Key 01020714, Ic Hdd 01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0346_it1363.html", "enhanced": { "product": "Ricoh imagio MP 5002/4002 all of above with Printer/Scanner/Facsimile Functions", "toe_version": "-Software: System/Copy 1.00.2 Network Support 11.75 Fax 01.01.00 RemoteFax 01.01.00 NetworkDocBox 1.00.1 Web Support 1.03 Web Uapl 1.02 animation 1.00 Scanner 01.04 Printer 1.00.1 RPCS 3.12.18 RPCS Font 1.03 Data Erase Onb 1.03m GWFCU3.5-2(WW) 01.00.01 Engine 1.00:03 OpePanel 1.02 LANG0 1.02 LANG1 1.02 -Hardware: Ic Key 01020714 Ic Hdd 01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0346_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0346_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0346_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0345", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C3373/C2275 DocuCentre-IV C5575/C4475/C3375/C3373 Series Controller Software for Asia Pacific Controller ROM Ver. 1.101.18", "expiration_date": "2017-04-01", "claim": "EAL3", "certification_date": "2012-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0345_it1369.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C3373/C2275 DocuCentre-IV C5575/C4475/C3375/C3373 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.101.18", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0345_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0345_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0345_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0344", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-04-01", "claim": "EAL3", "certification_date": "2012-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C2275(G4 Model) Series Controller Software Controller ROM Ver. 1.40.18", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0344_it1368.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C2275(G4 Model) Series Controller Software", "toe_version": "Controller ROM Ver. 1.40.18", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0344_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0344_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0344_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0343", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-04-01", "claim": "EAL3", "certification_date": "2012-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C2275 DocuCentre-IV C5575/C4475/C3375/C2275 Series Controller Software Controller ROM Ver. 1.0.18", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0343_it1367.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5575/C4475/C3375/C2275 DocuCentre-IV C5575/C4475/C3375/C2275 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.18", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0343_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0343_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0343_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0342", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV 7080/6080 DocuCentre-IV 7080/6080 Series Controller Software for Asia Pacific Controller ROM Ver. 1.101.9", "expiration_date": "2017-04-01", "claim": "EAL3", "certification_date": "2012-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0342_it1360.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV 7080/6080 DocuCentre-IV 7080/6080 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.101.9", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0342_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0342_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0342_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0341", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-04-01", "claim": "EAL3", "certification_date": "2012-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-IV C2263 Series Controller Software Controller ROM Ver. 1.0.12", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0341_it1359.html", "enhanced": { "product": "Fuji Xerox DocuCentre-IV C2263 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.12", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0341_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0341_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0341_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0340", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-04-01", "claim": "EAL3", "certification_date": "2012-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV 7080(G4 Model) Series Controller Software Controller ROM Ver. 1.40.10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0340_it1358.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV 7080(G4 Model) Series Controller Software", "toe_version": "Controller ROM Ver. 1.40.10", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0340_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0340_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0340_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0339", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-04-01", "claim": "EAL3", "certification_date": "2012-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV 4070(G4 Model) Series Controller Software Controller ROM Ver. 1.40.10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0339_it1357.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV 4070(G4 Model) Series Controller Software", "toe_version": "Controller ROM Ver. 1.40.10", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0339_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0339_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0339_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0338", "supplier": "Fuji Xerox System Services Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-03-01", "claim": "EAL4", "certification_date": "2012-02-01", "toe_overseas_link": null, "toe_japan_name": "File Transfer System “Secure Transport ESending/Receiving Module 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0338_it1337.html", "enhanced": { "product": "File Transfer System “Secure Transport” Sending/Receiving Module", "toe_version": "1.0", "product_type": "File transfer control software", "cc_version": "3.1", "assurance_level": "EAL4", "vendor": "Fuji Xerox System Services Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE Fuji Xerox System Services Co., Ltd. provides the “Secure Transport” system to environments connected to networks such as LGWAN network that connect regional public organizations, so that local government offices can accurately and securely transfer confidential information to other local government offices. TOE is an application software in the Sending/Receiving server of organization that uses the “Secure Transport” In order for each public organization to use “Secure Transport,” they must conclude a “Secure Transport” usage agreement, and install this TOE in the Sending/Receiving server for transmitting data to/from other organizations. The TOE is file transfer control software that provides an application interface for transferring files to other government offices for external business applications individually created by government offices. It also has a function for storing the transferred files in the Sending/Receiving server to which the TOE is installed. The TOE provides security functions to prevent the Sending/Receiving server from unauthorized use and prevent sent files from unauthorized access. In networks such as the Internet, the TOE also provides the same functions for use of organizations such as various companies and groups. TOE security functionality The major security functions of the TOE are indicated below. - Sending/receiving external application identification authentication functionThe function identifies/authenticates the sending/receiving external applications attempting to use the TOE. - Sending server administrator/receiving server administrator identification authentication function The TOE performs identification/authentication for login requests from the sending server administrator/receiving server administrator. - Sending server/receiving server management functionThe TOE manages setting information for the sending server administrator/receiving server administrator identification authentication function and sending/receiving external application identification authentication function. It also manages log access/deletion and the threshold value information for when the log is full. - Sending server/receiving server log functionThe function generates logs regarding the TOE. - Receiving server access control functionOnly for receiving external applications that are configured to be accessible to the received data file, the TOE allows to delete and retrieve the data. It also allows received data files on the receiving server to be deleted only by the receiving server administrator for maintenance purposes." } }, { "cert_id": "JISEC-CC-CRP-C0337", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-IV C2265/C2263 Series Controller Software for Asia Pacific Controller ROM Ver. 1.101.12", "expiration_date": "2017-02-01", "claim": "EAL3", "certification_date": "2012-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0337_it1356.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-IV C2265/C2263 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.101.12", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0337_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0337_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0337_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0336", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3", "certification_date": "2012-01-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV 7080/6080/5080 DocuCentre-IV 7080/6080/5080 Series Controller Software Controller ROM Ver. 1.0.10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0336_it1355.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV 7080/6080/5080 DocuCentre-IV 7080/6080/5080 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.10", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0336_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0336_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0336_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0335", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3", "certification_date": "2012-01-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV 4070/3070 DocuCentre-IV 4070/3070 Series Controller Software Controller ROM Ver. 1.0.10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0335_it1354.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV 4070/3070 DocuCentre-IV 4070/3070 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.10", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0335_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0335_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0335_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0334", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP 2352/2852/3352, Savin MP 2352/2852/3352, Lanier MP 2352/2852/3352, nashuatec MP 2352/2852/3352, Rex-Rotary MP 2352/2852/3352, Gestetner MP 2352/2852/3352, infotec MP 2352/2852/3352 all of above with Printer/Scanner/Facsimile Functions - Software: System/Copy 1.04, Network Support 10.65, Fax 01.01.00, RemoteFax 01.00.00, Web Support 1.01, Web Uapl 1.00, NetworkDocBox 1.00, animation 1.00, Engine 1.01:08, OpePanel 1.01, LANG0 1.01, LANG1 1.01, Data Erase Onb 1.03m - Hardware: Ic Key 01020714, < Cont. >", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0334_it1350.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP 2352/2852/3352, Savin MP 2352/2852/3352, Lanier MP 2352/2852/3352, nashuatec MP 2352/2852/3352, Rex-Rotary MP 2352/2852/3352, Gestetner MP 2352/2852/3352, infotec MP 2352/2852/3352 all of above with Printer/Scanner/Facsimile Functions", "toe_version": "-Software: System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Web Support 1.01 Web Uapl 1.00 NetworkDocBox 1.00 animation 1.00 Engine 1.01:08 OpePanel 1.01 LANG0 1.01 LANG1 1.01 Data Erase Onb 1.03m -Hardware: Ic Key 01020714 Ic Hdd 01 -Printer Unit: Printer 1.02 PCL 1.00 PCL Font 1.12 -Scanner Unit: Scanner 01.01 -Fax Controller Unit: GWFCU3.5-1(WW) 01.00.01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0334_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0334_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0334_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0333", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2017-02-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2012-01-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP 3352/2552 both with Printer/Scanner/Facsimile Functions - Software: System/Copy 1.04, Network Support 10.65, Fax 01.01.00, RemoteFax 01.00.00, Web Support 1.01, Web Uapl 1.00, NetworkDocBox 1.00, animation 1.00, Engine 1.01:08, OpePanel 1.01, LANG0 1.01, LANG1 1.01, Data Erase Onb 1.03m - Hardware: Ic Key 01020714, Ic Hdd 01 - Printer Unit: Printer 1.02, RPCS 3.11.1, RPCS Font 1.00 - Scanner Unit: Scanner 01.01 - Fax Controller Unit: GWFCU3.5-1(WW) 01.00.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0333_it1349.html", "enhanced": { "product": "Ricoh imagio MP 3352/2552 both with Printer/Scanner/Facsimile Functions", "toe_version": "-Software: System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Web Support 1.01 Web Uapl 1.00 NetworkDocBox 1.00 animation 1.00 Engine 1.01:08 OpePanel 1.01 LANG0 1.01 LANG1 1.01 Data Erase Onb 1.03m -Hardware: Ic Key 01020714 Ic Hdd 01 -Printer Unit: Printer 1.02 RPCS 3.11.1 RPCS Font 1.00 -Scanner Unit: Scanner 01.01 -Fax Controller Unit: GWFCU3.5-1(WW) 01.00.01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0333_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0333_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0333_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0332", "supplier": "Hitachi-Omron Terminal Solutions, Corp.", "toe_overseas_name": "Finger Vein Authentication Device UBReader2 Hardware: D, Software: 03-00", "expiration_date": "2017-01-01", "claim": "EAL2", "certification_date": "2011-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0332_it1353.html", "toe_japan_name": "-----", "enhanced": { "product": "Finger Vein Authentication Device UBReader2", "toe_version": "Hardware: D, Software: 03-00", "product_type": "Biometric Authentication Device", "cc_version": "3.1", "assurance_level": "EAL2", "vendor": "Hitachi-Omron Terminal Solutions, Corp.", "evaluation_facility": "TワV Informationstechnik GmbH, Evaluation Body for IT-Security", "cert_link": "https://www.ipa.go.jp/en/security/c0332_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE consists of authentication device which provides biometric authentication using finger vein patterns and software to control the device (device driver). Authentication of the user is done by matching biometric live record with enrolled biometric references. TOE Security functions TOE security functionality is below: - Authentication of user identity with finger vein patterns - Data protection by deletion of residual information - Protection against physical tampering and replay attacks" } }, { "cert_id": "JISEC-CC-CRP-C0331", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 5325/5330/5335 Controller ROM Ver. 1.202.3, IOT ROM Ver. 30.19.0, ADF ROM Ver. 7.8.50", "expiration_date": "2017-01-01", "claim": "EAL3", "certification_date": "2011-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0331_it1348.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 5325/5330/5335", "toe_version": "Controller ROM Ver. 1.202.3 IOT ROM Ver. 30.19.0 ADF ROM Ver. 7.8.50", "product_type": "Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0331_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0331_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0331_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0330", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2016-12-01", "claim": "EAL1+ ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "certification_date": "2011-11-01", "toe_overseas_link": null, "toe_japan_name": "IPCOM EX Series Firmware Security Component V2.0.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0330_it1351.html", "enhanced": { "product": "IPCOM EX Series Firmware Security Component", "toe_version": "V2.0.01", "product_type": "Firewall module", "cc_version": "3.1", "assurance_level": "EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "protection_profile": "none", "vendor": "Fujitsu Limited", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a firewall module within the firmware of the integrated network server IPCOM EX. It is located at a boundary point of multiple networks, and provides \"IP packet filtering\" with which IP packet data received from a network can be delivered to other networks or discarded according to predefined rules (filtering rules). In addition to \"IP packet filtering\", the TOE provides security functions including \"configuration management\" that allows only an identified and authenticated administrator to configure the settings for the security function, and \"operational assistance management\" that records events for the audit trail, such as discarding or passing the IP packet data. TOE security functionality The main security functions of the TOE are as follows: - IP packet filtering Passes or discards the IP packet data sent and received among the multiple LAN interfaces according to the filtering rules set by the system administrator. - Configuration management Allows only a valid administrator that has been identified and authenticated to set or change the information of the TOE configuration definition, such as filtering rules or network settings. - Operational assistance management Stores or backs up the IP packet process records received from \"configuration management\" or \"IP packet filtering\", and the audit records that are the TOE behavior results." } }, { "cert_id": "JISEC-CC-CRP-C0329", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE 4000 Series 2600.1 model 1.0 (Certification of this product has been revoked 2015-03)", "expiration_date": "2015-03-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0329_it1344.html", "toe_japan_name": "Canon imageRUNNER ADVANCE 4000 Series 2600.1 model 1.0 (Certification of this product has been revoked 2015-03)", "enhanced": { "product": "Canon imageRUNNER ADVANCE 4000 Series 2600.1 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Information Security Evaluation Office", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0328", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO2040C/2540C/ 3040C/3540C/4540C MULTIFUNCTIONAL DIGITAL SYSTEMS SYS V1.0", "expiration_date": "2016-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0328_it0296.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO2040C/2540C/3040C/ 3540C/4540C MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0328_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0328_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0328_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE applies to complete Multifunction Peripheral (MFP) that includes the entire hardware and software components that provide the functionality for printing and scanning documents over the network, through email and on the MFP; and document storage and retrieval. It is assumed that MFP is utilized from a control panel of TOE or as for a user terminal connected to LAN or USB in TOE. TOE Security functions The TOE provides the following security features: - User Authentication The TOE prompts the user to enter the User ID and password from the control panel or client PC to execute identity authentication - User Access Control The TOE controls access to user's document data which is saved in the internal HDD - Secure Erase The TOE removes residual data with DoD secure-erase mechanism before releasing resources from HDD of TOE - Secure Channel The TOE provides support for SSL and is allowed to secure different protocols such as https. The SSL/TLS functionality also permits the TOE to be securely administered from the Web UI, as well as, being used to secure the connection between the TOE and any other external server. - Data Encryption The TOE encrypts the user's document data which is saved in the internal HDD. - Audit Data Generation and Review The TOE generates audit logs for tracking the state of the TOE at any given instance of time. All logs are available for viewing only to TOE U.AUDITOR and U.ADMINISTRATOR role. - TSF Data Protection Only an administrator role user has the capability to manage the configuration and enable/disable available services and protocols. U. ADMINISTRATOR can modify the TSF data. - TSF Self Protection The TOE performs integrity tests on its static executable and configuration files using verification of their digital signature against the known TOSHIBA signatures. This allows the TOE to detect any tampering of its trusted state." } }, { "cert_id": "JISEC-CC-CRP-C0327", "supplier": "Toshiba Tec Corporation", "toe_overseas_name": "TOSHIBA e-STUDIO5540C/6540C/6550C MULTIFUNCTIONAL DIGITAL SYSTEMS SYS V1.0", "expiration_date": "2016-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0327_it0297.html", "toe_japan_name": "-----", "enhanced": { "product": "TOSHIBA e-STUDIO5540C/6540C/6550C MULTIFUNCTIONAL DIGITAL SYSTEMS", "toe_version": "SYS V1.0", "product_type": "Multifunction Peripheral", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Toshiba Tec Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0327_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0327_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0327_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE applies to complete Multifunction Peripheral (MFP) that includes the entire hardware and software components that provide the functionality for printing and scanning documents over the network, through email and on the MFP; and document storage and retrieval. It is assumed that MFP is utilized from a control panel of TOE or as for a user terminal connected to LAN or USB in TOE. TOE Security functions The TOE provides the following security features: - User Authentication The TOE prompts the user to enter the User ID and password from the control panel or client PC to execute identity authentication - User Access Control The TOE controls access to user's document data which is saved in the internal HDD - Secure Erase The TOE removes residual data with DoD secure-erase mechanism before releasing resources from HDD of TOE - Secure Channel The TOE provides support for SSL and is allowed to secure different protocols such as https. The SSL/TLS functionality also permits the TOE to be securely administered from the Web UI, as well as, being used to secure the connection between the TOE and any other external server. - Data Encryption The TOE encrypts the user's document data which is saved in the internal HDD. - Audit Data Generation and Review The TOE generates audit logs for tracking the state of the TOE at any given instance of time. All logs are available for viewing only to TOE U.AUDITOR and U.ADMINISTRATOR role. - TSF Data Protection Only an administrator role user has the capability to manage the configuration and enable/disable available services and protocols. U. ADMINISTRATOR can modify the TSF data. - TSF Self Protection The TOE performs integrity tests on its static executable and configuration files using verification of their digital signature against the known TOSHIBA signatures. This allows the TOE to detect any tampering of its trusted state." } }, { "cert_id": "JISEC-CC-CRP-C0326", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C4501A/C4501AG/C5501A/C5501AG, Savin C9145A/C9145AG/C9155A/C9155AG, Lanier LD645CA/LD645CAG/LD655CA/LD655CAG, Lanier MP C4501A/C5501A, nashuatec MP C4501A/C5501A, Rex-Rotary MP C4501A/C5501A, Gestetner MP C4501A/C5501A, infotec MP C4501A/C5501A all of above with Fax Option Type C5501 - Software version: System/Copy 2.02, Network Support 10.54, Scanner 01.11.1, Printer 1.01, Fax 02.01.00, RemoteFax 01.00.00, Web Support 1.06, Web Uapl 1.01, NetworkDocBox 1.01, animation 1.00, PCL 1.02, < Cont. >", "expiration_date": "2016-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0326_it1342.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C4501A/C4501AG/C5501A/C5501AG, Savin C9145A/C9145AG/C9155A/C9155AG, Lanier LD645CA/LD645CAG/LD655CA/LD655CAG, Lanier MP C4501A/C5501A, nashuatec MP C4501A/C5501A, Rex-Rotary MP C4501A/C5501A, Gestetner MP C4501A/C5501A, infotec MP C4501A/C5501A all of above with Fax Option Type C5501", "toe_version": "-Software version: System/Copy 2.02 Network Support 10.54 Scanner 01.11.1 Printer 1.01 Fax 02.01.00 RemoteFax 01.00.00 Web Support 1.06 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 PCL 1.02 OptionPCLFont 1.02 Engine 1.03:03 OpePanel 1.06 LANG0 1.06 LANG1 1.06 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-21(WW) 03.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0326_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0326_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0326_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0325", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C2051/C2551, Savin C9120/C9125, Lanier LD620C/LD625C, Lanier MP C2051/C2551, nashuatec MP C2051/C2551, Rex-Rotary MP C2051/C2551, Gestetner MP C2051/C2551, infotec MP C2051/C2551 all of above with Fax Option Type C2551 - Software version: System/Copy 1.01, Network Support 10.56, Scanner 01.05, Printer 1.01e, Fax 02.00.00, RemoteFax 02.00.00, Web Support 1.01, Web Uapl 1.02, NetworkDocBox 1.03, animation 0.01, PCL 1.01, OptionPCLFont 1.02, Engine 1.07:03, OpePanel 1.02, LANG0 1.02, < Cont. >", "expiration_date": "2016-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0325_it1341.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C2051/C2551, Savin C9120/C9125, Lanier LD620C/LD625C, Lanier MP C2051/C2551, nashuatec MP C2051/C2551, Rex-Rotary MP C2051/C2551, Gestetner MP C2051/C2551, infotec MP C2051/C2551 all of above with Fax Option Type C2551", "toe_version": "-Software version: System/Copy 1.01 Network Support 10.56 Scanner 01.05 Printer 1.01e Fax 02.00.00 RemoteFax 02.00.00 Web Support 1.01 Web Uapl 1.02 NetworkDocBox 1.03 animation 0.01 PCL 1.01 OptionPCLFont 1.02 Engine 1.07:03 OpePanel 1.02 LANG0 1.02 LANG1 1.02 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-22(WW) 02.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0325_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0325_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0325_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0324", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2016-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-10-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C5001A SP/C4001A SP both with imagio FAX Unit Type24 - Software version: System/Copy 2.02, Network Support 10.54, Scanner 01.11.1, Printer 1.00.4, Fax 02.01.00, RemoteFax 01.00.00, Web Support 1.06, Web Uapl 1.01, NetworkDocBox 1.01, animation 1.00, RPCS 3.10.14, RPCS Font 1.00, Engine 1.03:03, OpePanel 1.06, LANG0 1.06, LANG1 1.06, Data Erase Std 1.01x - Hardware version: Ic Key 01020700, Ic Ctlr 03 - Option version: GWFCU3-21(WW) 03.00.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0324_it1339.html", "enhanced": { "product": "Ricoh imagio MP C5001A SP/C4001A SP both with imagio FAX Unit Type24", "toe_version": "-Software version: System/Copy 2.02 Network Support 10.54 Scanner 01.11.1 Printer 1.00.4 Fax 02.01.00 RemoteFax 01.00.00 Web Support 1.06 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 RPCS 3.10.14 RPCS Font 1.00 Engine 1.03:03 OpePanel 1.06 LANG0 1.06 LANG1 1.06 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-21(WW) 03.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0324_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0324_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0324_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0323", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2016-11-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-10-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C2201 SP with imagio FAX Unit Type28, and Ricoh imagio MP C2201 SPF - Software version: System/Copy 1.01, Network Support 10.56, Scanner 01.05, Printer 1.01d, Fax 02.00.00, RemoteFax 02.00.00, Web Support 1.01, Web Uapl 1.02, NetworkDocBox 1.03, animation 0.01, RPCS 3.10.17, RPCS Font 1.00, Engine 1.07:03, OpePanel 1.02, LANG0 1.02, LANG1 1.02, Data Erase Std 1.01x - Hardware version: Ic Key 01020700, Ic Ctlr 03 - Option version: GWFCU3-22(WW) 02.00.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0323_it1338.html", "enhanced": { "product": "Ricoh imagio MP C2201 SP with imagio FAX Unit Type28, and Ricoh imagio MP C2201 SPF", "toe_version": "-Software version: System/Copy 1.01 Network Support 10.56 Scanner 01.05 Printer 1.01d Fax 02.00.00 RemoteFax 02.00.00 Web Support 1.01 Web Uapl 1.02 NetworkDocBox 1.03 animation 0.01 RPCS 3.10.17 RPCS Font 1.00 Engine 1.07:03 OpePanel 1.02 LANG0 1.02 LANG1 1.02 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-22(WW) 02.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0323_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0323_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0323_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0322", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 7120/7125 Controller ROM Ver. 1.210.3, IOT ROM Ver. 5.12.0, ADF ROM Ver. 11.0.1", "expiration_date": "2016-11-01", "claim": "EAL3", "certification_date": "2011-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0322_it1335.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 7120/7125", "toe_version": "Controller ROM Ver. 1.210.3 IOT ROM Ver. 5.12.0 ADF ROM Ver. 11.0.1", "product_type": "Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0322_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0322_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0322_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0321", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C6501 SP/C7501 SP, Savin C9065/C9075, Lanier LD365C/LD375C, Lanier MP C6501 SP/C7501 SP, nashuatec MP C6501 SP/C7501 SP, Rex-Rotary MP C6501 SP/C7501 SP, Gestetner MP C6501 SP/C7501 SP, infotec MP C6501 SP/C7501 SP all of above with Fax Option Type C7501, DataOverwriteSecurity Unit Type H, and HDD Encryption Unit Type A - Software version: System/Copy 1.03, Network Support 9.62, Scanner 01.05, Printer 1.03, Fax 02.00.00, RemoteFax 02.00.00, Web Support 1.04, Web Uapl 1.01, < Cont. >", "expiration_date": "2016-10-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0321_it1343.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C6501 SP/C7501 SP, Savin C9065/C9075, Lanier LD365C/LD375C, Lanier MP C6501 SP/C7501 SP, nashuatec MP C6501 SP/C7501 SP, Rex-Rotary MP C6501 SP/C7501 SP, Gestetner MP C6501 SP/C7501 SP, infotec MP C6501 SP/C7501 SP all of above with Fax Option Type C7501, DataOverwriteSecurity Unit Type H, and HDD Encryption Unit Type A", "toe_version": "-Software version: System/Copy 1.03 Network Support 9.62 Scanner 01.05 Printer 1.03 Fax 02.00.00 RemoteFax 02.00.00 Web Support 1.04 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 PCL 1.08 OptionPCLFont 1.02 Engine 1.07:06 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-18(WW) 02.00.00 Data Erase Opt 1.01x", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0321_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0321_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0321_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0320", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2016-10-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-09-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C7501 SP/C6001 SP both with imagio FAX Unit Type23, imagio Security Card Type7, and imagio HDD Encryption Card Type7 - Software version: System/Copy 1.03, Network Support 9.62, Scanner 01.05, Printer 1.03, Fax 02.00.00, RemoteFax 02.00.00, Web Support 1.04, Web Uapl 1.01, NetworkDocBox 1.01, animation 1.00, RPCS 3.10.6, RPCS Font 1.00, Engine 1.07:06, OpePanel 1.04, LANG0 1.03, LANG1 1.03 - Hardware version: Ic Key 01020700, Ic Ctlr 03 - Option version: GWFCU3-18(WW) 02.00.00, Data Erase Opt 1.01x", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0320_it1340.html", "enhanced": { "product": "Ricoh imagio MP C7501 SP/C6001 SP both with imagio FAX Unit Type23, imagio Security Card Type7, and imagio HDD Encryption Card Type7", "toe_version": "-Software version: System/Copy 1.03 Network Support 9.62 Scanner 01.05 Printer 1.03 Fax 02.00.00 RemoteFax 02.00.00 Web Support 1.04 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 RPCS 3.10.6 RPCS Font 1.00 Engine 1.07:06 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-18(WW) 02.00.00 Data Erase Opt 1.01x", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0320_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0320_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0320_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0319", "supplier": "Hewlett-Packard Company", "toe_overseas_name": "HP StorageWorks P9500 Disk Array control program 70-02-05-00/00", "expiration_date": "2016-10-01", "claim": "EAL2", "certification_date": "2011-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0319_it1336.html", "toe_japan_name": "-----", "enhanced": { "product": "HP StorageWorks P9500 Disk Array control program", "toe_version": "70-02-05-00/00", "product_type": "Control Program for storage system", "cc_version": "3.1", "assurance_level": "EAL2", "vendor": "Hewlett-Packard Company", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0319_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0319_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0319_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software program operating on \"HP StorageWorks P9500 Disk Array\" storage system. The TOE is responsible to identify, authenticate and control read/write access from host computers to the storage system. In addition, the TOE also includes function(s) to manage encryption keys that encrypt data written to the storage system, and function to decrypt data read from the storage system and securely erase the data stored in the storage system. TOE security functions The TOE has the following security functions to protect user data stored in the storage system. - Controlling accesses from Remote Web Console users and support personnel to granted partitions specified by the groups of storage resources - Controlling accesses from host computers to the granted logical devices in the storage system. - Authentication of host computers - Identification and authentication of Remote Web Console users and support personnel - Encrypted communication between Remote Web Console and SVP PC, and SVP PC and external authentication servers. - Encryption of stored data(Encryption key management) - Shredding - Audit logging" } }, { "cert_id": "JISEC-CC-CRP-C0318", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV 5070/4070/3070 DocuCentre-IV 5070/4070 Series Controller Software for Asia Pacific Controller ROM Ver. 1.120.1", "expiration_date": "2016-10-01", "claim": "EAL3", "certification_date": "2011-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0318_it1334.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV 5070/4070/3070 DocuCentre-IV 5070/4070 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.120.1", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0318_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0318_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0318_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0317", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2016-10-01", "claim": "EAL3", "certification_date": "2011-09-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-IV 3060/2060 Series Controller Software Controller ROM Ver. 1.0.2", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0317_it1333.html", "enhanced": { "product": "Fuji Xerox DocuCentre-IV 3060/2060 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.2", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0317_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0317_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0317_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0316", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-IV 3065/3060/2060 Series Controller Software for Asia Pacific Controller ROM Ver. 1.100.2", "expiration_date": "2016-10-01", "claim": "EAL3", "certification_date": "2011-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0316_it1332.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-IV 3065/3060/2060 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.100.2", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0316_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0316_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0316_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides such basic functions as copy, print, scan, and fax. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the MFD via internal network, and general user client which is directly connected to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - Fax Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0315", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2016-10-01", "claim": "EAL2", "certification_date": "2011-09-01", "toe_overseas_link": null, "toe_japan_name": "Hitachi Virtual Storage Platform, Hitachi Virtual Storage Platform VP9500 Control Program 70-02-05-00/00(R7-02-06A)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0315_it0313.html", "enhanced": { "product": "Hitachi Virtual Storage Platform, Hitachi Virtual Storage Platform VP9500 Control Program", "toe_version": "70-02-05-00/00(R7-02-06A)", "product_type": "Control Program for storage system", "cc_version": "3.1", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0315_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0315_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software program operating on the storage system : \"Hitachi Virtual Storage Platform\" (also known as \"Hitachi Virtual Storage Platform VP9500\"). The TOE has the capabilities to control read/write accesses of a host computer to the area of the storage system which is allowed to the computer through identification and authentication. The TOE also has the functions of managing encryption keys which are used to encrypt data written in the storage system by the host computer, and securely erasing data stored in the storage system. TOE security functionality The TOE has the following security functions to protect user data stored in the storage system. - Controlling accesses from Storage Navigator users and support personnel to granted partitions specified by the groups of storage resources - Controlling accesses from host computers to the granted logical devices in the storage system. - Authentication of host computers - Identification and authentication of Storage Navigator users and support personnel - Encrypted communication between Storage Navigator and SVP PC, and SVP PC and external authentication servers. - Encryption of stored data(Encryption key management) - Shredding - Audit logging" } }, { "cert_id": "JISEC-CC-CRP-C0314", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 / N607 / N606 / N605 Control Software A1UD0Y0-0100-GM0-04", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0314_it1347.html", "toe_japan_name": "bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 / N607 / N606 / N605 Zentai Seigyo Software A1UD0Y0-0100-GM0-04", "enhanced": { "product": "Japanese : bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 / N607 / N606 / N605 Zentai Seigyo Software English : bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 / N607 / N606 / N605 Control Software", "toe_version": "A1UD0Y0-0100-GM0-04", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0314_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0314_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0314_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Identification and Authentication, and Access Control Function The function to identify and authenticate user, and to control access to highly confidential image data stored in MFP - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Safety transmitting and receiving function of image file The function to encrypt image data by S/MIME when transmitting the image data by e-mail, and to use safety communication path by SSL/TLS when transmitting and receiving it by other way. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0313", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c / D407 / D406 / D405 Control Software A0ED0Y0-0100-GM0-24", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0313_it1346.html", "toe_japan_name": "bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c / D407 / D406 / D405 Zentai Seigyo Software A0ED0Y0-0100-GM0-24", "enhanced": { "product": "Japanese : bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c / D407 / D406 / D405 Zentai Seigyo Software English : bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c / D407 / D406 / D405 Control Software", "toe_version": "A0ED0Y0-0100-GM0-24", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0313_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0313_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0313_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Identification and Authentication, and Access Control Function The function to identify and authenticate user, and to control access to highly confidential image data stored in MFP - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Safety transmitting and receiving function of image file The function to encrypt image data by S/MIME when transmitting the image data by e-mail, and to use safety communication path by SSL/TLS when transmitting and receiving it by other way. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0312", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c / D700 / D701 / D705 / D706 Control Software A0P00Y0-0100-GM0-24", "expiration_date": "2016-09-01", "claim": "EAL3", "revalidations": [ { "date": "2012-02", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0312_it1345_01.html" } ], "certification_date": "2011-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0312_it1345.html", "toe_japan_name": "bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Zentai Seigyo Software A0P00Y0-0100-GM0-24", "enhanced": { "product": "Japanese : bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Zentai Seigyo Software English : bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Control Software", "toe_version": "A0P00Y0-0100-GM0-24", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0312_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0312_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0312_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Identification and Authentication, and Access Control Function The function to identify and authenticate user, and to control access to highly confidential image data stored in MFP - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Safety transmitting and receiving function of image file The function to encrypt image data by S/MIME when transmitting the image data by e-mail, and to use safety communication path by SSL/TLS when transmitting and receiving it by other way. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0311", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "TASKalfa 6500i, TASKalfa 8000i, TASKalfa 6500iG, TASKalfa 8000iG, CS 6500i, CS 8000i, CD 1465, CD 1480, DC 2465, DC 2480 Data Security Kit (E) V1.00E", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0311_it0329.html", "toe_japan_name": "-----", "enhanced": { "product": "TASKalfa 6500i, TASKalfa 8000i, TASKalfa 6500iG, TASKalfa 8000iG, CS 6500i, CS 8000i, CD 1465, CD 1480, DC 2465, DC 2480 Data Security Kit (E)", "toe_version": "V1.00E", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0311_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0311_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0311_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 6500i, TASKalfa 8000i - TASKalfa 6500iG, TASKalfa 8000iG - CS 6500i, CS 8000i - CD 1465, CD 1480 - DC 2465, DC 2480 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0310", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "-----", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": null, "toe_japan_name": "TASKalfa 6500i, TASKalfa 8000i Data Security Kit (E) V1.00J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0310_it0328.html", "enhanced": { "product": "TASKalfa 6500i, TASKalfa 8000i Data Security Kit (E)", "toe_version": "V1.00J", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0310_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0310_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0310_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 6500i - TASKalfa 8000i This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0309", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "TASKalfa 3500i, TASKalfa 4500i, TASKalfa 5500i, TASKalfa 3500iG, TASKalfa 4500iG, TASKalfa 5500iG, CS 3500i, CS 4500i, CS 5500i, CD 1435, CD 1445, CD 1455, DC 2435, DC 2445, DC 2455 Data Security Kit (E) V1.00E", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0309_it0327.html", "toe_japan_name": "-----", "enhanced": { "product": "TASKalfa 3500i, TASKalfa 4500i, TASKalfa 5500i, TASKalfa 3500iG, TASKalfa 4500iG, TASKalfa 5500iG, CS 3500i, CS 4500i, CS 5500i, CD 1435, CD 1445, CD 1455, DC 2435, DC 2445, DC 2455 Data Security Kit (E)", "toe_version": "V1.00E", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0309_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0309_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0309_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 3500i, TASKalfa 4500i, TASKalfa 5500i - TASKalfa 3500iG, TASKalfa 4500iG, TASKalfa 5500iG - CS 3500i, CS 4500i, CS 5500i - CD 1435, CD 1445, CD 1455 - DC 2435, DC 2445, DC 2455 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0308", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "-----", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": null, "toe_japan_name": "TASKalfa 3500i, TASKalfa 4500i, TASKalfa 5500i Data Security Kit (E) V1.00J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0308_it0326.html", "enhanced": { "product": "TASKalfa 3500i, TASKalfa 4500i, TASKalfa 5500i Data Security Kit (E)", "toe_version": "V1.00J", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0308_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0308_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0308_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 3500i - TASKalfa 4500i - TASKalfa 5500i This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0307", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "TASKalfa 6550ci, TASKalfa 7550ci, TASKalfa 6550ciG, TASKalfa 7550ciG, CS 6550ci, CS 7550ci, CDC 1965, CDC 1970, DCC 2965, DCC 2970 Data Security Kit (E) V1.00E", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0307_it0325.html", "toe_japan_name": "-----", "enhanced": { "product": "TASKalfa 6550ci, TASKalfa 7550ci, TASKalfa 6550ciG, TASKalfa 7550ciG, CS 6550ci, CS 7550ci, CDC 1965, CDC 1970, DCC 2965, DCC 2970 Data Security Kit (E)", "toe_version": "V1.00E", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0307_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0307_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0307_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 6550ci, TASKalfa 7550ci - TASKalfa 6550ciG, TASKalfa 7550ciG - CS 6550ci, CS 7550ci - CDC 1965, CDC 1970 - DCC 2965, DCC 2970 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0306", "supplier": "Hewlett-Packard Japan, Ltd", "toe_overseas_name": "-----", "expiration_date": "2016-09-01", "claim": "EAL1", "certification_date": "2011-08-01", "toe_overseas_link": null, "toe_japan_name": "HP IceWall SSO 10.0 (with“Forwarder Patch Release1”and“Authentication module Patch Release 1”)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0306_it1352.html", "enhanced": { "product": "HP IceWall SSO", "toe_version": "10.0 (with “Forwarder Patch Release1” and “Authentication module Patch Release 1” )", "product_type": "Other", "cc_version": "3.1", "assurance_level": "EAL1", "vendor": "Hewlett-Packard Japan, Ltd", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Single Sign-On software solution product, which enables the access control for web clients to web applications. The TOE has the following major security functions: - Authentication - Access control for web applications - Configuration management TOE security functionality Authentication: When users access contents on the backend Web servers, the TOE validate and authenticate users with User IDs/Passwords through the authentication server. Access control for web applications: Only when users' groups have access authorization to requested URLs, the TOE relays the requests from IceWall Sever to the backend web servers. Users are connected with groups. Configuration management: The TOE has the configuration management capability that the IceWall SSO administrators perform the following: - setting configuration information to the configuration files of IceWall server and authentication servers. - managing the configuration files." } }, { "cert_id": "JISEC-CC-CRP-C0305", "supplier": "Hewlett-Packard Company", "toe_overseas_name": "HP StorageWorks P9000 Command View Advanced Edition Software Common Component 7.0.1-00", "expiration_date": "2016-09-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2011-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0305_it0331.html", "toe_japan_name": "-----", "enhanced": { "product": "HP StorageWorks P9000 Command View Advanced Edition Software Common Component", "toe_version": "7.0.1-00", "product_type": "Foundational Module Software", "cc_version": "3.1", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hewlett-Packard Company", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0305_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0305_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0305_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a module that provides common functionality for storage management software that manages storage devices connected via a SAN environment. The following are examples of storage management software: HP StorageWorks P9000 Device Manager Software, HP StorageWorks P9000 Replication Manager Software, HP StorageWorks P9000 Tiered Storage Manager Software, and HP StorageWorks P9000 Tuning Manager Software. These products, in combination with TOE, are commonly referred to as HP StorageWorks P9000 Command View Advanced Edition Software. TOE is a foundational module for HP StorageWorks P9000 Command View Advanced Edition Software, and is packaged with all products. TOE security functions TOE provides the following security functionality: - Identification/authentication functionality (External authentication functionality provided by external authentication servers, or the use of linkage functionality for external authentication groups) - Security management functionality (Functionality that manages TOE user account information, and allows the user to set security parameters) - Warning banner functionality" } }, { "cert_id": "JISEC-CC-CRP-C0304", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "-----", "expiration_date": "2016-09-01", "claim": "EAL3", "certification_date": "2011-08-01", "toe_overseas_link": null, "toe_japan_name": "TASKalfa 6550ci, TASKalfa 7550ci Data Security Kit (E) V1.00J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0304_it0324.html", "enhanced": { "product": "TASKalfa 6550ci, TASKalfa 7550ci Data Security Kit (E)", "toe_version": "V1.00J", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0304_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0304_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0304_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 6550ci - TASKalfa 7550ci This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0303", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2016-09-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2011-08-01", "toe_overseas_link": null, "toe_japan_name": "Hitachi Command Suite Common Component 7.0.1-00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0303_it0311.html", "enhanced": { "product": "Hitachi Command Suite Common Component", "toe_version": "7.0.1-00", "product_type": "Foundational Module Software", "cc_version": "3.1", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0303_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0303_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a module that provides common functionality for storage management software that manages storage devices connected via a SAN environment. The following are examples of storage management software: Hitachi Device Manager Software, Hitachi Replication Manager Software, Hitachi Tiered Storage Manager Software, and Hitachi Tuning Manager Software. These products, in combination with TOE, are commonly referred to as Hitachi Command Suite. TOE is a foundational module for Hitachi Command Suite, and is packaged with all products. TOE security functionality TOE provides the following security functionality: - Identification/authentication functionality (External authentication functionality provided by external authentication servers, or the use of linkage functionality for external authentication groups) - Security management functionality (Functionality that manages TOE user account information, and allows the user to set security parameters) - Warning banner functionality" } }, { "cert_id": "JISEC-CC-CRP-C0302", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C4501/C4501G/C5501/C5501G, Savin C9145/C9145G/C9155/C9155G, Lanier LD645C/LD645CG/LD655C/LD655CG, Lanier MP C4501/C5501, nashuatec MP C4501/C5501, Rex-Rotary MP C4501/C5501, Gestetner MP C4501/C5501, infotec MP C4501/C5501 all of above with Fax Option Type C5501 - Software version: System/Copy 2.02, Network Support 10.54, Scanner 01.11.1, Printer 1.01, Fax 02.01.00, RemoteFax 01.00.00, Web Support 1.06, Web Uapl 1.01, NetworkDocBox 1.01, animation 1.00, PCL 1.02, OptionPCLFont 1.02, < Cont. >", "expiration_date": "2016-08-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0302_it0317.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C4501/C4501G/C5501/C5501G, Savin C9145/C9145G/C9155/C9155G, Lanier LD645C/LD645CG/LD655C/LD655CG, Lanier MP C4501/C5501, nashuatec MP C4501/C5501, Rex-Rotary MP C4501/C5501, Gestetner MP C4501/C5501, infotec MP C4501/C5501 all of above with Fax Option Type C5501", "toe_version": "-Software version: System/Copy 2.02 Network Support 10.54 Scanner 01.11.1 Printer 1.01 Fax 02.01.00 RemoteFax 01.00.00 Web Support 1.06 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 PCL 1.02 OptionPCLFont 1.02 Engine 1.03:04 OpePanel 1.06 LANG0 1.06 LANG1 1.06 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-21(WW) 03.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0302_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0302_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0302_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0301", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2016-08-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-07-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C5001 SP / imagio MP C4001 SP, both with imagio FAX Unit Type24, and Ricoh imagio MP C5001 SPF / imagio MP C4001 SPF - Software version: System/Copy 2.02, Network Support 10.54, Scanner 01.11.1, Printer 1.00.4, Fax 02.01.00, RemoteFax 01.00.00, Web Support 1.06, Web Uapl 1.01, NetworkDocBox 1.01, animation 1.00, RPCS 3.10.14, RPCS Font 1.00, Engine 1.03:04, OpePanel 1.06, LANG0 1.06, LANG1 1.06, Data Erase Std 1.01x - Hardware version: Ic Key 01020700, Ic Ctlr 03 - Option version: GWFCU3-21(WW) 03.00.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0301_it0316.html", "enhanced": { "product": "Ricoh imagio MP C5001 SP / imagio MP C4001 SP, both with imagio FAX Unit Type24, and Ricoh imagio MP C5001 SPF / imagio MP C4001 SPF", "toe_version": "-Software version: System/Copy 2.02 Network Support 10.54 Scanner 01.11.1 Printer 1.00.4 Fax 02.01.00 RemoteFax 01.00.00 Web Support 1.06 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 RPCS 3.10.14 RPCS Font 1.00 Engine 1.03:04 OpePanel 1.06 LANG0 1.06 LANG1 1.06 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-21(WW) 03.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0301_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0301_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0301_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0300", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP C3001/C3001G/C3501/C3501G, Savin C9130/C9130G/C9135/C9135G, Lanier LD630C/LD630CG/LD635C/LD635CG, Lanier MP C3001/C3501, nashuatec MP C3001/C3501, Rex-Rotary MP C3001/C3501, Gestetner MP C3001/C3501, infotec MP C3001/C3501 all of above with Fax Option Type C5501 - Software version: System/Copy 1.03, Network Support 10.54, Scanner 01.05, Printer 1.02, Fax 02.00.00, RemoteFax 01.00.00, Web Support 1.05, Web Uapl 1.01, NetworkDocBox 1.01, animation 1.00, PCL 1.02, OptionPCLFont 1.02, < Cont. >", "expiration_date": "2016-08-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0300_it0315.html", "toe_japan_name": "-----", "enhanced": { "product": "Ricoh Aficio MP C3001/C3001G/C3501/C3501G, Savin C9130/C9130G/C9135/C9135G, Lanier LD630C/LD630CG/LD635C/LD635CG, Lanier MP C3001/C3501, nashuatec MP C3001/C3501, Rex-Rotary MP C3001/C3501, Gestetner MP C3001/C3501, infotec MP C3001/C3501 all of above with Fax Option Type C5501", "toe_version": "-Software version: System/Copy 1.03 Network Support 10.54 Scanner 01.05 Printer 1.02 Fax 02.00.00 RemoteFax 01.00.00 Web Support 1.05 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 PCL 1.02 OptionPCLFont 1.02 Engine 1.03:04 OpePanel 1.04 LANG0 1.04 LANG1 1.04 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-21(WW) 03.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0300_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0300_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0300_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0299", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2016-08-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-07-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP C3301 SP / imagio MP C2801 SP, both with imagio FAX Unit Type24, and Ricoh imagio MP C3301 SPF / imagio MP C2801 SPF - Software version: System/Copy 1.03, Network Support 10.54, Scanner 01.05, Printer 1.01, Fax 02.00.00, RemoteFax 01.00.00, Web Support 1.05, Web Uapl 1.01, NetworkDocBox 1.01, animation 1.00, RPCS 3.10.14, RPCS Font 1.00, Engine 1.03:04, OpePanel 1.04, LANG0 1.04, LANG1 1.04, Data Erase Std 1.01x - Hardware version: Ic Key 01020700, Ic Ctlr 03 - Option version: GWFCU3-21(WW) 03.00.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0299_it0314.html", "enhanced": { "product": "Ricoh imagio MP C3301 SP / imagio MP C2801 SP, both with imagio FAX Unit Type24, and Ricoh imagio MP C3301 SPF / imagio MP C2801 SPF", "toe_version": "-Software version: System/Copy 1.03 Network Support 10.54 Scanner 01.05 Printer 1.01 Fax 02.00.00 RemoteFax 01.00.00 Web Support 1.05 Web Uapl 1.01 NetworkDocBox 1.01 animation 1.00 RPCS 3.10.14 RPCS Font 1.00 Engine 1.03:04 OpePanel 1.04 LANG0 1.04 LANG1 1.04 Data Erase Std 1.01x -Hardware version: Ic Key 01020700 Ic Ctlr 03 -Option version: GWFCU3-21(WW) 03.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0299_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0299_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0299_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0298", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV C7780/C6680/C5580 DocuCentre-IV C7780/C6680/C5580 Series Controller Software for Asia Pacific Controller ROM Ver. 1.101.7", "expiration_date": "2016-07-01", "claim": "EAL3", "certification_date": "2011-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0298_it0321.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C7780/C6680/C5580 DocuCentre-IV C7780/C6680/C5580 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.101.7", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0298_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0298_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0298_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFD via internal network, and general user client which is directly linked to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0297", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2016-07-01", "claim": "EAL3", "certification_date": "2011-06-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV C7780/C6680/C5580 (G4 Model) Series Controller Software Controller ROM Ver. 1.40.7", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0297_it0320.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C7780/C6680/C5580 (G4 Model) Series Controller Software", "toe_version": "Controller ROM Ver. 1.40.7", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0297_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0297_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0297_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFD via internal network, and general user client which is directly linked to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0296", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2016-07-01", "claim": "EAL3", "certification_date": "2011-06-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV C7780/C6680/C5580 DocuCentre-IV C7780/C6680/C5580 Series Controller Software Controller ROM Ver. 1.0.7", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0296_it0319.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C7780/C6680/C5580 DocuCentre-IV C7780/C6680/C5580 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.7", "product_type": "Control Software for Multi Function Device", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0296_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0296_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0296_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFD via internal network, and general user client which is directly linked to the MFD. TOE security functions To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0295", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV C4430 DocuCentre-IV C4430 Series Controller Software for Asia Pacific Controller ROM Ver. 1.101.2", "expiration_date": "2016-07-01", "claim": "EAL3", "certification_date": "2011-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0295_it0318.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C4430 DocuCentre-IV C4430 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.101.2", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0295_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0295_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0295_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFD is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFD via internal network, and general user client which is directly linked to the MFD. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0294", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox Color 550/560 Printer Controller ROM Ver. 1.203.1, IOT ROM Ver. 62.23.0, IIT ROM Ver. 6.13.0, ADF ROM Ver. 12.4.0", "expiration_date": "2016-07-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0294_it0305.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox Color 550/560 Printer", "toe_version": "Controller ROM Ver. 1.203.1 IOT ROM Ver. 62.23.0 IIT ROM Ver. 6.13.0 ADF ROM Ver. 12.4.0", "product_type": "Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0294_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0294_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0294_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, scan, and fax. The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions: - Hard Disk Data Overwrite A function to overwrite and delete the document data in the internal HDD. - Hard Disk Data Encryption A function to encrypt the document data before the data is stored into the internal HDD. - User Authentication A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data. - System Administrator's Security Management A function to allow only system administrators to configure the settings of security functions. - Customer Engineer Operation Restriction A function to allow only system administrators to configure the settings for restricting customer engineer operations. - Security Audit Log A function to generate audit logs of security events and allow only system administrators to refer to them. - Internal Network Data Protection A function to protect communication data by using encryption communication protocols. - Information Flow Security A function to restrict the unpermitted communication between the TOE interface and internal network. - Self test A function to verify the integrity of TSF executable code and TOE setting data." } }, { "cert_id": "JISEC-CC-CRP-C0293", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "TASKalfa 3050ci, TASKalfa 3550ci, TASKalfa 4550ci, TASKalfa 5550ci, TASKalfa 3050ciG, TASKalfa 3550ciG, TASKalfa 4550ciG, TASKalfa 5550ciG, CS 3050ci, CS 3550ci, CS 4550ci, CS 5550ci, CDC 1930, CDC 1935, CDC 1945, CDC 1950, DCC 2930, DCC 2935, DCC 2945, DCC 2950 Data Security Kit (E) V1.00E", "expiration_date": "2016-06-01", "claim": "EAL3", "certification_date": "2011-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0293_it0323.html", "toe_japan_name": "-----", "enhanced": { "product": "TASKalfa 3050ci, TASKalfa 3550ci, TASKalfa 4550ci, TASKalfa 5550ci, TASKalfa 3050ciG, TASKalfa 3550ciG, TASKalfa 4550ciG, TASKalfa 5550ciG, CS 3050ci, CS 3550ci, CS 4550ci, CS 5550ci, CDC 1930, CDC 1935, CDC 1945, CDC 1950, DCC 2930, DCC 2935, DCC 2945, DCC 2950 Data Security Kit (E)", "toe_version": "V1.00E", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0293_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0293_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0293_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 3050ci, TASKalfa 3550ci, TASKalfa 4550ci, TASKalfa 5550ci - TASKalfa 3050ciG, TASKalfa 3550ciG, TASKalfa 4550ciG, TASKalfa 5550ciG - CS 3050ci, CS 3550ci, CS 4550ci, CS 5550ci - CDC 1930, CDC 1935, CDC 1945, CDC 1950 - DCC 2930, DCC 2935, DCC 2945, DCC 2950 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0292", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "-----", "expiration_date": "2016-06-01", "claim": "EAL3", "certification_date": "2011-05-01", "toe_overseas_link": null, "toe_japan_name": "TASKalfa 3050ci, TASKalfa 3550ci, TASKalfa 4550ci, TASKalfa 5550ci Data Security Kit (E) V1.00J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0292_it0322.html", "enhanced": { "product": "TASKalfa 3050ci, TASKalfa 3550ci, TASKalfa 4550ci, TASKalfa 5550ci Data Security Kit (E)", "toe_version": "V1.00J", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0292_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0292_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0292_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 3050ci - TASKalfa 3550ci - TASKalfa 4550ci - TASKalfa 5550ci This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0291", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 652 / bizhub 602 / bizhub 552 / bizhub 502 PKI Card System Control Software A2WU0Y0-0100-G00-F2pki", "expiration_date": "2016-06-01", "claim": "EAL3", "certification_date": "2011-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0291_it0310.html", "toe_japan_name": "bizhub 652 / bizhub 602 / bizhub 552 / bizhub 502 PKI Card System Control Software A2WU0Y0-0100-G00-F2pki", "enhanced": { "product": "bizhub 652 / bizhub 602 / bizhub 552 / bizhub 502 PKI Card System Control Software", "toe_version": "A2WU0Y0-0100-G00-F2pki", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0291_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0291_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0291_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image data when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0290", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 652 / bizhub 602 / bizhub 552 / bizhub 502 / ineo 652 / ineo 602 / ineo 552 / ineo 502 Control Software A2WU0Y0-0100-GM0-00", "expiration_date": "2016-06-01", "claim": "EAL3", "certification_date": "2011-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0290_it0309.html", "toe_japan_name": "bizhub 652 / bizhub 602 / bizhub 552 / bizhub 502 / ineo 652 / ineo 602 / ineo 552 / ineo 502 Zentai Seigyo Software A2WU0Y0-0100-GM0-00", "enhanced": { "product": "Japanese : bizhub 652 / bizhub 602 / bizhub 552 / bizhub 502 / ineo 652 / ineo 602 / ineo 552 / ineo 502 Zentai Seigyo Software English : bizhub 652 / bizhub 602 / bizhub 552 / bizhub 502 / ineo 652 / ineo 602 / ineo 552 / ineo 502 Control Software", "toe_version": "A2WU0Y0-0100-GM0-00", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0290_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0290_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0290_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as“MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Identification and Authentication, and Access Control Function The function to identify and authenticate user, and to control access to highly confidential image data stored in MFP. - HDD Encryption Function The function to encrypt the data written in HDD by using the function of ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Safety transmitting and receiving function of image file The function to encrypt image data by S/MIME when transmitting the image data by e-mail, and to use safety communication path by SSL/TLS when transmitting and receiving it by other way. - Fax Unit Control Function The function to prevent accessing the internal network using FAX as steppingstone." } }, { "cert_id": "JISEC-CC-CRP-C0289", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Following MFP with FCU, DataOverwriteSecurity Unit, HDD Encryption Unit and Printer/Scanner Unit, MFP : Ricoh Aficio MP 6001, Ricoh Aficio MP 7001, Ricoh Aficio MP 8001, Ricoh Aficio MP 9001, Gestetner MP 6001, Gestetner MP 7001, Gestetner MP 8001, Gestetner MP 9001, infotec MP 6001, infotec MP 7001, infotec MP 8001, infotec MP 9001, Lanier LD360, Lanier LD370, Lanier LD380, Lanier LD390, Lanier MP 6001, Lanier MP 7001, Lanier MP 8001, Lanier MP 9001, nashuatec MP 6001, nashuatec MP 7001, nashuatec MP 8001, < Cont. >", "expiration_date": "2016-05-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0289_it0302.html", "toe_japan_name": "-----", "enhanced": { "product": "Following MFP with FCU, DataOverwriteSecurity Unit, HDD Encryption Unit and Printer/Scanner Unit, MFP: Ricoh Aficio MP 6001, Ricoh Aficio MP 7001, Ricoh Aficio MP 8001, Ricoh Aficio MP 9001, Gestetner MP 6001, Gestetner MP 7001, Gestetner MP 8001, Gestetner MP 9001, infotec MP 6001, infotec MP 7001, infotec MP 8001, infotec MP 9001, Lanier LD360, Lanier LD370, Lanier LD380, Lanier LD390, Lanier MP 6001, Lanier MP 7001, Lanier MP 8001, Lanier MP 9001, nashuatec MP 6001, nashuatec MP 7001, nashuatec MP 8001, nashuatec MP 9001, Rex-Rotary MP 6001, Rex-Rotary MP 7001, Rex-Rotary MP 8001, Rex-Rotary MP 9001, Savin 9060, Savin 9070, Savin 9080, Savin 9090 Or Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit MFP: Ricoh Aficio MP 6001 SP, Ricoh Aficio MP 7001 SP, Ricoh Aficio MP 8001 SP, Ricoh Aficio MP 9001 SP, Gestetner MP 6001 SP, Gestetner MP 7001 SP, Gestetner MP 8001 SP, Gestetner MP 9001 SP, infotec MP 6001 SP, infotec MP 7001 SP, infotec MP 8001 SP, infotec MP 9001 SP, Lanier LD360sp, Lanier LD370sp, Lanier LD380sp, Lanier LD390sp, nashuatec MP 6001 SP, nashuatec MP 7001 SP, nashuatec MP 8001 SP, nashuatec MP 9001 SP, Rex-Rotary MP 6001 SP, Rex-Rotary MP 7001 SP, Rex-Rotary MP 8001 SP, Rex-Rotary MP 9001 SP, Savin 9060sp, Savin 9070sp, Savin 9080sp, Savin 9090sp FCU: Fax Option Type 9001 DataOverwriteSecurity Unit: DataOverwriteSecurity Unit Type H HDD Encryption Unit: HDD Encryption Unit Type A Printer/Scanner Unit : Printer/Scanner Unit Type 9001", "toe_version": "-Software version: System/Copy 1.18 Network Support 8.69.1 Scanner 01.20 Printer 1.16e Fax 03.00.00 RemoteFax 03.00.00 Web Support 1.13.1 Web Uapl 1.05 Network DocBox 1.04 animation 1.2.1 Option PCL 1.02 OptionPCLFont 1.02 Engine 1.61:04 OpePanel 1.04 LANG0 1.03 LANG1 1.03 -Hardware version: Ic Key 1100 Ic Ctlr 03 -Options version: GWFCU3-16(WW) 04.00.00 Data Erase Opt 1.01x", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0289_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0289_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0289_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0288", "supplier": "Hitachi Solutions, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2016-04-01", "claim": "EAL1+ ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "certification_date": "2011-03-01", "toe_overseas_link": null, "toe_japan_name": "CBT Engine 01-00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0288_it0304.html", "enhanced": { "product": "CBT Engine", "toe_version": "01-00", "product_type": "The major application of CBT examination system", "cc_version": "3.1", "assurance_level": "EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "vendor": "Hitachi Solutions, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a part of the application program for the CBT examination system, and its major function is the management of exam questions. The TOE provides the basic functions in the CBT examination system, such as making and composing exam questions, evaluation of exam questions, delivery of exam questions and results, marking exams, etc. The TOE provides the security functions to prevent exam questions from unauthorized disclosure and alteration by the unauthorized execution of the basic functions. TOE security functionality The TOE provides the following security functions. - Authentication function Function to identify and authenticate the user. - Access control function Function to judge whether the user is authorized to use the basic function. - Suspend function against unauthorized software Function to suspend the examination when detecting a USB flash drive." } }, { "cert_id": "JISEC-CC-CRP-C0287", "supplier": "Canon Inc.", "toe_overseas_name": "Canon imageRUNNER ADVANCE C5000 Series 2600.1 model 1.1 (Certification of this product has been revoked 2015-03)", "expiration_date": "2015-03-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0287_it0294.html", "toe_japan_name": "Canon imageRUNNER ADVANCE C5000 Series 2600.1 model 1.0", "enhanced": { "product": "Canon imageRUNNER ADVANCE C5000 Series 2600.1 model", "toe_version": "1.0", "product_type": "Multifunction Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, I-Fax, and Mail Box capabilities. The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP, except for the fax function which is not included in this constitution. TOE security functionality The TOE embodies the following security functions. - User Authentication Function Function for identifying and authenticating the user. - Function Use Restriction Function Function for restricting the use of the MFP depending on the authority of the user. - Job Output Restriction Function Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. - Forward Received Jobs Function Function for restricting the machine from forwarding received data directly to the LAN. - HDD Data Erase Function Function for erasing unnecessary data from the hard disk by overwriting the data. - HDD Data Encryption Function Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. - LAN Data Protection Function Function for protecting all IP packets that are communicated with an IT device. - Self-Test Function Function for testing the integrity of the executable code at startup. - Audit Log Function Function for generating audit logs on security events and allowing them to be viewed by the administrator. - Management Function Function for restricting device settings that influence security to be made only by the administrator." } }, { "cert_id": "JISEC-CC-CRP-C0286", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit MFP:Ricoh Aficio MP 2851, Ricoh Aficio MP 3351, Savin 9228, Savin 9233, Lanier LD528, Lanier LD533, Lanier MP 2851, Lanier MP 3351, Gestetner MP 2851, Gestetner MP 3351, nashuatec MP 2851, nashuatec MP 3351, Rex-Rotary MP 2851, Rex-Rotary MP 3351, infotec MP 2851, infotec MP 3351 FCU:Fax Option Type 3351 DataOverwriteSecurity Unit:DataOverwriteSecurity Unit Type I HDD Encryption Unit:HDD Encryption Unit Type A < Cont. >", "expiration_date": "2016-04-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0286_it0300.html", "toe_japan_name": "-----", "enhanced": { "product": "Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit MFP: Ricoh Aficio MP 2851, Ricoh Aficio MP 3351, Savin 9228, Savin 9233, Lanier LD528, Lanier LD533, Lanier MP 2851, Lanier MP 3351, Gestetner MP 2851, Gestetner MP 3351, nashuatec MP 2851, nashuatec MP 3351, Rex-Rotary MP 2851, Rex-Rotary MP 3351, infotec MP 2851, infotec MP 3351 FCU: Fax Option Type 3351 DataOverwriteSecurity Unit: DataOverwriteSecurity Unit Type I HDD Encryption Unit: HDD Encryption Unit Type A", "toe_version": "-Software System/Copy 1.02 Network Support 7.34 Scanner 01.12 Printer 1.02 Fax 02.00.00 RemoteFax 02.00.00 Web Support 1.05 Web Uapl 1.03 Network DocBox 1.00 animation 1.1 Option PCL 1.03 OptionPCLFont 1.01 Engine 1.00:01 OpePanel 1.10 LANG0 1.09 LANG1 1.09 -Hardware Ic Key 1100 Ic Hdd 01 -Options Data Erase Opt 1.01m GWFCU3-20(WW) 02.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0286_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0286_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0286_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0285", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit MFP:Ricoh Aficio MP 4001, Ricoh Aficio MP 4001G, Ricoh Aficio MP 5001, Ricoh Aficio MP 5001G, Savin 9240, Savin 9240G, Savin 9250, Savin 9250G, Lanier LD140, Lanier LD140G, Lanier LD150, Lanier LD150G, Lanier MP 4001, Lanier MP 5001, Gestetner MP 4001, Gestetner MP 4001G, Gestetner MP 5001, Gestetner MP 5001G, nashuatec MP 4001, nashuatec MP 5001, Rex-Rotary MP 4001, Rex-Rotary MP 5001, infotec MP 4001, infotec MP 5001 < Cont. >", "expiration_date": "2016-04-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2011-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0285_it0299.html", "toe_japan_name": "-----", "enhanced": { "product": "Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit MFP: Ricoh Aficio MP 4001, Ricoh Aficio MP 4001G, Ricoh Aficio MP 5001, Ricoh Aficio MP 5001G, Savin 9240, Savin 9240G, Savin 9250, Savin 9250G, Lanier LD140, Lanier LD140G, Lanier LD150, Lanier LD150G, Lanier MP 4001, Lanier MP 5001, Gestetner MP 4001, Gestetner MP 4001G, Gestetner MP 5001, Gestetner MP 5001G, nashuatec MP 4001, nashuatec MP 5001, Rex-Rotary MP 4001, Rex-Rotary MP 5001, infotec MP 4001, infotec MP 5001 FCU: Fax Option Type 5001 DataOverwriteSecurity Unit: DataOverwriteSecurity Unit Type I HDD Encryption Unit: HDD Encryption Unit Type A", "toe_version": "-Software System/Copy 1.02 Network Support 7.34 Scanner 01.24 Printer 1.01 Fax 02.00.00 RemoteFax 02.00.00 Web Support 1.04 Web Uapl 1.02 Network DocBox 1.00 animation 1.3 Option PCL 1.03 OptionPCLFont 1.01 Engine 1.00:01 OpePanel 1.08 LANG0 1.07 LANG1 1.07 -Hardware Ic Key 1100 Ic Hdd 01 -Options Data Erase Opt 1.01m GWFCU3-19(WW) 02.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "IEEE Std 2600.1-2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0285_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0285_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0285_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a digital multi-function product that conforms to the security requirement specification of \"IEEE Std 2600.1-2009\", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions. TOE security functionality The major security functions of this TOE are as follows: - Audit Function: Enables the TOE to record information related to security events and allows users to review it. - Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout. - Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs. - Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user. - Network Protection Function: Enables the TOE to protect network communications using encryption. - Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern. - Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption. - Security Management Function: Enables the TOE administrator to control security functions. - Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software. - Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines." } }, { "cert_id": "JISEC-CC-CRP-C0283", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Remote Communication Gate A Machine Code (First 4 characters) : D459 Firmware Version : A2.06-C2.04-P2.01-K2.02", "expiration_date": "2016-03-01", "claim": "EAL3", "certification_date": "2011-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0283_it0306.html", "toe_japan_name": "Remote Communication Gate A Machine Code (First 4 characters) : D459 Firmware Version : A2.06-C2.04-P2.01-K2.02", "enhanced": { "product": "Remote Communication Gate A", "toe_version": "Machine Code (First 4 characters) : D459 Firmware Version : A2.06-C2.04-P2.01-K2.02", "product_type": "Appliance for remote service", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0283_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0283_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0283_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a communication device that enables digital MFPs and printers (hereafter \"devices\") to be connected to the communication server (hereafter \"CS\") in the maintenance center. Functions this TOE can provide include notification of device troubles (service call function), automatic counter checking of prints (device counter collection function), automatic ordering of supplies such as toner (supply call function), and device firmware updating. It also provides Web-based user interface functions for TOE operations. TOE security functionality The major security functions this TOE can provide are as follows: - Communication data protection function between the TOE and the device for the service This function is used for communication between the TOE and devices for the service if the service call function, the device counter collection function, and the supply call function are enabled. The communication data between the TOE and the Ricoh device will be secured, and the data tampering will be detected by using a SSL protocol. - Communication data protection function between the TOE and the CS The TOE specifies only the genuine CS as the communication destination via Internet. The communication data between the TOE and the CS will be secured, and the data tampering will be detected by using a SSL protocol. - Communication data protection function between the TOE and computers This function is applied to data communication between the TOE and computers if Web-based functions are enabled. The communication data will be secured by using a SSL protocol. - User identification and authentication function The TOE identifies and authenticates users who access Web-based user interface functions. - Access control function This function restricts user access according to specified user roles. - RC Gate firmware verification function This function enables the TOE to check that the firmware (applications, shared parts of firmware, platforms, and the operating system) is genuine. - Security management function This function provides TOE management methods for the Administrator only. - Audit logging function This function enables the TOE to record the information related to security relevant events and allows only the administrator to review the audit logging." } }, { "cert_id": "JISEC-CC-CRP-C0282", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C35 Control Software A12130G050105 (Controller ROM) A12199G0040000 (Boot ROM)", "expiration_date": "2016-03-01", "claim": "EAL3", "certification_date": "2011-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0282_it0301.html", "toe_japan_name": "bizhub C35 Zentai Seigyo Software A12130G050105 (Controller ROM) A12199G0040000 (Boot ROM)", "enhanced": { "product": "Japanese : bizhub C35 Zentai Seigyo Software English : bizhub C35 Control Software", "toe_version": "A12130G050105 (Controller ROM) A12199G0040000 (Boot ROM)", "product_type": "Control Software for digital mfp", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0282_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the software which is installed in a digital Multi Function Peripheral (hereinafter referred to as \"mfp\") consisting of a copier, printer, scanner, and fax function, and controls the overall operation of the mfp. TOE security functionality This TOE offers a security function against disclosure of highly-confidential information stored in an mfp. In compliance with all sorts of overwritting standards, this TOE also offers an overwritting function to completely erase data on recording media such as HDD. This function is used when discarding an mfp or returning a leased one in order to prevent information leakage of an organization using the mfp." } }, { "cert_id": "JISEC-CC-CRP-C0281", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR22 C.11", "expiration_date": "2016-02-01", "claim": "EAL3", "revalidations": [ { "date": "2011-07", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0281_it0295_01.html" } ], "certification_date": "2011-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0281_it0295.html", "toe_japan_name": "MX-FR22 C.10", "enhanced": { "product": "MX-FR22", "toe_version": "C.10", "product_type": "Data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0281_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0281_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0281_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an \"MFD\"). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functionality The TOE counters unauthorized disclosure of image data by: - The encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD or the Flash memory in the MFD, - The cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, - The data erasure function, which automatically overwrites to erase image data no longer in use in storages such as HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, - The authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, - The confidential file function, which provides image data filed by users with password protection, and - The network protection functions, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - The fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0280", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C3371/C2270 DocuCentre-IV C5570/C4470/C3370/C3371/C2270 Series Controller Software for Asia Pacific Controller ROM Ver. 1.103.0", "expiration_date": "2016-01-01", "claim": "EAL3", "certification_date": "2010-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0280_it0303.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C3371/C2270 DocuCentre-IV C5570/C4470/C3370/C3371/C2270 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.103.0", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0280_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0280_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0280_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0279", "supplier": "KONICA MINOLTA, INC. (Former: Konica Minolta Business Technologies, Inc.)", "toe_overseas_name": "bizhub PRESS C8000 Image Control Program A1RF0Y0-00I1-G00-10", "expiration_date": "2015-12-01", "claim": "EAL3", "certification_date": "2010-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0279_it0288.html", "toe_japan_name": "bizhub PRESS C8000 Image Control Program A1RF0Y0-00I1-G00-10", "enhanced": { "product": "Japan : bizhub PRESS C8000 Image Control Program Overseas : bizhub PRESS C8000 Image Control Program", "toe_version": "A1RF0Y0-00I1-G00-10", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KONICA MINOLTA, INC.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0279_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0279_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0279_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE, that is installed with digital MFP manufactured by Konica Minolta Business Technologies, Inc., is a software product that provide the function of copier, printer and scanner. It prevents document data in HDD from disclosing during the abuse of functions such as copier, printer and scanner. TOE security functionality TOE provides the following security functions. - Identification and authentication function - Access control function - Audit function - Management function - CE function - Test function of HDD lock system" } }, { "cert_id": "JISEC-CC-CRP-C0278", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRESS C7000 / bizhub PRO C7000 / bizhub PRESS C7000P / bizhub PRO C7000P / ineo+ 7000 / bizhub PRESS C6000 / bizhub PRO C6000 / ineo+ 6000 Image Control Program A1DU0Y0-00I1-G00-10", "expiration_date": "2015-11-01", "claim": "EAL3", "certification_date": "2010-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0278_it0298.html", "toe_japan_name": "bizhub PRESS C7000 / bizhub PRO C7000 / bizhub PRESS C7000P / bizhub PRO C7000P / ineo+ 7000 / bizhub PRESS C6000 / bizhub PRO C6000 / ineo+ 6000 Image Control Program A1DU0Y0-00I1-G00-10", "enhanced": { "product": "Japan : bizhub PRESS C7000 / bizhub PRO C7000 / bizhub PRESS C7000P / bizhub PRO C7000P / ineo+ 7000 / bizhub PRESS C6000 / bizhub PRO C6000 / ineo+ 6000 Image Control Program Overseas : bizhub PRESS C7000 / bizhub PRO C7000 / bizhub PRESS C7000P / bizhub PRO C7000P / ineo+ 7000 / bizhub PRESS C6000 / bizhub PRO C6000 / ineo+ 6000 Image Control Program", "toe_version": "A1DU0Y0-00I1-G00-10", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0278_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE, that is installed with digital MFP manufactured by Konica Minolta Business Technologies, Inc., is a software product that provide the function of copier, printer and scanner. It prevents document data in HDD from disclosing during the abuse of functions such as copier, printer and scanner. TOE security functionality TOE provides the following security functions. - Identification and authentication function - Access control function - Audit function - Management function - CE function - Test function of HDD lock system TOE achieves the following security function requirements." } }, { "cert_id": "JISEC-CC-CRP-C0277", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Remote Communication Gate A Machine Code (First 4 characters) :D459 Firmware Version :A1.18-C1.14-P1.12-K1.04", "expiration_date": "2015-11-01", "claim": "EAL3", "certification_date": "2010-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0277_it0287.html", "toe_japan_name": "Remote Communication Gate A Machine Code (First 4 characters) :D459 Firmware Version :A1.18-C1.14-P1.12-K1.04", "enhanced": { "product": "Remote Communication Gate A", "toe_version": "Machine Code (First 4 characters) :D459 Firmware Version :A1.18-C1.14-P1.12-K1.04", "product_type": "Appliance for remote service", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0277_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0277_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0277_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a communication device that enables digital MFPs and printers (hereafter \"devices\") to be connected to the communication server (hereafter \"CS\") in the maintenance center. Functions this TOE can provide include notification of device troubles (service call function), automatic counter checking of prints (device counter collection function), automatic ordering of supplies such as toner (supply call function), and device firmware updating. It also provides Web-based user interface functions for TOE operations. TOE security functionality The major security functions this TOE can provide are as follows: - Communication data protection function between the TOE and the device for the service This function is used for communication between the TOE and devices for the service if the service call function, the device counter collection function, and the supply call function are enabled. The communication data between the TOE and the Ricoh device will be secured, and the data tampering will be detected by using a SSL protocol. - Communication data protection function between the TOE and the CS The TOE specifies only the CS as the communication destination via Internet. The communication data between the TOE and the CS will be secured, and the data tampering will be detected by using a SSL protocol. - Communication data protection function between the TOE and computers This function is applied to data communication between the TOE and computers if Web-based functions are enabled. The communication data will be secured by using a SSL protocol. - User identification and authentication function The TOE identifies and authenticates users who access Web-based user interface functions. - Access control function This function restricts user access according to specified user roles. - RC Gate firmware verification function This function enables the TOE to check that the firmware (applications, shared parts of firmware, platforms, and the operating system) is genuine. - Security management function This function provides TOE management methods for the Administrator only." } }, { "cert_id": "JISEC-CC-CRP-C0276", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C360 / bizhub C280 / bizhub C220 PKI Card System Control Software A0ED0Y0-0100-GM0-31", "expiration_date": "2015-11-01", "claim": "EAL3", "certification_date": "2010-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0276_it0285.html", "toe_japan_name": "bizhub C360 / bizhub C280 / bizhub C220 PKI Card System Control Software A0ED0Y0-0100-GM0-31", "enhanced": { "product": "bizhub C360 / bizhub C280 / bizhub C220 PKI Card System Control Software", "toe_version": "A0ED0Y0-0100-GM0-31", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0276_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0276_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0276_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image file when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the data written in HDD using ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent the danger using Fax function as a steppingstone to access internal network." } }, { "cert_id": "JISEC-CC-CRP-C0275", "supplier": "SKY Perfect JSAT Corporation", "toe_overseas_name": "S*Plex3 Cloud Storage Server System Version 1.00", "expiration_date": "2015-10-01", "claim": "EAL1+ ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "certification_date": "2010-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0275_it9277.html", "toe_japan_name": "S*Plex3 Cloud Storage Server System Version 1.00", "enhanced": { "product": "S*Plex3 Cloud Storage Server System", "toe_version": "Version 1.00", "product_type": "Cloud Storage Server System", "cc_version": "3.1", "assurance_level": "EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "vendor": "SKY Perfect JSAT Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE This TOE provides Internet Storage Service to ASP/SaaS providers, so that ASP/SaaS providers could use this service to provide their own services to general end-users. The data to be stored using this TOE are divided into fragments by erasure-correcting-coding. Fragments are stored in storage devices located in multiple sites. Fragments will be assembled and decoded to the original data on demand. Even if some of the fragments are corrupted due to system failure or natural disaster, the original data are expected to be retrievable, according to the features of erasure-correcting-coding. Several security functions are provided in this TOE. (1) Access control function (e.g., prevention against adverse tampering and exposure); (2) distributed date restore function; (3) integrity validation function; (4) trusted channel function (e.g., encryption of transmitted data). TOE security functionality - Access control Function The function to control access to data based on an Access control list. - Distributing/Restoring Function The function for data distribution/ data restoration. - Integrity validation Function The function to verify the integrity of data storage. - Trusted channel Function The function to transmit and receive data based on SSL / TLS protocols." } }, { "cert_id": "JISEC-CC-CRP-C0274", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Following MFP with Fax Option MFP: Ricoh Aficio MP 6001 SP, Ricoh Aficio MP 7001 SP, Ricoh Aficio MP 8001 SP, Ricoh Aficio MP 9001 SP, Savin 9060sp, Savin 9070sp, Savin 9080sp, Savin 9090sp, Lanier LD360sp, Lanier LD370sp, Lanier LD380sp, Lanier LD390sp, Lanier MP 6001 SP, Lanier MP 7001 SP, Lanier MP 8001 SP, Lanier MP 9001 SP, Gestetner MP 6001 SP, Gestetner MP 7001 SP, Gestetner MP 8001 SP, Gestetner MP 9001 SP, nashuatec MP 6001 SP, nashuatec MP 7001 SP, nashuatec MP 8001 SP, nashuatec MP 9001 SP, < Cont. >", "expiration_date": "2015-10-01", "claim": "EAL3", "certification_date": "2010-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0274_it0292.html", "toe_japan_name": "MFP: imagio MP 6001 SP, imagio MP 7501 SP Fax Option: imagio FAX Unit Type 18", "enhanced": { "product": "Following MFP with Fax Option JAPAN: MFP: imagio MP 6001 SP, imagio MP 7501 SP Fax Option: imagio FAX Unit Type 18 Overseas: MFP: Ricoh Aficio MP 6001 SP, Ricoh Aficio MP 7001 SP, Ricoh Aficio MP 8001 SP, Ricoh Aficio MP 9001 SP, Savin 9060sp, Savin 9070sp, Savin 9080sp, Savin 9090sp, Lanier LD360sp, Lanier LD370sp, Lanier LD380sp, Lanier LD390sp, Lanier MP 6001 SP, Lanier MP 7001 SP, Lanier MP 8001 SP, Lanier MP 9001 SP, Gestetner MP 6001 SP, Gestetner MP 7001 SP, Gestetner MP 8001 SP, Gestetner MP 9001 SP, nashuatec MP 6001 SP, nashuatec MP 7001 SP, nashuatec MP 8001 SP, nashuatec MP 9001 SP, Rex-Rotary MP 6001 SP, Rex-Rotary MP 7001 SP, Rex-Rotary MP 8001 SP, Rex-Rotary MP 9001 SP, infotec MP 6001 SP, infotec MP 7001 SP, infotec MP 8001 SP, infotec MP 9001 SP Fax Option: Fax Option Type 9001", "toe_version": "MFP Version : Software System/Copy 1.15 Network Support 8.65 Scanner 01.19 Printer 1.15 Fax 02.00.00 Web Support 1.09 Web Uapl 1.05 Network Doc Box 1.04 Hardware Ic Key 1100 Ic Ctlr 03 FCU Version : GWFCU3-16(WW) 02.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0274_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0274_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0274_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a digital MFP which can digitize and manage as well as print and fax paper documents. It also provides a secure environment for using copier, scanner, printer, document server, and fax (optional) functions. TOE security functionality The major security functions of the TOE are: - Audit, which creates audit logs of security events. - Identification and Authentication, which identifies and authenticates users. - Document Data Access Control, which controls each users operation of documents. - Stored Data Protection, which encrypts stored document data on hard disk. - Network Communication Data Protection, which encrypts network communications. - Security Management, which provides total management of the security function settings. - Service Mode Lock, which controls the maintenance functions. - Telephone Line Intrusion Protection, which permits fax only communication. - MFP Control Software Verification, which checks the integrity of the software." } }, { "cert_id": "JISEC-CC-CRP-C0273", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C652 / bizhub C552 / bizhub C452 PKI Card System Control Software A0P00Y0-0100-GM0-31", "expiration_date": "2015-10-01", "claim": "EAL3", "certification_date": "2010-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0273_it0284.html", "toe_japan_name": "bizhub C652 / bizhub C552 / bizhub C452 PKI Card System Control Software A0P00Y0-0100-GM0-31", "enhanced": { "product": "bizhub C652 / bizhub C552 / bizhub C452 PKI Card System Control Software", "toe_version": "A0P00Y0-0100-GM0-31", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0273_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0273_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0273_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”), including the operation control processing and the image data management triggered by the panel of the main body of MFP or through the network. TOE security functionality This TOE mainly provides the following security functions. - Encryption Print Function The function that receives the encrypted print data and can print the print data only with a right IC card. - S/MIME Encryption Function The function to encrypt an image file when transmitting it by e-mail. - Digital Signature Function The function to add the digital signature by using the function of IC card when transmitting an image data by e-mail. - HDD Encryption Function The function to encrypt the data written in HDD using ASIC. - All Area Overwrite Deletion Function The function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards. - Fax Unit Control Function The function to prevent the danger using Fax function as a steppingstone to access internal network." } }, { "cert_id": "JISEC-CC-CRP-C0272", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit (E) Software Type IV V1.00", "expiration_date": "2015-10-01", "claim": "EAL3", "certification_date": "2010-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0272_it9269.html", "toe_japan_name": "Data Security Kit (E) Software Type IV V1.00", "enhanced": { "product": "Data Security Kit (E) Software Type IV", "toe_version": "V1.00", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0272_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0272_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0272_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 552ci - CS 552ci - CDC 1850/DCC 2850 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0271", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit (E) Software Type III V1.00E", "expiration_date": "2015-10-01", "claim": "EAL3", "certification_date": "2010-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0271_it9268.html", "toe_japan_name": "-----", "enhanced": { "product": "Data Security Kit (E) Software Type III", "toe_version": "V1.00E", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0271_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0271_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0271_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 300i - TASKalfa 300iG - CS 300i - CD 1430/DC 2430 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0270", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "-----", "expiration_date": "2015-10-01", "claim": "EAL3", "certification_date": "2010-09-01", "toe_overseas_link": null, "toe_japan_name": "Data Security Kit (E) Software Type III V1.00J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0270_it9267.html", "enhanced": { "product": "Data Security Kit (E) Software Type III", "toe_version": "V1.00J", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0270_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0270_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0270_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 300i This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0269", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit (E) Software Type II V1.00E", "expiration_date": "2015-10-01", "claim": "EAL3", "certification_date": "2010-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0269_it9266.html", "toe_japan_name": "-----", "enhanced": { "product": "Data Security Kit (E) Software Type II", "toe_version": "V1.00E", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0269_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0269_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0269_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 520i - TASKalfa 420i - TASKalfa 520iG - TASKalfa 420iG - CS 520i - CS 420i - CD 1252/DC 2252 - CD 1242/DC 2242 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0268", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "-----", "expiration_date": "2015-10-01", "claim": "EAL3", "certification_date": "2010-09-01", "toe_overseas_link": null, "toe_japan_name": "Data Security Kit (E) Software Type II V1.00J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0268_it9265.html", "enhanced": { "product": "Data Security Kit (E) Software Type II", "toe_version": "V1.00J", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0268_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0268_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0268_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 520i - TASKalfa 420i This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0267", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit (E) Software Type I V1.00", "expiration_date": "2015-09-01", "claim": "EAL3", "certification_date": "2010-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0267_it9264.html", "toe_japan_name": "Data Security Kit (E) Software Type I V1.00", "enhanced": { "product": "Data Security Kit (E) Software Type I", "toe_version": "V1.00", "product_type": "Data protection function in digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0267_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0267_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0267_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the firmware that controls Multi Function Printer (MFP and henceforth abbreviation) and the ASIC that operates security algorithm after the license of Data Security Kit (E) is applied to the following MFPs that mainly have copy function, scanner function and printer function. - TASKalfa 500ci - TASKalfa 400ci - TASKalfa 300ci - TASKalfa 250ci - TASKalfa 500ciG - TASKalfa 400ciG - TASKalfa 300ciG - TASKalfa 250ciG - CS 500ci - CS 400ci - CS 300ci - CS 250ci - CDC 1840/DCC 2840 - CDC 1740/DCC 2740 - CDC 1730/DCC 2730 - CDC 1725/DCC 2725 This TOE provides the copy function, the scanner function and the printer function as the basic functions of the MFP by controlling the MFP. In addition, the box function to store the image data is provided. TOE security functionality The TOE provides the following security functions that protect against leakage of the image data stored in HDD during the use of the above-mentioned basic functions. - Image Data Encryption Function - Image Data Overwrite-Erase Function" } }, { "cert_id": "JISEC-CC-CRP-C0266", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Following MFP with FCU(Fax Option Type C5000) MFP: Ricoh Aficio MP C2800, Ricoh Aficio MP C2800G, Ricoh Aficio MP C3300, Ricoh Aficio MP C3300G, Savin C2828, Savin C2828G, Savin C3333, Savin C3333G, Lanier LD528C, Lanier LD528CG, Lanier LD533C, Lanier LD533CG, Lanier MP C2800, Lanier MP C3300, Gestetner MP C2800, Gestetner MP C3300, nashuatec MP C2800, nashuatec MP C3300, Rex-Rotary MP C2800, Rex-Rotary MP C3300, infotec MP C2800, infotec MP C3300 FCU: Fax Option Type C5000 MFP Software /Hardware Version : < Cont. >", "expiration_date": "2015-09-01", "claim": "EAL3", "certification_date": "2010-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0266_it0289.html", "toe_japan_name": "-----", "enhanced": { "product": "Following MFP with FCU(Fax Option Type C5000) MFP: Ricoh Aficio MP C2800, Ricoh Aficio MP C2800G, Ricoh Aficio MP C3300, Ricoh Aficio MP C3300G, Savin C2828, Savin C2828G, Savin C3333, Savin C3333G, Lanier LD528C, Lanier LD528CG, Lanier LD533C, Lanier LD533CG, Lanier MP C2800, Lanier MP C3300, Gestetner MP C2800, Gestetner MP C3300, nashuatec MP C2800, nashuatec MP C3300, Rex-Rotary MP C2800, Rex-Rotary MP C3300, infotec MP C2800, infotec MP C3300 FCU: Fax Option Type C5000", "toe_version": "MFP Software /Hardware Version : Software System/Copy 1.22 Network Support 8.27 Scanner 01.23 Printer 1.22 Fax 04.00.00 Web Support 1.10 Web Uapl 1.08 Network Doc Box 1.03 Hardware Ic Key 1100 Ic Ctlr 03 FCU Version : GWFCU3-13(WW) 04.04.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0266_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0266_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0266_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a digital MFP which can digitize and manage as well as print and fax paper documents. It also provides a secure environment for using copier, scanner, printer, document server, and fax (optional) functions. TOE security functionality The major security functions of the TOE are: - Audit, which creates audit logs of security events. - Identification and Authentication, which identifies and authenticates users. - Document Data Access Control, which controls each users operation of documents. - Stored Data Protection, which encrypts stored document data on hard disk. - Network Communication Data Protection, which encrypts network communications. - Security Management, which provides total management of the security function settings. - Service Mode Lock, which controls the maintenance functions. - Telephone Line Intrusion Protection, which permits fax only communication. - MFP Control Software Verification, which checks the integrity of the software." } }, { "cert_id": "JISEC-CC-CRP-C0265", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 Control Software A1UD0Y0-0100-GM0-00", "expiration_date": "2011-04-01", "claim": "EAL3", "certification_date": "2010-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0265_it9283.html", "toe_japan_name": "bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 Zentai Seigyo Software A1UD0Y0-0100-GM0-00", "enhanced": { "product": "Japanese : bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 Zentai Seigyo Software English : bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 / bizhub 7828 / ineo 423 / ineo 363 / ineo 283 / ineo 223 Control Software", "toe_version": "A1UD0Y0-0100-GM0-00", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0265_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0265_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0265_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as 溺FP・ or through the network, and provides the protection from exposure of the highly confidential documents stored in MFP. Moreover, for the danger of illegally bringing out HDD, which stores image data in MFP, TOE can encrypt all the data written in HDD including image data using ASIC (Application Specific Integrated Circuit). Besides, TOE provides the function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards, and the function that controls the access from the public telephone line against the danger using Fax function as a steppingstone to access internal network. TOE security functionality TOE provides the following security functions. - Administrator function - SNMP administrator function - Service mode function - User function - User box function - Secure print function - ID & print function - All area overwrite deletion function - Encryption key generation function - Authentication Failure Frequency Reset function - Trusted Channel function - S/MIME encryption processing function - External Server authentication operation support function - ASIC support function - WebDAV administrator function - Fax unit control function" } }, { "cert_id": "JISEC-CC-CRP-C0264", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 PKI Card System Control Software A1UD0Y0-0100-G00-20", "expiration_date": "2015-09-01", "claim": "EAL3", "certification_date": "2010-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0264_it9282.html", "toe_japan_name": "bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 PKI Card System Control Software A1UD0Y0-0100-G00-20", "enhanced": { "product": "bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 PKI Card System Control Software", "toe_version": "A1UD0Y0-0100-G00-20", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0264_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0264_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0264_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”) or through the network and supports the protection from exposure of the highly confidential documents exchanged between MFP and client PC. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the encryption function by the ASIC. Besides, TOE provides the function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards, and the function that controls the access from the public telephone line against the danger using Fax function as a steppingstone to access internal network. TOE security functionality TOE provides the following security functions. - Administrator function - Service mode function - Encryption Print Function - S/MIME Encryption Function - Digital Signature Function - All area overwrite deletion function - Encryption key generation function - Authentication Failure Frequency Reset function - ASIC Support Function - PKI Support Function - Fax unit control function" } }, { "cert_id": "JISEC-CC-CRP-C0263", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C35 Control Software A12130G0020205 (Controller ROM) A12199G0010000 (Boot ROM)", "expiration_date": "2015-09-01", "claim": "EAL3", "certification_date": "2010-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0263_it9259.html", "toe_japan_name": "bizhub C35 Zentai Seigyo Software A12130G0020205 (Controller ROM) A12199G0010000 (Boot ROM)", "enhanced": { "product": "Japanese : bizhub C35 Zentai Seigyo Software English : bizhub C35 Control Software", "toe_version": "A12130G0020205(Controller ROM) A12199G0010000(Boot ROM)", "product_type": "Control Software for digital mfp", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0263_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the software which is installed in a digital Multi Function Peripheral (hereinafter referred to as \"mfp\") consisting of a copier, printer, scanner, and fax function, and controls the overall operation of the mfp. TOE security functionality This TOE offers a security function against disclosure of highly-confidential information stored in an mfp. In compliance with all sorts of overwritting standards, this TOE also offers an overwritting function to completely erase data on recording media such as HDD. This function is used when discarding an mfp or returning a leased one in order to prevent information leakage of an organization using the mfp." } }, { "cert_id": "JISEC-CC-CRP-C0262", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Following MFP with FCU(Fax Option Type 5001) MFP: Ricoh Aficio MP 4001, Ricoh Aficio MP 4001G, Ricoh Aficio MP 5001, Ricoh Aficio MP 5001G, Savin 9240, Savin 9240G, Savin 9250, Savin 9250G, Lanier LD140, Lanier LD140G, Lanier LD150, Lanier LD150G, Lanier MP 4001, Lanier MP 5001, Gestetner MP 4001, Gestetner MP 4001G, Gestetner MP 5001, Gestetner MP 5001G, nashuatec MP 4001, nashuatec MP 5001, Rex-Rotary MP 4001, Rex-Rotary MP 5001, infotec MP 4001, infotec MP 5001 FCU: Fax Option Type 5001 < Cont. >", "expiration_date": "2015-08-01", "claim": "EAL3", "revalidations": [ { "date": "2011-02", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0262_it0290_01.html" } ], "certification_date": "2010-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0262_it0290.html", "toe_japan_name": "-----", "enhanced": { "product": "Following MFP with FCU(Fax Option Type 5001) MFP: Ricoh Aficio MP 4001, Ricoh Aficio MP 4001G, Ricoh Aficio MP 5001, Ricoh Aficio MP 5001G, Savin 9240, Savin 9240G, Savin 9250, Savin 9250G, Lanier LD140, Lanier LD140G, Lanier LD150, Lanier LD150G, Lanier MP 4001, Lanier MP 5001, Gestetner MP 4001, Gestetner MP 4001G, Gestetner MP 5001, Gestetner MP 5001G, nashuatec MP 4001, nashuatec MP 5001, Rex-Rotary MP 4001, Rex-Rotary MP 5001, infotec MP 4001, infotec MP 5001 FCU: Fax Option Type 5001", "toe_version": "MFP Software /Hardware Version : Software System/Copy 1.00 Network Support 7.29.3 Scanner 01.24 Printer 1.00 Fax 01.00.00 Web Support 1.00.1 Web Uapl 1.02 Network Doc Box 1.00 Ic Key 1100 Hardware Ic Hdd 01 FCU Version : GWFCU3-19(WW) 01.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0262_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0262_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0262_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a digital MFP which can digitize and manage as well as print and fax paper documents. It also provides a secure environment for using copier, scanner, printer, document server, and fax (optional) functions. TOE security functionality The major security functions of the TOE are: - Audit, which creates audit logs of security events. - Identification and Authentication, which identifies and authenticates users. - Document Data Access Control, which controls each users operation of documents. - Stored Data Protection, which encrypts stored document data on hard disk. - Network Communication Data Protection, which encrypts network communications. - Security Management, which provides total management of the security function settings. - Service Mode Lock, which controls the maintenance functions. - Telephone Line Intrusion Protection, which permits fax only communication. - MFP Control Software Verification, which checks the integrity of the software." } }, { "cert_id": "JISEC-CC-CRP-C0261", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Following MFP with FCU(Fax Option Type 3351) MFP: Ricoh Aficio MP 2851, Ricoh Aficio MP 3351, Savin 9228, Savin 9233, Lanier LD528, Lanier LD533, Lanier MP 2851, Lanier MP 3351, Gestetner MP 2851, Gestetner MP 3351, nashuatec MP 2851, nashuatec MP 3351, Rex-Rotary MP 2851, Rex-Rotary MP 3351, infotec MP 2851, infotec MP 3351 FCU: Fax Option Type 3351 MFP Software /Hardware Version : Software System/Copy 1.00 Network Support 7.29.3 Scanner 01.12 Printer 1.01 Fax 01.00.00 Web Support 1.01 Web Uapl 1.03 < Cont. >", "expiration_date": "2015-07-01", "claim": "EAL3", "certification_date": "2010-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0261_it0291.html", "toe_japan_name": "-----", "enhanced": { "product": "Following MFP with FCU(Fax Option Type 3351) MFP: Ricoh Aficio MP 2851, Ricoh Aficio MP 3351, Savin 9228, Savin 9233, Lanier LD528, Lanier LD533, Lanier MP 2851, Lanier MP 3351, Gestetner MP 2851, Gestetner MP 3351, nashuatec MP 2851, nashuatec MP 3351, Rex-Rotary MP 2851, Rex-Rotary MP 3351, infotec MP 2851, infotec MP 3351 FCU: Fax Option Type 3351", "toe_version": "MFP Software /Hardware Version : Software System/Copy 1.00 Network Support 7.29.3 Scanner 01.12 Printer 1.01 Fax 01.00.00 Web Support 1.01 Web Uapl 1.03 Network Doc Box 1.00 Ic Key 1100 Hardware Ic Hdd 01 FCU Version : GWFCU3-20(WW) 01.00.00", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0261_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0261_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0261_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a digital MFP (hereafter, MFP) for digitizing paper documents, managing digitized documents, and printing documents and faxing documents. Also, it provides the secure environment for using the functions of copier, scanner, printer, document server, and fax (optional). TOE security functionality The major security functions for the TOE are as follows: - Audit Function to record security events as audit logs. - Stored Data Protection Function to encrypt the stored document data on hard disk. - Document Data Access Control Function to control the document operation for each user. - Telephone Line Intrusion Protection Function to accept the fax communication only. - Identification and Authentication Function to identify and authenticate users. - Security Management Function to totally manage the settings of security functions (including Service Mode Lock Function). - MFP Control Software Verification Function to check the integrity of the control software. - Network Communication Data Protection Function to encrypt the network communication." } }, { "cert_id": "JISEC-CC-CRP-C0260", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Control Software A0P00Y0-0100-GM0-22", "expiration_date": "2011-04-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0260_it9275.html", "toe_japan_name": "bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Zentai Seigyo Software A0P00Y0-0100-GM0-22", "enhanced": { "product": "Japanese : bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Zentai Seigyo Software English : bizhub C652 / bizhub C652DS / bizhub C552 / bizhub C552DS / bizhub C452 / ineo+ 652 / ineo+ 652DS / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Control Software", "toe_version": "A0P00Y0-0100-GM0-22", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as 溺FP・ or through the network, and provides the protection from exposure of the highly confidential documents stored in MFP. Moreover, for the danger of illegally bringing out HDD, which stores image data in MFP, TOE can encrypt all the data written in HDD including image data using ASIC (Application Specific Integrated Circuit). Besides, TOE provides the function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards, and the function that controls the access from the public telephone line against the danger using Fax function as a steppingstone to access internal network. TOE security functionality TOE provides the following security functions. - Administrator function - SNMP administrator function - Service mode function - User function - User box function - Secure print function - ID & print function - All area overwrite deletion function - Encryption key generation function - Authentication Failure Frequency Reset function - Trusted Channel function - S/MIME encryption processing function - External Server authentication operation support function - ASIC support function - WebDAV administrator function - Fax unit control function" } }, { "cert_id": "JISEC-CC-CRP-C0259", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c Control Software A0ED0Y0-0100-GM0-22", "expiration_date": "2011-04-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0259_it9274.html", "toe_japan_name": "bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c Zentai Seigyo Software A0ED0Y0-0100-GM0-22", "enhanced": { "product": "Japanese : bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c Zentai Seigyo Software English : bizhub C360 / bizhub C280 / bizhub C220 / bizhub C7728 / bizhub C7722 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c Control Software", "toe_version": "A0ED0Y0-0100-GM0-22", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as 溺FP・ or through the network, and provides the protection from exposure of the highly confidential documents stored in MFP. Moreover, for the danger of illegally bringing out HDD, which stores image data in MFP, TOE can encrypt all the data written in HDD including image data using ASIC (Application Specific Integrated Circuit). Besides, TOE provides the function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards, and the function that controls the access from the public telephone line against the danger using Fax function as a steppingstone to access internal network. TOE security functionality TOE provides the following security functions. - Administrator function - SNMP administrator function - Service mode function - User function - User box function - Secure print function - ID & print function - All area overwrite deletion function - Encryption key generation function - Authentication Failure Frequency Reset function - Trusted Channel function - S/MIME encryption processing function - External Server authentication operation support function - ASIC support function - WebDAV administrator function - Fax unit control function" } }, { "cert_id": "JISEC-CC-CRP-C0258", "supplier": "RISO KAGAKU CORPORATION", "toe_overseas_name": "RISO Security Package 1.0", "expiration_date": "2015-07-01", "claim": "EAL3", "certification_date": "2010-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0258_it9260.html", "toe_japan_name": "RISO Security Package 1.0", "enhanced": { "product": "Japanese name: RISO Security Package English name: RISO Security Package", "toe_version": "1.0", "product_type": "Data security option software for the Multi Function Printer", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RISO KAGAKU CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/c0258_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is an optional software of data security for the Multi Function Printer ( MFP ) RISO KAGAKU CORPORATION offers. The software encrypts image data, including temporary image data, that are handled in Printer Function or Copy Function of the MFP when the image data are written into a Hard Disc Drive ( HDD ) in the MFP, decrypts the image data when they are read from the HDD, and overwrites random data not to reproduce the image data when the image data are deleted from the HDD. TOE security functionality TOE provides the following security functions. - Encrypt and decrypt confidential information in HDD - Overwrite to erase the residual data - Overwrite to erase the data all at once" } }, { "cert_id": "JISEC-CC-CRP-C0257", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 7120 Controller ROM Ver. 1.201.6 IOT ROM Ver. 4.21.0 ADF ROM Ver. 7.06.50", "expiration_date": "2015-07-01", "claim": "EAL3", "certification_date": "2010-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0257_it9281.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 7120", "toe_version": "Controller ROM Ver. 1.201.6 IOT ROM Ver. 4.21.0 ADF ROM Ver. 7.06.50", "product_type": "Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0257_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0257_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0257_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, scan, and fax functions as basic functions. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator痴 Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0256", "supplier": "Humming Heads, Inc.", "toe_overseas_name": "-----", "expiration_date": "2015-07-01", "claim": "EAL3", "certification_date": "2010-06-01", "toe_overseas_link": null, "toe_japan_name": "Security Platform evolution /SV CC Ver.2.0.9.4", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0256_it9262.html", "enhanced": { "product": "Security Platform evolution /SV CC", "toe_version": "Ver.2.0.9.4", "product_type": "Software for countermeasures against information leakage", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Humming Heads, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is software for countermeasures against information leakages for PCs running Windows 7 or Windows Server 2008. The purpose of the TOE is to prevent files being leaked to anybody other than those who are intended. The TOE is a server-client product used in Windows domain environments as well as in mobile environments. Administrators use the TOE's server functions to collectively control its client functions for end-users. To prevent information leakages the TOE has the following security functions: a function that limits application programs and their operations that end users can use in taking files out with removable media, Internet browsers, or e-mails, a function that automatically encrypts taken-out files, and a function that encrypts hard-disks in client PCs. The TOE also has an administrative function and an audit function for administrating the security functions. TOE security functionality The TOE has the following security functions. - Write control function A function that restricts application programs that end users can use in taking files out. - SV encryption function A function that automatically encrypts taken-out files and decrypts brought-back files. It also restricts files from being uploaded via HTTP protocols on the Internet and the data in files from being pasted into Web pages and e-mailers. - Self-propelled encryption function A function that encrypts files in an executable file format that allows self decryption in an environment where the TOE is not installed. - Storage encryption function A function that encrypts a whole hard-disk. - Audit function A function that outputs logs on the files operated and enables checking by administrators. - Administrative function A function that collectively controls setting of the security functions." } }, { "cert_id": "JISEC-CC-CRP-C0255", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR15 C.10", "expiration_date": "2015-06-01", "claim": "EAL3", "certification_date": "2010-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0255_it9273.html", "toe_japan_name": "MX-FR15 C.10", "enhanced": { "product": "MX-FR15", "toe_version": "C.10", "product_type": "Data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0255_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0255_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0255_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is firmware to enhance security functionality of a Multi-Function Device (hereafter referred to as \"MFD\"). It is an option that implements security functions and controls the entire MFD when installed instead of the MFD standard firmware. TOE security functionality To counter attempts to steal image data in an MFD, the TOE provides such security functions as: - The cryptographic operation function: Encrypts the image data that the MFD manages before storing to the Flash memory in the MFD, - The data clear function: Overwrites random or fixed values over the storage area that the spooled image data occupy in the volatile memory and Flash memory in the MFD." } }, { "cert_id": "JISEC-CC-CRP-C0254", "supplier": "Fuji Xerox Co., Ltd", "toe_overseas_name": "Fuji Xerox DocuCentre-IV C2260 Series Controller Software for Asia Pacific Controller ROM Ver. 1.120.28", "expiration_date": "2015-05-01", "claim": "EAL3", "certification_date": "2010-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0254_it9280.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-IV C2260 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.120.28", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0254_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0254_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0254_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator痴 Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0253", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type I Software 1.02m", "expiration_date": "2015-04-01", "claim": "EAL3", "revalidations": [ { "date": "2013-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0253_it9279_07.html" } ], "certification_date": "2010-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0253_it9279.html", "toe_japan_name": "imagio Security Card Type 9 Software 1.01m", "enhanced": { "product": "imagio Security Card Type 9 Software (Japanese name) DataOverwriteSecurity Unit Type I Software (English name)", "toe_version": "1.01m", "product_type": "Software to overwrite data", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0253_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0253_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0253_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product(MFP). This product is available for the following MFPs; - Ricoh imagio MP 4000/5000 series - Ricoh Aficio MP 4000/5000 series - Savin 9040/9050 series - Lanier LD 040/050 series - Lanier MP 4000/5000 series - Gestetner MP 4000/5000 series - infotec MP 4000/5000 series - nashuatec MP 4000/5000 series - Rex-Rotary MP 4000/5000 series TOE security functionality Same as above. Notes: overwrite specified area" } }, { "cert_id": "JISEC-CC-CRP-C0252", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type H Software 1.02x", "expiration_date": "2015-04-01", "claim": "EAL3", "revalidations": [ { "date": "2013-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0252_it9278_08.html" } ], "certification_date": "2010-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0252_it9278.html", "toe_japan_name": "imagio Security Card Type 7 Software 1.01x", "enhanced": { "product": "imagio Security Card Type 7 Software (Japanese name) DataOverwriteSecurity Unit Type H Software (English name)", "toe_version": "1.01x", "product_type": "Software to overwrite data", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0252_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0252_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0252_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product(MFP). This product is available for the following MFPs; - Ricoh imagio MP C6000/C7500 series - Ricoh Aficio MP C6000/C7500 series - Savin C6055/C7570 series - Lanier LD260c/275c series - Lanier MP C6000/C7500 series - Gestetner MP C6000/C7500 series - infotec MP C6000/C7500 series - nashuatec MP C6000/C7500 series - Rex-Rotary MP C6000/C7500 series TOE security functionality Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0251", "supplier": "FeliCa Networks, Inc.", "toe_overseas_name": "-----", "expiration_date": "2015-04-01", "claim": "EAL4+ AVA_VLA.3, ALC_FLR.1", "certification_date": "2010-03-01", "toe_overseas_link": null, "toe_japan_name": "Mobile FeliCa IC chip firmware (T6N version) 06 (T6N version)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0251_it8212.html", "enhanced": { "product": "Mobile FeliCa IC chip firmware (T6N version)", "toe_version": "06 (T6N version)", "product_type": "IT Product (IC chip firmware)", "cc_version": "2.3", "assurance_level": "EAL4 Augmented with AVA_VLA.3, ALC_FLR.1", "vendor": "FeliCa Networks, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE The Target of Evaluation (TOE) is the firmware for the mobile FeliCa IC chip which is employed by IT equipments such as mobile phones and contactless smart card reader/writers. The TOE is embedded in the ROM of the mobile FeilCa IC chips, and is composed of three different functions; 1) \"the contactless IC card function\" - accessing memory via the wireless interface; 2) \"the contact IC card function\" - accessing memory via the wired interface; 3) \"the reader/writer function\" - accessing to another contactless IC card. Several security features included in these functions deliver the means of secure data management. TOE security functions The TOE includes security functions such as \"authentication\", \"access control\", \"encrypted communication\" and \"data protection\". These functions avoid wiretapping, falsification, information usage without right permission, data corruption due to power loss and abnormal state due to hardware trouble, and ensure data integrity, correct operations and confidentiality." } }, { "cert_id": "JISEC-CC-CRP-C0250", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox 4112/4127 Copier/Printer Controller+PS ROM Ver. 1.211.8 IOT ROM Ver. 46.18.0 IIT ROM Ver. 15.6.1 IIT Option ROM Ver. 14.0.4 ADF ROM Ver. 12.2.7", "expiration_date": "2015-04-01", "claim": "EAL3", "certification_date": "2010-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0250_it9272.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox 4112/4127 Copier/Printer", "toe_version": "Controller+PS ROM Ver. 1.211.8 IOT ROM Ver. 46.18.0 IIT ROM Ver. 15.6.1 IIT Option ROM Ver. 14.0.4 ADF ROM Ver. 12.2.7", "product_type": "Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0250_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0250_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0250_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, and scan as basic functions. The TOE is assumed to be used, at general office, from the control panel, and clients (for general user and system administrator) and servers which are linked to the TOE via internal network. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator痴 Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection" } }, { "cert_id": "JISEC-CC-CRP-C0249", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C2270, DocuCentre-IV C5570/C4470/C3370/C2270 Series Controller Software for Asia Pacific Controller ROM Ver.1.101.12", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2010-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0249_it9271.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C2270, DocuCentre-IV C5570/C4470/C3370/C2270 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver.1.101.12", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0249_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0249_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0249_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator痴 Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0248", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2015-04-01", "claim": "EAL3", "certification_date": "2010-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-IV C2260 Series Controller Software Controller ROM Ver. 1.0.25", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0248_it9270.html", "enhanced": { "product": "Fuji Xerox DocuCentre-IV C2260 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.25", "product_type": "Control Software for Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0248_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0248_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0248_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Device (MFD) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functionality To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator’s Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0246", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "-----", "expiration_date": "2015-03-01", "claim": "EAL3+ ALC_FLR.2 PP", "certification_date": "2010-02-01", "toe_overseas_link": null, "toe_japan_name": "Ricoh imagio MP 5000SP/4000SP with security card Type 9 - Firmware Configuration System VersionV2.16-00 System/Copy1.11.1, Network Support7.26, Network DocBox1.10C, Web Support1.59, Web Uapl1.15, animation1.3, Scanner01.24, RPDL7.33, Printer;1.11, MSIS7.15.02, RPCS Font1.01, Engine1.04:05, OpePanel1.01, LANG01.01, LANG11.01, ADF15.000:15 - ASIC Ic Key1100 - Option Data Erase Opt1.01m", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0246_it9257.html", "enhanced": { "product": "Ricoh imagio MP 5000SP/4000SP with security card Type 9", "toe_version": "- Firmware Configuration System VersionV2.16-00 System/Copy1.11.1 Network Support7.26 Network DocBox1.10C Web Support1.59 Web Uapl1.15 animation1.3 Scanner01.24 RPDL7.33 Printer1.11 MSIS7.15.02 RPCS Font1.01 Engine1.04:05 OpePanel1.01 LANG01.01 LANG11.01 ADF15.000:15 - ASIC Ic Key1100 - Option Data Erase Opt1.01m", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3 Augmented with ALC_FLR.2", "protection_profile": "2600.1, Protection Profile for Hardcopy Devices, Operational Environment A 1.0, dated June 2009", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0246_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0246_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0246_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE conforms to the international security standard: \"IEEE Std 2600.1TM-2009\" security Protection Profile for Digital Multi-function Products. The TOE is a digital Multi-function Product which is composed of Copy Function, Scanner Function, Printer Function and Document Server Function, and it creates a safe environment for customers to use the functions. TOE security functionality The main security functions are described as follows: - Audit Function: to generate / review audit log of the event. - Identification and Authentication Function: to identify and authenticate users, to lock out, to protect passwords, and to enforce automated logout. - Access Control Function: to control available functions for each user, and to control the document operation. - Network Protection Function: to protect information on the Network with use of the encrypted communication. - Residual Data Delete Function: to overwrite the residual data on the Hard Disk with the specific pattern data. - Security Management Function: to make the administrators control the security functions. - Software Verification Function: to ensure the genuine control software by verifying the integrity of the executable codes." } }, { "cert_id": "JISEC-CC-CRP-C0245", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR14 C.12", "expiration_date": "2015-03-01", "claim": "EAL3", "revalidations": [ { "date": "2011-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0245_it9263_02.html" } ], "certification_date": "2010-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0245_it9263.html", "toe_japan_name": "MX-FR14 C.10", "enhanced": { "product": "MX-FR14", "toe_version": "C.10", "product_type": "Data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0245_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0245_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0245_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an “MFD”. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. ROMs in this product replace standard firmware ROMs in an MFD. Among MFD models that the TOE supports, some MFD models require a Sharp genuine option that contains an HDD, in order that the TOE can run on them. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functionality The TOE counters unauthorized disclosure of image data by: a) The encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD or the Flash memory in the MFD, b) The cryptographic key generation function, generates a seed for a cryptographic key once when the TOE is installed, and generates a constant cryptographic key from the seed whenever the MFD is powered, and stores the key in a volatile memory for the encryption function, c) The data erasure function, which automatically overwrites to erase image data no longer in use in storages such as HDD, and overwrites to erase all data when invoked by the administrator of an MFD in use or no longer in use, d) The authentication function, which authenticates the TOE administrator with a password, and provides the TOE administrator with a management function for changing his password, e) The confidential file function, which provides image data filed by users with password protection, and f) The network protection functions, which are: - The IP/MAC address filter function, which refuses unauthorized network accesses, - The SSL function, which protects communications data against wiretapping, and - The network settings protection function, which provides only the TOE administrator with management functions of network settings such as IP address and DNS, and protects them from other users." } }, { "cert_id": "JISEC-CC-CRP-C0244", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP 2550/3350 series Savin 9025/9033 series Lanier LD425/LD433 series Lanier MP 2550/3350 series Gestetner MP 2550/3350 series nashuatec MP 2550/3350 series RexRotary MP 2550/3350 series infotec MP 2550/3350 series System/Copy: 1.14, Network Support: 7.23, Scanner: 1.11, Printer: 1.05, Fax: 05.00.00, Web Support: 1.52, Web Uapl: 1.10, Network Doc Box: 1.10C, Ic Key: 1100, Ic Hdd: 01", "expiration_date": "2015-03-01", "claim": "EAL3", "certification_date": "2010-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0244_it9256.html", "toe_japan_name": "Ricoh imagio MP 2550/3350 series System/Copy: 1.14, Network Support: 7.23, Scanner: 1.11, Printer: 1.05, Fax: 05.00.00, Web Support: 1.52, Web Uapl: 1.10, Network Doc Box: 1.10C, Ic Key: 1100, Ic Hdd: 01", "enhanced": { "product": "Japan: Ricoh imagio MP 2550/3350 series Overseas: Ricoh Aficio MP 2550/3350 series Savin 9025/9033 series Lanier LD425/LD433 series Lanier MP 2550/3350 series Gestetner MP 2550/3350 series nashuatec MP 2550/3350 series RexRotary MP 2550/3350 series infotec MP 2550/3350 series", "toe_version": "System/Copy: 1.14 Network Support: 7.23 Scanner: 1.11 Printer: 1.05 Fax: 05.00.00 Web Support: 1.52 Web Uapl: 1.10 Network Doc Box: 1.10C Ic Key: 1100 Ic Hdd: 01", "product_type": "Multi Function Product", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0244_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0244_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0244_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a digital MFP (hereafter, MFP) for digitizing paper documents, managing digitized documents, and printing documents and faxing documents. Also, it provides the secure environment for using the functions of copier, scanner, printer, document server, and fax (optional). TOE security functionality The major security functions for the TOE are as follows: - Audit Function to record security events as audit logs. - Stored Data Protection Function to encrypt the stored document data on hard disk. - Document Data Access Control Function to control the document operation for each user. - Telephone Line Intrusion Protection Function to accept the fax communication only. - Identification and Authentication Function to identify and authenticate users. - Security Management Function to totally manage the settings of security functions (including Service Mode Lock Function). - MFP Control Software Verification Function to check the integrity of the control software. - Network Communication Data Protection Function to encrypt the network communication." } }, { "cert_id": "JISEC-CC-CRP-C0243", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 751 / bizhub 601 PKI Card System Control Software A0PN0Y0-0100-GR0-18(System Controller) A0PN0Y0-1D00-G00-11 (BIOS Controller)", "expiration_date": "2015-02-01", "claim": "EAL3", "certification_date": "2010-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0243_it9261.html", "toe_japan_name": "bizhub 751 / bizhub 601 PKI Card System Control Software A0PN0Y0-0100-GR0-18(System Controller) A0PN0Y0-1D00-G00-11 (BIOS Controller)", "enhanced": { "product": "bizhub 751 / bizhub 601 PKI Card System Control Software", "toe_version": "A0PN0Y0-0100-GR0-18 (System Controller) A0PN0Y0-1D00-G00-11 (BIOS Controller)", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0243_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFD” or through the network and supports the protection from exposure of the highly confidential documents exchanged between MFP and client PC. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the HDD lock function loaded on the HDD. Besides, TOE has a deletion method compliant with various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator function - Service mode function - Encryption Print Function - S/MIME Encryption Function - Digital Signature Function - All area overwrite deletion function - Encryption key generation function - HDD Verification Function - Authentication Failure Frequency Reset function - Encryption Support Function - HDD lock Operation Support Function - PKI Support Function" } }, { "cert_id": "JISEC-CC-CRP-C0242", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2014-12-01", "claim": "EAL3", "certification_date": "2009-12-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C2270 DocuCentre-IV C5570/C4470/C3370/C2270 Series Controller Software Controller ROM Ver. 1.40.7", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0242_it9258.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C2270 DocuCentre-IV C5570/C4470/C3370/C2270 Series Controller Software", "toe_version": "Controller ROM Ver. 1.40.7", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0241", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C652 / bizhub C552 / bizhub C452 / ineo+ 652 / ineo+ 552/ ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Control Software A0P00Y0-0100-GM0-12", "expiration_date": "2011-04-01", "claim": "EAL3", "certification_date": "2009-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0241_it9252.html", "toe_japan_name": "bizhub C652 / bizhub C552 / bizhub C452 / ineo+ 652 / ineo+ 552 /ineo+ 452 / VarioLink 6522c /VarioLink 5522c / VarioLink 4522c Zentai Seigyo Software A0P00Y0-0100-GM0-12", "enhanced": { "product": "Japanese : bizhub C652 / bizhub C552 / bizhub C452 / ineo+ 652 / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Zentai Seigyo Software English : bizhub C652 / bizhub C552 / bizhub C452 / ineo+ 652 / ineo+ 552 / ineo+ 452 / VarioLink 6522c / VarioLink 5522c / VarioLink 4522c Control Software", "toe_version": "A0P00Y0-0100-GM0-12", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0241_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0241_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0241_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as 溺FP・ or through the network and supports the protection from exposure of the highly confidential documents stored in MFP. Moreover, for the danger of illegally bringing out HDD, which stores image data in MFP, TOE can encrypt all the data written in HDD including image data using ASIC (Application Specific Integrated Circuit). Besides, TOE provides the function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards and the function that controls the access from the public line against the danger using Fax function as a steppingstone to access internal network. TOE security functionality TOE provides the following security functions. - Administrator function - SNMP administrator function - Service mode function - User function - User box function - Secure print function - ID & print function - All area overwrite deletion function - Encryption key generation function - Authentication Failure Frequency Reset function - Trusted Channel function - S/MIME encryption processing function - External Server authentication operation support function - ASIC support function - WebDAV administrator function - Fax unit control function" } }, { "cert_id": "JISEC-CC-CRP-C0240", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C360 / bizhub C280 /bizhub C220 / ineo+ 360 /ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c /VarioLink 2222c Control Software A0ED0Y0-0100-GM0-12", "expiration_date": "2011-04-01", "claim": "EAL3", "certification_date": "2009-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0240_it9251.html", "toe_japan_name": "bizhub C360 / bizhub C280 /bizhub C220 / ineo+ 360 /ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c /VarioLink 2222c Zentai Seigyo Software A0ED0Y0-0100-GM0-12", "enhanced": { "product": "Japanese : bizhub C360 / bizhub C280 / bizhub C220 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c Zentai Seigyo Software English : bizhub C360 / bizhub C280 / bizhub C220 / ineo+ 360 / ineo+ 280 / ineo+ 220 / VarioLink 3622c / VarioLink 2822c / VarioLink 2222c Control Software", "toe_version": "A0ED0Y0-0100-GM0-12", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0240_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0240_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0240_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”) or through the network and supports the protection from exposure of the highly confidential documents stored in MFP. Moreover, for the danger of illegally bringing out HDD, which stores image data in MFP, TOE can encrypt all the data written in HDD including image data using ASIC (Application Specific Integrated Circuit). Besides, TOE provides the function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards and the function that controls the access from the public line against the danger using Fax function as a steppingstone to access internal network. TOE security functionality TOE provides the following security functions. - Administrator function - SNMP administrator function - Service mode function - User function - User box function - Secure print function - ID & print function - All area overwrite deletion function - Encryption key generation function - Authentication Failure Frequency Reset function - Trusted Channel function - S/MIME encryption processing function - External Server authentication operation support function - ASIC support function - WebDAV administrator function - Fax unit control function" } }, { "cert_id": "JISEC-CC-CRP-C0239", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Ricoh Aficio MP 4000/5000 series Savin 9040/9050 series Lanier MP 4000/5000 series Gestetner MP 4000/5000 series Nashuatec MP 4000/5000 series Rex-Rotary MP 4000/5000 series Infotec MP 4000/5000 series System/Copy: 1.09, Network Support: 7.23, Scanner: 01.23, Printer: 1.09, Fax: 03.00.00, Web Support: 1.57, Web Uapl: 1.13.1, Network Doc Box: 1.09.3C, Ic Key: 1100, Ic Hdd: 01", "expiration_date": "2014-11-01", "claim": "EAL3", "certification_date": "2009-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0239_it8206.html", "toe_japan_name": "Ricoh imagio MP 4000/5000 series System/Copy: 1.09, Network Support: 7.23, Scanner: 01.23, Printer: 1.09, Fax: 03.00.00, Web Support: 1.57, Web Uapl: 1.13.1, Network Doc Box: 1.09.3C, Ic Key: 1100, Ic Hdd: 01", "enhanced": { "product": "Japan: Ricoh imagio MP 4000/5000 series Overseas: Ricoh Aficio MP 4000/5000 series Savin 9040/9050 series Lanier MP 4000/5000 series Gestetner MP 4000/5000 series Nashuatec MP 4000/5000 series Rex-Rotary MP 4000/5000 series Infotec MP 4000/5000 series", "toe_version": "System/Copy: 1.09 Network Support: 7.23 Scanner: 01.23 Printer: 1.09 Fax: 03.00.00 Web Support: 1.57 Web Uapl: 1.13.1 Network Doc Box: 1.09.3C Ic Key: 1100 Ic Hdd: 01", "product_type": "IT Product (Multi Function Product)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0239_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0239_img.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0239_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a digital MFP, made by RICOH COMPANY, LTD., that provides the functions of copier, scanner, printer and fax (optional). Those are for digitizing the paper document files, managing the document files and printing the document files. The TOE is an image I/O device that incorporates the functionality of copier, scanner, fax and printer. In general, the TOE is connected to an office LAN and is used to input, store and output the document data. TOE security functions The major security functions of the TOE are as follows: - Identification and Authentication Function and Document Data Access Control Function to protect the stored document data from the unauthorized access - Encryption Function to protect the stored document data from the leakage - Network Communication Data Protection Function to protect the communication data from the leakage or tampering - Telephone Line Intrusion Protection Function to prevent the unauthorized intrusion from a telephone line - MFP Control Software Verification Function to check the integrity of the control software" } }, { "cert_id": "JISEC-CC-CRP-C0238", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR13 C.10", "expiration_date": "2014-10-01", "claim": "EAL3", "certification_date": "2009-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0238_it9247.html", "toe_japan_name": "MX-FR13 C.10", "enhanced": { "product": "MX-FR13", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0238_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0238_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0238_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an \"MFD\"). One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functionality The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD or the Flash memory in the MFD, - the erasure function, which overwrites random or constant numbers onto storage areas that store encrypted data, - the confidential file function, which protects image data that a user files with a password so as not to be abused by others, - the network protection function, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0237", "supplier": "Fuji Xerox Co., Ltd", "toe_overseas_name": "Fuji Xerox ApeosPort-III C7600/C6500/C5500 DocuCentre-III C7600/C6500/C5500 Series Controller Software for Asia Pacific Controller ROM Ver.3.120.2", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2009-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0237_it9255.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-III C7600/C6500/C5500 DocuCentre-III C7600/C6500/C5500 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver.3.120.2", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0237_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0237_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0237_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax, etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0236", "supplier": "Fuji Xerox Co., Ltd", "toe_overseas_name": "-----", "expiration_date": "2014-10-01", "claim": "EAL3", "certification_date": "2009-10-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C2270 DocuCentre-IV C5570/C4470/C3370/C2270 Series Controller Software Controller ROM Ver.1.0.6", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0236_it9254.html", "enhanced": { "product": "Fuji Xerox ApeosPort-IV C5570/C4470/C3370/C2270 DocuCentre-IV C5570/C4470/C3370/C2270 Series Controller Software", "toe_version": "Controller ROM Ver.1.0.6", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0236_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0236_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0236_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0235", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 501 / bizhub 421 / bizhub 361 PKI Card System Control Software A0R50Y0-0100-GR0-20 (System Controller) A0R50Y0-1D00-G00-11 (BIOS Controller)", "expiration_date": "2014-10-01", "claim": "EAL3", "certification_date": "2009-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0235_it9246.html", "toe_japan_name": "bizhub 501 / bizhub 421 / bizhub 361 PKI Card System Control Software A0R50Y0-0100-GR0-20 (System Controller) A0R50Y0-1D00-G00-11 (BIOS Controller)", "enhanced": { "product": "bizhub 501 / bizhub 421 / bizhub 361 PKI Card System Control Software", "toe_version": "A0R50Y0-0100-GR0-20 (System Controller) A0R50Y0-1D00-G00-11 (BIOS Controller)", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0235_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFD” or through the network and supports the protection from exposure of the highly confidential documents exchanged between MFP and client PC. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the HDD lock function loaded on the HDD. Besides, TOE has a deletion method compliant with various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator function - Service mode function - Encryption Print Function - S/MIME Encryption Function - Digital Signature Function - All area overwrite deletion function - Encryption key generation function - HDD Verification Function - Authentication Failure Frequency Reset function - Encryption Support Function - HDD lock Operation Support Function - PKI Support Function" } }, { "cert_id": "JISEC-CC-CRP-C0234", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2014-08-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2009-08-01", "toe_overseas_link": null, "toe_japan_name": "uCosminexus Application Server 08-00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0234_it9250.html", "enhanced": { "product": "uCosminexus Application Server", "toe_version": "08-00", "product_type": "Application Server", "cc_version": "3.1", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a Web application server software product that is a J2EE(TM) (Java(TM) 2 Platform, Enterprise Edition)-compliant. TOE provides runtime and management environments. The product, that includes TOE, is mainly consist of Web container and EJB(TM) container that is Java 2 Platform, Enterprise Edition 1.4 compatible platform. And it also includes various software to execute and manage J2EE-compliant Java applications. It improves availability and reliability of the business application system, and provides several functions in order to manage business application system efficiently. TOE security functionality Security functions provided by TOE are as follows: - User identification and authentication This function uses user ID and password for user identification and authentication. - Access control This function provides access control for both Web and EJB container objects by using authenticated user information. - Security management This function manages information of user identification and authentication, access control information, and access control permitted to an application." } }, { "cert_id": "JISEC-CC-CRP-C0233", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 350 / bizhub 250 / bizhub 200 / bizhub 362 / bizhub 282 / bizhub 222 / ineo 362 / ineo 282 / ineo 222 / VarioLink 3621 / VarioLink 2821 / VarioLink 2221 Control Software A11U-0100-G10-06", "expiration_date": "2014-08-01", "claim": "EAL3", "certification_date": "2009-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0233_it9245.html", "toe_japan_name": "bizhub 350 / bizhub 250 / bizhub 200 / bizhub 362 / bizhub 282 / bizhub 222 / ineo 362 / ineo 282 / ineo 222 / VarioLink 3621 / VarioLink 2821 / VarioLink 2221 Zentai Seigyo Software A11U-0100-G10-06", "enhanced": { "product": "Japanese : bizhub 350 / bizhub 250 / bizhub 200 / bizhub 362 / bizhub 282 / bizhub 222 / ineo 362 / ineo 282 / ineo 222 / VarioLink 3621 / VarioLink 2821 / VarioLink 2221 Zentai Seigyo Software English : bizhub 350 / bizhub 250 / bizhub 200 / bizhub 362 / bizhub 282 / bizhub 222 / ineo 362 / ineo 282 / ineo 222 / VarioLink 3621 / VarioLink 2821 / VarioLink 2221 Control Software", "toe_version": "A11U-0100-G10-06", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0233_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0233_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0233_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFD” or through the network and supports the protection from exposure of the highly confidential documents stored in MFP. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the protection function to overwrite at once the data that became unnecessary, the HDD lock function loaded on the HDD or the encryption function by the encryption board which is the optional part of MFP. Besides, TOE has a deletion method compliant with various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator function - Service mode function - Secure Print Function - Remaining information overwrite deletion function - All area overwrite deletion function - Encryption key generation function - HDD Verification Function - Authentication Failure Frequency Reset function - Encryption Board Operation Support Function - HDD lock Operation Support Function" } }, { "cert_id": "JISEC-CC-CRP-C0232", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C253 / bizhub C203 PKI Card System Control Software A02E0Y0-0100-GN0-U6", "expiration_date": "2014-08-01", "claim": "EAL3", "revalidations": [ { "date": "2010-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0232_it9243_01.html" } ], "certification_date": "2009-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0232_it9243.html", "toe_japan_name": "bizhub C253 / bizhub C203 PKI Card System Control Software A02E0Y0-0100-GN0-U4", "enhanced": { "product": "bizhub C253 / bizhub C203 PKI Card System Control Software", "toe_version": "A02E0Y0-0100-GN0-U4", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0232_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0232_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0232_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFD” or through the network and supports the protection from exposure of the highly confidential documents exchanged between MFP and client PC. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the HDD lock function loaded on the HDD or the encryption function by the encryption board. Besides, TOE has a deletion method compliant with various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator function - Service mode function - Encryption Print Function - S/MIME Encryption Function - Digital Signature Function - All area overwrite deletion function - Encryption key generation function - HDD Verification Function - Authentication Failure Frequency Reset function - Encryption Board Support Function - HDD lock Operation Support Function - PKI Support Function" } }, { "cert_id": "JISEC-CC-CRP-C0231", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C353 PKI Card System Control Software A02E0Y0-0100-GM0-U6", "expiration_date": "2014-08-01", "claim": "EAL3", "revalidations": [ { "date": "2010-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0231_it9242_01.html" } ], "certification_date": "2009-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0231_it9242.html", "toe_japan_name": "bizhub C353 PKI Card System Control Software A02E0Y0-0100-GM0-U4", "enhanced": { "product": "bizhub C353 PKI Card System Control Software", "toe_version": "A02E0Y0-0100-GM0-U4", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0231_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0231_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0231_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFD” or through the network and supports the protection from exposure of the highly confidential documents exchanged between MFP and client PC. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the HDD lock function loaded on the HDD or the encryption function by the encryption board. Besides, TOE has a deletion method compliant with various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator function - Service mode function - Encryption Print Function - S/MIME Encryption Function - Digital Signature Function - All area overwrite deletion function - Encryption key generation function - HDD Verification Function - Authentication Failure Frequency Reset function - Encryption Board Support Function - HDD lock Operation Support Function - PKI Support Function" } }, { "cert_id": "JISEC-CC-CRP-C0230", "supplier": "Humming Heads, Inc.", "toe_overseas_name": "-----", "expiration_date": "2014-07-01", "claim": "EAL3", "certification_date": "2009-07-01", "toe_overseas_link": null, "toe_japan_name": "Security Platform evolution /SV CC Ver.1.9.47.4", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0230_it8238.html", "enhanced": { "product": "Security Platform evolution /SV CC", "toe_version": "Ver.1.9.47.4", "product_type": "Software for countermeasures against information leakage", "assurance_level": "EAL3", "vendor": "Humming Heads, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is software for countermeasures against information leakages for PCs. The purpose of the TOE is to prevent files being leaked to anybody other than those who are intended. The TOE is a server-client product used in Windows domain environments as well as in mobile environments. Administrators use the TOE's server functions to collectively control its client functions for end-users. To prevent information leakages the TOE has the following security functions: a function that limits application programs and their operations that end users can use in taking files out with removable media, Internet browsers, or e-mails, a function that automatically encrypts taken-out files, and a function that encrypts hard-disks in client PCs. The TOE also has an administrative function and an audit function for administrating the security functions. TOE security functionality The TOE has the following security functions. - Write control function A function that restricts application programs that end users can use in taking files out. - SV encryption function A function that automatically encrypts taken-out files and decrypts brought-back files. It also restricts files from being uploaded via HTTP protocols on the Internet and the data in files from being pasted into Web pages and e-mailers. - Self-propelled encryption function A function that encrypts files in an executable file format that allows self decryption in an environment where the TOE is not installed. - Storage encryption function A function that encrypts a whole hard-disk. - Audit function A function that outputs logs on the files operated and enables checking by administrators. - Administrative function A function that collectively controls setting of the security functions." } }, { "cert_id": "JISEC-CC-CRP-C0229", "supplier": "SC Square LTD.", "toe_overseas_name": "Apollo OS e-Passport 1.0", "expiration_date": "2014-07-01", "claim": "EAL4+ ADV_IMP.2, ALC_DVS.2 PP", "certification_date": "2009-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0229_it8194.html", "toe_japan_name": "Apollo OS e-Passport 1.0", "enhanced": { "product": "Apollo OS e-Passport", "toe_version": "1.0", "product_type": "IT Product (IC chip firmware)", "cc_version": "2.3", "assurance_level": "EAL4 Augmented with ADV_IMP.2, ALC_DVS.2", "protection_profile": "BSI-PP-0017", "vendor": "SC Square LTD.", "evaluation_facility": "TÜV Informationstechnik GmbH, Evaluation Body for IT-Security", "report_link": "https://www.ipa.go.jp/en/security/c0229_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0229_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0229_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The Target of Evaluation (TOE) is the contactless integrated circuit chip of machine readable travel documents (MRTD's chip) programmed according to the Logical Data Structure (LDS) [LDS] and providing the Basic Access Control according to the ICAO technical report [PKI]. The MRTD is viewed as unit of - The physical MRTD as travel document in form of paper, plastic and chip. It presents visual readable data including (but not limited to) personal data of the MRTD holder - the biographical data on the biographical data page of the passport book, - the printed data in the Machine Readable Zone (MRZ) and - The printed portrait. - The logical MRTD as data of the MRTD holder stored according to the Logical Data Structure [LDS] as specified by ICAO on the contactless integrated circuit. It presents contactless readable data including (but not limited to) personal data of the MRTD holder - the digital Machine Readable Zone Data (digital MRZ data, EF.DG1), - the digitized portraits (EF.DG2), - the biometric reference data of finger(s) (EF.DG3) or iris image(s) (EF.DG4) or both - the other data according to LDS (EF.DG5 to EF.DG16) and - the Document security object The physical MRTD is protected by physical security measures (e.g. watermark on paper, security printing), logical (e.g. authentication keys of the MRTD痴 chip) and organisational security measures (e.g. control of materials, personalization procedures) [SSMR]. These security measures include the binding of the MRTD痴 chip to the passport book. The logical MRTD is protected in authenticity and integrity by a digital signature created by the document signer acting for the issuing State or Organization and the security features of the MRTD痴 chip. TOE security functions TOE security function is as follows - SF.Cryptographic Support The cryptographic support for the other Security Functions. - SF.Identification and Authentication The identification and authentication for the TOE user - SF. User Data Protection The user data protection - SF.Security Management The security management of the TOE - SF.Protection (Protection of TSC) This Security Function protects the TSF functionality, TSF data and user data." } }, { "cert_id": "JISEC-CC-CRP-C0228", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "PP-100N Security control unit 1.10", "expiration_date": "2014-07-01", "claim": "EAL3", "revalidations": [ { "date": "2010-05", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0228_it7161_02.html" } ], "certification_date": "2009-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0228_it7161.html", "toe_japan_name": "PP-100N Security control unit 1.00", "enhanced": { "product": "PP-100N Security control unit", "toe_version": "1.00", "product_type": "IT Product(Disc data protection unit in Duplicator)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "MIzuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0228_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0228_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a security control unit that consists of software and hardware components. It is embedded in the CD/DVD publisher, PP-100N. The PP-100N allows the users to write electronic information in CD-Rs or DVD-Rs and print label images on them over a network. This TOE offers the above disc-publishing-related functions and security functions which prevents published discs from being taken out from the PP-100N by unauthorized persons (anyone except the person who created the discs). TOE security functions The TOE's security functions are; - Identify Authentication Function Identifies and authenticates the user who accesses to the TOE using the PP-100N control panel, browser. - Controlled Distribution Function Ejects published discs only for the user who created them. - Electronic Lock Open Function Allows only administrator to deactivate the electronic lock of the disc cover. - Warning Function Warns the administrator if a security problem arises. - Setting Data Control function Allows only authorized users to access the various setting information." } }, { "cert_id": "JISEC-CC-CRP-C0227", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR11 C.11", "expiration_date": "2014-07-01", "claim": "EAL3", "certification_date": "2009-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0227_it9253.html", "toe_japan_name": "MX-FR11 C.10", "enhanced": { "product": "MX-FR11", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0227_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0227_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0227_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an “MFD”. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD or the Flash memory in the MFD, - the erasure function, which overwrites random or constant numbers onto storage areas that store encrypted data, - the confidential file function, which protects image data that a user files with a password so as not to be abused by others, - the network protection function, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0226", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FR10 C.10", "expiration_date": "2014-07-01", "claim": "EAL3", "certification_date": "2009-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0226_it8240.html", "toe_japan_name": "MX-FR10 C.10", "enhanced": { "product": "MX-FR10", "toe_version": "C.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0226_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0226_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0226_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product, composed of 2 parts, to protect data in a Multi Function Device (hereafter referred to as an “MFD”. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. An MFD is an office machine that has imaging functions such as copy, printer, image scanning and fax. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, which encrypts data, such as image data that the MFD handles, before storing the data to the HDD or the Flash memory in the MFD, - the erasure function, which overwrites random or constant numbers onto storage areas that store encrypted data, - the confidential file function, which protects image data that a user files with a password so as not to be abused by others, - the network protection function, which counters malicious attempts (of unauthorized network-accesses, communication data wiretaps, and network settings falsifications), and - the fax flow control function, which counters attempts to access to the internal network via the MFD network interface from public telephone networks on the MFD fax interface." } }, { "cert_id": "JISEC-CC-CRP-C0225", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2014-07-01", "claim": "EAL4+ ALC_FLR.1", "certification_date": null, "toe_overseas_link": null, "toe_japan_name": "HiRDB / Parallel Server Version 8 08-04", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0225_it8222.html", "enhanced": { "product": "HiRDB / Parallel Server Version 8", "toe_version": "08-04", "product_type": "IT Product (Data Base Management System)", "cc_version": "2.3", "assurance_level": "EAL4 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE This TOE(HiRDB / Parallel Server Version 8) is a software product for Relational Database Management System(RDBMS). The TOE acts as a database server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. The TOE can be used as a single RDBMS by installation on a number of machines and networking the machines. It makes a difference with HiRDB / Single Server Version 8. TOE security functions The TOE provides security functions that restrict access to user data to authorized users. Security functions of the TOE include the following. - Audit - Discretionary Access Control - Identification and Authentication - Security Management" } }, { "cert_id": "JISEC-CC-CRP-C0224", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2014-07-01", "claim": "EAL3", "certification_date": "2009-07-01", "toe_overseas_link": null, "toe_japan_name": "Xerox WorkCentre 7425/7428/7435 Controller+PS ROM Ver. 1.180.9 IOT ROM Ver. 40.10.0 IIT ROM Ver. 22.13.1 ADF ROM Ver. 20.0.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0224_it9244.html", "enhanced": { "product": "Xerox WorkCentre 7425/7428/7435", "toe_version": "Controller+PS ROM Ver. 1.180.9 IOT ROM Ver. 40.10.0 IIT ROM Ver. 22.13.1 ADF ROM Ver. 20.0.0", "product_type": "Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0224_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0224_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0224_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, scan, and fax functions as basic functions. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0223", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 / VarioLink 5022 / VarioLink 4222 / VarioLink 3622 Control Software A0R50Y0-0100-G00-20 (System Controller) A0R50Y0-1D00-G00-11 (BIOS Controller)", "expiration_date": "2014-07-01", "claim": "EAL3", "certification_date": "2009-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0223_it8239.html", "toe_japan_name": "bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 / VarioLink 5022 / VarioLink 4222 / VarioLink 3622 Zentai Seigyo Software A0R50Y0-0100-G00-20 (System Controller) A0R50Y0-1D00-G00-11 (BIOS Controller)", "enhanced": { "product": "Japanese: bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 / VarioLink 5022 / VarioLink 4222 / VarioLink 3622 Zentai Seigyo Software English: bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 / VarioLink 5022 / VarioLink 4222 / VarioLink 3622 Control Software", "toe_version": "A0R50Y0-0100-G00-20 (System Controller) A0R50Y0-1D00-G00-11 (BIOS Controller)", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0223_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0223_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0223_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE controls the entire operation of MFP, including the operation control processing and the image data management that are accepting from the panel of the main body of digital MFP (Multi Functional Peripheral, and hereinafter referred to as \"MFP\") or through the network. And TOE offers the protection function from exposure of the highly confidential document stored in the MFP. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the HDD lock function loaded on the HDD. Besides, TOE has the deletion method to follow various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator Function - SNMP Administrator Function - Service Mode Function - User Function - User Box Function - Secure Print Function - ID & Print Function - Overwrite deletion Function for all area - Encryption Key Generation Function - HDD validation Function - CF validation Function - Authentication Failure Counter Reset Function - Trust Channel Function - S/MIME Encryption Processing Function - External server authentication operation support Function - WebDAV administrator Function - Encryption kit operation support Function - HDD lock operation support Function - CF lock operation support Function" } }, { "cert_id": "JISEC-CC-CRP-C0222", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRO 1200 / 1200P / 1051 Control Software Image Control Program(Image Control I1):00I1-G00-20 Controller Control Program(IC Control P):00P1-G00-20", "expiration_date": "2014-07-01", "claim": "EAL3", "revalidations": [ { "date": "2010-04", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0222_it8220_01.html" } ], "certification_date": "2009-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0222_it8220.html", "toe_japan_name": "bizhub PRO 1200 / 1200P / 1051 Zentai Seigyo Software Image Control Program(Image Control I1):00I1-G00-10 Controller Control Program(IC Control P):00P1-G00-10", "enhanced": { "product": "Japan: bizhub PRO 1200 / 1200P / 1051 Zentai Seigyo Software Overseas:bizhub PRO 1200 / 1200P / 1051 Control Software", "toe_version": "Image Control Program( Image Control I1):00I1-G00-10 Controller Control Program(IC Control P):00P1-G00-10", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0222_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0222_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0222_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product (bizhub PRO 1200 / 1200P / 1051 Control Software *1 ), that is installed with digital MFP (bizhub PRO 1200 Series ) manufactured by Konica Minolta Business Technologies, Inc., is a software product for the purpose of reducing the risk for disclosure of document data in bizhub PRO 1200 Series. Bizhub PRO 1200 / 1200P / 1051 Control Software prevents document data in bizhub PRO 950 from disclosing during the use of functions such as copier and printer. It offers the protection function *2 with password lock system against the risk of reading data out illegally from HDD (Hard Disk Drive) which is a medium for storing temporarily document data. *1: shows \"bizhub PRO 1200 / 1200P / 1051 Zentai Seigyo Software\" for Japan and \"bizhub PRO 1200 / 1200P / 1051 Control Software\" for overseas are the same product with different calling name. *2: HDD has the password so that it cannot be removed and read in another equipment. HDD lock password is set in the HDD lock function. TOE security functions TOE security function is as follows - IA.ADM_ADD; Registration of administrator - IA.ADM_AUTH; Identification and Authentication of administrator - IA.CE_AUTH; Identification and Authentication of CE - IA.PASS; Change of Password - ACL.USR; Rule and Control of user's access - AUD.LOG; Audit Record - AUD.MNG; Management of audit area - MNG.MODE; Configuration of Security Mode - MNG.ADM; Function of Management Support(Administrator) - MNG.HDD; Function of HDD lock password" } }, { "cert_id": "JISEC-CC-CRP-C0221", "supplier": "NEC Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-07-01", "claim": "EAL2", "certification_date": "2009-06-01", "toe_overseas_link": null, "toe_japan_name": "StarOffice X V1.5 1.5.02", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0221_it8236.html", "enhanced": { "product": "StarOffice X V1.5", "toe_version": "1.5.02", "product_type": "Groupware application software", "assurance_level": "EAL2", "vendor": "NEC Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is a software component which provides groupware services and security functionalities which are common to both StarOffice X Enterprise V1.5 and StarOffice X Standard V1.5. They are groupware products designed for use within company internal networks. Upon operating this TOE, the system administrator registers \"offices\", each representing an organization in the user company. Users of this TOE (Office Administrators and regular Users) are able to register document data into \"cabinets\" registered under the office they belong to, according to the access privileges set for each cabinet Documents registered under the cabinets can be accessed by and shared between users, according to access privileges set based on their organization, classification, position, etc. This TOE can have multiple cabinets to meet the users' purposes. \"Folders\" can be registered under the cabinets to organize multiple documents as a single unit. (e.g. If an \"office\" represents a corporate division, \"cabinets\" may be registered for each task team under the division, and \"folders\" may be registered under each cabinet for each of the projects the task team is assigned.) \"Shortcuts\" can also be registered as a link to another cabinet, folder, or document. Also, documents may be accessed via their shortcuts from other services which this TOE provides, such as the Mail Service and the Noticeboard Service. This TOE provides the following services; Cabinet Service, Mail Service, Noticeboard Service, Calendar Service, Facilities Reservation Service, and the Phonebook Service. This TOE also provides Maintenance Functions for these services. TOE security functionality This TOE provides, as security functionalities, Identification/ authentication and access control of the Cabinet Service to prevent unauthorized access (such as destruction, falsification, exposure) to documents or folders in the cabinets. Provided with these security functionalities, each time a user (Office Administrator or regular User) uses the TOE's Cabinet Service, user Identification and authentication are performed, after that access is controlled so that the user can only access allowed objects (i.e. folders, documents, etc.)." } }, { "cert_id": "JISEC-CC-CRP-C0220", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "Hitachi Adaptable Modular Storage Microprogram 0862/A", "expiration_date": "2013-03-01", "claim": "EAL2", "revalidations": [ { "date": "2010-09", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0220_it8210_01.html" } ], "certification_date": "2009-06-01", "toe_overseas_link": null, "toe_japan_name": "Hitachi Adaptable Modular Storage 2300 Microprogram 0862/ A-M", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0220_it8210.html", "enhanced": { "product": "Hitachi Adaptable Modular Storage 2300 Microprogram", "toe_version": "0862/ A-M", "product_type": "IT Product (Disk Array Control Software)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0220_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0220_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0220_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a control program (software) that runs on a disk array subsystem manufactured by Hitachi, Ltd.: 滴itachi Adaptable Modular Storage 2300・ The TOE controls data transfer between the disk array subsystem and the host (server) connected to the disk array subsystem and manages the data stored in the subsystem. The TOE provides a function to permit the management operation of the disk array subsystem only for the account of the authorized administrator and a function to record events of the management operation in logs as the security functions. TOE security functions The TOE has the following security functions. (1) Account Authentication function - Identification/Authentication When the administrator performs the setting operations of the disk array subsystem, this function performs the account identification/authentication of the administrator. - Execution control by roles If the role given to the account permits the setting operation, it is executed. If it is not permitted, the setting operation is not executed. - Time-out function If the operation is not performed for a certain period of time, the session of the account is disabled, and it is timed out. - Account management This function manages the user ID, password, account enabled/disabled attribute, and role assignment response per account as the account information. (2) Audit Logging function - Audit log acquisition When an audit event related to the security function in the TOE such as login success/failure of the account of the administrator occurs, this function acquires the event as an audit log. Furthermore, it performs enabled/disabled setting of the audit log acquisition. - Audit log erasing This function erases the audit logs (batch erasing of all audit logs acquired in the past). (3) Setting function This function enables or disables the Account Authentication function and the Audit Logging function." } }, { "cert_id": "JISEC-CC-CRP-C0219", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 555/655/755/855 V3.0", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0219_it9249.html", "toe_japan_name": "e-STUDIO555/655/755/855 System Software V3.0", "enhanced": { "product": "Japanese name: e-STUDIO555/655/755/855 System Software English name: System Software for e-STUDIO555/655/755/855", "toe_version": "V3.0", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the system software of the digital multi function device 兎-STUDIO555/655/755/855・manufactured by TOSHIBA TEC CORPORATION. The TOE controls general functions as a digital multi function device (Copy, Scan, Print and Fax), and provides functions of e-Filing Box and Shared folder. TOE security functionality The TOE provides function of data overwrite and complete deletion on the user document data deleted from HDD in the 兎-STUDIO555/655/755/855・(except following data: fax reception; expired user document data stored in e-Filing Box and Shared folder after such data痴 effective period). The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0218", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 205L/255/305/355/455 V3.0", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0218_it9248.html", "toe_japan_name": "e-STUDIO205L/255/305/355/455 System Software V3.0", "enhanced": { "product": "Japanese name: e-STUDIO205L/255/305/ 355/455 System Software English name: System Software for e-STUDIO205L/255/305/ 355/455", "toe_version": "V3.0", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the system software of the digital multi function device 兎-STUDIO205L/255/305/355/455・manufactured by TOSHIBA TEC CORPORATION. The TOE controls general functions as a digital multi function device (Copy, Scan, Print and Fax), and provides functions of e-Filing Box and Shared folder. TOE security functionality The TOE provides function of data overwrite and complete deletion on the user document data deleted from HDD in the 兎-STUDIO205L/255/305/355/455・(except following data: fax reception; expired user document data stored in e-Filing Box and Shared folder after such data痴 effective period). The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0217", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C652 / bizhub C552 / ineo+ 652 / ineo+ 552 VarioLink 6522c / VarioLink 5522c Control Software A0P00Y0-0100-GM0-04", "expiration_date": "2011-04-01", "claim": "EAL3", "revalidations": [ { "date": "2009-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0217_it8237_01.html" } ], "certification_date": "2009-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0217_it8237.html", "toe_japan_name": "bizhub C652 / bizhub C552 / ineo+ 652 / ineo+ 552 VarioLink 6522c / VarioLink 5522c Zentai Seigyo Software A0P00Y0-0100-GM0-02", "enhanced": { "product": "Japanese : bizhub C652 / bizhub C552 / ineo+ 652 / ineo+ 552 / VarioLink 6522c / VarioLink 5522c Zentai Seigyo Software English : bizhub C652 / bizhub C552 / ineo+ 652 / ineo+ 552 / VarioLink 6522c / VarioLink 5522c Control Software", "toe_version": "A0P00Y0-0100-GM0-02", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0217_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0217_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as \"MFP\") or through the network and supports the protection from exposure of the highly confidential documents stored in MFP. Moreover, for the danger of illegally bringing out HDD, which stores image data in MFP, TOE can encrypt all the data written in HDD including image data using ASIC (Application Specific Integrated Circuit). Besides, TOE has a deletion method compliant with various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator function - SNMP administrator function - Service mode function - User function - User box function - Secure print function - ID & print function - All area overwrite deletion function - Encryption key generation function - Authentication Failure Frequency Reset function - Trusted Channel function - S/MIME encryption processing function - External Server authentication operation support function - ASIC support function - WebDAV administrator function" } }, { "cert_id": "JISEC-CC-CRP-C0216", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2014-06-01", "claim": "EAL4+ ALC_FLR.1", "certification_date": null, "toe_overseas_link": null, "toe_japan_name": "HiRDB / Single Server Version 8 08-04", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0216_it8221.html", "enhanced": { "product": "HiRDB / Single Server Version 8", "toe_version": "08-04", "product_type": "IT Product (Data Base Management System)", "cc_version": "2.3", "assurance_level": "EAL4 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE This TOE(HiRDB / Single Server Version 8) is a software product for Relational Database Management System(RDBMS). The TOE acts as a database server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. TOE security functions The TOE provides security functions that restrict access to user data to authorized users. Security functions of the TOE include the following. - Audit - Discretionary Access Control - Identification and Authentication - Security Management" } }, { "cert_id": "JISEC-CC-CRP-C0215", "supplier": "Canon Inc.", "toe_overseas_name": "Canon MFP Security Chip 2.01", "expiration_date": "2014-06-01", "claim": "EAL3", "revalidations": [ { "date": "2011-03", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0215_it8217_02.html" } ], "certification_date": "2009-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0215_it8217.html", "toe_japan_name": "Canon MFP Security Chip 2.00", "enhanced": { "product": "Canon MFP Security Chip", "toe_version": "2.00", "product_type": "IT product(cryptographic security chip)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0215_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0215_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0215_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Canon MFP Security Chip and will be provided to end users as part of a HDD data encryption kit. The TOE allows protecting hard drives in Canon MFPs and printers from disclosure of confidential information due to theft, without sacrificing the extensibility, versatility, convenience and performance of Canon MFPs and printers. The TOE provides the following functions for protecting hard drives: - Hard drive data encryption - Cryptographic key management - Device identification and authentication TOE security functions Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0214", "supplier": "Hewlett-Packard Japan, Ltd.", "toe_overseas_name": "HP StorageWorks XP Command View Advanced Edition Common Component 6.0.0-01", "expiration_date": "2014-04-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2009-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0214_it8224.html", "toe_japan_name": "HP StorageWorks XP Command View Advanced Edition Common Component 6.0.0-01", "enhanced": { "product": "HP StorageWorks XP Command View Advanced Edition Common Component", "toe_version": "6.0.0-01", "product_type": "IT Product (Foundational Module Software)", "cc_version": "2.3", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hewlett-Packard Japan, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a module that provides some kinds of storage management software that manage a plural of storage devices that are connected through SAN (Storage Area Network) with common functions. Storage management software is such as HP StorageWorks XP Device Manager Software, HP StorageWorks XP Replication Manager Software and HP StorageWorks XP Tiered Storage Manager Software. HP StorageWorks XP Command View Advanced Edition Software is the general term for these software and the TOE. The TOE is provided customers as built-in module included in each Storage management software package. TOE security functions The TOE provides the following security functions. - Identification and authentication (Authentication function of external authentication server can be used as substitute.) - Privilege information management (Privilege information is attached to each user's information and it decides each user's role for storage management software.) - Warning banner" } }, { "cert_id": "JISEC-CC-CRP-C0213", "supplier": "FUJIFILM Corporation", "toe_overseas_name": "-----", "expiration_date": "2014-04-01", "claim": "EAL1", "certification_date": "2009-04-01", "toe_overseas_link": null, "toe_japan_name": "FVR-100 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0213_it8241.html", "enhanced": { "product": "FVR-100", "toe_version": "1.0", "product_type": "Other", "cc_version": "3.1", "assurance_level": "EAL1", "vendor": "FUJIFILM Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE TOE is an application of network video recorder, and provides the functionality of controlling image acquire, transferring video data, acquiring camera image, compression of video data, storing video data, and viewing video data from surveillance cameras. TOE Security functions - Authentication function - Access control function - User administration function" } }, { "cert_id": "JISEC-CC-CRP-C0212", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRO 950 / VarioLink 9522 / ineo 950 control software Image Control Program( Image Control I1):00I1-G00-22 Controller Control Program(IC Control P):00P1-G00-20", "expiration_date": "2014-04-01", "claim": "EAL3", "revalidations": [ { "date": "2010-03", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0212_it8219_01.html" } ], "certification_date": "2009-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0212_it8219.html", "toe_japan_name": "bizhub PRO 950 Zentai Seigyo Software Image Control Program(Image Control I1):00I1-G00-10 Controller Control Program(IC Control P):00P1-G00-11", "enhanced": { "product": "Japan : bizhub PRO 950 Zentai Seigyo Software Overseas: bizhub PRO 950 Control Software", "toe_version": "Image Control Program(Image Control I1):00I1-G00-10 Controller Control Program(IC Control P):00P1-G00-11", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0212_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0212_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0212_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product (bizhub PRO 950 Control Software *1 ), that is installed with digital MFP (bizhub PRO 950 ) manufactured by Konica Minolta Business Technologies, Inc., is a software product for the purpose of reducing the risk for disclosure of document data in bizhub PRO 950. Bizhub PRO 950 Control Software prevents document data in bizhub PRO 950 from disclosing during the use of functions such as copier and printer. It offers the protection function *2 with password lock system against the risk of reading data out illegally from HDD (Hard Disk Drive) which is a medium for storing temporarily document data. *1: shows \"bizhub PRO 950 Zentai Seigyo Software\" for Japan and \"bizhub PRO 950 Control Software\" for overseas are the same product with different calling name. *2: HDD has the password so that it cannot be removed and read in another equipment. HDD lock password is set in the HDD lock function. TOE security functions TOE security function is as follows - IA.ADM_ADD; Registration of administrator - IA.ADM_AUTH; Identification and Authentication of administrator - IA.CE_AUTH; Identification and Authentication of CE - IA.PASS; Change of Password - ACL.USR; Rule and Control of user's access - AUD.LOG; Audit Record - AUD.MNG; Management of audit area - MNG.MODE; Configuration of Security Mode - MNG.ADM; Function of Management Support(Administrator) - MNG.HDD; Function of HDD lock password" } }, { "cert_id": "JISEC-CC-CRP-C0210", "supplier": "FeliCa Networks, Inc.", "toe_overseas_name": "-----", "expiration_date": "2014-04-01", "claim": "EAL4+ AVA_VLA.3, ALC_FLR.1", "certification_date": "2009-03-01", "toe_overseas_link": null, "toe_japan_name": "Mobile FeliCa IC chip firmware (AE version) 02 (AE56D1 version)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0210_it8211.html", "enhanced": { "product": "Mobile FeliCa IC chip firmware (AE version)", "toe_version": "02 (AE56D1 version)", "product_type": "IT Product (IC chip firmware)", "cc_version": "2.3", "assurance_level": "EAL4 Augmented with AVA_VLA.3, ALC_FLR.1", "vendor": "FeliCa Networks, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE The Target of Evaluation (TOE) is the firmware for the mobile FeliCa IC chip which is employed by IT equipments such as mobile phones and contactless smart card reader/writers. The TOE is embedded in the ROM of the mobile FeilCa IC chips, and is composed of three different functions; 1) \"the contactless IC card function\" - accessing memory via the wireless interface; 2) \"the contact IC card function\" - accessing memory via the wired interface; 3) \"the reader/writer function\" - accessing to another contactless IC card. Several security features included in these functions deliver the means of secure data management. TOE security functions The TOE includes security functions such as \"authentication\", \"access control\", \"encrypted communication\" and \"data protection\". These functions avoid wiretapping, falsification, information usage without right permission, data corruption due to power loss and abnormal state due to hardware trouble, and ensure data integrity, correct operations and confidentiality." } }, { "cert_id": "JISEC-CC-CRP-C0209", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2009-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-III C7600/C6500/C5500 DocuCentre-III C7600/C6500/C5500 Series Controller Software Controller ROM Ver. 3.0.15", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0209_it8235.html", "enhanced": { "product": "Fuji Xerox ApeosPort-III C7600/C6500/C5500 DocuCentre-III C7600/C6500/C5500 Series Controller Software", "toe_version": "Controller ROM Ver. 3.0.15", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0209_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0209_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0209_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0208", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-III C4100/C3100 Series Controller Software for Asia Pacifi Controller ROM Ver. 1.120.2", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2009-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0208_it8234.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-III C4100/C3100 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.120.2", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0208_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0208_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0208_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions TOE provides the following security functions. - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0207", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2009-03-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-III 4000/3010 DocuCentre-III 4000/3010 Series Controller Software Controller ROM Ver. 1.0.16", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0207_it8233.html", "enhanced": { "product": "Fuji Xerox ApeosPort-III 4000/3010 DocuCentre-III 4000/3010 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.16", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0207_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0207_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0207_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions TOE provides the following security functions. - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0206", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-III 3007/2007 Series Controller Software for Asia Pacific Controller ROM Ver. 1.120.2", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2009-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0206_it8232.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-III 3007/2007 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.120.2", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0206_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0206_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0206_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions TOE provides the following security functions. - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0205", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 751 / bizhub 601 / ineo 751 / ineo 601 / VarioLink 7522 / VarioLink 6022 Control Software A0PN0Y0-0100-G00-15 (System Controller) A0PN0Y0-1D00-G00-11 (BIOS Controller)", "expiration_date": "2014-04-01", "claim": "EAL3", "certification_date": "2009-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0205_it8216.html", "toe_japan_name": "bizhub 751 / bizhub 601 / ineo 751 / ineo 601 / VarioLink 7522 / VarioLink 6022 Zentai Control Software A0PN0Y0-0100-G00-15 (System Controller) A0PN0Y0-1D00-G00-11 (BIOS Controller)", "enhanced": { "product": "Japanese: bizhub 751 / bizhub 601 / ineo 751 / ineo 601 / VarioLink 7522 / VarioLink 6022 Zentai Control Software English: bizhub 751 / bizhub 601 / ineo 751 / ineo 601 / VarioLink 7522 / VarioLink 6022 Control Software", "toe_version": "A0PN0Y0-0100-G00-15 (System Controller) A0PN0Y0-1D00-G00-11 (BIOS Controller)", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0205_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0205_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0205_st.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE controls the entire operation of MFP, including the operation control processing and the image data management that are accepting from the panel of the main body of digital MFP (Multi Functional Peripheral, and hereinafter referred to as \"MFP\") or through the network. And TOE offers the protection function from exposure of the highly confidential document stored in the MFP. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the HDD lock function loaded on the HDD. Besides, TOE has the deletion method to follow various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functionality TOE provides the following security functions. - Administrator Function - SNMP Administrator Function - Service Mode Function - User Function - User Box Function - Secure Print Function - Overwrite deletion Function for all area - Encryption Key Generation Function - HDD validation Function - CF validation Function - Authentication Failure Counter Reset Function - Trust Channel Function - S/MIME Encryption Processing Function - External server authentication operation support Function - Encryption kit operation support Function - HDD lock operation support Function - CF lock operation support Function" } }, { "cert_id": "JISEC-CC-CRP-C0203", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-III C4400 DocuCentre-III C4400 Series Controller Software for Asia Pacific Controller ROM Ver. 1.121.3", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2009-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0203_it8231.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-III C4400 DocuCentre-III C4400 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.121.3", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0203_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0203_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0203_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator痴 Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0202", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-III C3300/C2200/C2201 DocuCentre-III C3300/C2200/C2201 Series Controller Software for Asia Pacific Controller ROM Ver. 1.120.5", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2009-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0202_it8230.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-III C3300/C2200/C2201 DocuCentre-III C3300/C2200/C2201 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver. 1.120.5", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0202_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0202_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0202_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0201", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2009-02-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-III 7000/6000/5000 DocuCentre-III 7000/6000/5000 Series Controller Software Controller ROM Ver. 1.0.13", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0201_it8229.html", "enhanced": { "product": "Fuji Xerox ApeosPort-III 7000/6000/5000 DocuCentre-III 7000/6000/5000 Series Controller Software", "toe_version": "Controller ROM Ver. 1.0.13", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0201_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0201_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0201_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator痴 Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0200", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2014-04-01", "claim": "EAL2", "certification_date": "2008-12-01", "toe_overseas_link": null, "toe_japan_name": "Hitachi Universal Storage Platform V, Hitachi Universal Storage Platform H24000, Hitachi Universal Storage Platform VM, Hitachi Universal Storage Platform H20000 Control Program 60-02-32-00/00(R6-02A-14)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0200_it7165.html", "enhanced": { "product": "Hitachi Universal Storage Platform V, Hitachi Universal Storage Platform H24000, Hitachi Universal Storage Platform VM, Hitachi Universal Storage Platform H20000 Control Program", "toe_version": "60-02-32-00/00(R6-02A-14)", "product_type": "IT Product (Storage Control Software)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0200_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0200_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is software that runs on storage subsystems manufactured by Hitachi, Ltd.: “Hitachi Universal Storage Platform V”, “Hitachi Universal Storage Platform H24000”, “Hitachi Universal Storage Platform VM”, and “Hitachi Universal Storage Platform H20000”. TOE provides functions that prevent storage resources assigned to a specific storage user from being illegally accessed by other storage users. TOE security functions TOE has the following security functions. - Storage Navigator function It sets, changes, etc. the configuration of each function to manage the storage subsystem. - Virtual Partition Manager function It partitions the resources of the entire storage subsystem into multiple virtual disks to control access. - LUN Manager function It associates ports and logical devices that can be accessed by the host. - Host identification/authentication function When a host is connected to SAN, this function identifies/authenticates the host so that invalid host would not be connected. - Audit log function It records events related to security, such as success/failure of login, changes in configuration settings." } }, { "cert_id": "JISEC-CC-CRP-C0199", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2014-04-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2008-12-01", "toe_overseas_link": null, "toe_japan_name": "Hitachi Storage Command Suite Common Component 6.0.0-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0199_it8223.html", "enhanced": { "product": "Hitachi Storage Command Suite Common Component", "toe_version": "6.0.0-01", "product_type": "IT Product (Foundational Module Software)", "cc_version": "2.3", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0199_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0199_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a module that provides some kinds of storage management software that manage a plural of storage devices that are connected through SAN with common functions. Storage management software is such as Hitachi Device Manager Software, Hitachi Replication Manager Software and Hitachi Tiered Storage Manager Software. Hitachi Storage Command Suite is the general term for these software and TOE. TOE is provided customers as built-in module included in each software package. TOE security functions TOE has the following security functions. - Identification/authentication (Authentication function of external authentication server can be used as substitute.) - Privilege information management (Privilege information is attached to each user's information and it decides each user's role for storage management software.) - Warning banner" } }, { "cert_id": "JISEC-CC-CRP-C0198", "supplier": "Canon Inc.", "toe_overseas_name": "Canon iR3225/iR3230/iR3235/iR3245 Series HDD Data Erase Kit-B2 Version 1.00", "expiration_date": "2014-04-01", "claim": "EAL3", "certification_date": "2008-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0198_it8218.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon iR3225/iR3230/ iR3235/iR3245 Series HDD Data Erase Kit-B2", "toe_version": "Version 1.00", "product_type": "IT product(data erase function in digital MFP)", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0198_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0198_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0198_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is optional software which adds security features to Canon iR3225/iR3230/iR3235/iR3245 series digital multifunction products. Installing this TOE replaces the system software (e.g., control software) on any of the aforementioned digital multi-function devices. As a basic function of the TOE, it controls functions of the MFP such as Copy, Print, Fax Reception, Mail Box and so on, and temporarily stores image data created during copying, printing, and other document handling operations on the HDD. In most standard multifunction products, such temporary image data is deleted only logically after use, i.e., upon completion of copying or printing, and residual information of deleted image data is not erased at all, being left exposed to the risk of reuse. TOE security functions This TOE comes with a security feature called the HDD Data Erase function, which completely deletes the HDD data, thereby eliminating any risk of the residual information of temporary image data from being reused. The TOE additionally includes the System Administrator Identification and Authentication function and the System Management function, for managing the HDD Data Erase function." } }, { "cert_id": "JISEC-CC-CRP-C0197", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-12-01", "claim": "EAL2", "certification_date": "2008-11-01", "toe_overseas_link": null, "toe_japan_name": "EP Communication Collection Server Software 1.0.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0197_it8201.html", "enhanced": { "product": "EP Communication Collection Server Software", "toe_version": "1.0.1", "product_type": "Communication relay software", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE EP Communication Collection Server Software, TOE, is software product to relay communication data from multi functional printer (MFP) to the EP center. The TOE relays data for the EP service such as automatic counter reporting, ordering supplies like toner, and automatic MFP trouble notifications. The TOE provides security functions to protect communication data from information disclosure and tampering with data, and to authenticate using digital certificates prior to communicating to MFP or the EP center. The TOE also provides several management functions. TOE security functions The TOE provides the following security functions. - HTTPS relay - User identification / authentication - Audit log generation / download" } }, { "cert_id": "JISEC-CC-CRP-C0196", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-II 7000/6000 Series Controller Software for Asia Pacific Controller ROM Ver.1.180.7", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2008-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0196_it8225.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-II 7000/6000 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM Ver.1.180.7", "product_type": "Control Software for Multi Function Peripheral", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0196_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0196_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0196_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, and fax functions as basic functions.The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - System Administrator’s Security Management - Customer Engineer Operation Restriction - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0195", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO2330C/ 2820C/2830C/3520C/3530C/4520C V3.0", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0195_it8200.html", "toe_japan_name": "e-STUDIO2330C/2820C/2830C/ 3520C/3530C/4520C System Software V3.0", "enhanced": { "product": "Japanese: e-STUDIO 2330C/2820C/2830C/ 3520C/3530C/4520C System Software English: System Software for e-STUDIO 2330C/2820C/2830C/ 3520C/3530C/4520C", "toe_version": "V3.0", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the system software of the digital multi function device “e-STUDIO2330C/2820C/2830C/3520C/3530C/4520C” manufactured by TOSHIBA TEC CORPORATION. The TOE controls general functions as a digital multi function device (Copy, Scan, Print and Fax), and provides functions of e-Filing Box and Shared folder. TOE Security functions The TOE provides function of data overwrite and complete deletion on the user document data deleted from HDD in the “e-STUDIO2330C/2820C/2830C/3520C/3530C/4520C” (except following data: fax reception; expired user document data stored in e-Filing Box and Shared folder after such data’s effective period). The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0194", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 5520C/6520C/6530C V3.0", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0194_it8199.html", "toe_japan_name": "e-STUDIO5520C/6520C/6530C System Software V3.0", "enhanced": { "product": "Japanese: e-STUDIO 5520C/6520C/6530C System Software English: System Software for e-STUDIO 5520C/6520C/6530C", "toe_version": "V3.0", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the system software of the digital multi function device “e-STUDIO5520C/6520C/6530C” manufactured by TOSHIBA TEC CORPORATION. The TOE controls general functions as a digital multi function device (Copy, Scan, Print and Fax), and provides functions of e-Filing Box and Shared folder. TOE Security functions The TOE provides function of data overwrite and complete deletion on the user document data deleted from HDD in the “e-STUDIO5520C/6520C/6530C” (except following data: fax reception; expired user document data stored in e-Filing Box and Shared folder after such data’s effective period). The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0193", "supplier": "NEC Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-12-01", "claim": "EAL1", "certification_date": "2008-10-01", "toe_overseas_link": null, "toe_japan_name": "WebSAM SystemManager 5.2.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0193_it8226.html", "enhanced": { "product": "WebSAM SystemManager", "toe_version": "5.2.1", "product_type": "other", "cc_version": "3.1", "assurance_level": "EAL1", "vendor": "NEC Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE WebSAM SystemManager, TOE, is software product to collect and manage configuration information, failure information, and performance data of the monitored servers. WebSAM SystemManager consists of WebSAM SystemManager Agent which is installed on the monitored servers, WebSAM SystemManager Manager which is installed on the monitoring server, and WebSAM SystemManager Monitoring Terminal which is installed on the monitoring terminal computer. The monitoring server stores configuration information, failure information, and performance data sent by the monitored servers. WebSAM SystemManager enable users, such as administrators and operators, to access the configuration information, failure information, and performance information stored on the monitoring server according to the user’s scope of authority assigned to its role via the Monitoring Terminal. TOE Security functions The range of security functions of TOE in this assessment is specified as the following functions to match with the purpose: correct users (such as administrators and operators) are identified and, without fault, obtain access to information (such as configuration information, failure information, and performance data) stored on the monitoring server according to the user’s scope of authority assigned to its role. - Identity authentication function to identify and authenticate users. - Access control function to restrict access to information according to the user’s scope of authority assigned to its role. -User information management function to manage user information and authority information required to the identity authentication and access control mentioned above. TOE security function targets that correct users only can access (refer, update, and delete) information according to the user scope of authority assigned to its role without improper use." } }, { "cert_id": "JISEC-CC-CRP-C0192", "supplier": "FUJITSU LIMITED", "toe_overseas_name": "-----", "expiration_date": "2013-12-01", "claim": "EAL2", "certification_date": "2008-10-01", "toe_overseas_link": null, "toe_japan_name": "SafetyDomain V04L01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0192_it8191.html", "enhanced": { "product": "SafetyDomain", "toe_version": "V04L01", "product_type": "Authentication Control Software", "cc_version": "3.1", "assurance_level": "EAL2", "vendor": "FUJITSU LIMITED", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE SafetyDomain (TOE) is a software product for the client terminal that offers the function to change the input of ID and password which was executed by manual to the input based on IC card where ID and password are stored when logging on to the Windows PC. In addition, SafetyDomain offers a function to change the input of ID and password based on IC card when the specified application executes the identification authentication. SafetyDomain aims to protect services and the functions that Windows and applications software provide from exposing to the threat due to insufficiency of management of ID and password. TOE security functions In this evaluation, to achieve the above-mentioned main purpose, the identification authentication function (Windows logon function and Applications software authentication function) and IC card management function (for managers and for users) are assumed to be TOE security function. TOE’s Windows logon function transfers PIN entered by the user who is going to log on to Windows to the IC card (a FeliCa card or Java Card). When PIN is validated in TOE (in the case of a FeliCa card) or IC card (in the case of Java Card), ID and password (Windows logon password) of the user and domain information stored in the IC card are read. Then, the identification authentication is requested to the identification authentication function that Windows offers. As for the Applications software authentication function of TOE, as well as the above-mentioned, the PIN entered by the user is validated in TOE (in the case of a FeliCa card) or IC card (in the case of Java Card) and ID and password (the application password) of the user stored in IC card are read. After that the identification authentication is requested to the identification authentication function that the application offers. IC card management function for managers is a function to set information (account management information and PIN code management information) in IC card, and to limit the change to managers. Moreover, IC card management function for a user is a function to limit the change in information in IC card (PIN and password) to the user himself." } }, { "cert_id": "JISEC-CC-CRP-C0191", "supplier": "NTT Communica tions Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-12-01", "claim": "EAL4+ AVA_MSU.3", "certification_date": "2008-10-01", "toe_overseas_link": null, "toe_japan_name": "Adapter Compatible High-Speed Juki Card Software 2.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0191_it7162.html", "enhanced": { "product": "Adapter Compatible High-Speed Juki Card Software", "toe_version": "2.00", "product_type": "IT Product (IC chip firmware)", "cc_version": "2.3", "assurance_level": "EAL4 Augmented with AVA_MSU.3", "vendor": "NTT Communications Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.", "report_link": "https://www.ipa.go.jp/en/security/c0191_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0191_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0191_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The target TOE of this ST is software built into Juki cards used in Juki Net, which is used to control data recorded and applications (hereafter referred to as APs) installed on Juki cards. This TOE is installed on Juki cards, and intended to realize the secure issuance of Juki cards from the card issuer to cardholders, verification of cardholders, and protect cardholder information stored on Juki cards. Juki Net is implemented to connect Japan痴 city, town and village systems via electric communication lines, based on the resident ledgers managed by each city, town and village, and increase efficiency of data processing of the resident ledgers. Juki cards are used to issue copies of resident certificates in wide areas, take exceptional measures of move-in and move-out, and check identification of residents. Juki cards are inserted into the Juki card readers/writers being connected to the operating terminals of Juki Net installed at the counters of cities, towns and villages in Japan. Through Juki card readers/writers, Juki cards are used to communicate the operating terminals of cities, towns and villages and realize various operations. This TOE is intended to provide security functions, when realizing requirements as stated above, such as authentication of users, access control, cryptographic communication, and securing of application independency. TOE security functions This TOE has the following security function. 1. Identification and authentication functions - Identification function - PIN verification function - External authentication function 2. Access control functions - File management function - SD management function - AP management function - Key management function 3. Cryptographic communication function - Secure messaging function 4. Execution management function - Authentication status management function - State transition management function - Command execution control function 5. Domain separation function - Domain separation function 6. Data recovery function - Power-off abnormality detection function - Fault recovery function" } }, { "cert_id": "JISEC-CC-CRP-C0190", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 / VarioLink 5022 / VarioLink 4222 / VarioLink 3622 Control Software A0R50Y0-0100-G00-11 (System Controller) A0R50Y0-1D00-G00-10 (BIOS Controller)", "expiration_date": "2013-12-01", "claim": "EAL3", "revalidations": [ { "date": "2009-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0190_it8215_01.html" } ], "certification_date": "2008-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0190_it8215.html", "toe_japan_name": "bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 Zentai Control Software A0R50Y0-0100-G00-11 (System Controller) A0R50Y0-1D00-G00-10 (BIOS Controller)", "enhanced": { "product": "Japanese: bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 Zentai Control Software English: bizhub 501 / bizhub 421 / bizhub 361 / ineo 501/ ineo 421 / ineo 361 Control Software", "toe_version": "A0R50Y0-0100-G00-11 (System Controller) A0R50Y0-1D00-G00-10 (BIOS Controller)", "product_type": "Control Software for digital MFP", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0190_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0190_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0190_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE TOE controls the entire operation of MFP, including the operation control processing and the image data management that are accepting from the panel of the main body of digital MFP (Multi Functional Peripheral, and hereinafter referred to as \"MFP\") or through the network. And TOE offers the protection function from exposure of the highly confidential document stored in the MFP. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the HDD lock function loaded on the HDD. Besides, TOE has the deletion method to follow various overwrite deletion standards and it deletes all the data of HDD completely. TOE security functions TOE provides the following security functions. - Administrator Function - SNMP Administrator Function - Service Mode Function - User Function - User Box Function - Secure Print Function - Overwrite deletion Function for all area - Encryption Key Generation Function - HDD validation Function - CF validation Function - Authentication Failure Counter Reset Function - Trust Channel Function - S/MIME Encryption Processing Function - External server authentication operation support Function - Encryption kit operation support Function - HDD lock operation support Function - CF lock operation support Function" } }, { "cert_id": "JISEC-CC-CRP-C0189", "supplier": "Panasonic System Networks Co., Ltd.", "toe_overseas_name": "Data Security Kit DA-SC06 V1.01", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2008-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0189_it8195.html", "toe_japan_name": "Data Security Kit DA-SC06 V1.01", "enhanced": { "product": "Japanese Name: Data Security Kit DA-SC06 English Name: Data Security Kit DA-SC06", "toe_version": "V1.01", "product_type": "IT Product (data protection function in digital imaging system)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Panasonic System Networks Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0189_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0189_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0189_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software product to protect the used document data which had been already stored on the HDD (Hard Disk Drive) after being processed by the digital imaging system from being disclosed illicitly. The TOE is offered as an optional product of Panasonic Communications Co., Ltd. Digital Imaging System DP-8032P / 8025P, DP-8032V / 8025V, DP-8032VA / 8025VA for Japan (DP-8032 / 8025 for Overseas), and provides the security functions by replacing the standard bundled software of the digital imaging system. (*) All models require the installation of optional Hard Disk Unit. TOE security functions The TOE provides the following security functions. - Hard Disk Drive Overwriting Function for Residual Data - Key Operator Authentication Function - Hard Disk Drive Lock Management Function - Security Mode Operating Management Function - Service Technician Authentication Function - Security Mode Maintenance Management Function" } }, { "cert_id": "JISEC-CC-CRP-C0188", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX8 Version M.10", "expiration_date": "2013-12-01", "claim": "EAL3", "certification_date": "2008-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0188_it7186.html", "toe_japan_name": "MX-FRX8 Version M.10", "enhanced": { "product": "MX-FRX8", "toe_version": "Version M.10", "product_type": "data protection function in Multi Function Device", "cc_version": "3.1", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0188_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0188_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0188_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product composed of 2 parts for a Multi Function Device (hereafter referred as to \"MFD\") to reduce the risk that image data stored or remaining in the HDD and the Flash Memory be disclosed. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, that encrypts and spools image data that the MFD handles for jobs (of copy, printer, image-scanning, fax transmission/reception and PC-Fax), - the erasure function, that overwrites the spooled data area when each job is completed, - the confidential file function, that protects image data that a user files with a password, - the IP/MAC address filter function, that refuses unauthorized network accesses, and - the SSL function, that protects communications data against wiretapping." } }, { "cert_id": "JISEC-CC-CRP-C0187", "supplier": "Fuji Xerox Co., Ltd", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL3+ ADV_LLD.1, ADV_IMP.1, ALC_TAT.1, AVA_VLA.2", "certification_date": "2008-09-01", "toe_overseas_link": null, "toe_japan_name": "Firewall for beat-box v1.1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0187_it8214.html", "enhanced": { "product": "Firewall for beat-box", "toe_version": "v1.1.0", "product_type": "IT product(Firewall)", "assurance_level": "EAL3 Augmented with ADV_LLD.1, ADV_IMP.1, ALC_TAT.1, AVA_VLA.2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE \"beat\" is network management outsourcing service provided by Fuji Xerox Co., Ltd. \"beat-box\" is installed at the gateway of customer's broadband-connected network. \"beat-box\" offers various functions such as firewall, anti-virus, file sharing and groupware. TOE of \"Firewall for beat-box\" is one of the software of beat-box that protects internal network from unauthorized accesses by controlling traffic with an unique firewall technology called \"complete shielding method\". TOE controls the traffic flows in liaison with other beat-box applications in order to permit the authorized connections with beat-noc and other beat-boxes over VPN and remote access. TOE security functions TOE provides the following security functions. - Complete shielding method information flow control - NAPT information flow control - Stateful information flow control" } }, { "cert_id": "JISEC-CC-CRP-C0186", "supplier": "Canon Inc.", "toe_overseas_name": "Canon MFP Security Chip 1.50", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2009-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0186_it8193_01.html" } ], "certification_date": "2008-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0186_it8193.html", "toe_japan_name": "Canon MFP Security Chip 1.50", "enhanced": { "product": "Canon MFP Security Chip", "toe_version": "1.50", "product_type": "IT product(cryptographic security chip)", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0186_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0186_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0186_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the Canon MFP Security Chip and will be provided to end users as part of a HDD data encryption kit. The TOE allows protecting hard drives in Canon MFPs and printers from disclosure of confidential information due to theft, without sacrificing the extensibility, versatility, convenience and performance of Canon MFPs and printers. The TOE provides the following functions for protecting hard drives: - Hard drive data encryption - Cryptographic key management - Device identification and authentication TOE security functions Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0185", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL4+ ALC_FLR.1", "certification_date": "2008-09-01", "toe_overseas_link": null, "toe_japan_name": "Si-R Security Software V02.02", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0185_it8190.html", "enhanced": { "product": "Si-R Security Software", "toe_version": "V02.02", "product_type": "IT product(Router, Switch)", "assurance_level": "EAL4 Augmented with ALC_FLR.1", "vendor": "Fujitsu Limited", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is provided for users as a part of the basic software of IP access router \"Si-R Series\", provided by Fujitsu Limited, and can be applied to protect user's packet data transferred to/from the correspondent (router equipment of another domain or segment). TOE security functions This TOE provides the following security functions: - \"Encryption Key Exchanging Function\", which establishes the virtual communication channel to transfer the user's encrypted packet data. - \"IPsec Encryption Control Function\", which encrypts/ decrypts the packet data transferred to/from the correspondent of the encrypted communication. - \"Operating Support Function\", which permits the only authorized user to configure the Si-R environment setup." } }, { "cert_id": "JISEC-CC-CRP-C0184", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 5222/5225/5230 Controller+PS ROMVer.1.204.4 IOT ROMVer.11.21.0 IIT ROMVer.3.7.0 ADF ROMVer.20.0.0", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2008-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0184_it8205.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 5222/5225/5230", "product_type": "IT product(Multi Function Peripheral)", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0184_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0184_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0184_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, scan, and fax functions as basic functions. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0183", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 5225A/5230A Controller+PS ROMVer.1.224.0 IOT ROMVer.11.21.0 IIT ROMVer.23.7.0 ADF ROMVer.20.0.0", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2008-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0183_it8204.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 5225A/5230A", "product_type": "IT product(Multi Function Peripheral)", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0183_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0183_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0183_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, scan, and fax functions as basic functions. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0182", "supplier": "Sharp Corporation", "toe_overseas_name": "CM4010150 Version M.10", "expiration_date": "2013-03-01", "claim": "EAL2+ ADV_SPM.1", "certification_date": "2008-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0182_it8209.html", "toe_japan_name": "CM4010150 Version M.10", "enhanced": { "product": "CM4010150", "toe_version": "Version M.10", "product_type": "IT product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL2 Augmented with ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0182_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product composed of 2 parts for a Multi Function Device (hereafter referred as to \"MFD\") to reduce the risk that image data stored or remaining in the HDD and the Flash Memory be disclosed. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, that encrypts and spools image data that the MFD handles for jobs (of copy, printer, image-scanning, fax transmission/receptionand PC-Fax), - the erasure function, that overwrites the spooled data area when each job iscompleted, - the confidential file function, that protects image data that a user files witha password, - the IP/MAC address filter function, that refuses unauthorized network accesses, and - the SSL function, that protects communications data against wiretapping." } }, { "cert_id": "JISEC-CC-CRP-C0181", "supplier": "Sharp Corporation", "toe_overseas_name": "CM2510250 Version M.10", "expiration_date": "2013-03-01", "claim": "EAL2+ ADV_SPM.1", "certification_date": "2008-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0181_it8208.html", "toe_japan_name": "CM2510250 Version M.10", "enhanced": { "product": "CM2510250", "toe_version": "Version M.10", "product_type": "IT product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL2 Augmented with ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0181_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product composed of 2 parts for a Multi Function Device (hereafter referred as to \"MFD\") to reduce the risk that image data stored or remaining in the HDD and the Flash Memory be disclosed. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, that encrypts and spools image data that the MFD handles for jobs (of copy, printer, image-scanning, fax transmission/reception and PC-Fax), - the erasure function, that overwrites the spooled data area when each job is completed, - the confidential file function, that protects image data that a user files with a password, - the IP/MAC address filter function, that refuses unauthorized network accesses, and - the SSL function, that protects communications data against wiretapping." } }, { "cert_id": "JISEC-CC-CRP-C0180", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 202L/232/282, e-STUDIO203L/233/283 V2.0", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0180_it8198.html", "toe_japan_name": "e-STUDIO202L/232/282, e-STUDIO203L/233/283 System Software V2.0", "enhanced": { "product": "System Software for e-STUDIO202L/232/282, e-STUDIO203L/233/283", "toe_version": "V2.0", "product_type": "IT product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the system software of the digital multi function device \"e-STUDIO202L/232/282, e-STUDIO203L/233/283\" manufactured by TOSHIBA TEC CORPORATION. The TOE controls general functions as a digital multi function device (Copy, Scan, Print and Fax), and provides functions of e-Filing Box and Shared folder. TOE security functions The TOE provides function of data overwrite and complete deletion on the user document data deleted from HDD in the \"e-STUDIO202L/232/282, e-STUDIO203L/233/283\" (except following data: fax reception; expired user document data stored in e-Filing Box and Shared folder after such data's effective period). The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0179", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 352/452, e-STUDIO353/453 V2.0", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0179_it8197.html", "toe_japan_name": "e-STUDIO352/452, e-STUDIO353/453 System Software V2.0", "enhanced": { "product": "System Software for e-STUDIO352/452, e-STUDIO353/453", "toe_version": "V2.0", "product_type": "IT product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the system software of the digital multi function device \"e-STUDIO352/452, e-STUDIO353/453\" manufactured by TOSHIBA TEC CORPORATION. The TOE controls general functions as a digital multi function device (Copy, Scan, Print and Fax), and provides functions of e-Filing Box and Shared folder. TOE security functions The TOE provides function of data overwrite and complete deletion on the user document data deleted from HDD in the \"e-STUDIO352/452, e-STUDIO353/453\" (except following data: fax reception; expired user document data stored in e-Filing Box and Shared folder after such data's effective period). The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0178", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 520/600/720/850, e-STUDIO523/603/723/853 V2.0", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0178_it8196.html", "toe_japan_name": "e-STUDIO520/600/720/850, e-STUDIO523/603/723/853 System Software V2.0", "enhanced": { "product": "System Software for e-STUDIO520/600/720/850, e-STUDIO523/603/723/853", "toe_version": "V2.0", "product_type": "IT product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the system software of the digital multi function device \"e-STUDIO520/600/720/850, e-STUDIO523/603/723/853\" manufactured by TOSHIBA TEC CORPORATION. The TOE controls general functions as a digital multi function device (Copy, Scan, Print and Fax), and provides functions of e-Filing Box and Shared folder. TOE security functions The TOE provides function of data overwrite and complete deletion on the user document data deleted from HDD in the \"e-STUDIO520/600/720/850, e-STUDIO523/603/723/853\" (except following data: fax reception; expired user document data stored in e-Filing Box and Shared folder after such data's effective period). The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0177", "supplier": "SEIKO EPSON CORPORATION", "toe_overseas_name": "EpsonNet ID Print Authentication Print Module 1.5bE", "expiration_date": "2013-10-01", "claim": "EAL2", "revalidations": [ { "date": "2010-10", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0177_it7146_03.html" } ], "certification_date": "2008-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0177_it7146.html", "toe_japan_name": "EpsonNet ID Print Authentication Print Module 1.5b", "enhanced": { "product": "Japanese name: EpsonNet ID Print Authentication Print Module English name: EpsonNet ID Print Authentication Print Module", "toe_version": "Japanese version: 1.5b English version: 1.5bE", "product_type": "IT Product(Authentication Print Software)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "SEIKO EPSON CORPORATION", "evaluation_facility": "MIzuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0177_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0177_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0177_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an authentication printing function on an optional network interface card for the printers and multi-function printers manufactured by SEIKO EPSON CORPORATION. The TOE receives and holds print data that is identified as coming from a specific client PC. The data is not printed until a person authorized to print the data is identified through an authentication device connected to the network interface card. This TOE supports the following printers and multi-function printers. Supported products for Japan: LP-S6500 series, LP-S7000 series, LP-9800C series, LP-9200C series, LP-9000C series, LP-8800C series, LP-7000C series, LP-S4500 series, LP-9200B series, LP-9100 series, LP-7900 series, LP-8900 series, LP-9000B series, LP-9400 series, LP-2500 series, LP-M6500 series, LP-M9800 series, LP-S3000 series, LP-S4000 series, LP-M6000 series *1, LP-S7500 series, LP-M7500 series, LP-S3500 series, LP-S4200 series. *1: The function of the TOE cannot be used if the user identification function of the LP-M6000 is being used. Supported products for overseas: AcuLaser C3800 series, AcuLaser C2600 series, AcuLaser C4200 series, AcuLaser C9100 series, AcuLaser 2600 series, EPL-N2550 series, EPL-N3000 series, AcuLaser M4000 series TOE security functions The TOE provides the following security functions. - User identification - Print-job management - Printer settings - Settings management" } }, { "cert_id": "JISEC-CC-CRP-C0176", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2008-08-01", "toe_overseas_link": null, "toe_japan_name": "Systemwalker Centric Manager Enterprise Edition V13.2.0 (Windows)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0176_it7155.html", "enhanced": { "product": "Systemwalker Centric Manager Enterprise Edition", "product_type": "IT product (Operation and maintenance supporting software for integrated system)", "assurance_level": "EAL1", "vendor": "FUJITSU LIMITED", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software product to support systems management that is required for stable application systems operation. The TOE totally supports systems management of application systems resources in 4 phases of systems management. The application systems resources is a generic name of servers, clients and network devices such as hubs, routers that are constituent elements of application systems. The 4 phases are defined in the TOE and are \"Deploy, \"Monitoring\", \"Recovery\" and \"Assessment\". -Deploy is a phase to deploy software and data to application servers and application clients. The TOE provides \"Resource distribution function\" to distribute and apply software and data to them. - \"Monitoring\" is a phase to monitor failure status of application systems. The TOE provides \"Event monitoring function\" to monitor operation status, performance and so on. - \"Recovery\" is a phase to investigate cause of failure and recover from failure status when application systems fell into trouble. The TOE provides \"Operation function\" to investigate and recover failures. - \"Assessment\" is a phase to evaluate and analyze application systems periodically and then plan appropriate precaution. The TOE provides \"Operation status analyses function\" for application systems. TOE security functions The TOE has following security functions to prevent unauthorized use of functions that support systems management. - ACL manager function - Console operation control function - LiveHelp connection authentication function - Audit log function for ACL manager function - Audit log function for Operation Management Client operations - Protection function for password to login to TOE on servers The TOE has following security function to recognize distribution status of software and data. - Automatic notification function for application results" } }, { "cert_id": "JISEC-CC-CRP-C0175", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2008-08-01", "toe_overseas_link": null, "toe_japan_name": "Systemwalker Centric Manager Enterprise Edition V13.2.0 (Solaris)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0175_it7154.html", "enhanced": { "product": "Systemwalker Centric Manager Enterprise Edition", "product_type": "IT product (Operation and maintenance supporting software for integrated system)", "assurance_level": "EAL1", "vendor": "FUJITSU LIMITED", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software product to support systems management that is required for stable application systems operation. The TOE totally supports systems management of application systems resources in 4 phases of systems management. The application systems resources is a generic name of servers, clients and network devices such as hubs, routers that are constituent elements of application systems. The 4 phases are defined in the TOE and are \"Deploy\", \"Monitoring\", \"Recovery\" and \"Assessment\". - \"Deploy\" is a phase to deploy software and data to application servers and application clients. The TOE provides \"Resource distribution function\" to distribute and apply software and data to them. - \"Monitoring\" is a phase to monitor failure status of application systems. The TOE provides \"Event monitoring function\" to monitor operation status, performance and so on. - \"Recovery\" is a phase to investigate cause of failure and recover from failure status when application systems fell into trouble. The TOE provides \"Operation function\" to investigate and recover failures. - \"Assessment\" is a phase to evaluate and analyze application systems periodically and then plan appropriate precaution. The TOE provides \"Operation status analyses function\" for application systems. TOE security functions The TOE has following security functions to prevent unauthorized use of functions that support systems management. - ACL manager function - Console operation control function - Server operation control function - LiveHelp connection authentication function - Audit log function for ACL manager function - Audit log function for Operation Management Client operations - Audit log function for Server operation control function - Protection functio\" for password to login to TOE on servers The TOE has following security function to recognize distribution status of software and data. -Automatic notification function\" for application results" } }, { "cert_id": "JISEC-CC-CRP-C0174", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2008-08-01", "toe_overseas_link": null, "toe_japan_name": "Systemwalker Centric Manager Enterprise Edition V13.2.0 (Linux for Itanium)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0174_it7153.html", "enhanced": { "product": "Systemwalker Centric Manager Enterprise Edition", "product_type": "IT product (Operation and maintenance supporting software for integrated system)", "assurance_level": "EAL1", "vendor": "FUJITSU LIMITED", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software product to support systems management that is required for stable application systems operation. The TOE totally supports systems management of application systems resources in 4 phases of systems management. The application systems resources is a generic name of servers, clients and network devices such as hubs, routers that are constituent elements of application systems. The 4 phases are defined in the TOE and are \"Deploy\", \"Monitoring\", \"Recovery\" and \"Assessment\". - \"Deploy\" is a phase to deploy software and data to application servers and application clients. The TOE provides \"Resource distribution function\" to distribute and apply software and data to them. - \"Monitoring\" is a phase to monitor failure status of application systems. The TOE provides \"Event monitoring function\" to monitor operation status, performance and so on. - \"Recovery\" is a phase to investigate cause of failure and recover from failure status when application systems fell into trouble. The TOE provides \"Operation function\" to investigate and recover failures. - \"Assessment\" is a phase to evaluate and analyze application systems periodically and then plan appropriate precaution. The TOE provides \"Operation status analyses function\" for application systems. TOE security functions The TOE has following security functions to prevent unauthorized use of functions that support systems management. - ACL manager function - Console operation control function - Server operation control function - LiveHelp connection authentication function - Audit log function for ACL manager function - Audit log function for Operation Management Client operations - Audit log function for Server operation control function - Protection function for password to login to TOE on servers The TOE has following security function to recognize distribution status of software and data. - Automatic notification function for application results" } }, { "cert_id": "JISEC-CC-CRP-C0172", "supplier": "Sharp Corporation", "toe_overseas_name": "ZB3501040 VERSION S.10", "expiration_date": "2013-10-01", "claim": "EAL2+ ADV_SPM.1", "certification_date": "2008-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0172_it8207.html", "toe_japan_name": "-----", "enhanced": { "product": "ZB3501040", "toe_version": "VERSION S.10", "product_type": "IT product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL2 Augmented with ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0172_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is firmware to enhance security functionality of a Multi-Function Device (hereafter referred to as \"MFD\"). It is an option that implements security functions and controls the entire MFD when installed instead of the MFD standard firmware. TOE security functions As countermeasures against information leakage that residual image data in the MFD induce, the TOE has such security functions as cryptographic operation and data clear. The cryptographic operation function encrypts the image data of each job for PC-Fax, fax send and fax reception before spooled to the Flash memory in the MFD. The data clear function overwrites random or fixed values over the storage area that the spooled image data occupy when the MFD finishes or aborts each job of copy, printer, image send, PC-Fax, fax send, and fax reception functions." } }, { "cert_id": "JISEC-CC-CRP-C0171", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL4+ ALC_FLR.1", "certification_date": null, "toe_overseas_link": null, "toe_japan_name": "HiRDB / Single Server Version 7 07-03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0171_it5056.html", "enhanced": { "product": "HiRDB / Single Server Version 7", "toe_version": "07-03", "product_type": "IT Product (Data Base Management System)", "cc_version": "2.3", "assurance_level": "EAL4 Augmented with ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE This TOE(HiRDB / Single Server Version 7) is a software product for Relational Database Management System(RDBMS). The TOE acts as a database server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. TOE security functions The TOE provides security functions that restrict access to user data to authorized users. Security functions of the TOE include the following. -Audit -Discretionary Access Control -Identification and Authentication -Security Management" } }, { "cert_id": "JISEC-CC-CRP-C0170", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2008-06-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-III 3000/2000 Series Controller Software / Controller ROM Ver 1.0.12", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0170_it8203.html", "enhanced": { "product": "Fuji Xerox DocuCentre-III 3000/2000 Series Controller Software", "toe_version": "Controller ROM Ver 1.0.12", "product_type": "IT product(Control Software for Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral(MFP) that provides copy, print, scan, and fax functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: -Hard Disk Data Overwrite -Hard Disk Data Encryption -System Administrator's Security Management -Customer Engineer Operation Restriction -FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0169", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 7346 / Controller+PS ROM Ver.1.223.4 IOT ROM Ver.3.2.0 IIT ROM Ver.20.4.3 ADF ROM Ver.11.6.5", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2008-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0169_it8202.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 7346", "toe_version": "Controller+PS ROM Ver.1.223.4 IOT ROM Ver.3.2.0 IIT ROM Ver.20.4.3 ADF ROM Ver.11.6.5", "product_type": "IT product(Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0169_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0169_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0169_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, scan, and fax functions as basic functions. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: -Hard Disk Data Overwrite -Hard Disk Data Encryption -User Authentication -System Administrator's Security Management -Customer Engineer Operation Restriction -Security Audit Log -Internal Network Data Protection -FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0168", "supplier": "Panasonic System Networks Co., Ltd.", "toe_overseas_name": "Data Security Kit DA-SC04 V1.00", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2008-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0168_it7188.html", "toe_japan_name": "Data Security Kit DA-SC04 V1.00", "enhanced": { "product": "Japanese Name: Data Security Kit DA-SC04 English Name: Data Security Kit DA-SC04", "toe_version": "V1.00", "product_type": "IT Product (data protection function in digital imaging system)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Panasonic System Networks Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0168_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0168_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0168_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is a software product to protect the used document data which had been already stored on the HDD (Hard Disk Drive) after being processed by the digital imaging system from being disclosed illicitly. The TOE is offered as an optional product of Panasonic Communications Co., Ltd. Digital Color Imaging System DP-C3040VFS / C3030VFS / C2626VFS / DP-C3040V(*)/ C3030V(*) / C2626VF(*) for Japan (DP-C405 / C305 / C265 for Overseas), and provides the security functions by replacing the standard bundled software of the digital imaging system. (*) Requires installation of optional Hard Disk Unit. TOE security functions - Hard Disk Drive Overwriting Function for Residual Data - Key Operator Authentication Function - Hard Disk Drive Lock Management Function - Security Mode Operating Management Function - Service Technician Authentication Function - Security Mode Maintenance Management Function" } }, { "cert_id": "JISEC-CC-CRP-C0167", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX9 Version M.10", "expiration_date": "2013-10-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2008-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0167_it7187.html", "toe_japan_name": "MX-FRX9 Version M.10", "enhanced": { "product": "MX-FRX9", "toe_version": "Version M.10", "product_type": "IT product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3 Augmented with ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/c0167_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0167_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0167_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is an IT product composed of 2 parts for a Multi Function Device (hereafter referred as to \"MFD\") to reduce the risk that image data stored or remaining in the HDD and the Flash Memory be disclosed. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. TOE security functions The TOE counters unauthorized disclosure of image data by: - the encryption function, that encrypts and spools image data that the MFD handles for jobs (of copy, printer, image-scanning, fax transmission/reception and PC-Fax), - the erasure function, that overwrites the spooled data area when each job is completed, - the confidential file function, that protects image data that a user files with a password, - the IP/MAC address filter function, that refuses unauthorized network accesses, and - the SSL function, that protects communications data against wiretapping." } }, { "cert_id": "JISEC-CC-CRP-C0166", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2008-05-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-III C4400 DocuCentre-III C4400 Series Controller Software Controller ROM Ver 1.0.8", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0166_it7185.html", "enhanced": { "product": "Fuji Xerox ApeosPort-III C4400 DocuCentre-III C4400 Series Controller Software", "toe_version": "Controller ROM Ver 1.0.8", "product_type": "IT product(Control Software for Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0166_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0166_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, and fax functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - System Administrator's Security Management - Customer Engineer Operation Restriction - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0165", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2008-05-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-III C3300/C2200 DocuCentre-III C3300/C2200 Series Controller Software Controller ROM Ver 1.0.10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0165_it7184.html", "enhanced": { "product": "Fuji Xerox ApeosPort-III C3300/C2200 DocuCentre-III C3300/C2200 Series Controller Software", "toe_version": "Controller ROM Ver 1.0.10", "product_type": "IT product(Control Software for Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center Evaluation Department", "report_link": "https://www.ipa.go.jp/en/security/C0165_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/C0165_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, and fax functions as basic functions.The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - System Administrator's Security Management - Customer Engineer Operation Restriction - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0164", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software A02E0Y0-0100-GN0-20", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2008-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0164_it7180.html", "toe_japan_name": "bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software A02E0Y0-0100-GN0-20", "enhanced": { "product": "Japanese name: bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software English name: bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software", "toe_version": "A02E0Y0-0100-GN0-20", "product_type": "IT Products(Data protection function in digital MFP)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0164_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203). (Hereinafter referred to as \"MFP\")This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions. - Administrator Function - SNMP Administrator Function - Service Mode Function - User Function - User Box Function - Secure Print Function - ID&Print Function - All Area Overwrite Deletion Function - Encryption Key Generation Function - HDD verification Function - Authentication Failure Counter Reset Function - Trust Channel Function - S/MIME Encryption Processing Function - WebDAV Administrator Function" } }, { "cert_id": "JISEC-CC-CRP-C0163", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C353 / ineo+ 353 Control Software A02E0Y0-0100-GM0-20", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2008-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0163_it7179.html", "toe_japan_name": "bizhub C353 / ineo+ 353 Control Software A02E0Y0-0100-GM0-20", "enhanced": { "product": "Japanese name: bizhub C353 / ineo+ 353 Control Software English name: bizhub C353 / ineo+ 353 Control Software", "toe_version": "A02E0Y0-0100-GM0-20", "product_type": "IT Products(Data protection function in digital MFP)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0163_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C353 / ineo+ 353). (Hereinafter referred to as \"MFP\") This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions. - Administrator Function - SNMP Administrator Function - Service Mode Function - User Function - User Box Function - Secure Print Function - ID&Print Function - All Area Overwrite Deletion Function - Encryption Key Generation Function - HDD verification Function - Authentication Failure Counter Reset Function - Trust Channel Function - S/MIME Encryption Processing Function - WebDAV Administrator Function" } }, { "cert_id": "JISEC-CC-CRP-C0162", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451 Control Software A00J0Y0-0100-GM0-20", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2008-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0162_it7178.html", "toe_japan_name": "bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451 Control Software A00J0Y0-0100-GM0-20", "enhanced": { "product": "Japanese name: bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451 Control Software English name: bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451 Control Software", "toe_version": "A00J0Y0-0100-GM0-20", "product_type": "IT Products(Data protection function in digital MFP)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0162_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451). (Hereinafter referred to as \"MFP\"). This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions. - Administrator Function - SNMP Administrator Function - Service Mode Function - User Function - User Box Function - Secure Print Function - ID&Print Function - All Area Overwrite Deletion Function - Encryption Key Generation Function - HDD verification Function - Authentication Failure Counter Reset Function - Trust Channel Function - S/MIME Encryption Processing Function - WebDAV Administrator Function" } }, { "cert_id": "JISEC-CC-CRP-C0161", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C650 / ineo+ 650 Control Software A00H0Y0-0100-GM0-20", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2008-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0161_it7177.html", "toe_japan_name": "bizhub C650 / ineo+ 650 Control Software A00H0Y0-0100-GM0-20", "enhanced": { "product": "Japanese name: bizhub C650 / ineo+ 650 Control Software English name:bizhub C650 / ineo+ 650 Control Software", "toe_version": "A00H0Y0-0100-GM0-20", "product_type": "IT Products(Data protection function in digital MFP)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0161_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C650 / ineo+ 650). (Hereinafter referred to as \"MFP\"). This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions. - Administrator Function - SNMP Administrator Function - Service Mode Function - User Function - User Box Function - Secure Print Function - ID&Print Function - All Area Overwrite Deletion Function - Encryption Key Generation Function - HDD verification Function - Authentication Failure Counter Reset Function - Trust Channel Function - S/MIME Encryption Processing Function - WebDAV Administrator Function" } }, { "cert_id": "JISEC-CC-CRP-C0160", "supplier": "DDS,Inc.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2008-05-01", "toe_overseas_link": null, "toe_japan_name": "Finger Authentication Control Software EVE FA 2.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0160_it7175.html", "enhanced": { "product": "Finger Authentication Control Software EVE FA", "toe_version": "2.00", "product_type": "Finger Authentication Control Software", "cc_version": "3.1", "assurance_level": "EAL2", "vendor": "DDS,Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is software to control a fingerprint authentication system for Windows systems. This TOE provides fingerprint authentication feature to proper Windows domain users so that they are able to authenticate in Active Directory with their fingerprints instead of entering the passwords while logging on to a domain. This TOE is deployed respectively in client PCs and FA Server in which fingerprint authentication is implemented. TOE security functions This TOE provides the following security features: - Identification / authentication - Management of user information and fingerprint data - Inspection - Secure communication" } }, { "cert_id": "JISEC-CC-CRP-C0159", "supplier": "AEON BANK, LTD./ Mitsubishi Electric Information Systems Corporation", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2008-05-01", "toe_overseas_link": null, "toe_japan_name": "ABB business application software 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0159_it7174.html", "enhanced": { "product": "ABB business application software", "toe_version": "1.0", "product_type": "Business application in a terminal for banking services", "cc_version": "3.1", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "AEON BANK, LTD. / Mitsubishi Electric Information Systems Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE TOE is application software installed in dedicated terminals for banking services that are placed in stores such as supermarkets. By using the terminals, customers can take banking services such as address corrections and changing signature. The terminal can also accept application forms in bulk. To enable these services, TOE has the acceptance function, the collection function, and the data communication function. TOE security functions TOE has the following security functions: - Encryption function of individual information. - Identification and authentication of user." } }, { "cert_id": "JISEC-CC-CRP-C0158", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1+ ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "certification_date": "2008-04-01", "toe_overseas_link": null, "toe_japan_name": "DocumentBroker Server Version3 03-11", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0158_it7189.html", "enhanced": { "product": "DocumentBroker Server Version 3", "toe_version": "03-11", "product_type": "Document Management System", "cc_version": "3.1", "assurance_level": "EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE TOE is one of the software products making up a document management system built on a relational database (RDBMS). TOE functions as a server of the document management system and accesses information stored in the database in response to requests from clients. Because TOE is middleware, no interface is being provided to end users (general users). TOE security functions Access control function: In the document space that TOE provides, for identified and authenticated sessions, the creation of objects and operations on objects that exist under TOE management are permitted on either a user identifier or group identifier basis. Also, the authority to change the access control information used for determining access is limited to sessions that have a specific user identifier or group identifier." } }, { "cert_id": "JISEC-CC-CRP-C0157", "supplier": "NEC Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2008-04-01", "toe_overseas_link": null, "toe_japan_name": "WebOTX Application Server High reliability unit 7.11", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0157_it7171.html", "enhanced": { "product": "WebOTX Application Server High reliability unit", "toe_version": "7.11", "product_type": "Application Server", "assurance_level": "EAL2 Augmented with ALC_FLR.1", "vendor": "NEC Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a part of the web application server \"WebOTX Application Server\" that is a J2EE 1.4 (Java TM 2 platform Enterprise Edition Specification V1.4) compliant. TOE security functionality TOE provides following security functions : - Identification and authentification function to the general user. - Access control function to the general user. - Identification and authentification function to the WebOTX administrator. - User management function to the WebOTX administrator. - Deployment control function of user application to the WebOTX Administrator. - Recovery function of user application." } }, { "cert_id": "JISEC-CC-CRP-C0156", "supplier": "NEC Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1+ ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "certification_date": "2008-04-01", "toe_overseas_link": null, "toe_japan_name": "NEC Group Secure Information Exchange Site 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0156_it7168.html", "enhanced": { "product": "NEC Group Secure Information Exchange Site", "toe_version": "1.0", "product_type": "Secure Information Exchange System", "cc_version": "3.1", "assurance_level": "EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "vendor": "NEC Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0156_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0156_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is the business data exchange system that provides services for preventing the miss-delivery of business data and the information leakage in communications between internal users and customers. The basic operation of the TOE is as follows: (1) An employee of NEC Group first creates an Area that is an administered data storage area, and then creates a folder in that Area. (2) An internal user or a customer uploads business data to that folder. (3) The uploaded data is then downloaded by internal users or customers for their business use. The TOE provides the following service functions: - Upload - Download - Area Maintenance - User Maintenance - Set Personal Information - Administration As security functions, the TOE protects the business data to be exchanged by the TOE from unauthorized access, miss-delivery and information leakage. It also collects audit logs. TOE security functions [Identification and Authentication] A function to identify and authenticate the users of the TOE [Access Control] A function to control access to the business data based on the user roles of the TOE [Auditing] A function to generate and view the audit trail of the TOE [Cryptography] A function to encrypt and decrypt the communication data between the TOE and a user" } }, { "cert_id": "JISEC-CC-CRP-C0155", "supplier": "NEC Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2008-04-01", "toe_overseas_link": null, "toe_japan_name": "NEC firewall SG Core Unit 1.0.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0155_it7140.html", "enhanced": { "product": "NEC firewall SG Core Unit", "toe_version": "1.0.0", "product_type": "IT Product (Firewall)", "cc_version": "2.3", "assurance_level": "EAL1", "vendor": "NEC Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE This TOE is included in \"NEC Firewall SG\" that is the firewall product. It has IP packet filtering function to inspect IP packet based on the packet filter rule and decide whether to accept a packet or to deny it. TOE security functions This TOE provides some security functions as follow: - Configuration and Management - Identification and Authentication - IP packet filtering - Log and Alert notification The following functions are included in this TOE, but excluded from the evaluation. - Bandwidth control for input IP packet - SSH (for system management)" } }, { "cert_id": "JISEC-CC-CRP-C0154", "supplier": "Intelligent Wave Inc.", "toe_overseas_name": "CWAT3i Ver3.1b_cc", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2008-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0154_it7137.html", "toe_japan_name": "CWAT3i", "enhanced": { "product": "CWAT3i", "toe_version": "Ver3.1b_CC", "product_type": "IT Product (Data loss prevention)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Intelligent Wave Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is software consisting of a data loss prevention system designed to support corporate security management, by detecting \"Improper Operations\" and \"Suspicious Activities\" on each PC. Functions to prevent corporate data loss; Real-time PC monitoring, prevention at policy violation, unauthorized access prevention and audit logs generation can be enforced by deploying policies set on the integrated management server. Also, this product enables central management of audit logs and administration of PCs in a multi-language environment. TOE security functions This TOE, to secure the delivery functionality for the appropriately setup policy information as well as securing of the delivery functionality for the alert logs generated, enforces the security functions mentioned below: - Administrator authentication for the management features, etc. - Role-based access control for restricting operations for TOE administrators on need basis. - Policy delivery enforcement feature to mitigate risk of undelivered policy data. - Alert log enforcement feature to mitigate risk of undelivered alert logs. - Audit trail feature for identity authentication as well as access to the TOE management console." } }, { "cert_id": "JISEC-CC-CRP-C0153", "supplier": "Matsushita Electric Industrial Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ ALC_DVS.1", "certification_date": "2008-04-01", "toe_overseas_link": null, "toe_japan_name": "Platform for Secure IC Version 2.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0153_it6099.html", "enhanced": { "product": "Platform for Secure IC", "toe_version": "Version 2.00", "product_type": "IT product (Software for Secure IC)", "cc_version": "2.3", "assurance_level": "EAL2 Augmented with ALC_DVS.1", "vendor": "Matsushita Electric Industrial Co., Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION Description of TOE TOE is software embedded in 3341 System In package LSI. TOE provides functions consisting of Cipher keys management, macro file management, crypt calculation using hardware acceleration and execution of macro file. TOE security functions TOE manages cipher keys and macro files in secure manner, isolates these data between Service Providers such as electric purse services using following functions. - Identification and Authentication - Installation cipher keys and macro files keeping confidentiality and integrity - Access control for using keys and a macro file. TOE has an additional function as follows; - Keeping cipher keys and macro files availability against the interruption of power." } }, { "cert_id": "JISEC-CC-CRP-C0152", "supplier": "NEC Information Systems, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2008-03-01", "toe_overseas_link": null, "toe_japan_name": "PROCENTER Web Edition 3.6", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0152_it8192.html", "enhanced": { "product": "PROCENTER Web Edition", "toe_version": "3.6", "product_type": "Other", "cc_version": "3.1", "assurance_level": "EAL1", "vendor": "NEC Informatec Systems, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE TOE is a document management system which provides functions for document registration, modification, reference, deletion and search. TOE security functions - Identification and authentication function - Access control function" } }, { "cert_id": "JISEC-CC-CRP-C0151", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit (C) Type II Software V2.40", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2008-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0151_it7182.html", "toe_japan_name": "Data Security Kit (C) Type II Software V2.40", "enhanced": { "product": "Data Security Kit(C) Type II Software", "toe_version": "V2.40", "product_type": "IT Product (data protection function in digital MFP)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0151_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is installed as an option to the MFPs \"KM-2560, KM-3060, KM-2560i, KM-3060i, CS-2560, CS-3060\" of KYOCERA MITA Corporation. It is used to protect the image data that exists on HDD during or after each processing the copy function, the print function, the network scanning function, and the fax (sending and receiving) function from an illegal exposure. TOE security functions To defend assets to be protected in relation to the use of the above-mentioned basic functions, the TOE has the following security functions: - Hard disk accumulation data overwrite deletion function - Hard disk accumulation data encryption function" } }, { "cert_id": "JISEC-CC-CRP-C0150", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit (C) Software V1.40", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2008-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0150_it5063.html", "toe_japan_name": "Data Security Kit (C) Software V1.40", "enhanced": { "product": "Data Security Kit(C) Software", "toe_version": "V1.40", "product_type": "IT Product (data protection function in digital MFP)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Information Technology Security Center Evaluation Department", "cert_link": "https://www.ipa.go.jp/en/security/c0150_eimg.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is installed as an option to the MFPs \"KM-3050, KM-4050, KM-5050, KM-3050i, KM-4050i, KM-5050i, CS-3050, CS-4050, CS-5050\" of KYOCERA MITA Corporation. It is used to protect the image data that exists on HDD during or after each processing the copy function, the print function, the network scanning function, and the fax (sending and receiving) function from an illegal exposure. TOE security functions To defend assets to be protected in relation to the use of the above-mentioned basic functions, this TOE has the following security functions. - Hard disk accumulation data overwrite deletion function - Hard disk accumulation data encryption function" } }, { "cert_id": "JISEC-CC-CRP-C0149", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "magicolor 8650 Control Software A02E0Y0-0100-GP0-12", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2008-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0149_it7167.html", "toe_japan_name": "magicolor 8650 Control Software A02E0Y0-0100-GP0-12", "enhanced": { "product": "Japanese name:magicolor 8650 Control Software English name: magicolor 8650 Control Software", "toe_version": "A02E0Y0-0100-GP0-12", "product_type": "IT Product (Data protection function in printer systems)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0149_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0149_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0149_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. network printer (magicolor 8650). This product offers the protection from exposure of the highly confidential document stored in the printer, and aims at protecting the data which may be exposed against a user's intention. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions. - All area overwrite deletion function - HDD encryption key generation function - HDD verification function - Public box authentication function - Secure print authentication function - Trusted channel function - Administrator identification and authentication functions - Service engineer identification and authentication functions" } }, { "cert_id": "JISEC-CC-CRP-C0148", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C353P / ineo+ 353P Control Software A02E0Y0-0100-GM0-12", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2008-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0148_it7166.html", "toe_japan_name": "bizhub C353P / ineo+ 353P Control Software A02E0Y0-0100-GM0-12", "enhanced": { "product": "Japanese name:bizhub C353P / ineo+ 353P Control Software English name:bizhub C353P / ineo+ 353P Control Software", "toe_version": "A02E0Y0-0100-GM0-12", "product_type": "IT Product (Data protection function in printer systems)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0148_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0148_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0148_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. network printer (bizhub C353P / ineo+ 353P). This product offers the protection from exposure of the highly confidential document stored in the printer, and aims at protecting the data which may be exposed against a user's intention. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions. - All area overwrite deletion function - HDD encryption key generation function - HDD verification function - Public box authentication function - Secure print authentication function - Trusted channel function - Administrator identification and authentication functions - Service engineer identification and authentication functions" } }, { "cert_id": "JISEC-CC-CRP-C0147", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 7232/7242 Controller+PS ROM Ver.1.203.0 IOT ROM Ver.4.7.0 IIT ROM Ver.20.4.1 ADF ROM Ver.20.0.0", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2008-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0147_it7183.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 7232/7242", "toe_version": "Controller+PS ROM Ver.1.203.0 IOT ROM Ver.4.7.0 IIT ROM Ver.20.4.1 ADF ROM Ver.20.0.0", "product_type": "IT Product (Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center", "report_link": "https://www.ipa.go.jp/en/security/c0147_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0147_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0147_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, scan, and fax functions as basic functions. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0146", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type I Software 1.01m", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2009-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0146_it7170_01.html" } ], "certification_date": "2008-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0146_it7170.html", "toe_japan_name": "imagio Security Card Type 9 Software 1.01m", "enhanced": { "product": "imagio Security Card Type 9 Software (Japanese name) DataOverwriteSecurity Unit Type I Software (English name)", "toe_version": "1.01m", "product_type": "IT Product (software to overwrite data)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0146_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0146_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0146_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product(MFP). This product is available for the following MFPs; Ricoh imagio MP 2550 series Ricoh imagio MP 3350 series Ricoh imagio MP 4000 series Ricoh imagio MP 5000 series Ricoh Aficio MP 2550 series Ricoh Aficio MP 3350 series Savin 9025/9033 series Lanier LD425/433 series Lanier MP 2550/3350 series Gestetner MP 2550/3350 series Nashuatec MP 2550/3350 series Rex-Rotary MP 2550/3350 series Infotec MP 2550/3350 series Ricoh Aficio MP 4000 series Ricoh Aficio MP 5000 series Savin 9040/9050 series Lanier LD040/050 series Lanier MP 4000/5000 series Gestetner MP 4000/5000 series Nashuatec MP 4000/5000 series Rex-Rotary MP 4000/5000 series Infotec MP 4000/5000 series TOE security functions Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0145", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type H Software 1.01x", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2009-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0145_it7169_02.html" } ], "certification_date": "2008-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0145_it7169.html", "toe_japan_name": "imagio Security Card Type 7 Software 1.01x", "enhanced": { "product": "imagio Security Card Type 7 Software (Japanese name) DataOverwriteSecurity Unit Type H Software (English name)", "toe_version": "1.01x", "product_type": "IT Product (software to overwrite data)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0145_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0145_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0145_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product(MFP). This product is available for the following MFPs; Ricoh imagio MP C6000 series Ricoh imagio MP C7500 series Ricoh Aficio MP C6000 series Ricoh Aficio MP C7500 series Savin C6055/C7570 series Lanier LD260c/275c series Lanier MP C6000/C7500 series Gestetner MP C6000/C7500 series Infotec MP C6000/C7500 series NRG MP C6000/C7500 series TOE security functions Same as above." } }, { "cert_id": "JISEC-CC-CRP-C0144", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL4", "certification_date": "2008-01-01", "toe_overseas_link": null, "toe_japan_name": "Symfoware Server Enterprise Extended Edition 9.0.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0144_it7181.html", "enhanced": { "product": "Symfoware Server Enterprise Extended Edition", "toe_version": "9.0.1", "product_type": "IT Product (Database)", "cc_version": "2.3", "assurance_level": "EAL4", "vendor": "Fujitsu Limited", "evaluation_facility": "Information Technology Security Center", "description": "PRODUCT DESCRIPTION Symfoware Server is Fujitsu's relational database management system designed for enterprise business. Symfoware Server processes huge data speedily during user's working and also user can use it effectively for their own business style. Using SQL language, user is able to define the data structure, and access to the structured data. Symfoware Server offers the security functions of the user control, the resource control, and the audit log, etc. to protect the data base from malicious access in addition to the function for such a data base access. Symfoware Server runs on Red Hat Enterprise Linux 5(for Intel Itanium)." } }, { "cert_id": "JISEC-CC-CRP-C0143", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-II 5010/4000/3000 Series Controller Software for Asia Pacific Controller ROM V1.180.0", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2008-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0143_it7173.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-II 5010/4000/3000 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM V1.180.0", "product_type": "IT Product (Control Software for Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center", "report_link": "https://www.ipa.go.jp/en/security/c0143_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0143_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0143_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, and fax functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - System Administrator's Security Management - Customer Engineer Operation Restriction - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0142", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-II C7500/C6500/C5400, DocuCentre-II C7500/C6500/C5400 Series Controller Software for Asia Pacific Controller ROM V2.100.0", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2008-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0142_it7172.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-II C7500/C6500/C5400,DocuCentre-II C7500/C6500/C5400 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM V2.100.0", "product_type": "IT Product (Control Software for Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center", "report_link": "https://www.ipa.go.jp/en/security/c0142_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0142_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0142_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, and scan functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - System Administrator's Security Management - Customer Engineer Operation Restriction" } }, { "cert_id": "JISEC-CC-CRP-C0141", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-II 3005/2055/2005 Series Controller Software for Asia Pacific Controller ROM V1.130.1", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2008-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0141_it7158.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-II 3005/2055/2005 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM V1.130.1", "product_type": "IT Product (Control Software for Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center", "report_link": "https://www.ipa.go.jp/en/security/c0141_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0141_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0141_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, and fax functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - System Administrator's Security Management - Customer Engineer Operation Restriction - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0140", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-II C3000 Series Controller Software for Asia Pacific Controller ROM V1.121.4", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2008-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0140_it7157.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-II C3000 Series Controller Software for Asia Pacific", "toe_version": "Controller ROM V1.121.4", "product_type": "IT Product (Control Software for Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center", "report_link": "https://www.ipa.go.jp/en/security/c0140_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0140_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0140_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, and fax functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - System Administrator's Security Management - Customer Engineer Operation Restriction - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0139", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-12-01", "toe_overseas_link": null, "toe_japan_name": "Systemwalker Operation Manager Enterprise Edition V13.2.0 (Windows)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0139_it7152.html", "enhanced": { "product": "Systemwalker Operation Manager Enterprise Edition", "toe_version": "V13.2.0 (Windows)", "product_type": "IT Product (Operation and maintenance supporting software)", "cc_version": "2.3", "assurance_level": "EAL1", "vendor": "Fujitsu Limited", "evaluation_facility": "Information Technology Security Center (ITSC)", "description": "PRODUCT DESCRIPTION The TOE enables users to manage operations to execute jobs based on predefined daily schedule on distributed servers on enterprise internal networks. The TOE also enables users to manage those operations in a secure manner although systems are becoming diverse and getting complex. The TOE defines \"Job execution based on predefined daily schedule\" process and its related resources as protected resources. The TOE provides following security functions to prohibit unauthorized access to the protected resources. - \"Access control function\" to restrict user operations to authorized users - \"Audit log output function\" to verify user operations - \"Password protection function\" to protect passwords from being sniffed sent over enterprise internal networks" } }, { "cert_id": "JISEC-CC-CRP-C0138", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-12-01", "toe_overseas_link": null, "toe_japan_name": "Systemwalker Operation Manager Enterprise Edition V13.2.0 (Solaris)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0138_it7151.html", "enhanced": { "product": "Systemwalker Operation Manager Enterprise Edition", "toe_version": "V13.2.0 (Solaris)", "product_type": "IT Product (Operation and maintenance supporting software)", "cc_version": "2.3", "assurance_level": "EAL1", "vendor": "Fujitsu Limited", "evaluation_facility": "Information Technology Security Center (ITSC)", "description": "PRODUCT DESCRIPTION The TOE enables users to manage operations to execute jobs based on predefined daily schedule on distributed servers on enterprise internal networks. The TOE also enables users to manage those operations in a secure manner although systems are becoming diverse and getting complex. The TOE defines \"Job execution based on predefined daily schedule\" process and its related resources as protected resources. The TOE provides following security functions to prohibit unauthorized access to the protected resources. - \"Extended user authentication function to identify and authenticate users. - \"Access control function\" to restrict user operations to authorized users - \"Audit log output function\" to verify user operations - \"Password protection function\" to protect passwords from being sniffed sent over enterprise internal networks" } }, { "cert_id": "JISEC-CC-CRP-C0137", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 7328/7335/7345 Controller+PS ROM Ver.1.221.100 IOT ROM Ver.3.0.4 IIT ROM Ver.20.4.1 ADF ROM Ver.11.6.5", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0137_it7159.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 7328/7335/7345", "toe_version": "Controller+PS ROM Ver.1.221.100 IOT ROM Ver.3.0.4 IIT ROM Ver.20.4.1 ADF ROM Ver.11.6.5", "product_type": "IT Product (Multi Function Peripheral)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Information Technology Security Center", "report_link": "https://www.ipa.go.jp/en/security/c0137_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0137_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0137_est.pdf", "description": "PRODUCT DESCRIPTION Description of TOE The TOE provides copy, print, scan, and fax functions as basic functions. The TOE is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the TOE via internal network, and general user client which is directly linked to the TOE. TOE security functions To ensure the security of assets to be protected, the TOE provides the following functions regarding the above basic functions: - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security" } }, { "cert_id": "JISEC-CC-CRP-C0136", "supplier": "Canon Inc.", "toe_overseas_name": "Canon iR3025/iR3030/iR3035/iR3045 Series HDD Data Erase Kit-B1 Version 1.00", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0136_it7156.html", "toe_japan_name": "-----", "enhanced": { "product": "Canon iR3025/iR3030/iR3035/iR3045 Series HDD Data Erase Kit-B1", "toe_version": "Version 1.00", "product_type": "IT Product (data erase function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0136_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0136_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0136_est.pdf", "description": "PRODUCT DESCRIPTION This product is software to be installed and used on the Canon multifunction product series iR3025/iR3030/iR3035/iR3045. The Canon iR3025/iR3030/iR3035/iR3045 series is a digital copier that offers a variety of functions including Copy, Send (Universal Send), Fax Reception, Mail Box, Print, and so on. It is also equipped with a large-capacity HDD and temporarily stores image data created during copying, printing, and other document handling operations on the HDD. In most standard multifunction products, such temporary image data is deleted only logically after use, i.e., upon completion of copying or printing, and residual information of deleted image data is not erased at all, being left exposed to the risk of reuse. The TOE is used for protecting any residual information of temporary image data from being reused." } }, { "cert_id": "JISEC-CC-CRP-C0135", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2007-12-01", "toe_overseas_link": null, "toe_japan_name": "Certificate Validation Server 03-00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0135_it7149.html", "enhanced": { "product": "Certificate Validation Server", "toe_version": "03-00", "product_type": "IT Product (PKI)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Information Technology Security Center", "description": "PRODUCT DESCRIPTION The TOE is a server-side software product that validates X.509 (international standard)-compliant digital certificates, responding to certificate validation requests from users. This software provides one of the following two services (A TOE operator chooses either service, and provides it for users.): - certificate validation service based on the RFC3280-defined certificate path validation algorithm; and - certificate validation service based on the RFC2560-defined OCSP protocol. The main security functions provided by the TOE are: - data protection (preventing the certificate validation result created by the TOE from being changed); - data integrity verification (detecting changes of CA certificate and CRL used in certificate validation); - identification and authentication (identification and authentication for operators before they use management function of the TOE); and - audit (referring to and collecting audit logs about security functions)." } }, { "cert_id": "JISEC-CC-CRP-C0134", "supplier": "NEC Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1+ ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "certification_date": "2007-12-01", "toe_overseas_link": null, "toe_japan_name": "NEC Group Information Leakage Prevention System 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0134_it7148.html", "enhanced": { "product": "NEC Group Information Leakage Prevention System", "toe_version": "1.0", "product_type": "Information Leakage Prevention System", "cc_version": "3.1", "assurance_level": "EAL1 Augmented with ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1", "vendor": "NEC Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.", "report_link": "https://www.ipa.go.jp/en/security/c0134_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0134_est.pdf", "description": "PRODUCT DESCRIPTION This TOE is an information leakage prevention system that is deployed throughout the NEC group companies. The TOE is designed to restrict the user's PC operations relevant to taking the information out of a PC. This is implemented by defining the PC control policy in accordance with the privilege assigned to each user by the TOE Administrator and enforcing that policy to each user PC. The main security features of the TOE include identification and authentication, access control, cryptography and auditing. [Identification and Authentication] - A function to identify and authenticate a user [Access Control] - A function to control the input/output PC operations from or to its I/O port or a printer - A function to control the execution of a user program - A function to control the output of a file to the authorized external media - A function to control the output of a file to the authorized USB device - A function to control the creation and modification of the client control information [Cryptography] - A function to encrypt and decrypt a file - A function to create an encryption/decryption key - A function to encrypt/decrypt a file when inputting or outputting it from or to the authorized externa media or the authorized USB device [Auditing] - A function to create logs and transfer them to a log server - A function to view and search logs recorded in a log server" } }, { "cert_id": "JISEC-CC-CRP-C0133", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-11-01", "toe_overseas_link": null, "toe_japan_name": "Systemwalker Operation Manager Enterprise Edition V13.2.0 (Linux for Itanium)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0133_it7150.html", "enhanced": { "product": "Systemwalker Operation Manager Enterprise Edition", "toe_version": "V13.2.0 (Linux for Itanium)", "product_type": "IT Product (Operation and maintenance supporting software)", "cc_version": "2.3", "assurance_level": "EAL1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE enables users to manage operations to execute jobs based on predefined daily schedule on distributed servers on enterprise internal networks. The TOE also enables users to manage those operations in a secure manner although systems are becoming diverse and getting complex. The TOE defines “Job execution based on predefined daily schedule” process and its related resources as protected resources. The TOE provides following security functions to prohibit unauthorized access to the protected resources. - \"Extended user authentication function\" to identify and authenticate users. - \"Access control function\" to restrict user operations to authorized users - \"Audit log output function\" to verify user operations - \"Password protection function\" to protect passwords from being sniffed sent over enterprise internal networks" } }, { "cert_id": "JISEC-CC-CRP-C0132", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ AVA_MSU.1", "certification_date": "2007-11-01", "toe_overseas_link": null, "toe_japan_name": "Interstage Application Server Enterprise Edition 8.0.3 (for Linux 64bit platform) with security patches of T000633QP-02, T000179QP-01 and T000681QP-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0132_it6113.html", "enhanced": { "product": "Interstage Application Server Enterprise Edition", "toe_version": "8.0.3 (for Linux 64bit platform) with security patches of T000633QP-02, T000179QP-01 and T000681QP-01", "product_type": "IT Product (Application Server)", "cc_version": "2.3", "assurance_level": "EAL2+AVA_MSU.1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an Application Server program product which provides operational management functions and functions for application program executing environment. The operational management functions include construction of environment for application programs, monitoring, and maintenance. The application program executing environment corresponds to recent industrial standards and open source standards. The major security functionalities of the TOE, for higher availability of application programs, relate to maintain executing status of application programs and restrict operation of executing environment of application program to the authorized personnel." } }, { "cert_id": "JISEC-CC-CRP-C0131", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ AVA_MSU.1", "certification_date": "2007-11-01", "toe_overseas_link": null, "toe_japan_name": "Interstage Application Server Enterprise Edition 8.0.3 ( for Linux 32bit platform ) with security patches of T000632LP-02, T000181LP-01 and T000682LP-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0131_it6112.html", "enhanced": { "product": "Interstage Application Server Enterprise Edition", "toe_version": "8.0.3 (for Linux 32bit platform) with security patches of T000632LP-02, T000181LP-01 and T000682LP-01", "product_type": "IT Product (Application Server)", "cc_version": "2.3", "assurance_level": "EAL2+AVA_MSU.1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association.Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an Application Server program product which provides operational management functions and functions for application program executing environment. The operational management functions include construction of environment for application programs, monitoring, and maintenance. The application program executing environment corresponds to recent industrial standards and open source standards. The major security functionalities of the TOE, for higher availability of application programs, relate to maintain executing status of application programs and restrict operation of executing environment of application program to the authorized personnel." } }, { "cert_id": "JISEC-CC-CRP-C0130", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ AVA_MSU.1", "certification_date": "2007-11-01", "toe_overseas_link": null, "toe_japan_name": "Interstage Application Server Enterprise Edition 8.0.3 ( for Solaris 9 and 10 platform ) with security patches of T000631SP-02, T000180SP-01 and T000572SP-02", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0130_it6111.html", "enhanced": { "product": "Interstage Application Server Enterprise Edition", "toe_version": "8.0.3 (for Solaris 9 and 10 platform) with security patches of T000631SP-02, T000180SP-01 and T000572SP-02", "product_type": "IT Product (Application Server)", "cc_version": "2.3", "assurance_level": "EAL2+AVA_MSU.1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association.Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an Application Server program product which provides operational management functions and functions for application program executing environment. The operational management functions include construction of environment for application programs, monitoring, and maintenance. The application program executing environment corresponds to recent industrial standards and open source standards. The major security functionalities of the TOE, for higher availability of application programs, relate to maintain executing status of application programs and restrict operation of executing environment of application program to the authorized personnel." } }, { "cert_id": "JISEC-CC-CRP-C0129", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ AVA_MSU.1", "certification_date": "2007-11-01", "toe_overseas_link": null, "toe_japan_name": "Interstage Application Server Enterprise Edition 8.0.3 ( for Windows 32bit platform ) with security patches of T000630WP-02, T000106WP-01 and T000685WP-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0129_it6110.html", "enhanced": { "product": "Interstage Application Server Enterprise Edition", "toe_version": "8.0.3 (for Windows 32bit platform) with security patches of T000630WP-02, T000106WP-01 and T000685WP-01", "product_type": "IT Product (Application Server)", "cc_version": "2.3", "assurance_level": "EAL2+AVA_MSU.1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association.Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an Application Server program product which provides operational management functions and functions for application program executing environment. The operational management functions include construction of environment for application programs, monitoring, and maintenance. The application program executing environment corresponds to recent industrial standards and open source standards. The major security functionalities of the TOE, for higher availability of application programs, relate to maintain executing status of application programs and restrict operation of executing environment of application program to the authorized personnel." } }, { "cert_id": "JISEC-CC-CRP-C0128", "supplier": "Yahoo Japan Corporation", "toe_overseas_name": "Information Security Surveillance System(Basic Part.) 1.10", "expiration_date": "2013-10-01", "claim": "EAL2", "revalidations": [ { "date": "2008-04", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0128_it6103_01.html" } ], "certification_date": "2007-11-01", "toe_overseas_link": null, "toe_japan_name": "Information Security Surveillance System(Basic Part.) 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0128_it6103.html", "enhanced": { "product": "Information Security Surveillance System(Basic Part.)", "toe_version": "1.0", "product_type": "IT Product (Log monitoring system management function)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Yahoo Japan Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory, Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION This TOE is the basic part of \"Information Security Surveillance System (a.k.a. iTres)\" which inspects the access log generated by DBMS. This TOE is built in iTres and consists of audit log collection, policy management, access violation detection based on the policy, incident alert and access control functions. This TOE provides following security functions: - Audit function - Identification & Authentication function - User management & Access control function" } }, { "cert_id": "JISEC-CC-CRP-C0127", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C353/ ineo+ 353 Control Software A02E0Y0-0100-GM0-02", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0127_it7142.html", "toe_japan_name": "bizhub C353/ ineo+ 353 Control Software A02E0Y0-0100-GM0-02", "enhanced": { "product": "bizhub C353/ ineo+ 353 Control Software(Japanese Name) bizhub C353/ ineo+ 353 Control Software(English Name)", "toe_version": "A02E0Y0-0100-GM0-02", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0127_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0127_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0127_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C353/ ineo+ 353)(Hereinafter referred to as “MFP”). This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0126", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software A02E0Y0-0100-GN0-02", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0126_it7141.html", "toe_japan_name": "bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software A02E0Y0-0100-GN0-02", "enhanced": { "product": "bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software (Japanese Name) bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203 Control Software (English Name)", "toe_version": "A02E0Y0-0100-GN0-02", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0126_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0126_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0126_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C253 / bizhub C203 / ineo+ 253 / ineo+ 203)(Hereinafter referred to as “MFP”). This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0125", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX7 VERSION S.10", "expiration_date": "2013-10-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2007-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0125_it7145.html", "toe_japan_name": "MX-FRX7 VERSION S.10", "enhanced": { "product": "MX-FRX7", "toe_version": "VERSION S.10", "product_type": "IT Product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3+ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "cert_link": "https://www.ipa.go.jp/en/security/c0125_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is firmware to enhance security functionality of a Multi-Function Device (hereafter referred to as “MFD”). It is an option that implements security functions and controls the entire MFD when installed instead of the MFD standard firmware. As countermeasures against information leakage that residual image data in the MFD induce, the TOE has such security functions as cryptographic operation and data clear. The cryptographic operation function encrypts the image data of each job for PC-Fax, fax send and fax reception before spooled to the Flash memory in the MFD. The data clear function overwrites random or fixed values over the storage area that the spooled image data occupy when the MFD finishes or aborts each job of copy, printer, image send, PC-Fax, fax send, and fax reception functions." } }, { "cert_id": "JISEC-CC-CRP-C0124", "supplier": "Sharp Corporation", "toe_overseas_name": "AR-FR25 VERSION M.10", "expiration_date": "2013-10-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2007-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0124_it7144.html", "toe_japan_name": "AR-FR25 VERSION M.10", "enhanced": { "product": "AR-FR25", "toe_version": "VERSION M.10", "product_type": "IT Product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3+ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0124_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0124_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0124_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is firmware to enhance security functionality of a Multi-Function Device (hereafter referred to as “MFD”). It is an option that implements security functions and controls the entire MFD when installed instead of the MFD standard firmware. As countermeasures against information leakage that residual image data in the MFD induce, the TOE has such security functions as cryptographic operation and data clear. The cryptographic operation function encrypts the image data of each fax job before spooled to the Flash memory in the MFD. The data clear function overwrites random or fixed values over the storage area that the spooled image data occupy when the MFD finishes or aborts each job of copy, printer, network scanner or fax functions." } }, { "cert_id": "JISEC-CC-CRP-C0123", "supplier": "Sharp Corporation", "toe_overseas_name": "AR-FR24 VERSION M.10", "expiration_date": "2013-10-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2007-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0123_it7143.html", "toe_japan_name": "AR-FR24 VERSION M.10", "enhanced": { "product": "AR-FR24", "toe_version": "VERSION M.10", "product_type": "IT Product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3+ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0123_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0123_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0123_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is firmware to enhance security functionality of a Multi-Function Device (hereafter referred to as “MFD”). It is an option that implements security functions and controls the entire MFD when installed instead of the MFD standard firmware. As countermeasures against information leakage that residual image data in the MFD induce, the TOE has such security functions as cryptographic operation and data clear. The cryptographic operation function encrypts the image data of each fax job before spooled to the Flash memory in the MFD. The data clear function overwrites random or fixed values over the storage area that the spooled image data occupy when the MFD finishes or aborts each job of copy, printer, network scanner or fax functions." } }, { "cert_id": "JISEC-CC-CRP-C0122", "supplier": "Hewlett-Packard Japan, Ltd", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-10-01", "toe_overseas_link": null, "toe_japan_name": "HP IceWall SSO 8.0R2", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0122_it7163.html", "enhanced": { "product": "HP IceWall SSO", "toe_version": "8.0R2", "product_type": "Other", "cc_version": "3.1", "assurance_level": "EAL1", "vendor": "Hewlett-Packard Japan, Ltd", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION Description of TOE The Single Sign-On software enables access control for web applications. Major security functions are as follows : - Authentication - Access control for web applications - Configuration management" } }, { "cert_id": "JISEC-CC-CRP-C0121", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C650 / ineo+ 650 Control Software A00H0Y0-0100-GM0-00", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0121_it7132.html", "toe_japan_name": "bizhub C650 / ineo+ 650 Control Software A00H0Y0-0100-GM0-00", "enhanced": { "product": "bizhub C650 / ineo+ 650 Control Software", "toe_version": "A00H0Y0-0100-GM0-00", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0121_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0121_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0121_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C650 / ineo+ 650)(Hereinafter referred to as “MFP”). This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0120", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451 Control Software A00J0Y0-0100-GM0-00", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0120_it7130.html", "toe_japan_name": "bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451 Control Software A00J0Y0-0100-GM0-00", "enhanced": { "product": "bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451 Control Software", "toe_version": "A00J0Y0-0100-GM0-00", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0120_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0120_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0120_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C550 / bizhub C451 / ineo+ 550 / ineo+ 451)(Hereinafter referred to as “MFP”). This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0119", "supplier": "FeliCa Networks, Inc.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL4+ ALC_FLR.1, AVA_VLA.3", "certification_date": "2007-10-01", "toe_overseas_link": null, "toe_japan_name": "Mobile FeliCa IC chip firmware (CXD version) 09 (CXD3717GG)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0119_it5048.html", "enhanced": { "product": "Mobile FeliCa IC chip firmware (CXD version)", "toe_version": "09 (CXD3717GG)", "product_type": "IT Product (IC chip firmware)", "cc_version": "2.1", "assurance_level": "EAL4+ALC_FLR.1+AVA_VLA.3", "vendor": "FeliCa Networks, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION The Target of Evaluation (TOE) is the firmware for the mobile FeliCa IC chip which is employed by IT equipments such as mobile phones and contactless smart card reader/writers. The TOE is embedded in the ROM of the mobile FeilCa IC chips, and is composed of three different functions; 1) \"the contactless IC card function\" - accessing memory via the wireless interface; 2) \"the contact IC card function\" - accessing memory via the wired interface; 3) \"the reader/writer function\" - accessing to another contactless IC card. Several security features included in these functions deliver the means of secure data management. The TOE includes security functions such as \"authentication\", \"access control\", \"encrypted communication\" and \"data protection\". These functions avoid wiretapping, falsification, information usage without right permission, data corruption due to power loss and abnormal state due to hardware trouble, and ensure data integrity, correct operations and confidentiality." } }, { "cert_id": "JISEC-CC-CRP-C0118", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRO C5500/ineo+5500/bizhub PRO C5501/ ineo+5501 Image Control Program A0E70Y0-00I1-G00-60", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2009-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0118_it7160_02.html" } ], "certification_date": "2007-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0118_it7160.html", "toe_japan_name": "bizhub PRO C5500 / ineo+ 5500 Gazou Seigyo Program A0E70Y0-00I1-G00-10", "enhanced": { "product": "Japan : bizhub PRO C5500 / ineo+ 5500 Gazou Seigyo Program Overseas: bizhub PRO C5500 / ineo+ 5500 Image Control Program", "toe_version": "A0E70Y0-00I1-G00-10", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0118_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0118_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0118_est.pdf", "description": "PRODUCT DESCRIPTION This product (bizhub PRO C5500 Image Control Program *1, that is installed with digital MFP (bizhub PRO C5500 Series) manufactured by Konica Minolta Business Technologies, Inc., is a software product for the purpose of reducing the risk for disclosure of document data in bizhub PRO C5500 Series. bizhub PRO C5500 Image Control Program prevents document data in bizhub PRO C5500 Series from disclosing during the use of functions such as copier and printer. It offers the protection function *2 with password lock system against the risk of reading data out illegally from HDD (Hard Disk Drive) which is a medium for storing temporarily document data. *1: shows “bizhub PRO C5500 / ineo+ 5500 Gazou Seigyo Program” for Japan and “bizhub PRO C5500 / ineo+ 5500 Image Control Program” for overseas. *2: HDD has the password so that it cannot be removed and read in another equipment. HDD lock password is set in the HDD lock function." } }, { "cert_id": "JISEC-CC-CRP-C0117", "supplier": "Yamaha Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-09-01", "toe_overseas_link": null, "toe_japan_name": "YAMAHA Policy Filtering Module 1.02(2)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0117_it7147.html", "enhanced": { "product": "YAMAHA Policy Filtering Module", "toe_version": "1.02(2)", "product_type": "IT Product (Fire Wall)", "cc_version": "2.3", "assurance_level": "EAL1", "vendor": "Yamaha Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology security center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is the implementation of the firewall functionality that filters packets using stateful inspection technology (called policy filtering). It is provided as a part of the firmware that is installed on Yamaha routers. A router that implements the functionality requires at least two LAN ports (capable of transmitting and receiving packets) and a control CONSOLE port. The TOE is installed on Yamaha SRT100 routers." } }, { "cert_id": "JISEC-CC-CRP-C0116", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX6 VERSION M.10", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0116_it7139.html", "toe_japan_name": "MX-FRX6 VERSION M.10", "enhanced": { "product": "MX-FRX6", "toe_version": "VERSION M.10", "product_type": "IT Product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0116_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is firmware to enhance security functionality of a Multi-Function Device (hereafter referred to as \"MFD\"). It is an option that implements security functions and controls the entire MFD when installed instead of the MFD standard firmware. The TOE has such security functions as the cryptographic operation function, the data clear function and the confidential file function. These functions are intended to counter attempts to steal image data in the MFD in which the TOE is installed. The cryptographic operation function encrypts the image data that MFD manages before stored to the HDD or Flash memory in the MFD. The data clear function overwrites random or fixed values over encrypted data area in the HDD or Flash memory in the MFD. The confidential file function makes it possible that user stores the image data to the HDD with password to prevent the others from reusing it without permission." } }, { "cert_id": "JISEC-CC-CRP-C0115", "supplier": "Canon Inc.", "toe_overseas_name": "-----", "expiration_date": "2011-07-01", "claim": "EAL2", "certification_date": "2007-08-01", "toe_overseas_link": null, "toe_japan_name": "EOS Original Data Security System 1.0 (Certification of this product has been revoked 2011-07)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0115_it6108.html", "enhanced": { "product": "EOS Original Data Security System", "toe_version": "1.0", "product_type": "IT Product (Digital Camera System)", "cc_version": "3.1", "assurance_level": "EAL2", "vendor": "Canon Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION PRODUCT DESCRIPTION The TOE is a system that consists of a Canon EOS-1D Mark III (D-SLR), Original Data Security Administrator, Original Data Security Utility, and Original Data Security Card. The TOE has the following security functionalities in order to verify originality of image files taken with the EOS-1D Mark III and to keep confidentiality of digital images. Canon EOS-1D Mark III has the following security functionalities : - a verification data generation function to verify the originality of image files, - an encryption function to encrypt/decrypt the image files, - an encryption function to encrypt/decrypt a key of image file encryption, - a connection function to identify and connect a OS Card. Original Data Security Utility has a decryption function to decrypt the image files. Original Data Security Utility/Original Data Security Administrator has a management function to support the registration of an authentication data. OS Card has the following security functionalities : - a verification function to verify the originality of image files based on the verification data, - a decryption function to decrypt the encrypted key used for image encryption, - an encryption function to encrypt/decrypt a card key, - an access control function to manage/access-control the card key, - a connection function to identify and connect a EOS-1D Mark III, - an authentication function to authenticate users of Original Data Security Utility/Original Data Security Administrator." } }, { "cert_id": "JISEC-CC-CRP-C0114", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2007-08-01", "toe_overseas_link": null, "toe_japan_name": "JP1/Base Authentication Server 08-10 for Windows", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0114_it6107.html", "enhanced": { "product": "JP1/Base Authentication Server", "toe_version": "08-10 for Windows", "product_type": "IT Product (System Management Software)", "cc_version": "2.3", "assurance_level": "EAL2+ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION JP1/Base is a software product that includes TOE, and it provides the core functionality for JP1 system management product family. TOE is a software component that provides user management and authentication function for JP1 product family. TOE provides following security functions. - Identification and Authentication - Access Control (Only Identified and Authenticated user can access to his own asset.) - Security Management such as registration of JP1 users" } }, { "cert_id": "JISEC-CC-CRP-C0113", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX5 VERSION M.10", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0113_it7138.html", "toe_japan_name": "MX-FRX5 VERSION M.10", "enhanced": { "product": "MX-FRX5", "toe_version": "VERSION M.10", "product_type": "IT Product (data protection function in Multi Function Device)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0113_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is firmware to enhance security functionality of a Multi-Function Device (hereafter referred to as \"MFD\"). It is an option that implements security functions and controls the entire MFD when installed instead of the MFD standard firmware. The TOE has such security functions as the cryptographic operation function, the data clear function and the confidential file function. These functions are intended to counter attempts to steal image data in the MFD in which the TOE is installed. The cryptographic operation function encrypts the image data that MFD manages before stored to the HDD or Flash memory in the MFD. The data clear function overwrites random or fixed values over encrypted data area in the HDD or Flash memory in the MFD. The confidential file function makes it possible that user stores the image data to the HDD with password to prevent the others from reusing it without permission." } }, { "cert_id": "JISEC-CC-CRP-C0112", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL4+ ALC_FLR.1", "certification_date": "2007-07-01", "toe_overseas_link": null, "toe_japan_name": "SR-S Security Software V01.01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0112_it6125.html", "enhanced": { "product": "SR-S Security Software", "toe_version": "V01.01", "product_type": "IT Product (Router, Switch)", "cc_version": "2.3", "assurance_level": "EAL4+ALC_FLR.1", "vendor": "Fujitsu Limited", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION \"SR-S Security Software\" is provided for users as a basic software of the \"Secure Switch\", and it implements the secured network operation and management by the IEEE802.1X port access control that controls impersonation of identification/authentication at Supplicant connection, operating support, and port access control rule attributes." } }, { "cert_id": "JISEC-CC-CRP-C0111", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL4+ ALC_FLR.1", "certification_date": "2007-07-01", "toe_overseas_link": null, "toe_japan_name": "Si-R Security Software V01.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0111_it6124.html", "enhanced": { "product": "Si-R Security Software", "toe_version": "V01.00", "product_type": "IT Product (Router, Switch)", "cc_version": "2.3", "assurance_level": "EAL4+ALC_FLR.1", "vendor": "Fujitsu Limited", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION \"Si-R Security Software\" is provided for users as a basic software of IP access router, and its secured packet data enables users a secure communication between different network segments by the encryption key exchanging function, the IPsec data encrypting communication function, and operating support function, providing confidentiality and integrity of the communication data." } }, { "cert_id": "JISEC-CC-CRP-C0110", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Firewall for beat-box v1.0.0", "expiration_date": "2013-03-01", "claim": "EAL3+ ADV_LLD.1, ADV_IMP.1, ALC_TAT.1, AVA_VLA.2", "revalidations": [ { "date": "2007-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0110_it6088_01.html" } ], "certification_date": "2007-07-01", "toe_overseas_link": null, "toe_japan_name": "Firewall for beat-box v1.0.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0110_it6088.html", "enhanced": { "product": "Firewall for beat-box", "toe_version": "v1.0.0", "product_type": "IT Product (Firewall)", "cc_version": "2.3", "assurance_level": "EAL3 Augmented with ADV_LLD.1, ADV_IMP.1, ALC_TAT.1, AVA_VLA.2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION \"beat\" is network management outsourcing service provided by Fuji Xerox Co., Ltd. \"beat-box\" is installed at the gateway of customer's broadband-connected network. \"beat-box\" offers various functions such as firewall, anti-virus, file sharing and groupware. TOE of \"Firewall for beat-box\" is one of the software of beat-box that protects internal network from unauthorized accesses by controlling traffic flow with a unique firewall technology called \"complete shielding method\". TOE works in combination with other beat-box applications and accepts setting changes of traffic flows in order to permit the authorized connections with beat-noc and other beat-boxes over VPN and remote access. Maintained TOE" } }, { "cert_id": "JISEC-CC-CRP-C0109", "supplier": "FeliCa Networks, Inc.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL4+ ALC_FLR.1, AVA_VLA.3", "certification_date": "2007-07-01", "toe_overseas_link": null, "toe_japan_name": "Mobile FeliCa IC chip firmware (AE version) 09 (AE56D)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0109_it5047.html", "enhanced": { "product": "Mobile FeliCa IC chip firmware (AE version)", "toe_version": "09 (AE56D)", "product_type": "IT Product (IC chip firmware)", "cc_version": "2.1", "assurance_level": "EAL4+ALC_FLR.1+AVA_VLA.3", "vendor": "FeliCa Networks, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION The Target of Evaluation (TOE) is the firmware for the mobile FeliCa IC chip which is employed by IT equipments such as mobile phones and contactless smart card reader/writers. The TOE is embedded in the ROM of the mobile FeilCa IC chips, and is composed of three different functions; 1) \"the contactless IC card function\" - accessing memory via the wireless interface; 2) \"the contact IC card function\" - accessing memory via the wired interface; 3) \"the reader/writer function\" - accessing to another contactless IC card. Several security features included in these functions deliver the means of secure data management. The TOE includes security functions such as \"authentication\", \"access control\", \"encrypted communication\" and \"data protection\". These functions avoid wiretapping, falsification, information usage without right permission, data corruption due to power loss and abnormal state due to hardware trouble, and ensure data integrity, correct operations and confidentiality." } }, { "cert_id": "JISEC-CC-CRP-C0108", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 7132 Series Data Security Kit Controller ROM Ver1.202.5", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0108_it6126.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 7132 Series Data Security Kit", "toe_version": "Controller ROM Ver1.202.5", "product_type": "IT Product (data protection function in digital Copier)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology security center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for WorkCentre 7132 Series digital multifunction device with copy, print, scan and fax. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0107", "supplier": "Stiftung Secure Information and Communication Technologies SIC", "toe_overseas_name": "IAIK-JCE CC Core 3.15", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0107_it6096.html", "toe_japan_name": "-----", "enhanced": { "product": "IAIK-JCE CC Core", "toe_version": "3.15", "product_type": "IT Product (cryptographic library)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Stiftung Secure Information and Communication Technologies SIC", "evaluation_facility": "TÜV Informationstechnik GmbH Evaluation Body for IT-Security", "report_link": "https://www.ipa.go.jp/en/security/c0107_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0107_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0107_est.pdf", "description": "PRODUCT DESCRIPTION The IAIK-JCE CC Core is a set of APIs and implementations of cryptographic functionality. Including: - hash functions - signature schemes - block ciphers - stream ciphers - asymmetric ciphers - message authentication codes - random number generators It supplements the security functionality of the default Java Runtime Environment. The IAIK-JCE CC Core is delivered to the customer as part of the IAIK-JCE toolkit, which extends the CC Core by additional algorithms, features and protocols." } }, { "cert_id": "JISEC-CC-CRP-C0106", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C252P / ineo+ 251P / magicolor 7465CK Control Software 4038-0100-GN0-03-000", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0106_it6083.html", "toe_japan_name": "bizhub C252P / ineo+ 251P / magicolor 7465CK Control Software 4038-0100-GN0-03-000", "enhanced": { "product": "bizhub C252P / ineo+ 251P / magicolor 7465CK Control Software", "toe_version": "4038-0100-GN0-03-000", "product_type": "IT Product (data protection function in printer systems)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0106_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0106_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0106_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. network printer ( bizhub C252P / ineo+ 251P / magicolor 7465CK )( Hereinafter referred to as “ printer ” ) . This software is on the flash memory on the printer controller carried in printer, and this controls the whole operation of printer such as the operation control processing and the image data management received from the panel of printer body or the network. This product offers the protection from exposure of the highly confidential document stored in the printer, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD (option part) unjustly which is a medium for storing image data in printer. If the encryption board, an option product, is installed in the printer controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0105", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C250P / ineo+ 250P / magicolor 7460CK Control Software 4038-0100-GM0-11-000", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0105_it6081.html", "toe_japan_name": "bizhub C250P / ineo+ 250P / magicolor 7460CK Control Software 4038-0100-GM0-11-000", "enhanced": { "product": "bizhub C250P / ineo+ 250P / magicolor 7460CK Control Software", "toe_version": "4038-0100-GM0-11-000", "product_type": "IT Product (data protection function in printer systems)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0105_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0105_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0105_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. network printer ( bizhub C250P / ineo+ 250P / magicolor 7460CK )( Hereinafter referred to as “ printer ” ) . This software is on the flash memory on the printer controller carried in printer, and this controls the whole operation of printer such as the operation control processing and the image data management received from the panel of printer body or the network. This product offers the protection from exposure of the highly confidential document stored in the printer, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD (option part) unjustly which is a medium for storing image data in printer. If the encryption board, an option product, is installed in the printer controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0104", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C352P / ineo+ 351P / magicolor 8460CK Control Software 9J06-0100-GM0-11-000", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0104_it6080.html", "toe_japan_name": "bizhub C352P / ineo+ 351P / magicolor 8460CK Control Software 9J06-0100-GM0-11-000", "enhanced": { "product": "bizhub C352P / ineo+ 351P / magicolor 8460CK Control Software", "toe_version": "9J06-0100-GM0-11-000", "product_type": "IT Product (data protection function in printer systems)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0104_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0104_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0104_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. network printer ( bizhub C352P / ineo+ 351P / magicolor 8460CK )( Hereinafter referred to as “ printer ” ) . This software is on the flash memory on the printer controller carried in printer, and this controls the whole operation of printer such as the operation control processing and the image data management received from the panel of printer body or the network. This product offers the protection from exposure of the highly confidential document stored in the printer, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD (option part) unjustly which is a medium for storing image data in printer. If the encryption board, an option product, is installed in the printer controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0103", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C450P / ineo + 450P Control Software 4037-0100-GM0-11-000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0103_it6079.html", "toe_japan_name": "bizhub C450P / ineo + 450P Control Software 4037-0100-GM0-11-000", "enhanced": { "product": "bizhub C450P / ineo+ 450P Control Software", "toe_version": "4037-0100-GM0-11-000", "product_type": "IT Product (data protection function in printer systems)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0103_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0103_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0103_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. network printer ( bizhub C450P / ineo+ 450P )( Hereinafter referred to as “ printer ” ) . This software is on the flash memory on the printer controller carried in printer, and this controls the whole operation of printer such as the operation control processing and the image data management received from the panel of printer body or the network. This product offers the protection from exposure of the highly confidential document stored in the printer, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD (option part) unjustly which is a medium for storing image data in printer. If the encryption board, an option product, is installed in the printer controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0102", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "TagmaStore Universal Storage Platform CHA/DKA Program TagmaStore Network Storage Controller CHA/DKA Program 50-04-34-00/00", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2007-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0102_it5068.html", "toe_japan_name": "SANRISE Universal Storage Platform CHA/DKA Program SANRISE Network Storage Controller CHA/DKA Program SANRISE H12000 CHA/DKA Program SANRISE H10000 CHA/DKA Program 50-04-34-00/00", "enhanced": { "product": "SANRISE Universal Storage Platform CHA/DKA Program TagmaStore Universal Storage Platform CHA/DKA Program SANRISE Network Storage Controller CHA/DKA Program TagmaStore Network Storage Controller CHA/DKA Program SANRISE H12000 CHA/DKA Program SANRISE H10000 CHA/DKA Program", "toe_version": "50-04-34-00/00", "product_type": "IT Product (Storage Control Software)", "cc_version": "2.1", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0102_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0102_est.pdf", "description": "PRODUCT DESCRIPTION TOEs are software programs that run on the storage subsystems manufactured by Hitachi, Ltd. and control these subsystems. The subsystems are “SANRISE Universal Storage Platform”, “SANRISE Network Storage Controller”, “TagmaStore Universal Storage Platform”, “TagmaStore Network Storage Controller”, “SANRISE H12000”, and “SANRISE H10000”. TOEs have security feature to control access so that unintended access to user data on the storage subsystems would not be performed (i.e. User data that should not be changed would not be changed due to illegal access or operation mistakes)" } }, { "cert_id": "JISEC-CC-CRP-C0101", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-05-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-II 7000/6000/5000 Series Data Security Kit Controller ROM Ver1.0.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0101_it7136.html", "enhanced": { "product": "Fuji Xerox DocuCentre-II 7000/6000/5000 Series Data Security Kit", "toe_version": "Controller ROM Ver1.0.1", "product_type": "IT Product ( data protection function in digital Copier )", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology security center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for DocuCentre-II 7000/6000/5000 Series digital multifunction device with copy, print, scan and fax. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0100", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-05-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-II 7000/6000/5000 Series Data Security Kit Controller ROM Ver1.20.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0100_it7135.html", "enhanced": { "product": "Fuji Xerox ApeosPort-II 7000/6000/5000 Series Data Security Kit", "toe_version": "Controller ROM Ver1.20.1", "product_type": "IT Product ( data protection function in digital Copier )", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology security center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort-II 7000/6000/5000 Series digital multifunction device with copy, print, scan and fax. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0099", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": null, "toe_overseas_link": null, "toe_japan_name": "HiRDB / Parallel Server Version 8 08-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0099_it7134.html", "enhanced": { "product": "HiRDB / Parallel Server Version 8", "toe_version": "08-01", "product_type": "IT Product (Data Base Management System)", "assurance_level": "EAL1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION This TOE(HiRDB / Parallel Server Version 8) is a software product for Relational Database Management System(RDBMS). The TOE acts as a database server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. And it also provides security functions that restrict access to user data to authorized users. Security functions of the TOE include the following. - Audit - Discretionary Access Control - Identification and Authentication - Security Management The TOE can be used as a single RDBMS by installation on a number of machines and networking the machines. It makes a difference with HiRDB / Single Server Version 8." } }, { "cert_id": "JISEC-CC-CRP-C0098", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": null, "toe_overseas_link": null, "toe_japan_name": "HiRDB / Single Server Version 8 08-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0098_it7133.html", "enhanced": { "product": "HiRDB / Single Server Version 8", "toe_version": "08-01", "product_type": "IT Product (Data Base Management System)", "assurance_level": "EAL1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION This TOE(HiRDB / Single Server Version 8) is a software product for Relational Database Management System(RDBMS). The TOE acts as a database server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. And it also provides security functions that restrict access to user data to authorized users. Security functions of the TOE include the following. - Audit - Discretionary Access Control - Identification and Authentication - Security Management" } }, { "cert_id": "JISEC-CC-CRP-C0097", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL4", "certification_date": "2007-05-01", "toe_overseas_link": null, "toe_japan_name": "Symfoware Server Enterprise Extended Edition 8.0.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0097_it7129.html", "enhanced": { "product": "Symfoware Server Enterprise Extended Edition", "toe_version": "8.0.0", "product_type": "IT Product (Database)", "assurance_level": "EAL4", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "description": "PRODUCT DESCRIPTION Symfoware Server is Fujitsu's relational database management system designed for enterprise business. Symfoware Server processes huge data speedily during user's working and also user can use it effectively for their own business style. Using SQL language, user is able to define the data structure, and access to the structured data. Symfoware Server offers the security functions of the user control, the resource control, and the audit log, etc. to protect the data base from malicious access in addition to the function for such a data base access. Symfoware Server runs on Solaris 10 Operating System with patch 118822-27" } }, { "cert_id": "JISEC-CC-CRP-C0096", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "HiCommand Suite Common Component 05-70-01", "expiration_date": "2013-10-01", "claim": "EAL2+ ALC_FLR.1", "revalidations": [ { "date": "2007-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0096_it6106_01.html" } ], "certification_date": "2007-05-01", "toe_overseas_link": null, "toe_japan_name": "HiCommand Suite Common Component 05-51-01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0096_it6106.html", "enhanced": { "product": "HiCommand Suite Common Component", "toe_version": "05-51-01", "product_type": "IT Product (Foundational Module Software)", "cc_version": "2.3", "assurance_level": "EAL2+ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0096_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0096_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0096_est.pdf", "description": "PRODUCT DESCRIPTION TOE is a module that provides some kinds of storage management software that manage a plural of storage devices that are connected through SAN with common functions. Storage management software is such as HiCommand Device Manager, HiCommand Replication Monitor and HiCommand Tiered Storage Manager. HiCommand Suite is the general term for these software and TOE. TOE is provided customers as built-in module included in each software package. TOE has the following security functions. - Identification/authentication - Privilege information management (Privilege information is attached to each user's information and it decides each user's role for storage management software.) - Warning banner" } }, { "cert_id": "JISEC-CC-CRP-C0095", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C252 / ineo+ 251 Control Software 4038-0100-GN0-09-000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-05-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0095_it6082.html", "toe_japan_name": "bizhub C252 / ineo+ 251 Control Software 4038-0100-GN0-09-000", "enhanced": { "product": "bizhub C252 / ineo+ 251 Control Software", "toe_version": "4038-0100-GN0-09-000", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0095_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0095_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0095_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C252 / ineo+ 251) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0094", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 500 / bizhub 420 / bizhub 360 /ineo 500 / ineo 420 / ineo 360 Control Software 50GA-0100-G00-30-000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0094_it7127.html", "toe_japan_name": "bizhub 500 / bizhub 420 / bizhub 360 /ineo 500 / ineo 420 / ineo 360 Control Software 50GA-0100-G00-30-000", "enhanced": { "product": "bizhub 500 / bizhub 420 / bizhub 360 /ineo 500 /ineo 420 / ineo 360 Control Software", "toe_version": "50GA-0100-G00-30-000", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0094_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0094_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0094_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub 500 / bizhub 420 / bizhub 360 /ineo 500 / ineo 420 / ineo 360) (Hereinafter referred to as \"MFP\") . This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover, this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0093", "supplier": "Oki Data Corporation", "toe_overseas_name": "OKI Color Page Printer C8800 Security Module DS 01.00", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2007-04-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0093_it6119.html", "toe_japan_name": "OKI Color Page Printer C8800 Security Module DS 01.00", "enhanced": { "product": "OKI Color Page Printer C8800 Security Module", "toe_version": "DS 01.00", "product_type": "IT Product (data protection function in printer systems)", "assurance_level": "EAL3", "vendor": "Oki Data Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "cert_link": "https://www.ipa.go.jp/en/security/c0093_eimg.pdf", "description": "PRODUCT DESCRIPTION This TOE, which operates with a security kit installed in an OKI Color Page Printer C8800, properly uses the encipherment functionality of the kit to encipher and save data stored on an HDD in the printer for the data to be printed and managed, thereby preventing information from leaking via the HDD if the HDD is stolen and data is unauthorizedly read from it. The TOE is provided as firmware for the C8800 series of OKI Color Page Printers made by Oki Data Corporation and operates to provide security functions when an optional security kit type A1 is installed in the printer." } }, { "cert_id": "JISEC-CC-CRP-C0092", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-04-01", "toe_overseas_link": null, "toe_japan_name": "OSIV/MSP SECURE AF2 V10L10 C06121", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0092_it6104.html", "enhanced": { "product": "OSIV/MSP SECURE AF2", "toe_version": "V10L10 C06121", "product_type": "IT Product (Operating System)", "assurance_level": "EAL1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "description": "PRODUCT DESCRIPTION This TOE is the OS (Operating System) for enterprise computing which has been enhanced on the security functions of access control, identification and authentication of user and so on. The applications on the TOE which the users can use are operable in multi-user and multi-task environments. And the relationships of access between a user and resources can be defined in detail by this TOE. Based on these definitions the access control is performed and only the permitted user can use the resources securely within the permitted range. This TOE has the following security functions. - identification and authentication - access control - auditing - security management - TOE protection" } }, { "cert_id": "JISEC-CC-CRP-C0090", "supplier": "Hitachi Information Systems, Ltd", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-03-01", "toe_overseas_link": null, "toe_japan_name": "Security Threat Exclusion System SHIELD/ExLink-IA 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0090_it6114.html", "enhanced": { "product": "Security Threat Exclusion System SHIELD/ExLink-IA", "toe_version": "1.0", "product_type": "IT Product (Security Management Software)", "assurance_level": "EAL1", "vendor": "Hitachi Information Systems, Ltd", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSEC)", "description": "PRODUCT DESCRIPTION This product is a network management software that collects security logs from monitored FWs (*1) and IPSs(*2), sends them to SOC(*3) for analysis, and changes the FW's settings based on the instructions from SOC. (*1) abbreviation of Firewall. Network server that protects internal network resources from external network. (*2) abbreviation of Intrusion Prevention System. Software tool that prevents unauthorized access to server and network. It extends a function of IDS to detect unauthorized access, and take countermeasures such as blocking connections in real-time when detected. (*3) abbreviation of Security Operation Center. Facilities that receives security logs from SHIELD/ExLink-IAs and maintains an application software called \"i-Monitor\" to issue instructions to change FW's settings to HIELD/ExLink-IAs." } }, { "cert_id": "JISEC-CC-CRP-C0089", "supplier": "NTT DATA CORPORA TION", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-03-01", "toe_overseas_link": null, "toe_japan_name": "PostgreSQL Certified Version V8.1.5 for Linux", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0089_it6109.html", "enhanced": { "product": "PostgreSQL Certified Version", "toe_version": "V8.1.5 for Linux", "product_type": "IT Product (Database management system)", "assurance_level": "EAL1", "vendor": "NTT DATA CORPORATION", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSEC)", "description": "PRODUCT DESCRIPTION PostgreSQL Certified Version is a relational database management system, which is applicable to enterprise business. It is an enhanced version of the open source PostgreSQL and delivered from NTT Data Corp. PostgreSQL Certified Version runs on Red Hat Enterprise Linux AS v.4 for x86." } }, { "cert_id": "JISEC-CC-CRP-C0088", "supplier": "Fujitsu Limited", "toe_overseas_name": "IPCOM EX Series Firmware Security Component V1.1.00", "expiration_date": "2013-03-01", "claim": "EAL1", "revalidations": [ { "date": "2007-07", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0088_it6105_01.html" } ], "certification_date": "2007-03-01", "toe_overseas_link": null, "toe_japan_name": "IPCOM EX Series Firmware Security Component V1.0.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0088_it6105.html", "enhanced": { "product": "IPCOM EX Series Firmware Security Component", "toe_version": "V1.0.00", "product_type": "IT Product (Firewall)", "cc_version": "2.3", "assurance_level": "EAL1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "description": "PRODUCT DESCRIPTION This product is the embedded firmware of firewall appliance that provides the following functions. - IP packet filtering - Operational assistance - Configuration These functions shield the traffic resources on internal network from threats of illegal access and keep the advantage that resources on external network can be used. This product is previously installed as a firmware of following appliances of Fujitsu Limited. - IPCOM EX1000 SC - IPCOM EX1200 SC - IPCOM EX2000 SC - IPCOM EX1000 LB - IPCOM EX1200 LB - IPCOM EX2000 LB" } }, { "cert_id": "JISEC-CC-CRP-C0087", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRO C6500/bizhub PRO C6500P/ineo+6500/ bizhub PRO C6501/bizhub PRO C6501P/bizhub PRO C65hc/ineo+6501 Image Control Program A03U0Y0-00I1-G00-60", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2009-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0087_it6100_03.html" } ], "certification_date": "2007-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0087_it6100.html", "toe_japan_name": "bizhub PRO C6500 Gazou Seigyo Program A03U0Y0-00I1-G00-15", "enhanced": { "product": "Japan : bizhub PRO C6500 Gazou Seigyo Program Overseas: bizhub PRO C6500 Image Control Program", "toe_version": "A03U0Y0-00I1-G00-15", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0087_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0087_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0087_est.pdf", "description": "PRODUCT DESCRIPTION This product (bizhub PRO C6500 Image Control Program *1, that is installed with digital MFP (bizhub PRO C6500 Series) manufactured by Konica Minolta Business Technologies, Inc., is a software product for the purpose of reducing the risk for disclosure of document data in bizhub PRO C6500 Series. bizhub PRO C6500 Image Control Program prevents document data in bizhub PRO C6500 Series from disclosing during the use of functions such as copier and printer. It offers the protection function *2 with password lock system against the risk of reading data out illegally from HDD (Hard Disk Drive) which is a medium for storing temporarily document data. *1: with shows \"bizhub PRO C6500 Gazou Seigyo Program\" for Japan and \"bizhub PRO C6500 Image Control Program\" for overseas. *2: HDD has the password so that it cannot be removed and read in another equipment. HDD lock password is set in the HDD lock function." } }, { "cert_id": "JISEC-CC-CRP-C0086", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2007-03-01", "toe_overseas_link": null, "toe_japan_name": "uCosminexus Application Server 07-00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0086_it6094.html", "enhanced": { "product": "uCosminexus Application Server", "toe_version": "07-00", "product_type": "IT Product (Web Application Server)", "assurance_level": "EAL2+ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION TOE is a Web application server software product that is a J2EETM (Java (TM) 2 Platform, Enterprise Edition)-compliant. TOE provides runtime and management environments. The product, that includes TOE, is mainly consist of Web container and EJBTM container that is Java 2 Platform, Enterprise Edition 1.4 compatible platform. And it also includes various software to execute and manage J2EE-compliant Java applications. It improves availability and reliability of the business application system, and provides several functions in order to manage business application system efficiently. TOE provides following security functions. - Identification and authentication - Access control - Security management" } }, { "cert_id": "JISEC-CC-CRP-C0085", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 750 / bizhub 600 / ineo 750 / ineo 600 Control Software MFP system controller program : 57AA-0100-G00-21-000 MFP image controller program : 57AA-1000-G00-21-000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0085_it5055.html", "toe_japan_name": "bizhub 750 / bizhub 600 / ineo 750 / ineo 600 Control Software MFP system controller program : 57AA-0100-G00-21-000 MFP image controller program : 57AA-1000-G00-21-000", "enhanced": { "product": "bizhub 750 / bizhub 600 / ineo 750 / ineo 600 Control Software", "toe_version": "MFP system controller program : 57AA-0100-G00-21-000 MFP image controller program : 57AA-1000-G00-21-000", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0085_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0085_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0085_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub 750 / bizhub 600 / ineo 750 / ineo 600) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including setting values. Moreover, this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. Moreover, this provides encryption and tampering-prevention countermeasures against the possibility of unauthorized operation to compact flash memory which is a medium for saving various setting values. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0084", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 500 / bizhub 420 / ineo 500 / ineo 420 Control Software 50GA-0100-G00-21-000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0084_it5054.html", "toe_japan_name": "bizhub 500 / bizhub 420 / ineo 500 / ineo 420 Control Software 50GA-0100-G00-21-000", "enhanced": { "product": "bizhub 500 / bizhub 420 / ineo 500 / ineo 420 Control Software", "toe_version": "50GA-0100-G00-21-000", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0084_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0084_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0084_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub 500 / bizhub 420 / ineo 500 / ineo 420) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover, this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data including image data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0083", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "Data OverWriteSecurity Unit F Software 1.05", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2008-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0083_it7128_01.html" } ], "certification_date": "2007-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0083_it7128.html", "toe_japan_name": "Data OverWriteSecurity Unit F Software 1.05", "enhanced": { "product": "Data OverWriteSecurity Unit F Software", "toe_version": "1.05", "product_type": "IT Product (software to overwrite data)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0083_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0083_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0083_est.pdf", "description": "PRODUCT DESCRIPTION This product, an optional kit of safer use for Multi Function Product, overwrites generated data into the specified area of HDD commanded by Multi Function Product." } }, { "cert_id": "JISEC-CC-CRP-C0082", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-02-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-II 4000/3000 Series Data Security Kit Controller ROM Ver1.0.17", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0082_it6123.html", "enhanced": { "product": "Fuji Xerox DocuCentre-II 4000/3000 Series Data Security Kit", "toe_version": "Controller ROM Ver1.0.17", "product_type": "IT Product (data protection function in digital Copier)", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for DocuCentre-II 4000/3000 Series digital multifunction device with copy, print, scan and fax. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0081", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-02-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-II 4000/3000 Series Data Security Kit Controller ROM Ver1.40.17", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0081_it6122.html", "enhanced": { "product": "Fuji Xerox ApeosPort-II 4000/3000 Series Data Security Kit", "toe_version": "Controller ROM Ver1.40.17", "product_type": "IT Product (data protection function in digital Copier)", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort-II 4000/3000 Series digital multifunction device with copy, print, scan and fax. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0080", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Xerox WorkCentre 7228/7235/7245 Series Security Kit Controller+PS Ver1.220.2", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0080_it6121.html", "toe_japan_name": "-----", "enhanced": { "product": "Xerox WorkCentre 7228/7235/7245 Series Security Kit", "toe_version": "Controller+PS Ver1.220.2", "product_type": "IT Product (data protection function in digital Copier)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0080_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0080_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for WorkCentre 7228/7235/7245 Series digital multifunction device with copy, print, scan and fax. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0079", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2007-02-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-II C7500/C6500/C5400 DocuCentre-II C7500/C6500/C5400 Series Data Security Kit Controller ROM Ver2.0.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0079_it6120.html", "enhanced": { "product": "Fuji Xerox ApeosPort-II C7500/C6500/C5400 DocuCentre-II C7500/C6500/C5400 Series Data Security Kit", "toe_version": "Controller ROM Ver2.0.1", "product_type": "IT Product (data protection function in digital Copier)", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort-II C7500/C6500/C5400 DocuCentre-II C7500/C6500/C5400 Series digital multifunction device with copy, print, scan and fax. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0078", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type C Software V0.04", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2008-04", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0078_it6102_01.html" } ], "certification_date": "2007-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0078_it6102.html", "toe_japan_name": "DataOverwriteSecurity Unit Type D Software V0.04", "enhanced": { "product": "DataOverwriteSecurity Unit Type C Software", "toe_version": "V0.04", "product_type": "IT Product (software to overwrite data)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0078_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0078_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0078_est.pdf", "description": "PRODUCT DESCRIPTION This product, an optional kit of safer use for Multi Function Product, overwrites the specified area on HDD with random data by Multi Function Product." } }, { "cert_id": "JISEC-CC-CRP-C0077", "supplier": "RICOH COMPANY, LTD.", "toe_overseas_name": "DataOverwriteSecurity Unit Type D Software V0.03", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2008-04", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0077_it6101_01.html" } ], "certification_date": "2007-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0077_it6101.html", "toe_japan_name": "DataOverwriteSecurity Unit Type C Software V0.03", "enhanced": { "product": "DataOverwriteSecurity Unit Type D Software", "toe_version": "V0.03", "product_type": "IT Product (software to overwrite data)", "cc_version": "2.3", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0077_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0077_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0077_est.pdf", "description": "PRODUCT DESCRIPTION This product, an optional kit of safer use for Multi Function Product, overwrites the specified area on HDD with random data by Multi Function Product." } }, { "cert_id": "JISEC-CC-CRP-C0076", "supplier": "MIRACLE LINUX CORPORA TION", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2007-01-01", "toe_overseas_link": null, "toe_japan_name": "MIRACLE LINUX V4.0 / MIRACLE LINUX V4.0 One / MIRACLE LINUX V4.0 x86-64 / MIRACLE LINUX V4.0 x86-64 One Operating System V4.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0076_it6093.html", "enhanced": { "product": "MIRACLE LINUX V4.0 / MIRACLE LINUX V4.0 One / MIRACLE LINUX V4.0 x86-64 / MIRACLE LINUX V4.0 x86-64 One Operating System", "toe_version": "V4.0", "product_type": "IT Product (Operating System)", "assurance_level": "EAL1", "vendor": "MIRACLE LINUX CORPORATION", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION This TOE is a common part of MIRACLE LINUX V4.0 / MIRACLE LINUX V4.0 One / MIRACLE LINUX V4.0 x86-64 / MIRACLE LINUX V4.0 x86-64 One which is commercially available distribution of the Linux operating system. It is a multi-user, multi-tasking operating system designed for use on Intel x86 platforms. This TOE provides identification and authorization, discretionary access control, process separation, auditing of identification and authorization to protect information against illegal access, falsification and information leaks." } }, { "cert_id": "JISEC-CC-CRP-C0075", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 350 /bizhub 250 /bizhub 200 /ineo 350 /ineo 250 (Ver.2) Control Software 4040-0100-G20-52-000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2007-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0075_it6084.html", "toe_japan_name": "bizhub 350 /bizhub 250 /bizhub 200 /ineo 350 /ineo 250 (Ver.2) Control Software 4040-0100-G20-52-000", "enhanced": { "product": "bizhub 350 /bizhub 250 /bizhub 200 /ineo 350 /ineo 250 (Ver.2) Control Software", "toe_version": "4040-0100-G20-52-000", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0075_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0075_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0075_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub 350 /bizhub 250 /bizhub 200 /ineo 350 /ineo 250) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover , this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD (option part) unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0074", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox DocuCentre-II C4300/C3300/C2200 Series Security Kit for Asia Pacific Controller ROM Ver1.101.7", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0074_it6118.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox DocuCentre-II C4300/C3300/C2200 Series Security Kit for Asia Pacific", "toe_version": "Controller ROM Ver1.101.7", "product_type": "IT Product (data protection function in digital Copier)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0074_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0074_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for DocuCentre-II C4300/C3300/C2200 Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0073", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-12-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre-II C4300/C3300/C2200 Series Data Security Kit Controller ROM Ver1.1.16", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0073_it6117.html", "enhanced": { "product": "Fuji Xerox DocuCentre-II C4300/C3300/C2200 Series Data Security Kit", "toe_version": "Controller ROM Ver1.1.16", "product_type": "IT Product (data protection function in digital Copier)", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for DocuCentre-II C4300/C3300/C2200 Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0072", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort-II C4300/C3300/C2200 Series Security Kit for Asia Pacific Controller ROM Ver1.121.7", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0072_it6116.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort-II C4300/C3300/C2200 Series Security Kit for Asia Pacific", "toe_version": "Controller ROM Ver1.121.7", "product_type": "IT Product (data protection function in digital Copier)", "cc_version": "2.3", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0072_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0072_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort-II C4300/C3300/C2200 Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0071", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-12-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort-II C4300/C3300/C2200 Series Data Security Kit Controller ROM Ver1.41.16", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0071_it6115.html", "enhanced": { "product": "Fuji Xerox ApeosPort-II C4300/C3300/C2200 Series Data Security Kit", "toe_version": "Controller ROM Ver1.41.16", "product_type": "IT Product (data protection function in digital Copier)", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort-II C4300/C3300/C2200 Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0070", "supplier": "Panasonic System Networks Co., Ltd.", "toe_overseas_name": "Data Security Kit DA-SC02 V1.00", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0070_it6097.html", "toe_japan_name": "Data Security Kit DA-SC02 V1.00", "enhanced": { "product": "Data Security Kit DA-SC02", "toe_version": "V1.00", "product_type": "IT Product (data protection function in digital imaging system)", "assurance_level": "EAL2", "vendor": "Panasonic System Networks Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0070_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0070_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0070_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is a software product to protect the used document data which had been already stored on the HDD (Hard Disk Drive) after being processed by the digital imaging system from being disclosed illicitly. To realize them, The TOE offers the function to overwrite for residual data and the function to delete the security information including set values of the unit. Moreover, the hard disk drive lock mechanism is used to prevent any information leak in case of removing and taking the HDD out illegally. The TOE is offered as an optional product of Panasonic Communications Co., Ltd. Digital Color Imaging System DP-C2635 / C2626 / C2121 for Japan (DP-C354 / C264 / C323 / C263 / C213 for Overseas), and provides the security functions by replacing with the standard bundled software of the digital imaging system." } }, { "cert_id": "JISEC-CC-CRP-C0069", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX3 Version M.10", "expiration_date": "2011-01-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2006-12-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0069_it6095.html", "toe_japan_name": "MX-FRX3 Version M.10", "enhanced": { "product": "MX-FRX3", "toe_version": "Version M.10", "product_type": "IT Product (data protection function in Multi Function Device)", "assurance_level": "EAL3 +ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0069_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0069_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0069_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is an IT product composed of 2 parts for a Multi Function Device (hereafter referred as to \"MFD\") to reduce the risk that image data stored or remaining in the HDD and the Flash Memory be disclosed. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. The TOE counters unauthorized disclosure of image data by: - the encryption function, that encrypts and spools image data that the MFDhandles for jobs (of copy, printer, image-scanning, fax transmission/reception and PC-Fax), - the erasure function, that overwrites the spooled data area when each job is completed, - the confidential file function, that protects image data that a user files with a password, - the IP/MAC address filter function, that refuses unauthorized network accesses, and - the SSL function, that protects communications data against wiretapping." } }, { "cert_id": "JISEC-CC-CRP-C0068", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2+ ALC_FLR.1", "certification_date": "2006-12-01", "toe_overseas_link": null, "toe_japan_name": "EUR Form Client 05-07", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0068_it6089.html", "enhanced": { "product": "EUR Form Client", "toe_version": "05-07", "product_type": "IT Product (software for electronic form systems)", "assurance_level": "EAL2+ALC_FLR.1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "description": "PRODUCT DESCRIPTION TOE is an application software product for electronic form systems. By using TOE, the end-user can view, fill in the electronic form easily via Web client as if it is a paper application form, and send the entered data to the system securely. TOE provides following security functions, in order to enforce the security policy declared in the EUR Form files. - Attach the XML signatures to the entered data - Verify the XML signatures - Initiate the HTTPS Channel" } }, { "cert_id": "JISEC-CC-CRP-C0067", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2006-11-01", "toe_overseas_link": null, "toe_japan_name": "Symfoware Server Enterprise Extended Edition 8.0.1 (with patch T000132QP-01 and T000133QP-01)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0067_it6098.html", "enhanced": { "product": "Symfoware Server Enterprise Extended Edition", "toe_version": "8.0.1 (with patch T000132QP-01 and T000133QP-01)", "product_type": "IT Product (Database)", "assurance_level": "EAL1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "description": "PRODUCT DESCRIPTION Symfoware Server is Fujitsu's relational database management system designed for enterprise business. Symfoware Server processes huge data speedily during user's working and also user can use it effectively for their own business style. Using SQL language, user is able to define the data structure, and access to the structured data. Symfoware Server runs on Red Hat Enterprise Linux AS v.4 for Itanium with patch Update2." } }, { "cert_id": "JISEC-CC-CRP-C0066", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": null, "toe_overseas_link": null, "toe_japan_name": "HiRDB / Parallel Server Version 7 07-03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0066_it6092.html", "enhanced": { "product": "HiRDB / Parallel Server Version 7", "toe_version": "07-03", "product_type": "IT Product (Data Base Management System)", "assurance_level": "EAL1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION This TOE (HiRDB / Parallel Server Version 7) is a software product for Relational Database Management System(RDBMS). The TOE acts as a databese server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. And it also provides security functions that restrict access to user data to authorized users. Security functions of the TOE include the following. - Audit - Discretionary Access Control - Identification and Authentication - Security Management The TOE can be used as a single RDBMS by installation on a number of machines and networking the machines. It makes a difference with HiRDB / Single Server Version 7." } }, { "cert_id": "JISEC-CC-CRP-C0065", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": null, "toe_overseas_link": null, "toe_japan_name": "HiRDB / Single Server Version 7 07-03", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0065_it6091.html", "enhanced": { "product": "HiRDB / Single Server Version 7", "toe_version": "07-03", "product_type": "IT Product (Data Base Management System)", "assurance_level": "EAL1", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION This TOE (HiRDB / Single Server Version 7) is a software product for Relational Database Management System(RDBMS). The TOE acts as a databese server and provides access to the information stored in the database. Users generally access to the information stored in the database by requests for SQL execution at HiRDB server from HiRDB clients. The TOE provides functions that work for various and efficient data manipulation to meet the needs of users. And it also provides security functions that restrict access to user data to authorized users. Security functions of the TOE include the following. - Audit - Discretionary Access Control - Identification and Authentication - Security Management" } }, { "cert_id": "JISEC-CC-CRP-C0064", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C450 / bizhub C351 / ineo+ 450 / ineo+ 350 Control Software 4037-0100-GM0-08-000", "expiration_date": "2011-01-01", "claim": "EAL3", "revalidations": [ { "date": "2007-03", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0064_it5053_01.html" } ], "certification_date": "2006-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0064_it5053.html", "toe_japan_name": "bizhub C450 / bizhub C351 / ineo+ 450 / ineo+ 350 Control Software 4037-0100-GM0-05-000", "enhanced": { "product": "bizhub C450 / bizhub C351 / ineo+ 450 / ineo+ 350 Control Software", "toe_version": "4037-0100-GM0-05-000", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0064_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0064_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0064_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C450, bizhub C351, ineo+ 450, ineo+ 350) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover, this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0063", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C352 / bizhub C300 / ineo+ 351 / ineo+ 300 Control Software 9J06-0100-GM0-08-000", "expiration_date": "2011-01-01", "claim": "EAL3", "revalidations": [ { "date": "2007-03", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0063_it5052_01.html" } ], "certification_date": "2006-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0063_it5052.html", "toe_japan_name": "bizhub C352 / bizhub C300 / ineo+ 351 / ineo+ 300 Control Software 9J06-0100-GM0-05-000", "enhanced": { "product": "bizhub C352 / bizhub C300 / ineo+ 351 / ineo+ 300 Control Software", "toe_version": "9J06-0100-GM0-05-000", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0063_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0063_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0063_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C352, bizhub C300, ineo+ 351, ineo+ 300) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover, this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0062", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub C250 / ineo+ 250 Control Software 4038-0100-GM0-08-000", "expiration_date": "2011-01-01", "claim": "EAL3", "revalidations": [ { "date": "2007-03", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0062_it5051_01.html" } ], "certification_date": "2006-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0062_it5051.html", "toe_japan_name": "bizhub C250 / ineo+ 250 Control Software 4038-0100-GM0-05-000", "enhanced": { "product": "bizhub C250 / ineo+ 250 Control Software", "toe_version": "4038-0100-GM0-05-000", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0062_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0062_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0062_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub C250, ineo+ 250) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover, this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD unjustly which is a medium for storing image data in MFP. If the encryption board, an option product, is installed in the MFP controller, this provides the function of generating the encryption key that encrypts all data written to the HDD." } }, { "cert_id": "JISEC-CC-CRP-C0061", "supplier": "Fujitsu Limited", "toe_overseas_name": "Symfoware Server Enterprise Extended Edition 7.0.2", "expiration_date": "2013-10-01", "claim": "EAL1", "certification_date": "2006-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0061_it6090.html", "toe_japan_name": "-----", "enhanced": { "product": "Symfoware Server Enterprise Extended Edition", "toe_version": "7.0.2", "product_type": "IT Product (Database)", "assurance_level": "EAL1", "vendor": "Fujitsu Limited", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "description": "PRODUCT DESCRIPTION Symfoware Server is Fujitsu's relational database management system designed for enterprise business. Symfoware Server processes huge data speedily during user's working and also user can use it effectively for their own business style. Using SQL language, user is able to define the data structure, and access to the structured data. Symfoware Server runs on Solaris 10." } }, { "cert_id": "JISEC-CC-CRP-C0060", "supplier": "Panasonic System Networks Co., Ltd.", "toe_overseas_name": "Data Security Kit DA-SC03 V1.01", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0060_it6077.html", "toe_japan_name": "Data Security Kit DA-SC03 V1.01", "enhanced": { "product": "Data Security Kit DA-SC03", "toe_version": "V1.01", "product_type": "IT Product (data protection function in digital imaging system)", "assurance_level": "EAL2", "vendor": "Panasonic System Networks Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0060_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0060_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0060_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is a software product to protect the used document data which had been already stored on the HDD (Hard Disk Drive) after being processed by the digital imaging system from being disclosed illicitly. To realize them, The TOE offers the function to overwrite for residual data and the function to delete the security information including set values of the unit. Moreover, the hard disk drive lock mechanism is used to prevent any information leak in case of removing and taking out the HDD illegally. The TOE is offered as an optional product of Panasonic Communications Co., Ltd. Digital Imaging System DP-2330 / 3030, and provides the security functions by replacing with the standard bundled software of the digital imaging system." } }, { "cert_id": "JISEC-CC-CRP-C0059", "supplier": "Panasonic System Networks Co., Ltd.", "toe_overseas_name": "Data Security Kit DA-SC01 V1.01", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0059_it6076.html", "toe_japan_name": "Data Security Kit DA-SC01 V1.01", "enhanced": { "product": "Data Security Kit DA-SC01", "toe_version": "V1.01", "product_type": "IT Product (data protection function in digital imaging system)", "assurance_level": "EAL2", "vendor": "Panasonic System Networks Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0059_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0059_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0059_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is a software product to protect the used document data which had been already stored on the HDD (Hard Disk Drive) after being processed by the digital imaging system from being disclosed illicitly. To realize them, The TOE offers the function to overwrite for residual data and the function to delete the security information including set values of the unit. Moreover, the hard disk drive lock mechanism is used to prevent any information leak in case of removing and taking out the HDD illegally. The TOE is offered as an optional product of Panasonic Communications Co., Ltd. Digital Imaging System DP-8060 / 8045 / 8035, and provides the security functions by replacing with the standard bundled software of the digital imaging system." } }, { "cert_id": "JISEC-CC-CRP-C0058", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX2 Version M.10", "expiration_date": "2011-01-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2006-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0058_it6074.html", "toe_japan_name": "MX-FRX2 Version M.10", "enhanced": { "product": "MX-FRX2", "toe_version": "Version M.10", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3 +ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0058_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0058_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0058_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is an IT product composed of 2 parts for a Multi Function Device (hereafter referred as to \"MFD\") to reduce the risk that image data stored or remaining in the HDD and the Flash Memory be disclosed. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. The TOE counters unauthorized disclosure of image data by: - the encryption function, that encrypts and spools image data that the MFD handles for jobs (of copy, printer, image-scanning, fax transmission/reception and PC-Fax), - the erasure function, that overwrites the spooled data area when each job is completed, - the confidential file function, that protects image data that a user files with a password, - the IP/MAC address filter function, that refuses unauthorized network accesses, and - the SSL function, that protects communications data against wiretapping." } }, { "cert_id": "JISEC-CC-CRP-C0057", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit(D) Software V2.10E", "expiration_date": "2013-03-01", "claim": "EAL3", "revalidations": [ { "date": "2007-10", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0057_it5065_02.html" } ], "certification_date": "2006-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0057_it5065.html", "toe_japan_name": "-----", "enhanced": { "product": "Data Security Kit(D) Software", "toe_version": "V1.00E", "product_type": "IT Product (data protection function in digital Multi Function Device)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Japan Electronics & Information Technology Industries Association, Information Technology Security Center", "cert_link": "https://www.ipa.go.jp/en/security/c0057_eimg.pdf", "description": "PRODUCT DESCRIPTION This TOE is a software module that is installed on the MFPs \"KM-C2520/KM-C3225/KM-C3232, CS-C2520/CS-C3225/CS-C3232\" of KYOCERA MITA Corporation, and which provides the ordinary functions, and also security functions for protecting residue data. This TOE is installed on the above-mentioned MFPs and protects image data remaining on the HDDs from unjust exposure, after various copying, printing, and network scanning processings, by providing an HDD overwriting function. And it has the administrator authentication function that identifies and authenticates a TOE machine administrator who sets the HDD overwrite deletion method and operates it." } }, { "cert_id": "JISEC-CC-CRP-C0056", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit(D) Software V2.10J", "expiration_date": "2013-03-01", "claim": "EAL3", "revalidations": [ { "date": "2007-10", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0056_it5064_02.html" } ], "certification_date": "2006-10-01", "toe_overseas_link": null, "toe_japan_name": "Data Security Kit(D) Software V1.00J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0056_it5064.html", "enhanced": { "product": "Data Security Kit(D) Software", "toe_version": "V1.00J", "product_type": "IT Product (data protection function in digital Multi Function Device)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Japan Electronics & Information Technology Industries Association, Information Technology Security Center", "cert_link": "https://www.ipa.go.jp/en/security/c0056_eimg.pdf", "description": "PRODUCT DESCRIPTION This TOE is a software module that is installed on the MFPs \"KM-C2520/KM-C3225/KM-C3232\" of KYOCERA MITA Corporation, and which provides the ordinary functions, and also security functions for protecting residue data. This TOE is installed on the above-mentioned MFPs and protects image data remaining on the HDDs from unjust exposure, after various copying, printing, and network scanning processings, by providing an HDD overwriting function. And it has the administrator authentication function that identifies and authenticates a TOE machine administrator who sets the HDD overwrite deletion method and operates it." } }, { "cert_id": "JISEC-CC-CRP-C0055", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub 350 / bizhub 250 / bizhub 200 / ineo 350 / ineo 250 (Ver.1) Control Software 4040-0100-G10-25-000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2006-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0055_it5050.html", "toe_japan_name": "bizhub 350 / bizhub 250 / bizhub 200 / ineo 350 / ineo 250 (Ver.1) Control Software 4040-0100-G10-25-000", "enhanced": { "product": "bizhub 350 / bizhub 250 / bizhub 200 / ineo 350 / ineo 250 (Ver.1) Control Software", "toe_version": "4040-0100-G10-25-000", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Mizuho Information & Research Institute, Inc.Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0055_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0055_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0055_est.pdf", "description": "PRODUCT DESCRIPTION This product is the embedded software that is installed on the Konica Minolta Business Technologies, Inc. digital MFP (bizhub 350, bizhub 250, bizhub 200, ineo 350, ineo 250) (Hereinafter referred to as \"MFP\"). This software is on the flash memory on the MFP controller carried in MFP, and this controls the whole operation of MFP such as the operation control processing and the image data management received from the panel of MFP body or the network. This product offers the protection from exposure of the highly confidential document stored in the MFP, and aims at protecting the data which may be exposed against a user's intention. In order to realize it, this offers the functions such as the function that limits the operation to the specific document only to the authorized user, the function that performs the overwrite deletion of the data domain which became unnecessary and the function that deletes the confidential information including a setting value. Moreover, this has the mechanism using the unauthorized access protection function (HDD Lock Function) with which HDD is equipped against the risk of taking out HDD (option part) unjustly which is a medium for storing image data in MFP." } }, { "cert_id": "JISEC-CC-CRP-C0054", "supplier": "Sharp Corporation", "toe_overseas_name": "MX-FRX1 Version M.10", "expiration_date": "2011-01-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2006-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0054_it5067.html", "toe_japan_name": "MX-FRX1 Version M.10", "enhanced": { "product": "MX-FRX1", "toe_version": "Version M.10", "product_type": "IT Product (data protection function in Multi Function Device)", "assurance_level": "EAL3 +ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0054_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0054_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0054_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is an IT product composed of 2 parts for a Multi Function Device (hereafter referred as to \"MFD\") to reduce the risk that image data stored or remaining in the HDD and the Flash Memory be disclosed. One part is a hardware part in an MFD and provided in the form of an MFD. The other part is a firmware product and provided as an upgrade kit for the firmware of the MFD. The TOE counters unauthorized disclosure of image data by: - the encryption function, that encrypts and spools image data that the MFD handles for jobs (of copy, printer, image-scanning, fax transmission/reception and PC-Fax), - the erasure function, that overwrites the spooled data area when each job is completed, - the confidential file function, that protects image data that a user files with a password, - the IP/MAC address filter function, that refuses unauthorized network accesses, and - the SSL function, that protects communications data against wiretapping." } }, { "cert_id": "JISEC-CC-CRP-C0053", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort C7550 I/C6550 I/C5540 I, DocuCentre C7550I/C6550I/C5540I Series Security Kit for Asia Pacific Controller ROM Ver1.102.2", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0053_it6087.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort C7550 I/C6550 I/C5540 I, DocuCentre C7550 I/C6550 I/C5540 I Series Security Kit for Asia Pacific", "toe_version": "Controller ROM Ver1.102.2", "product_type": "IT Product (data protection function in digital Copier)", "cc_version": "2.1", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0053_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0053_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0053_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort C7550 I/C6550 I/C5540 I, DocuCentre C7550 I/C6550 I/C5540 I Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy and print. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0052", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort 750 I/650 I, DocuCentre 750 I/650 I Series Security Kit for Asia Pacific Controller ROM Ver1.101.2", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0052_it6086.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort 750 I/650 I, DocuCentre 750 I/650 I Series Security Kit for Asia Pacific", "toe_version": "Controller ROM Ver1.101.2", "product_type": "IT Product (data protection function in digital Copier)", "cc_version": "2.1", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0052_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0052_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0052_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort 750 I/650 I, DocuCentre 750 I/650 I Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy and print. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0051", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "Fuji Xerox ApeosPort 550 I/450 I/350 I, DocuCentre 550 I/450 I Series Security Kit for Asia Pacific Controller ROM Ver1.100.3", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0051_it6085.html", "toe_japan_name": "-----", "enhanced": { "product": "Fuji Xerox ApeosPort 550 I/450 I/350 I, DocuCentre 550 I/450 I Series Security Kit for Asia Pacific", "toe_version": "Controller ROM Ver1.100.3", "product_type": "IT Product (data protection function in digital Copier)", "cc_version": "2.1", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0051_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0051_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0051_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort 550 I/450 I/350 I, DocuCentre 550 I/450 I Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0050", "supplier": "Canon Inc.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2006-07-01", "toe_overseas_link": null, "toe_japan_name": "Canon MFP Security Chip 1.00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0050_it5069.html", "enhanced": { "product": "Canon MFP Security Chip", "toe_version": "1.00", "product_type": "IT Product ( cryptographic security chip )", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Japan Electronics and Information Technology IndustriesAssociation, Information Technology security center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0050_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0050_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0050_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is the Canon MFP Security Chip and will be provided to end users as part of a security kit. The TOE allows protecting hard drives in Canon MFPs and printers from disclosure of confidential information due to theft, without sacrificing the extensibility, versatility, convenience and performance of Canon MFPs and printers. The TOE provides the following functions for protecting hard drives: - Hard drive data encryption - Cryptographic key management - Device identification and authentication" } }, { "cert_id": "JISEC-CC-CRP-C0049", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 2500c/3500c/3510c V1.0", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0049_it6078.html", "toe_japan_name": "System Software for e-STUDIO 2500c/3500c/3510c V1.0", "enhanced": { "product": "System Software for e-STUDIO2500c/3500c/3510c", "toe_version": "V1.0", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION The TOE is the system software of the digital multi function device “ e-STUDIO2500c/3500c/3510c ” manufactured by TOSHIBA TEC CORPORATION. The system software provides general functions as a digital multifunction device as well as the function of data overwrite and complete deletion on the user document data deleted from the e-STUDIO2500c/3500c/3510c HDD. The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0048", "supplier": "Ricoh Company, Ltd.", "toe_overseas_name": "Remote Communication Gate Application Software 3.57", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2008-08", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0048_it5049_02.html" } ], "certification_date": "2006-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0048_it5049.html", "toe_japan_name": "Remote Communication Gate Application Software 3.34", "enhanced": { "product": "Remote Communication Gate Application Software", "toe_version": "3.34", "product_type": "IT Product (Software for remote service appliance)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "report_link": "https://www.ipa.go.jp/en/security/c0048_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0048_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0048_est.pdf", "description": "PRODUCT DESCRIPTION Remote Communication Gate Type N/L/BN1/BM1 (hereafter \"RC Gate\") is a communication device, which connects image I/O devices to a remote server. RC Gate is used primarily in business offices and offers the maintenance services such as machine trouble notification, automatic counter checking, ordering supplies like toner and firmware upgrading for the image I/O device. The TOE is application software embedded in the RC Gate. The security features of RC Gate are identification and authentication of operators, access control facilities for operators, identification and authentication of the server based on a digital certificate, and encrypted communication to protect information from Internet or telephone line threats." } }, { "cert_id": "JISEC-CC-CRP-C0047", "supplier": "Ricoh Company, Ltd.", "toe_overseas_name": "DataOverwriteSecurity Unit Type C Software V0.04", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2006-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0047_it5061.html", "toe_japan_name": "DataOverwriteSecurity Unit Type D Software V0.04", "enhanced": { "product": "DataOverwriteSecurity Unit Type C Software", "toe_version": "V0.04", "product_type": "IT Product ( software to overwrite data )", "assurance_level": "EAL2", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/c0047_eimg.pdf", "description": "PRODUCT DESCRIPTION This product, an optional kit of safer use for Multi Function Product, overwrites the specified area on HDD with random data by Multi Function Product." } }, { "cert_id": "JISEC-CC-CRP-C0046", "supplier": "Ricoh Company, Ltd.", "toe_overseas_name": "DataOverwriteSecurity Unit Type D Software V0.03", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2006-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0046_it5060.html", "toe_japan_name": "DataOverwriteSecurity Unit Type C Software V0.03", "enhanced": { "product": "DataOverwriteSecurity Unit Type D Software", "toe_version": "V0.03", "product_type": "IT Product ( software to overwrite data )", "assurance_level": "EAL2", "vendor": "RICOH COMPANY, LTD.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "cert_link": "https://www.ipa.go.jp/en/security/c0046_eimg.pdf", "description": "PRODUCT DESCRIPTION This product, an optional kit of safer use for Multi Function Product, overwrites the specified area on HDD with random data by Multi Function Product." } }, { "cert_id": "JISEC-CC-CRP-C0045", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO352/452 V1.0", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2006-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0045_it5059.html", "toe_japan_name": "System Software for e-STUDIO352/452 V1.0", "enhanced": { "product": "System Software for e-STUDIO352/452", "toe_version": "V1.0", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "target_link": "https://www.ipa.go.jp/en/security/c0045_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0045_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0045_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is the system software of the digital multi function device “ e-STUDIO352/452 ” manufactured by TOSHIBA TEC CORPORATION. The system software provides general functions as a digital multifunction device as well as the function of data overwrite and complete deletion on the user document data deleted from the e-STUDIO352/452 HDD. The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0044", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 281c/351c/451c V1.0", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": null, "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0044_it5058.html", "toe_japan_name": "System Software for e-STUDIO281c/351c/451c V1.0", "enhanced": { "product": "System Software for e-STUDIO281c/351c/451c", "toe_version": "V1.0", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION The TOE is the system software of the digital multi function device “ e-STUDIO281c/351c/451c ” manufactured by TOSHIBA TEC CORPORATION. The system software provides general functions as a digital multifunction device as well as the function of data overwrite and complete deletion on the user document data deleted from the e-STUDIO281c/351c/451c HDD. The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0043", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 202L/232/282 V1.0", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2006-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0043_it5057.html", "toe_japan_name": "System Software for e-STUDIO202L/232/282 V1.0", "enhanced": { "product": "System Software for e-STUDIO202L/232/282", "toe_version": "V1.0", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.", "target_link": "https://www.ipa.go.jp/en/security/c0043_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0043_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0043_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is the system software of the digital multi function device “ e-STUDIO202L/232/282 ” manufactured by TOSHIBA TEC CORPORATION. The system software provides general functions as a digital multifunction device as well as the function of data overwrite and complete deletion on the user document data deleted from the e-STUDIO202L/232/282 HDD. The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0041", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "System Software for e-STUDIO 520/600/720/850 V1.0", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2006-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0041_it5041.html", "toe_japan_name": "System Software for e-STUDIO202L/232/282 V1.0", "enhanced": { "product": "System Software for e-STUDIO520/600/720/850", "toe_version": "V1.0", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "target_link": "https://www.ipa.go.jp/en/security/c0041_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0041_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0041_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is the system software of the digital multi function device “e-STUDIO520/600/720/850” manufactured by TOSHIBA TEC CORPORATION. The system software provides general functions as a digital multifunction device as well as the function of data overwrite and complete deletion on the user document data deleted from the e-STUDIO520/600/720/850 HDD. The function of data overwrite and complete deletion includes the function to collectively and completely delete all user document data from the HDD before the HDD is disposed or replaced. This function also prevents unauthorized restore of data." } }, { "cert_id": "JISEC-CC-CRP-C0040", "supplier": "TOSHIBA CORPORATION", "toe_overseas_name": "LSI for e-Passport Version 1.1 (ES identification: 4200193313 / IC identification: T6NC6 V1.0)", "expiration_date": "2013-10-01", "claim": "EAL4+ AVA_MSU.3", "revalidations": [ { "date": "2006-09", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0040_it5042_01.html" } ], "certification_date": "2006-03-01", "toe_overseas_link": null, "toe_japan_name": "LSI for e-Passport Version 1.0 (ES identification: 4200193300 / IC identification: T6NC6 V1.0)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0040_it5042.html", "enhanced": { "product": "LSI for e-Passport", "toe_version": "Version 1.0(ES identification: 4200193300 / IC identification: T6NC6 V1.0)", "product_type": "IT product ( 1-chip microcontroller )", "assurance_level": "EAL4 + AVA_MSU.3", "vendor": "TOSHIBA CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION This product is a 1-chip microcontroller (hardware and software) that is assumed to be used for the e-Passport. This product has basic functions (the function to select files in which the information is stored and the function to read the information) as well as general contactless smart card products. And moreover, it has security functions (the authentication function, the access control function, the tamper resistant function and the cryptographic communication function) to prevent from improperly reading and modifying the information stored in the product." } }, { "cert_id": "JISEC-CC-CRP-C0039", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-02-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort 750 I / 650 I / 550 I DocuCentre 750 I / 650 I / 550 I Series Data Security Kit Controller ROM Ver1.1.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0039_it5073.html", "enhanced": { "product": "Fuji Xerox ApeosPort 750 I / 650 I / 550 I DocuCentre 750 I / 650 I / 550 I Series Data Security Kit", "toe_version": "Controller ROM Ver1.1.1", "product_type": "IT Product ( data protection function in digital Copier )", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort 750 I / 650 I / 550 I DocuCentre 750 I / 650 I / 550 I Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0038", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2006-02-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort C7550 I / C6550 I / C5540 I DocuCentre C7550 I / C6550 I / C5540 I Series Data Security Kit Controller ROM Ver1.1.4", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0038_it5072.html", "enhanced": { "product": "Fuji Xerox ApeosPort C7550 I / C6550 I / C5540 I DocuCentre C7550 I / C6550 I / C5540 I Series Data Security Kit", "toe_version": "Controller ROM Ver1.1.4", "product_type": "IT Product ( data protection function in digital Copier )", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort C7550 I / C6550 I / C5540 I DocuCentre C7550 I / C6550 I / C5540 I Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0036", "supplier": "Canon Inc.", "toe_overseas_name": "Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2006-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0036_it5070.html", "toe_japan_name": "Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03", "enhanced": { "product": "Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2", "toe_version": "Version 2.03", "product_type": "IT Product ( data protection function in digital MFD )", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0036_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0036_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0036_est.pdf", "description": "PRODUCT DESCRIPTION This product is a software program to be installed for use on the Canon iR4570/iR3570/iR2870/iR2270 -series multifunction products (hereafter referred to collectively as the “multifunction product”). The multifunction product is a digital copier that offers the combined functionality of Copy, Send (Universal Send), Fax Reception, Mail Box, Print, Remote UI (a Web browser interface for operating the multifunction product), plus many others. When the Copy, Send (Universal Send), Fax Reception (fax/I-fax reception) or Print function is used, temporary image data is created on the hard drive of the multifunction product. Also, when the Mail Box function is used (for document storage) or the Fax Reception function is used (for “in-memory reception” of faxes/I-faxes or forwarding of faxes/I-faxes), image data is stored in the receiving inbox that is on the multifunction product. Furthermore, when the Remote UI function is used, image data is exchanged over the network between the Web browser on the user's PC and the multifunction product. By installing this product, security enhancements are added to the multifunction product, helping counter the threat of disclosure of temporary image data created on the hard drive, permanent image data stored in the inboxes, and image data that is transmitted over the Remote UI communication path." } }, { "cert_id": "JISEC-CC-CRP-C0035", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit(B) Software V2.00E", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2009-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0035_it4035_01.html" } ], "certification_date": "2005-11-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0035_it4035.html", "toe_japan_name": "-----", "enhanced": { "product": "Data Security Kit(B) Software", "toe_version": "V1.10E", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Japan Electronics & Information Technology Industries Association, Information Technology Security Center", "target_link": "https://www.ipa.go.jp/en/security/c0035_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0035_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0035_eimg.pdf", "description": "PRODUCT DESCRIPTION This TOE is a software module that is installed on the MFPs \"KM-8030/KM-6030, CS-8030/CS-6030\" of KYOCERA MITA Corporation, and which provides the ordinary functions, and also security functions for protecting residue data. This TOE is installed on the above-mentioned MFPs and protects image data remaining on the HDDs from unjust exposure, after various copying, printing, and network scanning processings, by providing an HDD overwriting function. And it has the administrator authentication function that identifies and authenticates a TOE machine administrator who sets the HDD overwrite deletion method and operates it." } }, { "cert_id": "JISEC-CC-CRP-C0034", "supplier": "KYOCERA MITA Corporation", "toe_overseas_name": "Data Security Kit(B) Software V2.00J", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2009-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0034_it4034_01.html" } ], "certification_date": "2005-11-01", "toe_overseas_link": null, "toe_japan_name": "Data Security Kit(B) Software V1.10J", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0034_it4034.html", "enhanced": { "product": "Data Security Kit(B) Software", "toe_version": "V1.10J", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "KYOCERA MITA Corporation", "evaluation_facility": "Japan Electronics & Information Technology Industries Association, Information Technology Security Center", "cert_link": "https://www.ipa.go.jp/en/security/c0034_eimg.pdf", "description": "PRODUCT DESCRIPTION This TOE is a software module that is installed on the MFPs \"KM-8030/KM-6030\" of KYOCERA MITA Corporation, and which provides the ordinary functions, and also security functions for protecting residue data. This TOE is installed on the above-mentioned MFPs and protects image data remaining on the HDDs from unjust exposure, after various copying, printing, and network scanning processings, by providing an HDD overwriting function. And it has the administrator authentication function that identifies and authenticates a TOE machine administrator who sets the HDD overwrite deletion method and operates it." } }, { "cert_id": "JISEC-CC-CRP-C0033", "supplier": "Sharp Corporation", "toe_overseas_name": "AR-FR22 VERSION S.10", "expiration_date": "2013-10-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2005-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0033_it5046.html", "toe_japan_name": "AR-FR22 VERSION S.10", "enhanced": { "product": "AR-FR22", "toe_version": "VERSION S.10", "product_type": "IT Product ( Data protection function inside digital MFD )", "assurance_level": "EAL3 +ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology security center (JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0033_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0033_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0033_eimg.pdf", "description": "PRODUCT DESCRIPTION TOE is a firmware that aims to prevent leakage of real image data stored temporarily in Mass Storage Device (hereafter referred to as MSD), which are specified for every functional unit configuration of Multi Function Device (hereafter referred to as MFD). TOE is provided as a kit of upgrading firmware of MFD. TOE executes encryption before the real image data are spooled in MSD, when the MFD functions like PCFAX, FAX transmission or FAX receiving are performed. It also clears spool data area in MSD after the jobs like copying, printing, SCAN transmission, PCFAX, FAX transmission or FAX receiving are completed. These encryption function and data erasing function ensure the secrecy of real image data that are stored temporarily in MSD and counter fraudulent readout of them." } }, { "cert_id": "JISEC-CC-CRP-C0032", "supplier": "Canon Inc.", "toe_overseas_name": "Canon iR6570/iR5570 Series iR Security Kit-B3 Version 1.03", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2005-10-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0032_it5043.html", "toe_japan_name": "Canon iR6570/iR5570 Series iR Security Kit-B3 Version 1.03", "enhanced": { "product": "Canon iR6570/iR5570 Series iR Security Kit-B3", "toe_version": "Version 1.03", "product_type": "IT Product ( data protection function in digital MFD )", "assurance_level": "EAL3", "vendor": "Canon Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0032_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0032_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0032_est_000.pdf", "description": "PRODUCT DESCRIPTION This product is a software program to be installed for use on the Canon iR6570/iR5570-series multifunction products (hereafter referred to collectively as the “multifunction product”). The multifunction product is a digital copier that offers the combined functionality of Copy, Send (Universal Send), Fax Reception, Mail Box, Print, Remote UI (a Web browser interface for operating the multifunction product), plus many others. When the Copy, Send (Universal Send), Fax Reception (fax/I-fax reception) or Print function is used, temporary image data is created on the hard drive of the multifunction product. Also, when the Mail Box function is used (for document storage) or the Fax Reception function is used (for “in-memory reception” of faxes/I-faxes or forwarding of faxes/I-faxes), image data is stored in the receiving inbox that is on the multifunction product. Furthermore, when the Remote UI function is used, image data is exchanged over the network between the Web browser on the user's PC and the multifunction product. By installing this product, security enhancements are added to the multifunction product, helping counter the threat of disclosure of temporary image data created on the hard drive, permanent image data stored in the inboxes, and image data that is transmitted over the Remote UI communication path." } }, { "cert_id": "JISEC-CC-CRP-C0031", "supplier": "Sharp Corporation", "toe_overseas_name": "AR-FR21 VERSION M.10", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2005-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0031_it5045.html", "toe_japan_name": "AR-FR21 VERSION M.10", "enhanced": { "product": "AR-FR21", "toe_version": "VERSION M.10", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "target_link": "https://www.ipa.go.jp/en/security/c0031_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0031_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0031_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is a firmware product for a Multi Function Device (hereafter referred as to “MFD”) to reduce the risk that the inside image data be disclosed. The TOE is provided as an upgrade kit for the firmware of the MFD. The TOE offers security functions to counter the threats to image data written into the HDD and the Flash Memory, which are non-volatile mass storage devices inside the MFD. The TOE encrypts image data of the document that each job handles, before the image data are temporarily spooled to the HDD or the Flash Memory when the MFD processes jobs of copy, printer, image-scanning, fax etc., which are the funda-mental functions of the MFD. And when each job is completed, the TOE clears the area occupied by the image data, by over-writing. In addition, the TOE offers encryption and password authentica-tion for image data that a user saves into the HDD to reuse later. By these functions, the TOE secures secrecy of the non-volatile image data in the MFD, and counters unauthorized disclosure." } }, { "cert_id": "JISEC-CC-CRP-C0030", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRO 920 control software Image control program(Image control I1):40-0000 Controller control program(IP control P):20-0000", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2007-06", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0030_it5040_03.html" } ], "certification_date": "2005-07-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0030_it5040.html", "toe_japan_name": "bizhub PRO 920 control software Image control program(Image control I1):10-0000 Controller control program(IP control P):10-0000", "enhanced": { "product": "Japan: bizhub PRO 920 zentai seigyo software Overseas: bizhub PRO 920 control software", "toe_version": "Image control program(Image control I1):10-0000 Controller control program(IP control P):10-0000", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0030_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0030_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0030_est2.pdf", "description": "PRODUCT DESCRIPTION This product (it is called “ bizhub PRO 920 control software (*1) ”, hereafter.) is the software installed with digital MFP (it is called “bizhub PRO 920 series”, hereafter.) manufactured by Konica Minolta Business Technologies, Inc. and for the purpose of reducing the danger to be leaked the document data stored every user. bizhub PRO 920 control software prevents the document data from leaking in the function to use copier and printer etc. To protect the document data, this software has “User BOX” function and several control capabilities, additionally high-confidential hard disk drive (HDD) with lock system (*2) to store the document. bizhub PRO 920 control software is provided with bizhub PRO 920 series. (*1) “bizhub PRO 920 zentai seigyo software” for Japan and “bizhub PRO 920 control software” are the same product with different calling name. (*2) HDD has the password so that the hard disk cannot be removed and read in another equipment." } }, { "cert_id": "JISEC-CC-CRP-C0029", "supplier": "Fuji Xerox Co., Ltd.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2005-07-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox ApeosPort C4535 I/C3626 I/C2521 I DocuCentre C4535 I/C3626 I/C2521 I Series Data Security Kit Controller ROM Ver1.3.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0029_it5039.html", "enhanced": { "product": "Fuji Xerox ApeosPort C4535 I/C3626 I/C2521 I DocuCentre C4535 I/C3626 I/C2521 I Series Data Security Kit", "toe_version": "Controller ROM Ver1.3.0", "product_type": "IT Product ( data protection function in digital Copier )", "assurance_level": "EAL2", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0029_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0029_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0029_est.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for ApeosPort C4535 I/C3626 I/C2521 I DocuCentre C4535 I/C3626 I/C2521 I Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy, print and fax. This TOE has the following security functions. - HDD overwriting for residual data. - HDD data encryption. - Key operator authentication. - Customer engineer operation restriction." } }, { "cert_id": "JISEC-CC-CRP-C0028", "supplier": "Nippon Telegraph and Telephone Corporation", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2005-07-01", "toe_overseas_link": null, "toe_japan_name": "Trust-CANP V8.0i", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0028_it4037.html", "enhanced": { "product": "Trust-CANP", "toe_version": "V8.0i", "product_type": "IT Product ( Certificate Authority in Public Key Infrastructure )", "assurance_level": "EAL2", "vendor": "Nippon Telegraph and Telephone Corporation", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.", "description": "PRODUCT DESCRIPTION TOE is a software product which acts as a Certificate Authority for PKI. It provides electronic certification services based on public key encryption with Registration Authority." } }, { "cert_id": "JISEC-CC-CRP-C0027", "supplier": "Canon Inc.", "toe_overseas_name": "Canon iR5570/iR6570 Series Encrypted Printing Software-B1 Version 1.01", "expiration_date": "2013-03-01", "claim": "EAL2", "certification_date": "2005-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0027_it4032.html", "toe_japan_name": "Canon iR5570/iR6570 Series Encrypted Printing Software-B1 Version 1.01", "enhanced": { "product": "Canon iR5570/iR6570 Series Encrypted Printing Software-B1", "toe_version": "Version 1.01", "product_type": "IT Product ( data protection function in digital MFD )", "assurance_level": "EAL2", "vendor": "Canon Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION In today's office environments, people create a variety of documents for business purposes using applications on their PC, and those documents are usually printed on a network-connected printing device (e.g., a shared multi-functional peripheral (MFP) or a shared printer). This product encompasses the Canon iR5570/iR6570-series multifunctional peripheral and a Windows-compatible software program to execute print operations, and provides the following functions: - Protect print job data during transmission to a printing device from a user's PC. - Allow print job data to be printed after verifying at the printing device that the same IC card that was used at the PC to start printing is being used." } }, { "cert_id": "JISEC-CC-CRP-C0026", "supplier": "Sharp Corporation", "toe_overseas_name": "AR-FR11 VERSION M.20", "expiration_date": "2013-10-01", "claim": "EAL3", "certification_date": "2005-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0026_it4031.html", "toe_japan_name": "AR-FR11 VERSION M.20", "enhanced": { "product": "AR-FR11", "toe_version": "VERSION M.20", "product_type": "IT Product ( data protection function in Multi Function Device )", "assurance_level": "EAL3", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "target_link": "https://www.ipa.go.jp/en/security/c0026_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0026_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0026_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is a firmware product for a Multi Function Device (hereafter referred as to “MFD”) to reduce the risk that the inside image data be disclosed. The TOE is provided as an upgrade kit for the firmware of the MFD. The TOE offers security functions to counter the threats to image data written into the HDD and the Flash Memory, which are non-volatile mass storage devices inside the MFD. The TOE encrypts image data of the document that each job handles, before the image data are temporarily spooled to the HDD or the Flash Memory when the MFD processes jobs of copy, printer, image-scanning, fax etc., which are the fundamental functions of the MFD. And when each job is completed, the TOE clears the area occupied by the image data, by overwriting. In addition, the TOE offers encryption and password authentication for image data that a user saves into the HDD to reuse later. By these functions, the TOE secures secrecy of the non-volatile image data in the MFD, and counters unauthorized disclosure." } }, { "cert_id": "JISEC-CC-CRP-C0025", "supplier": "Hitachi, Ltd.", "toe_overseas_name": "-----", "expiration_date": "2013-10-01", "claim": "EAL2", "certification_date": "2005-04-01", "toe_overseas_link": null, "toe_japan_name": "Appliporter Security Kit 01-00", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0025_it4022.html", "enhanced": { "product": "Appliporter Security Kit", "toe_version": "01-00", "product_type": "IT Product (Basic software of electronic application)", "assurance_level": "EAL2", "vendor": "Hitachi, Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION \" Appliporter \" is basic software used to construct the electronic application system. That has the function to provide the electronic application system that adds an authentication and integrity of an electronic document using a digital certificate. \" Appliporter Security Kit\" is composed of the function module of the following library/utility that offers the security function in the module that composes \" Appliporter \". - Session management service. - Receipt management service. - Delivery service. - Application operation support service (log management). - Session management service operation management function. - Receipt management service operation management function. - Delivery service operation management function." } }, { "cert_id": "JISEC-CC-CRP-C0024", "supplier": "The Bank of Tokyo-Mitsubishi UFJ,Ltd./ MITSUBISHI ELECTRIC INFORMATION SYSTEMS CORPORATION", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2005-03-01", "toe_overseas_link": null, "toe_japan_name": "CBB business application unit Version 1.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0024_it4036.html", "enhanced": { "product": "CBB business application unit", "toe_version": "Version 1.0", "product_type": "IT product (data protection function in a terminal for banking services)", "assurance_level": "EAL2", "vendor": "The Bank of Tokyo-Mitsubishi UFJ, Ltd. / MITSUBISHI ELECTRIC INFORMATION SYSTEMS CORPORATION", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.", "description": "PRODUCT DESCRIPTION TOE is a unit mounted in the banking terminal \"CBB terminal\" provided a convenience store, and consists of application software and a tamper-resistant security hard ware board \"TURBOMISTY\". By using a CBB terminal, customer can take a banking service at a convenience store without having to visit a bank branch. For providing with these services securely, TOE has several functions as well as application registration, receiving application form and data communication, with a security function to keep a confidentiality of the personal identification number." } }, { "cert_id": "JISEC-CC-CRP-C0023", "supplier": "TOSHIBA TEC CORPORA TION", "toe_overseas_name": "Scrambler Board GP-1031 V2.0", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2005-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0023_it4033.html", "toe_japan_name": "Scrambler Board GP-1031 V2.0", "enhanced": { "product": "Scrambler Board GP-1031", "toe_version": "V2.0", "product_type": "IT product ( Data protection function for the digital copier )", "assurance_level": "EAL2", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology securitycenter (JEITA ITSC)", "cert_link": "https://www.ipa.go.jp/en/security/c0023_eimg.pdf", "description": "PRODUCT DESCRIPTION This optional product is embedded in the digital copier \"e-STUDIO 3511/4511\"manufactured by TOSHIBA TEC CORPORATION. This product protects the remaining image data on the HDD after a function of the e-STUDIO 3511/4511, Copy, Print, Scan, FAX, or deletion of data from the filing box is completed." } }, { "cert_id": "JISEC-CC-CRP-C0022", "supplier": "Sharp Corporation", "toe_overseas_name": "AR-FR12M VERSION M.20", "expiration_date": "2013-10-01", "claim": "EAL3+ ADV_SPM.1", "certification_date": "2005-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0022_it4028.html", "toe_japan_name": "AR-FR12M VERSION M.20", "enhanced": { "product": "AR-FR12M", "toe_version": "VERSION M.20", "product_type": "product (Data protection function inside digital MFD)", "assurance_level": "EAL3 + ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology security center (JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0022_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0022_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0022_eimg.pdf", "description": "PRODUCT DESCRIPTION TOE is a firmware that aims to prevent disclosure of real image data stored temporarily in Mass Storage Device (hereafter referred to as MSD), which are specified for every functional unit configuration of Multi Function Device (hereafter referred to as MFD). TOE is provided as a kit of upgrading firmware of MFD. TOE executes encryption before the real image data are spooled in MSD, when the MFD functions like PCFAX, FAX transmission or FAX receiving are performed. It also clears spool data area in MSD after the jobs like copying, printing, SCAN transmission, PCFAX, FAX transmission or FAX receiving are completed. These encryption function and data erasing function ensure the confidentiality of real image data that are stored temporarily in MSD and counter fraudulent readout of them." } }, { "cert_id": "JISEC-CC-CRP-C0021", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRO 1050P/1050eP control software Image control program (Image control I1) : 70-0000 Controller control program (IP control P1) : 31-0000", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2008-10", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0021_it4030_06.html" } ], "certification_date": "2005-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0021_it4030.html", "toe_japan_name": "bizhub PRO 1050P control software Image control program(Image control I1):11-0000 Controller control program(IP control P1):10-0000", "enhanced": { "product": "Japan : bizhub PRO 1050P zentai seigyo software Overseas: bizhub PRO 1050P control software", "toe_version": "Image control program(Image control I1):11-0000 Controller control program(IP control P1):10-0000", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0021_erpt_2.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0021_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0021_est2.pdf", "description": "PRODUCT DESCRIPTION This product (it is called \"bizhub PRO 1050P control software (*1)\", hereafter.) is the software installed with digital MFP (it is called \"bizhub PRO 1050P series\", hereafter.) manufactured by Konica Minolta Business Technologies, Inc. and for the purpose of reducing the danger to be leaked the document data stored by every user.bizhub PRO 1050P control software prevents the document data from leaking in the function to use printer etc. To protect the document data, this software has \"User BOX\" function and several control capabilities, additionally high-confidential hard disk drive (HDD) with lock system (*2) to store the document.Bizhub PRO 1050P control software is provided with bizhub PRO 1050P series. (*1) \"bizhub PRO 1050P zentai seigyo software\" for Japan and \"bizhub PRO 1050P control software\" are the same product with different calling name. (*2) HDD has the password so that the hard disk cannot be removed and read in another equipment." } }, { "cert_id": "JISEC-CC-CRP-C0020", "supplier": "Canon Inc.", "toe_overseas_name": "Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 1.07", "expiration_date": "2013-10-01", "claim": "EAL2", "revalidations": [ { "date": "2005-07", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0020_it4029_01.html" } ], "certification_date": "2005-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0020_it4029.html", "toe_japan_name": "Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 1.04", "enhanced": { "product": "Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2", "toe_version": "Version 1.04", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL2", "vendor": "Canon Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "report_link": "https://www.ipa.go.jp/en/security/c0020_erpt.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0020_est.pdf", "description": "PRODUCT DESCRIPTION This product is a software program to be installed for use on the Canon iR4570/iR3570/iR2870/iR2270-series multifunction products (hereafter referred to collectively as the “multifunction product”). The multifunction product is an office machine with the combined functionality of copying, sending (Universal Send), fax reception, Mail Box, printing, and so forth. When the copying, sending (Universal Send), fax reception (fax/I-fax reception) or printing function is used, temporary image data is created on the hard drive of the multifunction product. Also, when the Mail Box function is used (for document storage) or the fax reception function is used (for “in-memory reception” of faxes/I-faxes or forwarding of faxes/I-faxes), image data is stored in a specified inbox on the multifunction product. By installing this product, security enhancements are added to the multifunction product, helping counter the threat of disclosure of temporary image data on the hard drive and image data in the inboxes." } }, { "cert_id": "JISEC-CC-CRP-C0019", "supplier": "Konica Minolta Business Technologies, Inc.", "toe_overseas_name": "bizhub PRO 1050/1050e control software Image control program (Image control I1) : 70-0000 Controller control program (IP control P1) : 31-0000", "expiration_date": "2013-10-01", "claim": "EAL3", "revalidations": [ { "date": "2008-10", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0019_it4027_06.html" } ], "certification_date": "2005-02-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0019_it4027.html", "toe_japan_name": "bizhub PRO 1050 control software Image control program(Image control I1):11-0000 Controller control program(IP control P1):10-0000", "enhanced": { "product": "Japan: bizhub PRO 1050 zentai seigyo software Overseas: bizhub PRO 1050 control software", "toe_version": "Image control program(Image control I1):11-0000 Controller control program(IP control P1):10-0000", "product_type": "IT Product (data protection function in digital MFD)", "cc_version": "2.1", "assurance_level": "EAL3", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0019_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0019_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0019_est2.pdf", "description": "PRODUCT DESCRIPTION This product (it is called \"bizhub PRO 1050 control software (*1)\", hereafter.) is the software installed with digital MFP (it is called \"bizhub PRO 1050 series\", hereafter.) manufactured by Konica Minolta Business Technologies, Inc. and for the purpose of reducing the danger to be leaked the document data stored by every user.Bizhub PRO 1050 control software prevents the document data from leaking in the function to use copier and printer etc. To protect the document data, this software has \"User BOX\" function and several control capabilities, additionally high-confidential hard disk drive (HDD) with lock system (*2) to store the document.Bizhub PRO 1050 control software is provided with bizhub PRO 1050 series. (*1) \"bizhub PRO 1050 zentai seigyo software\" for Japan and \"bizhub PRO 1050 control software\" are the same product with different calling name. (*2) HDD has the password so that the hard disk cannot be removed and read in another equipment." } }, { "cert_id": "JISEC-CC-CRP-C0018", "supplier": "Sharp Corporation", "toe_overseas_name": "Data Security Kit AR-FR4, Data Security Kit AR-FR5 AR-FR4: version M.21 AR-FR5: version E.21", "expiration_date": "2013-03-01", "claim": "EAL4", "revalidations": [ { "date": "2005-03", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0018_it4026_01.html" } ], "certification_date": "2004-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0018_it4026.html", "toe_japan_name": "Data Security Kit AR-FR4, Data Security Kit AR-FR5 AR-FR4: version M.20 AR-FR5: version E.20", "enhanced": { "product": "Data Security Kit AR-FR4, Data Security Kit AR-FR5", "toe_version": "AR-FR4: version M.20 AR-FR5: version E.20", "product_type": "IT product (Data protection function inside digital MFD)", "assurance_level": "EAL4", "protection_profile": "N/A", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security", "target_link": "https://www.ipa.go.jp/en/security/c0018_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0018_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0018_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is a firmware intended to reduce the danger against the disclosure of document data and image data that are temporarily spooled in the Multi-Function Device (hereafter referred to as “MFD”). TOE is offered as an upgraded kit for firmware of the MFD. The TOE provides security function to counter the threat against document data and image data that are temporarily spooled in the Mass Storage Device ( hereafter referred to as MSD) which is defined for each configuration of the functional unit in M FD. When MFD executes basic function as copy, print, Fax or image scanning, MFD executes data encryption before spooling document image data in MSD. Moreover MFD erases image data in MSD automatically after finishing copy, print, Fax or image scanning jobs or at the time of power-on. As a result, MFD keeps high confidentiality of the document/ image data in MSD, and it opposes fraudulent disclosure." } }, { "cert_id": "JISEC-CC-CRP-C0017", "supplier": "Konica Minolta Business Technologies,Inc.", "toe_overseas_name": "# 4036 Multi Function Peripheral Control Software (for bizhub C350/CF2203/8022) (Macro System Controller : 4036-10G0-18-00 Network Module : 4036-A0G0-04-00)", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2004-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0017_it4025.html", "toe_japan_name": "# 4036 Multi Function Peripheral Control Software (for bizhub C350/CF2203/8022) (Macro System Controller : 4036-10G0-18-00 Network Module : 4036-A0G0-04-00)", "enhanced": { "product": "# 4036 Multi Function Peripheral Control Software (for bizhub C350/CF2203/8022)", "toe_version": "Macro System Controller : 4036-10G0-18-00 Network Module : 4036-A0G0-04-00", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "protection_profile": "Not available", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "report_link": "https://www.ipa.go.jp/en/security/c0017_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0017_eimg.pdf", "target_link": "https://www.ipa.go.jp/en/security/c0017_est.pdf", "description": "PRODUCT DESCRIPTION #4036 Multi Function Peripheral (MFP) is the digital MFD which is composed by selecting and combining each function such as copy, print, scan and FAX. This TOE consists of \"Macro System Controller\" which is the software component carrying out the operation control processing from the MFP operation panel, job resource management and job sequence control processing, and \"Network Module\" which is the software component carrying out the operation control processing from a client PC in the control software of MFP. This security function protects the high confidential document data that is spooled in MFP from exposing by using the following specific function. That specific function is as follows. - Locked Print Function - Box Function - Memory Recall Off Copy Function * Japan: #4036 Multi Function Peripheral Zentai Seigyo Software, Aboard:#4036 Multi Function Peripheral Control Software are the same products with different name. * [#4036 Multi Function Peripheral] is presented to a consumer as marketing product name [bizhubC350], [CF2203], [8022] ." } }, { "cert_id": "JISEC-CC-CRP-C0016", "supplier": "Fuji Xerox Co.,Ltd", "toe_overseas_name": "Fuji Xerox DocuCentre 719/659/559 Series Data Security Kit DC System ROM Version V516 PESS ROM Version V3.0.6", "expiration_date": "2011-01-01", "claim": "EAL2", "revalidations": [ { "date": "2006-01", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0016_it3017_01.html" } ], "certification_date": "2004-09-01", "toe_overseas_link": null, "toe_japan_name": "Fuji Xerox DocuCentre 719/659/559 Series Data Security Kit DC System ROM Version V512 PESS ROM Version V3.0.4", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0016_it3017.html", "enhanced": { "product": "Fuji Xerox DocuCentre 719/659/559 Series Data Security Kit", "toe_version": "DC System ROM Version V512 PESS ROM Version V3.0.4", "product_type": "IT Product (data protection function in digital Copier)", "assurance_level": "EAL2", "protection_profile": "Not available", "vendor": "Fuji Xerox Co., Ltd.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0016_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0016_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0016_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE is an option for DocuCentre 719/659/559 Series digital multifunction device with copy, print and scan. Data security kit is a firmware for digital multifunction device protecting the residual document data in HDD from iniquity disclosure after scan, copy and print. This TOE has the following security functions. - HDD overwrite function for copy residual data. - HDD overwrite function for print and scan residual data. - Data encryption function for print and scan." } }, { "cert_id": "JISEC-CC-CRP-C0014", "supplier": "Hitachi Software Engineering Co.,Ltd.", "toe_overseas_name": "Smart Folder PKI MULTOS application 03-06", "expiration_date": "2011-01-01", "claim": "EAL4", "certification_date": "2004-09-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0014_it3007.html", "toe_japan_name": "Smart Folder PKI MULTOS application 03-06", "enhanced": { "product": "Smart Folder PKI MULTOS application", "toe_version": "03-06", "product_type": "IT Product (Smart card Application Software)", "assurance_level": "EAL4", "vendor": "Hitachi Software Engineering Co., Ltd.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION TOE is the application which is installed in a smartcard. TOE is the application to store PKI keys and digital certificates in a MULTOS smartcard securely. TOE is delivered to Issuer, the first user, as installed in MULTOS smartcard with \"Issuer Tool,\" \"Administrator Tool,\" and \"User Tool\". Issuer sets PINs and initial keys for Administrator and User respectively by the \"Issuer Tool\". Also Issuer sets the shortest PIN length, the longest PIN length, and allows able number of an input error, and then issues the MULTOS smartcard. User can make digital signature and decrypt data encrypted by the PKI key or the digital certificate that is stored in MULTOS smartcard when User uses other application after authentication by the PIN. Also User can change his/her own PKI key by \"User Tool\" after authentication by PIN. Administrator can unlock the MULTOS smartcard that has been locked by exceeded number of input error by \"Administrator Tool\". Also Administrator can initialize unused MULTOS smartcard by \"Administrator Tool\"." } }, { "cert_id": "JISEC-CC-CRP-C0012", "supplier": "Canon Marketing Japan Inc.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL1", "certification_date": "2004-08-01", "toe_overseas_link": null, "toe_japan_name": "SeL v1 rev 01", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0012_it3016.html", "enhanced": { "product": "SeL v1", "toe_version": "rev 01", "product_type": "IT product (Launcher Software)", "assurance_level": "EAL1", "vendor": "Canon Marketing Japan Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc. Evaluation Center", "description": "PRODUCT DESCRIPTION The TOE is a software program to be installed on a Windows-based PC for controlling and restricting the launch of other Windows applications installed on the same computer. Not every Windows application has the capability to prevent unauthorized launch and unauthorized data access and alteration. This software program prevents unauthorized use of Windows applications that are registered with it by users without registered accounts." } }, { "cert_id": "JISEC-CC-CRP-C0011", "supplier": "Konica Minolta business technologies,inc.", "toe_overseas_name": "Di3510 Series/Di3510f Series Multi Function Peripheral Security Kit (User Interface : 4030-20G0-05-00 Network Module : 4030-A0G0-03-00)", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2004-08-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0011_it4021.html", "toe_japan_name": "Di3510 shirizu / Di3510f shirizu Multi Function Peripheral Security Kit (User Interface : 4030-20G0-05-00 Network Module : 4030-A0G0-03-00)", "enhanced": { "product": "Japan :Di3510 shirizu / Di3510f shirizu Multi Function Peripheral Security Kit Abroad:Di3510 Series/Di3510f Series Multi Function Peripheral Security Kit", "toe_version": "User Interface : 4030-20G0-05-00 Network Module : 4030-A0G0-03-00", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "protection_profile": "Not available", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0011_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0011_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0011_eimg.pdf", "description": "PRODUCT DESCRIPTION Multi Function Peripheral (MFP) is IT machine for office work which is composed by selecting and combining each function such as copy, print, scan, FAX. This TOE* consists of \"User Interface\" and \"Network Module\" which are the software components carrying out the operation control processing, from the operation panel and a client PC in the control software of Di3510 series/Di3510f series MFP. This security function protects the high confidential document data that is spooled in MFP from exposing by using the specific function. That specific function is the Locked Print function which accepts printing only when the set-up password and input password from the panel are matched and the User Box function which controls the access to the user box. * Japan: Di3510 shirizu/ Di3510f shirizu Multi Function Peripheral Security Kit, Aboard:Di3510 Series/Di3510f Series Multi Function Peripheral Security Kit are the same products with different name." } }, { "cert_id": "JISEC-CC-CRP-C0010", "supplier": "Canon Inc.", "toe_overseas_name": "EOS-1D Mark II N firmware Ver.1.0.1A", "expiration_date": "2011-07-01", "claim": "EAL2+ ALC_DVS.1", "revalidations": [ { "date": "2005-11", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0010_it4023_02.html" } ], "certification_date": "2004-08-01", "toe_overseas_link": null, "toe_japan_name": "EOS-1D Mark II firmware Ver.1.0.1", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0010_it4023.html", "enhanced": { "product": "EOS-1D Mark II firmware Ver.1.0.1", "product_type": "IT product (Embedded software)", "assurance_level": "EAL2+ALC_DVS.1", "vendor": "Canon Inc.", "evaluation_facility": "Electronic Commerce Security Technology Laboratory Inc.Evaluation Center", "description": "PRODUCT DESCRIPTION The product is EOS-1D Mark II digital camera in which the firmware of the digital camera (TOE) was included. Unlike the conventional 35mm film photos, the photos taken by the digital camera have various merits. For example, the photos taken by digital camera do not require development and printing, these photos do no have secular degradation, and these photos are easy to store, search and transmit. On the other hand, because of digitized photos, there are some demerits that digitized photos have the feature that processing and alteration can be easily performed using photo retouch tools. In using the photos taken by the digital camera as the evidence, the integrity of the photos is becoming a big issue. The firmware which is TOE provides the function that generate the verification data, which verify the integrity of the photos taken by EOS-1D Mark II. Please refer to \"EOS-1D Mark II\" on the following URLs for detail information about the product. (English) http://www.canon.co.jp/Imaging/BeBit-e.html" } }, { "cert_id": "JISEC-CC-CRP-C0008", "supplier": "Konica Minolta business technologies,inc.", "toe_overseas_name": "7222/7228/7235 control software Version 11.0000", "expiration_date": "2011-01-01", "claim": "EAL3", "revalidations": [ { "date": "2004-12", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0008_it4024_01.html" } ], "certification_date": "2004-06-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0008_it4024.html", "toe_japan_name": "7222/7228/7235 control software Version 10.0000", "enhanced": { "product": "Japan : 7222/7322/7228/7235 zentai seigyo software Abroad: 7222/7228/7235 control software", "toe_version": "10.0000", "product_type": "IT Product (data protection function in digital MFD)", "assurance_level": "EAL3", "protection_profile": "Not available", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0008_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0008_erpt.pdf", "description": "PRODUCT DESCRIPTION This product ( Japan : ”7222/7322/7228/7235 zentai seigyo software”, Abroad : ”7222/7228/7235 control software” are the same product that is only called by different name. The foreign name does not include 7322, because 7322 does not made for abroad. ) is the software product, that is carried in Konica Minolta Business Technologies, Inc. Digital MFP(7 kinds of loading products series of 7222 series in Japan, 7222 series, 7322 series in Japan, 7228 series in Japan, 7228 series, 7235series in Japan, 7235series ) and aiming at reducing the danger for leakage and deletion of the document data saved for every user. “7222/7322/7228/7235 zentai seigyo software” has function making use of copy/print/FAX etc.(Copy function, Print function, FAX function, Scan to FTP function, Scan to Email function, Scan to PC(SMB) function, PC-FAX preservation function, i-FAX function)." } }, { "cert_id": "JISEC-CC-CRP-C0007", "supplier": "Konica Minolta business technologies,inc.", "toe_overseas_name": "7145 control software25.000", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2004-03-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0007_it4020.html", "toe_japan_name": "7145 control software25.000", "enhanced": { "product": "Japan: 7145 zentai seigyo software 25.0000 Abroad: 7145 control software 25.0000", "product_type": "IT Product (data protection function in digital MFD )", "assurance_level": "EAL3", "protection_profile": "Not available", "vendor": "Konica Minolta Business Technologies, Inc.", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center(JEITA ITSC)", "target_link": "https://www.ipa.go.jp/en/security/c0007_est.pdf", "report_link": "https://www.ipa.go.jp/en/security/c0007_erpt.pdf", "cert_link": "https://www.ipa.go.jp/en/security/c0007_eimg.pdf", "description": "PRODUCT DESCRIPTION This product (Japan : \"7145 zentai seigyo software\", Abroad : \"7145 control software\" are the same product that is only called by different name. Hereafter, it is called\"7145 zentai seigyo software\" is the software product, that is carried in Konica Minolta Business Technologies, Inc. Digital MFP (Sitios 7145 series. Hereafter, it is called \"7145 series\") and aiming at reducing the danger for leakage and deletion of the document data saved for every user. \"7145 zentai seigyo software\" has function making use of copy/print/FAX etc. (Copy function, FAX function, Scan to Email function, PC-FAX preservation function, i-FAX function). \"7145 zentai seigyo software\" is offered by carried in 7145 series." } }, { "cert_id": "JISEC-CC-CRP-C0006", "supplier": "Sharp Corporation", "toe_overseas_name": "Data security kit for digital MFD:AR-FR10 Version S.11", "expiration_date": "2013-03-01", "claim": "EAL3+ ADV_SPM.1", "revalidations": [ { "date": "2004-11", "link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0006_it4019_01.html" } ], "certification_date": "2004-03-01", "toe_overseas_link": null, "toe_japan_name": "Data security kit for digital MFD:AR-FR10 Version S.10", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0006_it4019.html", "enhanced": { "product": "Data security kit for digital MFD: AR-FR10", "toe_version": "Version S.10", "product_type": "IT product (Data protection function inside digital MFD)", "assurance_level": "EAL3+ADV_SPM.1", "vendor": "Sharp Corporation", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)", "description": "PRODUCT DESCRIPTION The data security kit for digital MFD(Multi-Function Device), AR-FR10 Version M.20 is firmware which aims to decrease the risk of image data that is temporarily stored inside of digital MFD from being disclosed. Digital MFD is business equipment that can be configured by COPY and FAX functions. The data security kit for digital MFD is provided as an upgrading kit for the firmware of the MFD." } }, { "cert_id": "JISEC-CC-CRP-C0005", "supplier": "TOSHIBA TEC CORPORATION", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL2", "certification_date": "2004-03-01", "toe_overseas_link": null, "toe_japan_name": "Scrambler-board GP-1010 V2.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0005_it3018.html", "enhanced": { "product": "Scrambler Board GP-1010 V2.0 for the e-STUDIO 550/650/810", "product_type": "IT Product (Data protection function for the digital copier )", "assurance_level": "EAL2", "vendor": "TOSHIBA TEC CORPORATION", "evaluation_facility": "Japan Electronics and Information Technology Industries Association, Information Technology securitycenter (JEITA ITSC)", "cert_link": "https://www.ipa.go.jp/en/security/c0005_eimg.pdf", "description": "PRODUCT DESCRIPTION The TOE includes a single piece of hardware which encrypts/decrypts image data (hereinafter called \"the Scrambler Board\"). The Scramble Board is used for mitigating risks that image data, which remains in a digital copier after a copy is made on a sheet of paper (hereinafter called \"the User's Residual Document Data\"), may by disclosed. The TOE also includes software which has two functions: one function encrypts image data of paper document when the image data is converted into an electronic form, and the other function clears entire actual data area where the image data, written on a HDD, exists. The TOE is an optional function to Toshiba TEC Corporation's digital copier, \"e-STUDIO 550/650/810\"." } }, { "cert_id": "JISEC-CC-CRP-C0004", "supplier": "Sharp Corporation", "toe_overseas_name": "Data security kit for digital MFD:AR-FR4 version M.20,AR-FR5 version E.20", "expiration_date": "2013-03-01", "claim": "EAL4", "certification_date": "2004-01-01", "toe_overseas_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0004_it2005.html", "toe_japan_name": "Data security kit for digital MFD:AR-FR4 version M.20,AR-FR5 version E.20", "enhanced": { "product": "Data security kit for digital MFD: AR-FR4 version M.20, AR-FR5 version E.20", "product_type": "IT product (digital MFD )", "assurance_level": "EAL4", "protection_profile": "N/A", "vendor": "Sharp Corporation", "evaluation_facility": "Mizuho Information & Research Institute, Inc.", "description": "PRODUCT DESCRIPTION The data security kit for digital MFD, AR-FR4 version M.20 and AR-FR5 version E.20, is firmware which aims to decrease the risk of document data and image data that is temporarily stored inside of digital MFD from being dosclosed. Digital MFD is business equipment which can be configured by adding, as needed units for copy, image scanning or facsimile functions to printer function unit. The data security kit for digital MFD is provided as an upgrading kit for the firmware of hte MFD." } }, { "cert_id": "JISEC-CC-CRP-C0003", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL4", "certification_date": "2003-11-01", "toe_overseas_link": null, "toe_japan_name": "Symfoware Server Enterprise extended Edtion 4.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0003_it2004.html", "enhanced": { "product": "Symfoware Server Enterprise extended Edition 4.0", "product_type": "IT product (Database Management Product)", "assurance_level": "EAL4", "vendor": "Fujitsu Limited", "evaluation_facility": "JEITA IT Security Center", "description": "PRODUCT DESCRIPTION Symfoware Server is Fujitsu's relational database management system designed for enterprise business. Symfoware Server processes huge data speedily during user's working and also user can use it effectively for their own business style. Using SQL language, user is able to define the data structure, and access to the structured data. Symforeware Server runs on Solaris 7." } }, { "cert_id": "JISEC-CC-CRP-C0002", "supplier": "Fujitsu Limited", "toe_overseas_name": "-----", "expiration_date": "2013-03-01", "claim": "EAL3", "certification_date": "2002-12-01", "toe_overseas_link": null, "toe_japan_name": "INTERSTAGE Security Director 4.0", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0002_it2003.html", "enhanced": { "product": "INTERSTAGE Security Director 4.0", "product_type": "IT product (Firewall)", "assurance_level": "EAL3", "vendor": "Fujitsu Limited", "evaluation_facility": "JEITA IT Security Center", "description": "PRODUCT DESCRIPTION The TOE is a software product to configure a firewall on Solaris Operating Environment. The TOE operates on servers located at the boundary point of multiple networks, and transfers or discards packets which go through the TOE, according to the pre-configured filtering conditions (IP addresses, port numbers, protocols, packet directions, network interfaces, and their combinations). In addition, the TOE translates IP address and port number of the packets which go though the TOE, according to the pre-configured address translating conditions. The TOE is able to collect logs related to the pre-specified events, and is able to send alarm notifications by SNMP or mail. The TOE is used for the purpose of restricting accesses from external networks into internal networks, and hiding address structure of internal networks when communicating to external networks." } }, { "cert_id": "JISEC-CC-CRP-C0001", "supplier": "Ricoh Co.,Ltd.", "toe_overseas_name": "-----", "expiration_date": "2011-01-01", "claim": "EAL3", "certification_date": "2002-12-01", "toe_overseas_link": null, "toe_japan_name": "Trusty Cabinet UX V1 Version V1.01(Server Software)", "toe_japan_link": "https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0001_it2001.html", "enhanced": { "product": "Trusty Cabinet UX V1 Version 1.01 (Server Software)", "product_type": "IT Product (Electronic Document Storage System)", "assurance_level": "EAL3", "protection_profile": "No PP compliance", "vendor": "Ricoh Company, Ltd.", "evaluation_facility": "ECSEC Laboratory", "description": "PRODUCT DESCRIPTION The TOE is server software of secure electronic document storage system Trusty Cabinet UX V1 consists of server software, client software and utilities. The client software and the utilities are out of the TOE. The server system including the TOE, underlying operating environment and hardware is called TCAB (abbreviation of Trusty Cabinet). The TCAB is typically used in an intranet of a corporation or a government and provides functions for securely storing and managing electronic documents as evidence. The TCAB manages revision history of stored documents and protects the documents including their revision history from unauthorized modifications by using cryptographic techniques. To store the documents for a long term, the TCAB has a capability to write-out the documents to off-line discs. The TCAB also has a capability to transfer the stored documents to another TCAB via the network. End-users generally access to a business processing system, which typically consists of web server software and application server software, from end-users' terminals. The TCAB occupies a position of the backend of the business processing systems and provides the following functions to them: - store documents, - read documents, - transfer documents to other systems, - write out documents onto off-line discs, - create duplicates, - revise documents, - delete documents, - audit, - system backup, and - account management." } } ] } }, "MY": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "MY", "timestamp": "2026-03-30T12:11:07.576276", "lists": { "CERTIFIED": [ { "cert_no": "2026-001-C141", "developer": "Infosys Gateway", "level": "EAL1", "product": "Meja Bulat Version 5.15.3", "certification_date": "2026-03-24", "expiration_date": "2031-03-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/434", "enhanced": { "developer": "Suite 3.02B Level 3South Wing Menara OBYUNo 4 Jalan PJU8/8A, Damansara Perdana47820 Petaling Jaya, Selangor info@infosysgateway.com.my03-7732 9900", "status": "Valid", "scope": "The TOE is Meja Bulat Version 5.15.3, is a secure meeting platform that provides protected end-to-end encryption. The TOE is designed with various security features and protocols to protect against unauthorized access, eavesdropping, data breaches, and other security threats. Among the features offered by the TOE are: Audio/Video conferencing Screen sharing Chat and messaging Recording and virtual backgrounds Participant management", "cert_id": "C141", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "Meja Bulat Version 5.15.3", "certification_date": "2026-03-24", "expiration_date": "2031-03-24", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C141/Meja_Bulat_V5.15.3_Security_Target_v1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C141/ISCB-5-RPT-C141-CR-v1.pdf", "type": "Other Devices and Systems - Secure online meeting platform" } }, { "cert_no": "2025-004-C136", "developer": "HumanCard Technology Sdn. Bhd.", "level": "EAL1", "product": "HumanCard Ver 3.1", "certification_date": "2025-08-07", "expiration_date": "2030-08-07", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/430", "enhanced": { "developer": "HumanCard Technology Sdn Bhd 14 Jalan TPK 1/6 Taman Perindustrian Kinrara 47100 Puchong, Selangor Phone: 0149331617 Email: jeet@humancard.co Website: https://humancard.co", "status": "Valid", "scope": "HumanCard as the Target of Evaluation (TOE) is a modernized business card with digitalisation capabilities that equipped with contactless smart card technology, which is NFC that allows the custodian of the card to shared information of their credentials through NFC contactless reading via mobile phone(s) with NFC reader feature. HumanCard is a modernised smart card with embedded NFC chip that allows TOE User to scan the card via mobile phone through NFC reader or scanning the surface of the card that printed with unique QR code, in which both interfaces linked to the personalised website containing information and credentials of the TOE User as the card custodian.", "cert_id": "C136", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "assurance_level": "EAL1", "product": "HumanCard Ver 3.1", "certification_date": "2025-08-07", "expiration_date": "2030-08-07", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C136/2025-06-11-EAL1-HUMANCARD-ST-1.3.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C136/ISCB-5-RPT-C136-CR-v1.pdf", "type": "ICs, Smart Cards and Smart Card related Devices and Systems" } }, { "cert_no": "2025-003-C140", "developer": "Trend Micro Inc.", "level": "EAL2", "product": "Trend Micro TippingPoint Threat Protection System (TPS) v6.4.0", "certification_date": "2025-06-16", "expiration_date": "2030-06-16", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/429", "enhanced": { "developer": "11305 Alterra ParkwayAustin, Texas 78758, USA Phone: (512) 646-6100Website: https://www.trendmicro.com/en_us/contact.html", "status": "Valid", "scope": "The TippingPoint Threat Protection System v6.4.0 is a network device provided as a standalone hardware or virtual appliance. The appliances include the TPS v6.4.0 software. The TOE provides intrusion prevention services including monitoring, collection, inspection, analyzation, and reaction capabilities applied to network traffic in real-time. The TOE reconstructs and inspects flow payloads by parsing the traffic at the application layer. As each new packet of the traffic flow arrives, the engine re-evaluates the traffic for malicious content.", "cert_id": "C140", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Trend Micro TippingPoint Threat Protection System (TPS) v6.4.0", "certification_date": "2025-06-16", "expiration_date": "2030-06-16", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C140/Trend_Micro_TPS_EAL2_6.4.0_ST_v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C140/ISCB-5-RPT-C140-CR-v1.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2025-002-C134", "developer": "Pepperl+Fuchs SE", "level": "EAL2", "product": "Smart-Ex 03", "certification_date": "2025-03-07", "expiration_date": "2030-03-07", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/417", "enhanced": { "developer": "Lilienthalstraße 20068307 MannheimGermanyTel: +49 621 776 - 0Website: https://www.pepperl-fuchs.com", "status": "Valid", "scope": "Smart-Ex 03 smartphone is a mobile phone designed and developed by Pepperl+Fuchs SE. The product is designed to be used in explosion hazardous locations and for heavy duty use in industrial environments. Smart-Ex 03 smartphone (herein after referred to as “Target of Evaluation” (TOE)) runs an Android OS. The TOE features a complex design of safety capabilities. Besides its intrinsically safe electronic design, embedded sensors inside the smartphone monitor thermal incidents that may impact the smartphone integrity. The scope of evaluation covers the smart battery sensors, physical protection of the device (smartphone casing and its sensor), TOE mobile applications, evaluated configuration of Android OS and evaluated configuration of the hardware components operated within the device. The scope of evaluation had excluded the following. User interface components which consist of capacitive touch display and hardware buttons Mobile applications installed by TOE user and that are not pre-installed by TOE Developer. Smartphone accessories including the protective case (Ex-protection) and peripherals.", "cert_id": "C134", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Smart-Ex 03", "certification_date": "2025-03-07", "expiration_date": "2030-03-07", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C134/EAL2-EE_ECOMS-SMARTEX03-ST-v1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C134/ISCB-5-RPT-C134-CR-v1_.pdf", "type": "Mobility" } }, { "cert_no": "2025-001-C135", "developer": "Advanced Product Design Sdn Bhd", "level": "EAL2", "product": "Vidcall Version 8.2", "certification_date": "2025-03-07", "expiration_date": "2030-03-07", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/416", "enhanced": { "developer": "No.209, Jalan Impian Emas 22Taman Impian Emas81300, Skudai, JohorPhone: +60127709510Email: marketing@biocryptodisk.comWebsite: https://1dataonline.com/home/homepage", "status": "Valid", "scope": "The TOE is Vidcall Version 8.2. The TOE is a web and software application designed to facilitate virtual meetings, conferences, chat and messaging and collaborations while prioritizing the protection of sensitive information and the privacy of participants. The TOE enables individuals or groups to connect and interact in real-time, regardless of their physical locations.The TOE provides security functionality such as Security Audit, Cryptographic Support, Identification and Authentication and Secure Communication.", "cert_id": "C135", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Vidcall Version 8.2", "certification_date": "2025-03-07", "expiration_date": "2030-03-07", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C135/Vidcall_V8.2_Security_Target_v1.2.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C135/ISCB-5-RPT-C135-CR-V1.pdf", "type": "Other Devices and Systems : Digital Trusted Communication Platform With Post Quantum Cryptography" } }, { "cert_no": "2024-006-C137", "developer": "Pradotec Sales and Services Sdn Bhd", "level": "EAL1", "product": "Pradotec Biocard V1.0", "certification_date": "2024-11-07", "expiration_date": "2029-11-07", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/415", "enhanced": { "developer": "2-20-12, Kompleks Hijauan Desa,No. 85 Jalan Desa Bakti,58000 WP Kuala LumpurPhone: 0123060483Email: michelle.lee@pradotec-global.com Website: www.pradotec-global.com", "status": "Valid", "scope": "The TOE is designed by Pradotec Sales & Services Sdn Bhd, serves as a wired biometric smart card reader, specifically crafted to cater to the verification needs of Malaysian Identity Cards (MyKad, MyKid, MyTentera, MyPolis and MyPR cards). However, MyKid card does not have stored fingerprint templates and thus it is unable to undergo fingerprint verification. This device aims to streamline over-the-counter biometric processes, offering a seamless user experience and robust security measures.This product was developed with the main purpose to provide a secure and efficient solution for Malaysian Identity Cards verification. The TOE designed as an efficient and secure smart card reader with integrated biometric capabilities, comprises several essential components that work together to facilitate Malaysian Identity Card verification processes.The key components of the TOE:1. Pradotec BioCard Hardware Device (PRADOTECBIOCARD-DEVICE) 2. Pradotec BioCard Web Based SDK (PRADOTECBIOCARD-SDK)", "cert_id": "C137", "category": "Biometric Devices and Systems", "assurance_level": "EAL1", "product": "Pradotec Biocard V1.0", "certification_date": "2024-11-07", "expiration_date": "2029-11-07", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C137/PRADOTECBIOCARD_Security_Target-1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C137/ISCB-5-RPT-C137-CR-v1a.pdf", "type": "Biometric Devices and Systems" } }, { "cert_no": "2024-005-C138", "developer": "Cohesity", "level": "EAL2+ ALC_FLR.1", "product": "Cohesity DataProtect Version 7.1.2", "certification_date": "2024-09-25", "expiration_date": "2029-09-25", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/414", "enhanced": { "developer": "300 Park Ave UNIT 1700, San Jose, CA 95110 Phone: 1-855-214-3133Website: https://www.cohesity.com/contact/", "status": "Valid", "scope": "The TOE is Cohesity DataProtect Version 7.1.2 (or collectively simply as “Cohesity”), a software suite that is used to hyperconverged secondary storage workloads (i.e., enterprise data backups) into a single managed backup solution, which may be distributed across multiple distributed appliances. The intent of this product is to simplify the infrastructure and resources used to administer data backup and recovery functions across an enterprise. The TOE natively supports backups for various virtual machines, databases, and network-attached storage (NAS) devices. The TOE also interfaces natively with various cloud service providers for long-term archival and retention of backup data. Backup data stored by the TOE is protected against unauthorized modification and disclosure using symmetric encryption. The TOE provides a role-based access control policy for accessing stored data and administrative functionality.", "cert_id": "C138", "category": "Data Protection", "assurance_level": "EAL2+ ALC_FLR.1", "product": "Cohesity DataProtect Version 7.1.2", "certification_date": "2024-09-25", "expiration_date": "2029-09-25", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C138/Cohesity_ST_073124_v1.8.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C138/ISCB-5-RPT-C138-CR-v1.pdf", "type": "Data Protection - Administer data backup and recovery functions across an enterprise" } }, { "cert_no": "2024-004-C132", "developer": "Agiletech Systems (M) Sdn. Bhd.", "level": "EAL1", "product": "UNIBOX 2.0 v1.0", "certification_date": "2024-06-27", "expiration_date": "2029-06-27", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/178", "enhanced": { "developer": "A-04-03, Tamarind SquarePersiaran Multimedia Cyber 10 63000 CyberjayaSelangor, Malaysia", "status": "Valid", "scope": "The TOE is a secure payment platform which was developed to provide an authorised and secure payment channel for merchants to connect with payment providers. The services provided by the TOE include transaction initiation, initiate refunds, payment status inquiries, etc. The brand name of the TOE is “UniPin”, while the TOE name is “UNIBOX 2.0”. The name “UniPin” is understood by the market as the solution provider, hence it’s portrayed on the TOE.", "cert_id": "C132", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "UNIBOX 2.0 v1.0", "certification_date": "2024-06-27", "expiration_date": "2029-06-27", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C132/AT-001_Agiletech_Systems_M_UNIBOX_2.0_v1.0_Security_Target_v1.14.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C132/ISCB-5-RPT-C132-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2024-003-C133", "developer": "Trend Micro Incorporated.", "level": "EAL2", "product": "Trend Micro TippingPoint Security Management System (SMS) v6.2.0", "certification_date": "2024-05-03", "expiration_date": "2029-05-03", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/171", "enhanced": { "developer": "11305 Alterra ParkwayAustin, TX 78758Phone: +1 (817) 569-8900Toll-free: (888) 762-8736https://www.trendmicro.com/en_za/contact.html", "status": "Valid", "scope": "The TOE provides centralized control for managing large-scale deployments of the following TippingPoint products: TippingPoint NX Series Next-Generation Intrusion Prevention System (IPS)—uses a combination of technologies, including deep packet inspection, threat reputation, and advanced malware analysis, on a flow-by-flow basis to detect and prevent attacks on the network. TippingPoint Threat Protection System (TPS)—a network security platform that offers comprehensive threat protection, shielding network vulnerabilities, blocking exploits, and defending against known and zero-day attacks. The TOE also provides capabilities for communicating threat data with TippingPoint Deep Discovery (DD) devices. TippingPoint DD is a threat protection platform providing capabilities to detect, analyze and respond to network-based attacks.", "cert_id": "C133", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Trend Micro TippingPoint Security Management System (SMS) v6.2.0", "certification_date": "2024-05-03", "expiration_date": "2029-05-03", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C133/Trend_Micro_SMS_6.2.0_ST-v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C133/ISCB-5-RPT-C133-CR-v1.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2024-002-C130", "developer": "Chelpis Quantum Tech Co. Ltd.", "level": "EAL1", "product": "PQTunnel v1.1.5", "certification_date": "2024-03-13", "expiration_date": "2029-03-13", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/170", "enhanced": { "developer": "4F., No. 200, Sec. 2, Jinshan S. Rd.,Da’an Dist.,Taipei City 106,Taiwan (R.O.C).Tel: +886 2 7750 7057https://www.chelpis.com", "status": "Valid", "scope": "The Target of Evaluation (TOE) is PQTunnel v1.1.5. This software application represent a next-generation Virtual Private Network (VPN) provides end-to-end secure tunnelling channels that are resistant to quantum attacks from the user’s device to respective backend resources.The TOE provides protection of data in transit across shared or public network.Compared to traditional VPNs, the TOE utilizes National Institute of Standards and Technology (NIST) PQC-KEM (Post Quantum Cryptographic Key Encapsulation Mechanism) to assist in establishing a shared secret between two endpoints. This approach effectively protects against quantum computer attacks. Moreover, the TOE prevent security incidents such as lateral movement through zero trust architecture and provide virtual IPs for each backend resources. The TOE can also limit the exposure in case of security exploitations due to the micro-segmentation of the backend resources and multi-layered identity authentication.", "cert_id": "C130", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL1", "product": "PQTunnel v1.1.5", "certification_date": "2024-03-13", "expiration_date": "2029-03-13", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C130/Chelpis_PQTunnel_v1.1.5_Security_Target_v1.9.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C130/ISCB-5-RPT-C130-CR-v1a.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2024-001-C129", "developer": "SecIron (Malaysia) Sdn. Bhd. (201801025495 (1287515-T))", "level": "EAL2", "product": "SECIRON - Android mobile Application Hardening Sandbox Module (AMAHSM) version: 7.0", "certification_date": "2024-02-06", "expiration_date": "2029-02-06", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/169", "enhanced": { "developer": "Unit 704, Uptown One, No. 1, Jalan SS21/58, Damansara Uptown, 47400 Petaling Jaya, SelangorE-mail: business@seciron.comTel: +601133503181Website: https://www.seciron.com", "status": "Valid", "scope": "Android Mobile Application Hardening Sandbox Module is a product designed by SECIRON and developed as part of IronWALL. IronWALL is designed to safeguard against a wide range of threats, including mobile application tampering, reverse engineering, debugging, jailbreaks, application cloning, malware, repackaging and other attacks on untrusted environment. The integrated security guarantee service effectively prevents malicious attacks against mobile applications such as de-compilation, repackaging, memory injection, dynamic debugging, data theft, transaction hijacking, and application phishing, and comprehensively protects application software security.", "cert_id": "C129", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "SECIRON - Android mobile Application Hardening Sandbox Module (AMAHSM) version: 7.0", "certification_date": "2024-02-06", "expiration_date": "2029-02-06", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c129/SECIRON__Android_Mobile_Application_Hardening_Sandbox_Module_AMAHSM_version_7.0-Security_Target-1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c129/ISCB-3-RPT-C129-CR-v1a.pdf", "type": "Mobility" } }, { "cert_no": "2021-001-C116", "developer": "Huawei Services (Hong Kong) Co. Limited", "level": "EAL1", "product": "Huawei AppGallery v10.4.0.301", "certification_date": "2021-04-20", "expiration_date": "2026-04-20", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/132", "enhanced": { "developer": "9th Floor, Tower 6,The Gateway No.9,Canton Road Tsimshatsui,KowLoon, Hong Kong URL: https://huaweiservices.hk.com", "status": "Valid", "scope": "Huawei AppGallery as the TOE is designed specifically for Huawei mobile devices and Huawei mobile operating system to play role as applications distribution platform for other mobile application APK file to initiate TOE functions as stated below: Purchase, download, and install the paid 3rd party mobile application(s); Monitor and update the 3rd party mobile application(s) has been notified by the TOE upon update available; Remove selected 3rd party mobile application(s) selected by TOE user Receiving rewards; Managing gifts (claim and redeem); Writing comment/remark; and Perform pre-orders. These TOE functions are secure operates within Huawei mobile device android operating system.", "cert_id": "C116", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "Huawei AppGallery v10.4.0.301", "certification_date": "2021-04-20", "expiration_date": "2026-04-20", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C116/Huawei_AppGallery-ST_v10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C116/ISCB-5-RPT-C116-CR-V1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2021-003-C119", "developer": "SecurePay Sdn. Bhd.", "level": "EAL2", "product": "SecurePay Platform V4.9.1", "certification_date": "2021-06-16", "expiration_date": "2026-06-16", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/131", "enhanced": { "developer": "A-3A-13, Blok A, Radia Office,Persiaran Arked, Bukit Jelutong,40150 Shah Alam, Selangor Amir Amir Haris Ahmad (amir@securepay.my) https://www.securepay.my/", "status": "Valid", "scope": "The TOE is a software platform as a service whilst installed, configured and deployed on an enterprise cloud environment. The TOE is used by corporate, S_M_E_'s_ _or merchants as a secure payment processing platform for their customers. Users also able to perform e-commerce transaction, sending bills, bulk payments, collections and statutory payments. The TOE is connected to various banks which facilitate same day processing, ensure data integrity, reduces processing discrepancies and faster response time. It is simple, robust, user friendly, scalable, secured and available 24x7.Below are the primary features of the TOE: E-Commerce - Users able to use the TOE as an e-commerce portal and conduct business over the internet. Collection - Users able to create bill form and payment form for their customers Payment Processing - The TOE provides a secure payment processing platform and it is connected to various major banks in Malaysia API integration - Third-party developers able to use and access the TOE via API integrations", "cert_id": "C119", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "SecurePay Platform V4.9.1", "certification_date": "2021-06-16", "expiration_date": "2026-06-16", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C119/SecurePay_Security_Target_v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C119/ISCB-5-RPT-C119-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2021-004-C115", "developer": "Certis CISCO Security Pte Ltd (Certis)", "level": "EAL2", "product": "Argus Command Center Web Portal Stable V.2.1", "certification_date": "2021-06-23", "expiration_date": "2026-06-23", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/130", "enhanced": { "developer": "Certis Cyber Competency Centre20 Jalan Afifi Singapore 409179 T: +65 6856 8799E: c3_ifr@certisgroup.com https://www.certisgroup.com", "status": "Valid", "scope": "The Target of Evaluation (TOE) is a web-based command centre application of the Argus System called the Argus Command Centre Web Portal (Argus CC) which provides the use for two primary purposes as an officer (security personnel) support system; security operations management and account management through the Internet. The user roles defined in the Argus CC consist of System Administrator, Account Owner, Managers, Operators, Supervisors and Officers. Supervisors and Officers are managed by TOE users but are themselves not TOE users and are thus omitted from the scope of this evaluation. Fundamentally, the TOE can be accessed by consumers via selected web browsers (front-end Command Centre).", "cert_id": "C115", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Argus Command Center Web Portal Stable V.2.1", "certification_date": "2021-06-23", "expiration_date": "2026-06-23", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C115/2019_Certis_Cisco__Argus_CC_EAL2__Security_Target_ASE-v1.14_2-smallsize.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C115/ISCB-5-RPT-C119-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2021-006-C117", "developer": "Certis CISCO Security Pte Ltd", "level": "EAL2", "product": "MOzART Command Center Web Portal v1.1", "certification_date": "2021-07-26", "expiration_date": "2026-07-26", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/129", "enhanced": { "developer": "20 Jalan AfifiSingapore 409179 T: +65 6747 2888F: +65 6744 0039Email: c3_ifr@certisgroup.comTel: +65 6856 8799 https://www.certisgroup.com", "status": "Valid", "scope": "The Target of Evaluation (TOE) is a web-based application portal called the MOzART Command Center Web Portal (MOzART CC) which provides TOE users means of monitoring, operating, managing and administering physical security incidents through the Intranet (private network). The MOzART CC allows consumers to have a “one-to-all” control over many integrated physical security appliances such as fire alarm triggers, surveillance cameras, parameter sensors and entry alarm triggers around a designated premise. All modules/functions on the same private network related to the querying of live data, feeds by the third-party APIs (supporting non-TOE software) and displayed by the TOE will not require Internet connection. The MOzART CC is a highly sophisticated Command Center, acting as the user interface for TOE users (in their respective roles as an operator, supervisor or administrator) to monitor events, operate cases, manage cases, and administer the MOzART CC itself.", "cert_id": "C117", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "MOzART Command Center Web Portal v1.1", "certification_date": "2021-07-26", "expiration_date": "2026-07-26", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C117/Mozart_Command_Center_Web_Portal_Security_Target_v1.26.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C117/ISCB-5-RPT-C117-CR-v1.pdf", "type": "A collection of appliances that form a security infrastructure for an enterprise network" } }, { "cert_no": "2022-002-C124", "developer": "RSA Security LLC", "level": "EAL2+ ALC_FLR.2", "product": "Archer Suite v6.9.1.2 with the Archer IRM Mobile V1.4", "certification_date": "2022-05-17", "expiration_date": "2027-05-17", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/128", "enhanced": { "developer": "RSA 13200 Metcalf Avenue, Suite 300 Overland Park, Kansas 66213, The United States of America", "status": "Valid", "scope": "Users access the TOE via a web-based graphical user interface (GUI) or via the TOEs Mobile application. The RSA Archer Mobile application provides remote users the ability to complete their Advanced Workflow actions (edit records and add comments) on-the-go. The TOE supports business-level management of governance, risk management, and compliance (GRC). It enables organizations to build an efficient, collaborative enterprise GRC program across IT, finance, operations and legal domains. It supports organizations in managing risk, demonstrating compliance, automating business processes, and gaining visibility into corporate risk and security controls. There are five main components to an RSA Archer Suite installation which are Web Application, Services, Instance Database, Configuration Database and Archer IRM Mobile or RSA Archer Mobile App.", "cert_id": "C124", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Archer Suite v6.9.1.2 with the Archer IRM Mobile V1.4", "certification_date": "2022-05-17", "expiration_date": "2027-05-17", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C124/Archer_Suite_v6912_with_the_Archer_IRM_Mobile_V14__ST_v10-final.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C124/ISCB-5-RPT-C124-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2022-003-C126", "developer": "Hangzhou Yaguan Technology Co. Ltd (HYT)", "level": "EAL2+ ALC_FLR.1", "product": "Argrace IoT Security Communication Module (BLE+ Wi-Fi) v2.0A-009", "certification_date": "2022-06-07", "expiration_date": "2027-06-07", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/127", "enhanced": { "developer": "Hangzhou Yaguan Technology Co. Ltd (HYT)33rd Floor, T4 US Center, European and American Financial City, Yuhan District, Hangzhuo, ZhejiangEmail: zhuoqian.liang@argrace.aiPhone No.: +86 13535201163", "status": "Valid", "scope": "The Target of Evaluation (TOE) is Argrace IoT Secure Communication Module (BLE + Wi-Fi) V2.0A-009. The TOE is an IoT Security Communications Module (SCM), which consists of TOE dedicated software and TOE hardware. Generally, the IoT SCM is integrated into an IoT host device. This SCM is to enable the IoT host device connection to network, establish secure communication network channel between the IoT device and other terminals (i.e. Cloud, Mobile APP.), encrypt the user data for the IoT Application of IoT device, and store the encryption data. The software of above features is called IoT Security Communication Embedded Software (IoT SCES).", "cert_id": "C126", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.1", "product": "Argrace IoT Security Communication Module (BLE+ Wi-Fi) v2.0A-009", "certification_date": "2022-06-07", "expiration_date": "2027-06-07", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C126/ST_of_Argrace_IoT_Security_Communication_Module_BLE__Wi-Fi_v1.5.0422.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C126/ISCB-5-RPT-C126-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2022-005-C127", "developer": "FNS (M) Sdn Bhd", "level": "EAL2", "product": "Guardian-CCS Blockchain Secure Authentication (BSA) v1.0.24", "certification_date": "2022-08-12", "expiration_date": "2027-08-12", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/126", "enhanced": { "developer": "FNS (M) Sdn BhdOffice Suite 5.01, Level 5, Menara LGB,No.1, Jalan Wan Kadir, Taman Tun Dr Ismail,60000 Kuala Lumpur, Malaysia. Email: fnsm.sales@fnsvalue.co.krTel: +603-7732 6027Whatsapp: +6011-1032 6027Website: https://fnsmalaysia.com/", "status": "Valid", "scope": "The Target of Evaluation (TOE) is an Identity and Access Management (IAM) including Privileged Access Management (PAM) system called Guardian-CCS Blockchain Secure Authentication (BSA) v1.0.24 that offer user to perform passwordless blockchain authentication with multifactor authentication services (MFA). Guardian-CCS Blockchain Secure Authentication (BSA) v1.0.24 is an identity authentication platform that leverages on patented blockchain technology on a hybrid blockchain network to provide an unbreakable, fast and easy-to-use solution to securely access digital services. Users are allowed to perform a one-click authentication on their mobile device to login/sign in to respective web and mobile applications with a valid User ID and TOE. In addition to blockchain authentication, a multi-factor authentication is required to complete the identification, verification, and authentication process.", "cert_id": "C127", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Guardian-CCS Blockchain Secure Authentication (BSA) v1.0.24", "certification_date": "2022-08-12", "expiration_date": "2027-08-12", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C127/FNS_-_Guardian_-_CCS_Blockchain_Secure_Authentication_BSA_Security_Target_-_1.2.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C127/ISCB-5-RPT-C127-CR-v1.1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2016-002-C068", "developer": "Sigma Rectrix Systems (M) Sdn. Bhd.", "level": "EAL2", "product": "Garcinia Firewall Router v21.1.0", "certification_date": "2021-06-29", "expiration_date": "2026-06-29", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/105", "enhanced": { "developer": "Suite 3-05, 4805 CBD Perdana 2Jalan Perdana Cyber 1263000 Cyberjaya Selangor Phone: +60383186696Email: sales@sigmarectrix.comWebsite: https://sigmarectrix.com", "status": "Valid", "scope": "The TOE is a firewall and routing platform which is a self-contained appliance consisting of hardware and firmware. The TOE is a product that manages the network from any congestion and harm. The TOE analyse the incoming and outgoing network traffic, loss and manipulation of data, business secrets and confidential of data leaks. Firewall are indeed important and everyone who is online must strive to have a firewall protection before it’s vulnerable to external and internal. The TOE core features include Traffic Shaper, Captive portal, Forward Caching Proxy, Virtual Private Network, High Availability & Hardware Failover, Intrusion Detection and Inline Prevention, Build-in reporting and monitoring tools, Support for plugins, DNS Server & DNS Forwarder, DHCP Server and Relay, Dynamic DNS, Backup & Restore, Stateful inspection firewall, Granular control over state table, 802.1Q VLAN support and many more.", "cert_id": "C068", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Garcinia Firewall Router v21.1.0", "certification_date": "2021-06-29", "expiration_date": "2026-06-29", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C122/Garcinia_Security_Target_v10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C122/ISCB-5-RPT-C122-CR-v1.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2021-008-C121", "developer": "System Consultancy Services Sdn. Bhd.", "level": "EAL2", "product": "NC2.vpn+ v2.1.9", "certification_date": "2021-09-13", "expiration_date": "2026-09-13", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/102", "enhanced": { "developer": "No.36, Jalan Wangsa Delima 6Pusat Bandar Wangsa Maju53300 Kuala Lumpur Phone:+603 4149 1919Email: contact@scs.myWebsite: https://www.scs.my", "status": "Valid", "scope": "The TOE (NC2.vpn+ version 2.1.9) a self-contained box (security appliance) consisting of hardware and software that provides security functionality such as Stateful Traffic Filter Firewall, Virtual Private Network (VPN), Cryptographic Support, Security Audit, Identification and Authentication, Security Management, Secure Communication. From the stateful inspection firewall to the inline intrusion detection & prevention system, various features are built-in to enhance network performance and protect your network from numerous cyber security threats. The TOE resides between one or more internal networks (that the TOE is protecting) and an external network such as the Internet. All information transferred between the internal and external networks shall pass through the TOE. Network packets are inspected in real-time as they pass through the TOE (inbound and outbound protection). Malicious network packets are filtered before they have a chance to reach inside the protected network.", "cert_id": "C121", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "NC2.vpn+ v2.1.9", "certification_date": "2021-09-13", "expiration_date": "2026-09-13", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C121/SCS_NC2.vpn_Security_Target_v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C121/ISCB-5-RPT-C121-CR-v1.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2022-004-C125", "developer": "NETWITNESS an RSA Business", "level": "EAL2+ ALC_FLR.1", "product": "RSA NetWitness Platform v11.6", "certification_date": "2022-06-29", "expiration_date": "2027-06-29", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/100", "enhanced": { "developer": "NETWITNESS, an RSA Business10700 Parkridge Bvld, Reston, VA 20191, United States of America", "status": "Valid", "scope": "The TOE is a collection of appliances that form a security infrastructure for an enterprise network. This architecture provides converged network security monitoring and centralised security information and event management (SIEM). The TOE provides real-time visibility into the monitored network and long-term network data storage to provide detection, investigation, analysis, forensics, and compliance reporting. The TOE implements additional security functions such as identification and authentication of TOE users; auditing; security management; and trusted path.The security management functions of the TOE are performed via the NetWitness Platform User Interface (UI), which is a web-based GUI. This interface allows authorised administrators to manage the user accounts, session lockout values and other TSF data, and view the IDS data and alerts. Navigation in the UI is based on Roles and is divided into major functional areas including Respond, Investigate, and Admin. The Respond view consolidates all alerts such as ESA Correlation Rules, Malware Analytics, and Reporting Alerts into one location and is used for incident tracking and triage. The Investigate view presents seven different views into a set of data, allowing authorized users to see metadata, events, and potential indicators of compromise. In the Admin view, Administrators can manage network hosts and services; manage system-level security; and manage Collection Methods/event sources.", "cert_id": "C125", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.1", "product": "RSA NetWitness Platform v11.6", "certification_date": "2022-06-29", "expiration_date": "2027-06-29", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C125/RSA_Netwitness_v11.6_v1.0-Final.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C125/ISCB-5-RPT-C125-CR-v1.pdf", "type": "Network And Network-Related Devices And Systems" } }, { "cert_no": "2023-001-C128", "developer": "Trend Micro Incorporated", "level": "EAL2", "product": "Trend Micro TippingPoint Threat Protection System (TPS) v5.5", "certification_date": "2023-06-23", "expiration_date": "2028-06-23", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/99", "enhanced": { "developer": "Trend Micro Incorporated11305 Alterra Parkway, Austin,Texas 78758 USAWebsite: www.trendmicro.com", "status": "Valid", "scope": "The Target of Evaluation (TOE) is the TippingPoint Threat Protection System (TPS). TPS is a network security platform that offers threat protection, shielding network vulnerabilities, blocking exploits, and defending against known and zero-day attacks (Intrusion Prevention System (IPS) capabilities). The TOE’s specialized hardware-based traffic classification engines enable the IPS to filter accurately at gigabit speeds and microsecond latencies. Unlike software-based systems whose performance may be affected by the number of filters installed, the scalable capacity of the TOE’s hardware engine allows thousands of filters to run simultaneously with no impact on performance or accuracy. The TOE was evaluated as an IPS network device and does not include evaluation of the aforementioned speed or latency claims.", "cert_id": "C128", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Trend Micro TippingPoint Threat Protection System (TPS) v5.5", "certification_date": "2023-06-23", "expiration_date": "2028-06-23", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C128/Trend_Micro_TPS_EAL2_ST_July2023-final.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C128/ISCB-5-RPT-C128-CR-v1a.pdf", "type": "Network And Network-Related Devices And Systems" } }, { "cert_no": "2021-002-C120", "developer": "Teron Labs Pty Ltd Verizon Australia Pty Ltd", "level": "EAL2+ ALC_FLR.2", "product": "Verizon UniCERT v5.5.1", "certification_date": "2021-05-26", "expiration_date": "2026-05-26", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/91", "enhanced": { "developer": "Teron Labs Unit 3, 10 Geils Court, Deakin, ACT 2601, Australia", "status": "Valid", "scope": "The TOE is a software product which provides all the (PKI-specific) functionality needed to implement a Public Key Infrastructure (PKI) system. The primary function of a PKI system is to issue and manage digital certificates that allow other IT systems to verify the identity of the holder. The TOE provides all the functionality needed to implement a PKI system, essentially a system that provides certificate registration, PKI management, a Certification Authority, and certificate lifecycle management functions. The TOE implements standard digital signature methods to allow the content of certificates and CRLs to be verifiable and to prevent forgery and tampering, protect the integrity of data (including certificates and CRLs) when at rest and when in transit between components of the TOE, allows TLS/SSL authentication of itself to the Enterprise Server to ensure that the Enterprise Server only accepts certificates published by a legitimate TOE and protect the integrity of messages transmitted between components of the TOE.", "cert_id": "C120", "category": "Key Management System", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Verizon UniCERT v5.5.1", "certification_date": "2021-05-26", "expiration_date": "2026-05-26", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C120/Verizon_UniCERT_551_Security_Target_v08_2.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C120/ISCB-5-RPT-C120-CR-V1.pdf", "type": "Key Management System" } }, { "cert_no": "2022-001-C123", "developer": "You Tech Solutions Sdn Bhd", "level": "EAL2", "product": "YOUTech256SKI Token (v2.5) and YOUTech256SKI Cipher System (v9.78 build 504) with Secret Key Infrastructure", "certification_date": "2022-02-17", "expiration_date": "2027-02-17", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/certified-products-and-systems-5/submission-view/73", "enhanced": { "developer": "You Tech Solutions Sdn Bhd51-1, Lorong Perda Utama 3, Taman Prominence, 14000 Bukit Mertajam, Penang.Tel: +604 297 4507Website:https://www.youtech.com.my", "status": "Valid", "scope": "The TOE consists of the following components: YOUTECHSKIT – YOUTECH256SKI Token (Hardware); and YOUTECHSKICS – YOUTECH256SKI Cipher System (Software) The TOE is delivered as an appliance by the developer and to be configured according to the Preparative Guidance. YOUTECH256SKIT is the key for user to encrypt or decrypt the files that user would like to protect. Two factors authentication will be prompted to user when user connect the YOUTECH256SKIT to their computer/laptop. YOUTECH256SKICS will perform two factors authentication verification by comparing the username, password and unique identifier which embedded in microchip of YOUTECH256SKIT with YOUTECH256SKI PostgreSQL Database. Once successfully authenticated, the YOUTECH256SKICS will decrypt the files in the protected folder.", "cert_id": "C123", "category": "Data Protection", "assurance_level": "EAL2", "product": "YOUTech256SKI Token (v2.5) and YOUTech256SKI Cipher System (v9.78 build 504) with Secret Key Infrastructure", "certification_date": "2022-02-17", "expiration_date": "2027-02-17", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C123/YOUTECH256SKI_Security_Target-1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C123/ISCB-3-RPT-C123-CR-v1.pdf", "type": "Data Protection" } } ], "ARCHIVED": [ { "cert_no": "2010-001-C008", "developer": "Starvision Information Technology Sdn Bhd", "level": "EAL1", "product": "MecWise HR, Version 3.1 R1", "certification_date": "2010-10-28", "expiration_date": "2015-10-28", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/162", "enhanced": { "developer": "Lim Beng Cheang S28A, Jalan SS21/58, Damansara Utama, 47400, Petaling Jaya, Selangor Darul Ehsan MALAYSIA URL: www.starvisionit.comEmail: limbc@starvisionit.comPhone: 603 7726 4266Fax: 603 7725 4266", "status": "Archive", "scope": "MecWise HR 3.1 R1 or MecWise eHuman Resource 3.1 R1, the Target of Evaluation (TOE), is a web based Human Resource application that facilitates recording, tracking, retrieving, reporting and maintaining of employee profile. The TOE users are typically the management, administration or human resource personnel of an organization. The current version of TOE does not cater for employee self service (ESS) functionality. The TOE includes the following: MecWise HR 3.1 R1, a web based application that facilitates recording, tracking, retrieving, reporting and maintaining of Employee Profile Information MecWise Audit Trail Utility v1.0, an application that provides the ability to enable/disable audit function, view and filter transactions log events. The TOE has Security Modules that comprises of the following: Web Interface – an interface for users to access all parts of the TOE except Audit Trail Utility. Security Profile – management and configuration of security related profiles. Security Group – creation and management of different user groups and roles. User Account Profile – creation and management of users' security attributes such as user ID and password. Session Log Viewer – provide the ability to view session logs of events. Audit Trail Utility – utility that can be enabled to create the audit trail database table to record the transactions pertaining to users' activities related to a particular web interface module(s). Authorized administrator will be able to view and filter audit trail records. The TOE security modules mentioned above provides the identification and authentication, security management and also audit generation and views functionalities. The relationship between the TOE security modules and its functionalities is explained in the Security Target.", "cert_id": "C008", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "MecWise HR, Version 3.1 R1", "certification_date": "2010-10-28", "expiration_date": "2015-10-28", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C008/Security_Target.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C008/Certification_Report.pdf", "type": "Web Based Application with Software Utility Application" } }, { "cert_no": "2011-001-C028", "developer": "Triangle Sphere Sdn Bhd", "level": "EAL1", "product": "eWorkshop Version 1.0", "certification_date": "2011-01-13", "expiration_date": "2016-01-13", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/161", "enhanced": { "developer": "Omi Kalthum Mohd Tahir Suite 8.09, Level 8, Wisma Zelan,No 1, Jalan Tasik Permaisuri 2,Bandar Tun Razak,56000 Kuala LumpurMALAYSIA URL: www.trianglesphere.comEmail: qalthum@trianglesphere.comPhone: +603 9173 6104Fax: +603 9173 7105", "status": "Archive", "scope": "eWorkshop Version 1.0 is an intranet web based application for managing a vehicle maintenance workshop, suitable for an entity that has a fleet of vehicles to maintain or is contracted to maintain vehicles. It facilitates the registration, transaction recording, consolidation and reporting of vehicle particulars, cost and service particulars, and, part and stock particulars. The Security Functions included in the security evaluation are: Creation of Logon IDs for authorised users and deletion of Logon IDs for users who have left the organisation. Assignment of user roles to authorised users so that the users can access the screens and functions to perform their designated responsibilities (and nothing else). Security Audit that logs records pertaining to creation, update, delete of IDs, protection of data by authorising the access by role, Session locking after 15 minutes of idle, and time stamp from underlying OS to protect the TSF. The TOE security functions mentioned above provides the identification and authentication, security management, audit generation and views functionalities, TOE access, user data protection and protection of the TOE security functions.", "cert_id": "C028", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "eWorkshop Version 1.0", "certification_date": "2011-01-13", "expiration_date": "2016-01-13", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C028/eWorkshop%20Version%201.0%20Security%20Target%20version%201.6.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C028/MyCB-5-RPT-C028-CR-v1a.pdf", "type": "Web Based Application" } }, { "cert_no": "2011-002-C018", "developer": "IDOTTV Sdn. Bhd", "level": "EAL2", "product": "IDOTTV Web Portal 2.0", "certification_date": "2011-02-08", "expiration_date": "2016-02-08", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/160", "enhanced": { "developer": "Dian Azmi Level 10, Kelana Parkview Tower,Jalan SS6/2,47301 Petaling Jaya, SelangorMALAYSIA URL: www.idot.tv/idottv/home.htmEmail: dian@idot.tvPhone: +603 7880 2001Fax: +603 7880 6001", "status": "Archive", "scope": "IDOTTV Web Portal 2.0 is an online web application system that enables users (of the system) to see the polling result, and read SMS and MMS sent by public after reading the organization's published magazines. The scope of the evaluation covers Administrator's module, and Administrator and user login page. The security features introduced by the TOE such as Security Audit, User Data Protection, Identification and Authentication, Security Management and TOE Access.", "cert_id": "C018", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "IDOTTV Web Portal 2.0", "certification_date": "2011-02-08", "expiration_date": "2016-02-08", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C018/ST%20v1.11%20-%20IDOTTV.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C018/ISCB-5-RPT-C018-CR-v1.pdf", "type": "Web Based Application" } }, { "cert_no": "2011-004-C013", "developer": "Viewtech International Sdn Bhd", "level": "EAL1", "product": "VirtualEye v5.0", "certification_date": "2011-03-08", "expiration_date": "2016-03-08", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/159", "enhanced": { "developer": "Stanley Mill Viewtech International Sdn BhdNo.1 and 2 GM,Jalan Pantai Cahaya ½,Pandan Cahaya,68000 Ampang,Selangor Darul Ehsan. URL: www.viewtech.com.myEmail: stanley@viewtech.com.myPhone: +603 4270 2288Fax: +603 4270 3668", "status": "Archive", "scope": "VirtualEye v5.0 is a system designed to enable users to access live video camera feed or playback recorded video clips from the web portal or mobile devices. It comprises of 2 components: VirtualEye v5.0 Web portal, available for authorized subscribers and administrators, and VirtualEye v5.0 Mobile device application, for authorized subscribers. The TOE only covers those subscribers who are connected via Wi-Fi connectivity. The functions of the TOE that are within the scope of evaluation covering the management of the security features which involves generate and view of audit log, validation of input field, user authentication and identification, add/edit/delete user account, add/edit/change user password and login session management for web portal.", "cert_id": "C013", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "VirtualEye v5.0", "certification_date": "2011-03-08", "expiration_date": "2016-03-08", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C013/ST%20ver%206.7%20-%20VirtualEye5.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C013/ISCB-5-RPT-C013-CR-v1a.pdf", "type": "Video Monitoring Software" } }, { "cert_no": "2011-011-C017", "developer": "EA Link System Sdn Bhd", "level": "EAL1", "product": "BT-Direct version 2010.1.0.0", "certification_date": "2011-05-25", "expiration_date": "2016-05-25", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/158", "enhanced": { "developer": "Trevor Keegan B2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: tkeegan@ealink.comPhone: +603 8315 6020Fax: +603 8315 6021", "status": "Archive", "scope": "BT-Direct is an electronic tax submission software designed for Malaysian Tax Agents in order to do e-Filing using the Tax Agent e-Filing (TAeF) sign on and also to conduct Tax Payer's e-Filing on behalf of their clients. BT-Direct System can be used within a network and with multiple users in order to conduct e-Filing operations by importing tax assessment data from Brasstax Database or XML files. These inputs are going to be imported into the system and validated. The validated data is sent to the e-Hasil system by an e-Filing Manager. The export of data to the e-Hasil is performed by utilising Internet Explorer Active X Controls. The security features within the scope of the Security Target (ST) includes: Audit Function – BT-Direct generate audit logs in order to follow up the audit trails and system events. Only authorised users can access the audit logs. Data Protection – Access to the TOE features and data are subject to access control policy. Identification and Authentication - Users of BT-Direct can access to the TOE after a successfully logging in based on their user ID and password. Security Management - The security functions of BT-Direct can be managed either by BT-Direct or the authorised users. BT-Direct can manage access control within the scope of the policies according to the assigned access rights and defined user credentials by the administrator. The scope of the evaluation is a subset of the BT-Direct System. The Active X Controls, Security Wrapper, DBISAM Database and the communication interface with the e-Hasil system (Inland Revenue Board of Malaysia's electronic Income Tax Return Form (ITRF) filing system), Windows Operating System and Internet Explorer application are part of the IT environment and not in the scope of the evaluation.", "cert_id": "C017", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "BT-Direct version 2010.1.0.0", "certification_date": "2011-05-25", "expiration_date": "2016-05-25", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C017/E020-ST-2.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C017/ISCB-5-RPT-C017-CR-v1a.pdf", "type": "Electronic Tax Submission Software" } }, { "cert_no": "2011-012-C033", "developer": "IDOTTV Sdn Bhd", "level": "EAL1", "product": "Mobile Billing System version 1.4", "certification_date": "2011-06-15", "expiration_date": "2016-06-15", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/157", "enhanced": { "developer": "Dian Azmi Level 10, Kelana Parkview Tower,Jalan SS6/2, 47301 Petaling Jaya,SelangorMALAYSIA URL:www.idot.tvEmail: dian@idot.tvPhone: +603 7880 2001Fax: +603 7880 6001", "status": "Archive", "scope": "The Mobile Billing System is software that facilitates secure, confidential, and paperless billing services between service provider and the customers which is installed on a user's mobile device. It comprises of three components: Mobile Billing Applet. A java-based mobile application developed specifically for the Blackberry mobility platform. The application provides a subscriber with the basis for integrating with the mobile billing server. Mobile Billing Server. An application that provides connectivity to the billing systems of telecommunication providers, and the mobile billing applet application for subscribers. It also provides storing data for the TOE. Mobile Billing Webtool. A web-based interface for both subscribers and administrators to login and manage their accounts or the system. The part of the Mobile Billing System that covered under scope of evaluation is identification and authentication (user login), secure communication between Mobile Billing server with the Mobile Application, user data protection which is user access based on the user level, and security management of the TOE which focusing on account management activities such as create user account, reset the password and change the access level for telecommunication company.", "cert_id": "C033", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "Mobile Billing System version 1.4", "certification_date": "2011-06-15", "expiration_date": "2016-06-15", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C033/IDOTTV%20EAL1%20Security%20Target%20(Mobile%20Billing%20System)%20v1.2.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C033/ISCB-5-RPT-C033-CR-v1a.pdf", "type": "Software that facilitates secure, confidential, and paperless billing services between service provider and the customers." } }, { "cert_no": "2011-013-C015", "developer": "S5 Systems Sdn Bhd", "level": "EAL2", "product": "NexCode National Security Suite Release 3", "certification_date": "2011-06-15", "expiration_date": "2016-06-15", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/156", "enhanced": { "developer": "Peter Fang Kok Hong S5 Systems Sdn BhdLevel 31 Tower BThe Vertical Business SuiteBangsar South CityNo 8 Jalan Kerinchi59200 Kuala Lumpur URL: http://www.s5.com.myEmail: peter.fang@s5.com.myPhone: +603 2082 1000Fax: +603 2082 1001", "status": "Archive", "scope": "NexCode National Security Suite Release 3 is a software system that utilized mobile telephone technology with real-time information access to enhance the security of identification of documents that have a proprietary barcode, called NexCode. The user scans the NexCode printed on an individual's identification document (even photocopied documents) via a mobile phone equipped with NexCode software to verify the information against the centralized source data. This source is cross-linked to other databases, enabling accuracy of a person's identification. The TOE is software that comprises of: NexCode National Security Suite – Inventory Management System Release 3, NexCode National Security Suite – Load Server System Release 3, NexCode National Security Suite – Control Centre System Release 3 (web application), NexCode National Security Suite – Gateway System Release 3, NexCode National Security Suite – Mobile Application Release 3 (mobile application), NexCode National Security Suite – Desktop Application Release 3 (desktop application). The security functions of the TOE that are within the scope of evaluation covering the: Identification and Authentication of the user using unique username and password, cryptographic support to secure the communication channels within the TOE, security audit data generation, protection of the TOE security functions and TOE access.", "cert_id": "C015", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "NexCode National Security Suite Release 3", "certification_date": "2011-06-15", "expiration_date": "2016-06-15", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C015/Nexbis-NSS_STv8.4_E011.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C015/ISCB-5-RPT-C015-CR-v1a.pdf", "type": "Software system for cross-referencing of information for enforcement and authentication needs." } }, { "cert_no": "2011-016-C021", "developer": "Extol MSC Berhad", "level": "EAL1", "product": "ePassport Suite", "certification_date": "2011-07-08", "expiration_date": "2016-07-08", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/155", "enhanced": { "developer": "Jackson Lim Unit G-1, Ground Floor,Wisma UOA Pantai, No. 11,Jalan Pantai Jaya,59200 Kuala LumpurMALAYSIA URL: http://www.extolcorp.com/Email: jackson.lim@extolcorp.comPhone: + 603 2240 0008Fax: + 603 2240 0002", "status": "Archive", "scope": "ePassport Suite v2.5, is a web based authentication system which supports a suite of authentication mechanisms to secure user accounts, intranet web apps and online transactions. ePassport Suite v2.5, which is installed behind an internet gateway firewall, is providing a secure remote access with security implementation of Two-factor Authentication (2FA) for the users. The users of the ePassport Suite could integrate any application which require authentication. Any system that is able to seek authentications via web service protocol or radius will be able to utilize the facility. ePassport Suite v2.5 requires users to provide two means of authentication by enforcing usage of username, and One-Time-Password (OTP) replacing the normal password mechanism. OTP generated by application pre-installed inside several mobility platform such as mobile phone (java application), hardware token and desktop (software application). The security functions of ePassport Suite v2.5 which had been evaluated are: Audit – logs are captured if there are system wide changes (overall changes happening on the ePassport Suite), authentication attempts and system status. Authentication – based on the user credentials. Authentication process is performed by Authentication module of Core Engine, and supported by ePassport Suite Tokens specifically desktop software and mobile phone application that generates OTP. Cryptography – performed by Cryptography module of Core Engine, and ePassport Suite Tokens specifically desktop software and mobile phone application. Security Management - User, Token and Server management of the ePassport Suite are configured by the Administrators via the Management Console.", "cert_id": "C021", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "ePassport Suite", "certification_date": "2011-07-08", "expiration_date": "2016-07-08", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c021/ePassport%20ST%20v2.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c021/ISCB-5-RPT-C021-CR-v1a.pdf", "type": "Web based authentication system" } }, { "cert_no": "2012-001-C023", "developer": "Authentic Venture Sdn Bhd", "level": "EAL1", "product": "AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0)", "certification_date": "2012-01-16", "expiration_date": "2017-01-16", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/154", "enhanced": { "developer": "Khairun Nisa Aziz Block U, UPM-MTDC,Incubation Center One,University Putra Malaysia,43400 Serdang,Selangor MALAYSIA URL: http://www.ventures.com.myEmail: info@ventures.com.myPhone:+ 603 8941 2739Fax:+ 603 8941 8651", "status": "Archive", "scope": "AssetCentral 4.0.0 is an automated asset management system. It automates the protection of managed systems against unauthorized software or hardware installations and removal, and having unlicensed software-related vulnerabilities. It allows users to monitor compliance throughout an organisation for their IT asset. AssetCentral comprises a server component and agents, known as AssetXplorer agents, which are deployed on computers throughout the enterprise. AssetXplorer agents send information about each computer to AssetCentral Server. AssetCentral Server consolidates all the information and allows administrators and custom-role users to view them through a web interface. AssetXplorer is part of the TOE. The security features within the scope of the evaluation includes: Auditing – provides auditing capabilities. Identification and Authentication – provides identification and authentication of human users of the TOE. It also provides identification of AssetXplorer that are installed in managed devices. Security Management - provides security management through the use of the Web Administration Interface. Through the enforcement of the AssetCentral Access Control Policy, the ability to manage various security attributes is controlled. User Data Protection - provides its own access control between subjects and objects covered by the AssetCentral Access Control Policy. Secure Communications - able to protect the user data from disclosure and modification when the scanned data is sent from AssetXplorer to AssetCentral Server.", "cert_id": "C023", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "AssetCentral 4.0.0 consist of AssetXplorer (v5.0) and AssetCentral Server (v4.0)", "certification_date": "2012-01-16", "expiration_date": "2017-01-16", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C023/Authentic%20Venture%20EAL1%20Security%20Target%20(AssetCentral)%20v1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C023/ISCB-5-RPT-C023-CR-v1a.pdf", "type": "Automated asset management system" } }, { "cert_no": "2011-018-C019", "developer": "MYwave Sdn Bhd", "level": "EAL2", "product": "Employee Express (EmplX) Security Module", "certification_date": "2011-11-04", "expiration_date": "2016-11-04", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/153", "enhanced": { "developer": "Yip Hon Choong 1-3-21, Krystal Point Corporate Park,Jalan Tun Dr Awang,11900 Bayan Lepas, Pulau Pinang MALAYSIA URL: http://www.mywave.bizEmail: enquiry@mywave.bizPhone:+ 604 6403 117", "status": "Archive", "scope": "The Target of Evaluation (TOE), Employee Express (EmplX) Security Module v1.0 (Build SVR 2.0) is a PHP module of EmplX Human Resource Management Systems (HRMS) web application hosted on a web server. It is designed to be used as a core security controlling module for a web-based application environment. The TOE provides core security functionality such as authentication, access control, secure communications and application security management. All http requests to the web server will be meditated by the TOE before allowing access to the rest of the EmplX HRMS. The security functionality that is within the scope of the evaluation includes: Access control – EmplX Security Module manages access control based on user IDs, user roles and access control lists. It maintains access control lists (ACLs) for each object within an organisation. Each ACL maps users and roles to the operations that they are permitted to perform on the object. Organisation Management – EmplX Security Module provides strict controls on organisation management. Only Super Administrators can manage the creation, modification and destruction of an organisation. Users and Supervisors can only operate within their organisation. Identification and Authentication – each user is required to successfully identified using user ID and authenticated using password before any interaction with protected resources within EmplX HRMS is permitted. Security Management - EmplX Security Module provides functions that allow management of the TOE and its security functions. It restricts access to the management functions based on the role of the user. Secure Communications - EmplX Security Module is able to protect the user data from disclosure and modification when it is sent from users' browser to the EmplX HRMS using the secure SSL channel.", "cert_id": "C019", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Employee Express (EmplX) Security Module", "certification_date": "2011-11-04", "expiration_date": "2016-11-04", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C019/MYWave%20EAL2%20Security%20Target%20(EmplX%20Security%20Module)%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C019/ISCB-5-RPT-C019-CR-v1a.pdf", "type": "Specialist software module designed to be used as a core security controlling module for a web-based application environment" } }, { "cert_no": "2012-002-C030", "developer": "Web Bytes Sdn Bhd", "level": "EAL1", "product": "Web Bytes Xilnex Framework version 3.0", "certification_date": "2012-02-16", "expiration_date": "2017-02-16", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/152", "enhanced": { "developer": "Ooi Boon-Sheng Unit 1-2-33, Kompleks Mayang Mall,Jalan Mayang Pasir 1,11950 Bayan Baru,Pulau Pinang MALAYSIA URL: http://www.webbytes.com.myEmail: cust-care@xilnex.comPhone:+ 6012 472 9615Fax:+ 604 611 0162", "status": "Archive", "scope": "Web Bytes Xilnex Framework Version 3.0 is a distribution and synchronization platform which distributes subscribed applications to multiple clients as well performs data synchronisation between all the clients in the same group. The TOE comprises of two primary components as follows: Client Software. The client software that installs directly on each user's PC which operates the daily process and update based on the user activities. Server Software. The server software that extends client software with secure communication, identification and authentication, and data synchronization. The security functions that the TOE provides include the following: Secure Transmission – All communications between the server and the client is through an SSL channel. It protects the user data from disclosure and modification. Access control – The TOE allows users to launch only the applications they subscribed to as well as accessing the database. The TOE will check the user ID and their organization ID to ensure the applications that the user is allowed to run. Identification and Authentication – Users will have to present their credentials to the server for identification and authentication before the user is allowed to launch the applications and access the user data at the backend and at the local cache. Encryption – Username and passwords are always hashed when they are being stored into the database and during authentication. Management – The TOE contains various management functions to ensure efficient and secure management of the TOE. The TOE maintains two roles, users and administrator, to ensure that the functions are restricted to only the TOE administrator.", "cert_id": "C030", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "Web Bytes Xilnex Framework version 3.0", "certification_date": "2012-02-16", "expiration_date": "2017-02-16", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C030/Web%20Bytes%20EAL1%20Security%20Target%20(Xilnex%20Framework)%20v1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C030/ISCB-5-RPT-C030-CR-v1a.pdf", "type": "Distribution and synchronization platform" } }, { "cert_no": "2012-003-C034", "developer": "JMCS Sdn Bhd", "level": "EAL2", "product": "Northern Light Video Conferencing System (NLVC) consist of: - NLVC Client version 6.3.0.0 - NLVC Server Webadmin Tool version 7.0.0.1 - NLVC Server version 6.1-0.21", "certification_date": "2012-03-22", "expiration_date": "2017-03-22", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/151", "enhanced": { "developer": "NLTVC Sdn. Bhd. Level 2, Block C, Science@USMNo 10, Persiaran Bukit Jambul,11900 Penang, MALAYSIA. URL: http://www.nltvc.comEmail: sures@nav6.usm.myPhone: +60 (4) 653 3005Fax: +60 (4) 653 3001", "status": "Archive", "scope": "The Target of Evaluation (TOE), Northern Light Video Conferencing System (NLVC), is a multipoint-to-multipoint video conferencing system. It allows conferencing of any desired number of people around the world using existing LAN infrastructure, without affecting current applications. It is software based and uses non-proprietary hardware. The TOE components include: NLVC Client version 6.3.0.0. A user based GUI application that works on the end user's PC or NLVC boardroom codec system. NLVC Server Webadmin Tool version 7.0.0.1. A web based interface use to ease the administration of the TOE (NLVC Server). NLVC Server version 6.1-0.21. The main purpose is to maintain and control conference according to the Real Time Switching (RSW) control criteria used. The evaluated security functionalities for the TOE includes: Identification and Authentication – the TOE requires that each user is successfully identified (User ID) and authenticated (password) before they are allowed to access the functionality of the TOE. Secure communication – the TOE provides a secure SSL session between the client and the server in order to protect the video feeds and command data when transmitted between the client and the server. Security Management – the TOE manages functions to ensure efficient and secure management of the TOE and its security functions. The TOE restricts access to the management functions based on the role of the user. The roles maintained by the TOE are: Chairman, Participant, Observer, and Administrator. Each access control list maps users and roles to the operations that they are permitted to perform on the object. User Data Protection – the TOE manages access control on configuration data and functions based on user role and access control lists.", "cert_id": "C034", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Northern Light Video Conferencing System (NLVC) consist of: - NLVC Client version 6.3.0.0 - NLVC Server Webadmin Tool version 7.0.0.1 - NLVC Server version 6.1-0.21", "certification_date": "2012-03-22", "expiration_date": "2017-03-22", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C034/JMCS%20Systems%20EAL2%20Security%20Target%20(Northern%20Light%20Video%20Conferencing)%20v1.2.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C034/ISCB-5-RPT-C034-CR-v1a.pdf", "type": "Multipoint-to-multipoint video conferencing system." } }, { "cert_no": "2012-004-C032", "developer": "Ornet Solutions Sdn Bhd", "level": "EAL1", "product": "Ornet Neuron version 1.2.2", "certification_date": "2012-03-26", "expiration_date": "2017-03-26", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/150", "enhanced": { "developer": "Murugan Kandiah Suite 19, Incubator Wing, 1st Floor,Techno Centre, Kulim Hi-Tech Park,09000 Kulim, Kedah,MALAYSIA URL: http://www.ornetsol.comEmail: info@ornetsol.comPhone: +60 (4) 408 0000Fax: +60 (4) 408 0000", "status": "Archive", "scope": "The Target of Evaluation (TOE), Ornet Neuron version 1.2.2 is a web based application that allows users to monitor the performance of machines used in semiconductor and electronic manufacturing factories. The TOE is software that comprises of: Failure Mode and Effect Analysis (FMEA), a module designed to send and receive failure mode immediately and screened in the spreadsheet. Machine Performance Analyzer (MPA), a module where user used to view reports according to the search selection using the MPA interface. Statistical Process Control (SPC), is intended to help user to do data entry and generate report based on their entry. Tool Life Scheduling (TLS), comes with various maintenance tasks such as preventive maintenance, tasks scheduling, tasks reminder, shutdown planning. There are also other tasks included such as inspection, lubrication, parts change and servicing. Reject Analysis (RA), is a module designed to track and monitor rejects in the production area. User can do data entry and generate reports. The evaluated security functionalities for TOE includes: Access control - The TOE manages access control based on user IDs, user roles and access control lists. Identification and Authentication – The TOE requires that each user is successfully identified (User ID) and authenticated (password) before they are allowed to perform any action on the TOE. Security Management - The TOE provides functions that allow management of the TOE and its security functions.", "cert_id": "C032", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "Ornet Neuron version 1.2.2", "certification_date": "2012-03-26", "expiration_date": "2017-03-26", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C032/ORNET%20EAL1%20Security%20Target%20(ORNET%20Neuron)%20v1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C032/ISCB-5-RPT-C032-CR-v1a.pdf", "type": "Web based application use to monitor the performance of machines used in semiconductor and electronic manufacturing factories." } }, { "cert_no": "2012-007-C024", "developer": "Radmik Solutions Sdn Bhd", "level": "EAL1", "product": "RADIUSS Core Version 2.0", "certification_date": "2012-10-19", "expiration_date": "2017-10-19", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/149", "enhanced": { "developer": "Mohd Khairulfahmi Solong Suite 6-5, Main Tower Sunsuria Avenue, Persiaran Mahogani, Kota Damansara, 47810 Petaling Jaya, Selangor Darul Ehsan MALAYSIA URL: www.radmik.comEmail: fahmi@radmik.comPhone: 603 6150 0156Fax: 603 6142 4440", "status": "Archive", "scope": "RADIUSS Core version 2.0 (hereafter referred as RADIUSS Core) from Radmik Sdn Bhd is the Target of Evaluation (TOE) for this Evaluation Assurance Level (EAL) 1 evaluation. RADIUSS Core is a Java software module designed to be used as a core security module for RADIUSS (Radmik Intelligent Universal Surveillance System) framework. RADIUSS framework is a management of IP based solution for CCTV system that connect directly to preferred network and is manageable remotely via a local area network or the internet. It can handle simultaneous recording, allows remote access to live views and playback of recorded videos. It supports IP cameras and analogue video sources, and open system architecture to ensure integration with other third party systems. The functions of the TOE that are within the scope of evaluation covering: The security audit logs, Access control whereby only authorized users can view the video feeds and logs, Identification and authentication of administrator and users before being allowed to perform any action in the TOE, and Security management functions that include user management, log management, ACL (Access Control List) management and video camera management.", "cert_id": "C024", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "RADIUSS Core Version 2.0", "certification_date": "2012-10-19", "expiration_date": "2017-10-19", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C024/Security_Target.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C024/ISCB-5-RPT-C024-CR-v1a.pdf", "type": "Java software module designed to be used as a core security module for RADIUSS (Radmik Intelligent Universal Surveillance System) framework" } }, { "cert_no": "2013-006-C038", "developer": "EA Link System Sdn Bhd", "level": "EAL1", "product": "TAXSAYA Online Version 1.5.0.12", "certification_date": "2013-08-15", "expiration_date": "2018-08-15", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/148", "enhanced": { "developer": "Trevor KeeganB2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: tkeegan@ealink.comPhone: +603 8315 6020Fax: +603 8315 6021", "status": "Archive", "scope": "The Target of Evaluation (TOE), TAXSAYA Online Version 1.5.0.12 (hereafter referred as TAXSAYA) is a web application designed to assist tax payers to prepare and submit their tax returns. The TOE is hosted by Microsoft Azure servers and can be accessed via Internet Explorer or Firefox. In order to restrict the access to the TOE, users are required to login using username and password. After successfully identified and authenticated, the users are prompted to provide necessary information in order to prepare their tax returns. TOE provides a tax wizard function to support users to fill all the required fields to complete the operation. A tax optimiser provides the Taxpayers with suggested tax savings. The final tax file can either be printed or automatically filed and upload to the Tax Department (E-Hasil). In the context of the evaluation, the TOE provides the following major security features: Audit Logs - the TOE generates audit logs for the auditable events listed in section 5.1.1 of the Security Target. These audit records can only be reviewed by TAXSAYA administrators. Audit review and actions taken according to the audit logs are outside the scope of the evaluation and certification. Identification and Authentication – TOE identifies and authenticates its users before any action. All registered users have a Username and Password in order to complete the identification and authentication process. Tax Data Export - TOE provides a secure data export to the e-Hasil site by using the security attributes of the users. Users can upload their tax data to the e-Hasil site in order to complete the tax claim process. Management of Security Attributes - TOE support the management of security attributes belong to the users such as Username, Password and IC Number. The management functions include: i) Roles management, ii) Allow/deny access attempts, iii) Enforce access control policy, and iv) Manage user session.", "cert_id": "C038", "category": "Other Devices and Systems", "assurance_level": "EAL1", "product": "TAXSAYA Online Version 1.5.0.12", "certification_date": "2013-08-15", "expiration_date": "2018-08-15", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/TOV-ST-1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/ISCB-5-RPT-C038-CR-v1a.pdf", "type": "Web based frontend to the Microsoft Certification Authority (CA) services" } }, { "cert_no": "2014-002-C047", "developer": "Extol MSC Berhad", "level": "EAL2", "product": "Extol ePassport Suite version 3.0", "certification_date": "2014-07-09", "expiration_date": "2019-07-09", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/147", "enhanced": { "developer": "Raymond TanUnit G1, Ground Floor,Wisma UOA Pantai,No.11, Jalan Pantai Jaya,59200 Kuala Lumpur, Malaysia URL: http://www.extolcorp.com/Email: raymond.tan@extolcorp.comPhone: +603 2240 0008Fax: +603 2240 0002", "status": "Archive", "scope": "ePassport Suite is a Web Application Based Authentication System, which supports a suite of authentication mechanisms to secure user accounts, intranet web apps and on-line transactions. The ePassport enabled Two-factor Authentication (2FA), requiring users to provide two means of authentication. The identification and authentication involving two attributes, which are described as \"something you know\" and \"something you have\". With this combination of authentication factors, these features shall provide protection and enforcement of IT security for any Internet transactions. Enhancement towards the existing authentication factor (usage of username and password) is by implementing a better concept of “something you have”, such as secret PIN or One-Time Password (OTP), that are generated by a user through software desktop application or application on devices. The 2FA based on OTP compliments is provides better in strengthening the identification process. The OTP can be generated from mobile application in mobile phone, desktop software, through Time-Based OTP mechanism and from hardware token OTP generator. The OTP also can be send via SMS generated by a backend system of ePassport Suite. Following are the major security functions provided by the TOE: Security Audit-The TOE ensures that all crucial events being captured and audited. Cryptography – ePassport Suite has an built-in feature of cryptography that generate a dictionary platform for all token types of One-Time Password (OTP), which is, shall be used by users to access their dedicated web application portal upon access control protection enforced by the TOE. Each of users has their own types of OTP devices either application in mobile phone, desktop software, through Time-Based OTP mechanism, from hardware token OTP generator and SMS generate by ePassport Suite backend system. User Data Protection – The TOE provides Access Control Policy to all users who tries to access the TOE and the user is granted based on certain user attributes defined. Identification and Authentication – The TOE ensures that only authorized user is permitted to access the TOE. Security Management – The TOE provides functionality to Administrator to manage TOE secure setting and user management via TOE web application portal.Protection of the TSF – The TOE ensures that the time stamps to be taken from a reliable source from the environment that integrated with the underlying operating system.", "cert_id": "C047", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Extol ePassport Suite version 3.0", "certification_date": "2014-07-09", "expiration_date": "2019-07-09", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C047/2014-05-14-EXTOL-ePassport-EAL2-Security%20Target-v1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C047/ISCB-5-RPT-C047-CR-v1.pdf", "type": "Web Application Based Authentication System, which supports a suite of authentication mechanisms to secure user accounts, intranet web apps and online transactions." } }, { "cert_no": "2014-004-C056", "developer": "TriAset Sdn Bhd", "level": "EAL2", "product": "d'COMPASS version 2.0.0", "certification_date": "2014-12-24", "expiration_date": "2019-12-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/146", "enhanced": { "developer": "Elaine TanCorporate Service ManagerTriAset Sdn BhdUnit 23-5, 5th Floor Block E1 Jalan PJU 1/42Dataran Prima 47301 Petaling Jaya, Selangor, Malaysia URL: http://triaset.com/Email: elainetan@triaset.comPhone: +603 7880 9562Fax: +603 7880 9563", "status": "Archive", "scope": "d'COMPASS v2.0.0 is an online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks. It is a web application that is developed entirely from Java-based technologies which is installed into a Java EE-compliant application server and accessible via a web browser and it also provides a complete solution from back to the front office fund management operation. Following are the major security functions provided by the TOE: Access control - the TOE manages access control within each organisation based on user Ids, user roles and access control lists. Each ACL maps users and roles to the operations that they are permitted to perform on the object. Identification and Authentication - the TOE requires that each user is successfully identified (user IDs) and authenticated (password) before any interaction with protected resources is permitted. Security Management - the TOE provides functions that allow management of the TOE and its security functions. The TOE restricts access to the management functions based on the role of the user. Security Communication - the TOE is able to protect the user data from disclosure and modification using SSL as a secure communication between users’ browser and the TOE.", "cert_id": "C056", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "d'COMPASS version 2.0.0", "certification_date": "2014-12-24", "expiration_date": "2019-12-24", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/d'COMPASS%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/ISCB-5-RPT-C056-CR-v1.pdf", "type": "Online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks." } }, { "cert_no": "2015-002-C058", "developer": "Smart Consult Solutions Sdn Bhd", "level": "EAL2", "product": "SmartData version 1.4.0.0", "certification_date": "2015-01-29", "expiration_date": "2020-01-29", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/145", "enhanced": { "developer": "Smart Consult Solutions Sdn BhdB-1 -03, 04 & 05,SME Technopreneur Centre 1,2270, Jalan Usahawan 2,63000 Cyberjaya , Selangor , Malaysia URL:http://datasonic.com.my/", "status": "Archive", "scope": "SmartData is an engine for a web application that tracks and manages security items in a production environment. The TOE provides security functionality such as access control, identification and authentication, Cryptographic Operation, security management and secure communication. The scope of evaluation covers major security features as follow: Security Audit: The TOE generates audit records for security events. The Superuser is the only roles with access to the audit trail and has the ability to view the audit log in either pdf or csv files. Identification and authentication: The TOE requires that each user is successfully identified (user IDs) and authenticated (password) before any interaction with protected resources is permitted. Cryptographic Operation: The TOE supports TDES (192 bits) and Rijndael encryption (128 bits) method to protect against disclosure. Security Management: The TOE provides functions that allow management of the TOE and its security functions. The TOE restricts access to the management functions based on the role of the user. Secure Communication: The TOE is able to protect the user data from disclosure and modification using SSL as a secure communication between users’ browser and the TOE.", "cert_id": "C058", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "SmartData version 1.4.0.0", "certification_date": "2015-01-29", "expiration_date": "2020-01-29", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C058/SmartData%20v1.4.0.0%20Security%20Target%20v1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C058/ISCB-5-RPT-C058-CR-v1.pdf", "type": "An engine for a web application that tracks and manages security items in a production environment" } }, { "cert_no": "2015-006-C069", "developer": "MarkLogic Corporation", "level": "EAL2+ ALC_FLR.3", "product": "Marklogic Enterprise 8", "certification_date": "2015-12-22", "expiration_date": "2020-12-22", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/144", "enhanced": { "developer": "MarkLogic Corporation999 Skyway RoadSuite 200San Carlos, CA 94070 URL:http://www.marklogic.com/", "status": "Archive", "scope": "The TOE is an enterprise-class database that provides a set of services used to build content and search applications which query, manipulate and render Extensible MarkUp Language (XML) content. The following security functions are implemented by the TOE: Security Audit Cryptographic Support User Data Protection Identification and Authentication Security Management Protection of the TSF TOE Access", "cert_id": "C069", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.3", "product": "Marklogic Enterprise 8", "certification_date": "2015-12-22", "expiration_date": "2020-12-22", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C069/MarkLogic%20Server%208%20ST%20v0.5.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C069/ISCB-5-RPT-C069-CR-v1.pdf", "type": "Database" } }, { "cert_no": "2017-003-C072", "developer": "SecureMetric Technology Sdn. Bhd.", "level": "EAL4+ ALC_FLR.2", "product": "CENTAGATE v3.010-build13", "certification_date": "2017-06-06", "expiration_date": "2022-06-06", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/143", "enhanced": { "developer": "Nickson YauSecureMetric Technology Sdn Bhd2-2, Incubator 2,Technology Park Malaysia,Lebuh Sg. Besi - Puchong, Bukit Jalil57000, Kuala Lumpur, Malaysia Email: nickson@securemetric.comMobile: 012 301 6966", "status": "Archive", "scope": "CENTAGATE is an enterprise class authentication solution built on JEE technology, that enforce secure authentication for protected resources such as internal web applications. It operates through web interfaces and has the functionality that enables three-factor of authentications and risk-based scoring engine through accessibility of single sign-on (SSO). It consists of Web Application Server and Mobile Applications that supports Android and iOS platform. The following security functions are implemented by the TOE: Security Token Provision; Mobile Protection; Mobile PKI; Hybrid Risk Scoring Engine (Rule-based and Case-based); Cryptographic Module; Key Management System; Authentication Module; Web Administration Module; and Mobile Management Module", "cert_id": "C072", "category": "Other Devices and Systems", "assurance_level": "EAL4+ ALC_FLR.2", "product": "CENTAGATE v3.010-build13", "certification_date": "2017-06-06", "expiration_date": "2022-06-06", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C072/2017-05-08-CTG-ST-3.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C072/ISCB-5-RPT-C072-CR-v1.pdf", "type": "Other devices and systems" } }, { "cert_no": "2018-004-C095", "developer": "MicroEngine Networks Sdn Bhd", "level": "EAL2+ ALC_FLR.2", "product": "RSA Archer Suite v6.3", "certification_date": "2018-05-30", "expiration_date": "2023-05-30", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/142", "enhanced": { "developer": "RSA Security LLCJon L. GoodwinManager, Federal ProgramsRSA Security LLC10700 Parkridge Blvd.Suite 600Reston, VA 20191 URL: www.rsa.comEmail: jon.goodwin@rsa.comCell: 469-855-5658", "status": "Archive", "scope": "It enables organizations to build an efficient, collaborative enterprise GRC program across IT, finance, operations and legal domains. It supports organizations in managing risk, demonstrating compliance, automating business processes, and gaining visibility into corporate risk and security controls. The following security functions are implemented by the TOE: Security Audit User Data Protection Identification adn Authentication Security Management TOE Access", "cert_id": "C095", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "RSA Archer Suite v6.3", "certification_date": "2018-05-30", "expiration_date": "2023-05-30", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C095/RSA%20Archer%206.3%20ST%20v0.7.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C095/ISCB-5-RPT-C095-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2017-010-C088", "developer": "Micro Focus", "level": "EAL2+ ALC_FLR.1", "product": "Voltage SecureData Appliance (SDA) v6.4 and SecureData Simple API v5.10", "certification_date": "2017-12-20", "expiration_date": "2022-12-20", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/141", "enhanced": { "developer": "Micro Focus1160 Enterprise Way,Sunnyvale CA, 94089 URL: www.microfocus.com", "status": "Archive", "scope": "The TOE is Voltage SecureData Appliance (SDA) v6.4 and SecureData Simple API v5.10 from Micro Focus. The TOE provides protection of sensitive data, such as credit card numbers and Social Security numbers, stored in databases and applications. The TOE primary features include: Security Audit Cryptographic Support User Data Protection Identification and Authentication Security Management Protection of the TSF TOE Access Trusted Path/Channels", "cert_id": "C088", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.1", "product": "Voltage SecureData Appliance (SDA) v6.4 and SecureData Simple API v5.10", "certification_date": "2017-12-20", "expiration_date": "2022-12-20", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C088/Micro%20Focus%20Voltage%20SDA%20ST%201.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C088/ISCB-5-RPT-C088-CR-v1.pdf", "type": "Protection of sensitive data in databases and applications" } }, { "cert_no": "2017-011-C087", "developer": "MarkLogic Corporation", "level": "EAL2+ ALC_FLR.3", "product": "MarkLogic Server 9", "certification_date": "2017-12-22", "expiration_date": "2022-12-22", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/140", "enhanced": { "developer": "MarkLogic Corporation999 Skyway RoadSuite 200San Carlos, CA 94070 URL: http://www.marklogic.com/", "status": "Archive", "scope": "MarkLogic Server 9, which is an enterprise-class database that provides a set of services used to build content and search applications which query, manipulate and render Extensible MarkUp Language (XML) content. The TOE primary features include: Security Audit Cryptographic Support User Data Protection Identification and Authentication Security Management Protection of the TSF TOE Access Trusted Path/Channels", "cert_id": "C087", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.3", "product": "MarkLogic Server 9", "certification_date": "2017-12-22", "expiration_date": "2022-12-22", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C087/MarkLogic%20Server%209%20ST%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C087/ISCB-5-RPT-C087-CR-v1.pdf", "type": "Enterprise-class Database" } }, { "cert_no": "2020-006-C113", "developer": "RSA Security LLC", "level": "EAL2+ ALC_FLR.2", "product": "RSA Archer Suite v6.7", "certification_date": "2017-11-24", "expiration_date": "2022-11-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/139", "enhanced": { "developer": "13200 Metcalf Avenue,Suite 300 Overland Park,Kansas 66213,The United States of America Name & Tel: Jeremy Fisher (913-549-1565)Email: Jeremy.fisher@rsa.comWebsite: https://www.rsa.com/", "status": "Archive", "scope": "The Target of Evaluation (TOE) is RSA Archer Suite v6.7. It is a software product that supports business-level management of governance, risk management and compliance. Users access the TOE via a web-based graphical user interface (GUI). All users require an account in order to log on to the TOE. The user account specifies the user’s groups and access roles. An access role is a collection of application-level and page-level rights that an administrator can create and assign to any number of users and groups to control user privileges (create, read, update, and delete). The Content API, Web Services API and RESTful APIs programmatically extend the functionality of the TOE to external applications through several classes and methods which expose many of its features, allowing for a high level of integration with other products. All users must be successfully identified and authenticated by the TOE before gaining access to any other TOE services.", "cert_id": "C113", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "RSA Archer Suite v6.7", "certification_date": "2017-11-24", "expiration_date": "2022-11-24", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C113/RSA_Archer_6.7_ST_v1.0_09-29-2020.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C113/ISCB-5-RPT-C113-CR-V1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2017-008-C082", "developer": "SecureKi Sdn. Bhd.", "level": "EAL2", "product": "Automated Privilege Password Management v4.0.01", "certification_date": "2017-11-24", "expiration_date": "2022-11-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/138", "enhanced": { "developer": "The TOE is a solution to manage the issuance of One Time Password access credentials and permissions on Unix servers, Linux servers, Windows servers, network devices and other relevant applications for the assigned/registered privileged accounts in these stated components. The TOE primary features include: Security Audit: The TOE will generate audit records for selected security events in several log files and categories. Each audited event will be recorded along with date and time of event, user accounts that performed the event, event name and other event details. Authentication and Identification: All TOE Administrator (Super User) must have a valid username/user ID inclusive of password to access and OTP. TOE Administrator (Super User) must login to APPM to manage all the connected devices (IT entities) as well as credentials of accessing these IT entities. Thus, configurations of these IT entities required to be registered in the APPM system, plus configuration policy of managing the access credentials of the IT entities shall be defined. User Data Protection: User data and credentials including TOE Administrator (Super User) information is protected by ensuring that specific TOE Administrator (Super User) that is assigned with roles and privilege scan only access specific web pages/portals and hence the data associated with the web pages/portal. The accessibility of the pages/portals is protected based upon the access control policy. Security Management: TOE Administrator (Super User) has access to all TOE features, that applicable to be managed through web application portal hosted by TOE. TOE is able to provide accessibility of account that has access privilege, similar or limited, to “Super User” account. In which, Super User account has the full access rights, role and privileges to the TOE.", "status": "Archive", "scope": "SecureKi Sdn. Bhd.DF2-09-03A (Unit No.2),Level 9, Persoft Tower,Persiaran Tropicana, URL: www.secureki.comEmail: info@secureki.comPhone: +603 7652 1188", "cert_id": "C082", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Automated Privilege Password Management v4.0.01", "certification_date": "2017-11-24", "expiration_date": "2022-11-24", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C082/SecureKi%20APPM_ST_0.5.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C082/ISCB-5-RPT-C082-CR-v1.pdf", "type": "A management of the issuance of One Time Password" } }, { "cert_no": "2019-007-C098", "developer": "MicroEngine Networks Sdn Bhd", "level": "EAL2", "product": "XPCore v1.0", "certification_date": "2019-07-21", "expiration_date": "2024-07-21", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/137", "enhanced": { "developer": "MicroEngine Networks Sdn BhdNo.29, Jalan 19/4A, 47600 Subang Jaya, Selangor.", "status": "Archive", "scope": "The Target of Evaluation (TOE) is XPCore version 1.0. XPCore is a platform that allows multiple software components, function modules or system to exchange data and communicate with each other through the XPCore API (Application Programming Interface). The TOE can be accessible by user via a web browser and can be deploy either in a cloud environment (hosted by MicroEngine Network) or in the customer’s premises/data center (hosted by the customers). Authorized 3rd party developers will be able to integrate their own system/program with XPcore platform and utilize XPCore features. XPCore features include managing either third party or MicroEngine’s: Alarm Monitoring System CCTV Monitoring System Door Access Control Management System Time Attendance Management System System User Authentication And many more", "cert_id": "C098", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "XPCore v1.0", "certification_date": "2019-07-21", "expiration_date": "2024-07-21", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C098/XPCore%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C098/ISCB-3-RPT-C098-CR-v1.pdf", "type": "Cloud services platform to exchange data and communicate with each other through the XPCore API (Application Programming Interface)." } }, { "cert_no": "2019-009-C107", "developer": "RSA Security LLC", "level": "EAL2+ ALC_FLR.2", "product": "RSA Archer Suite v6.5", "certification_date": "2019-09-03", "expiration_date": "2024-09-03", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/136", "enhanced": { "developer": "13200 Metcalf Avenue, Suite 300 Overland Park, Kansas 66213", "status": "Archive", "scope": "RSA Archer Suite v6.5 is a software product that supports business-level management of governance, risk management and compliance (GRC). It enables organisations to build an efficient, collaborative enterprise GRC program across IT, finance, operations and legal domains. It supports organisations in managing risk, demonstrating compliance, automating business processes, and gaining visibility into corporate risk and security controls.", "cert_id": "C107", "category": "Other Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "RSA Archer Suite v6.5", "certification_date": "2019-09-03", "expiration_date": "2024-09-03", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C107/RSA%20Archer%206.5_ST_V0.3.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C107/ISCB-5-RPT-C107-CR-v1.pdf", "type": "Website system on integrated risk management solution" } }, { "cert_no": "2019-010-C106", "developer": "LE Global Services Sdn. Bhd.", "level": "EAL2", "product": "LGMS Security Assessment Report Generator (LGMS Reporter) v 1.0.0", "certification_date": "2019-12-24", "expiration_date": "2024-12-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/135", "enhanced": { "developer": "A-11-01, Empire Office Tower, Jalan SS16/1, 47500 Subang Jaya, Selangor Phone: 03-8605 0155", "status": "Archive", "scope": "The TOE is a web-based report generator which provides the service through Internet. The TOE helps to simplify users experience as a one-stop presentation medium that displays the vulnerability assessment results in a report.", "cert_id": "C106", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "LGMS Security Assessment Report Generator (LGMS Reporter) v 1.0.0", "certification_date": "2019-12-24", "expiration_date": "2024-12-24", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C106/ST-2019%20LGMS%20Security%20Assessment%20Report%20Generator%20Security%20Target-v2.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C106/ISCB-5-RPT-C106-CR-V1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2020-005-C099", "developer": "Swingvy Sdn. Bhd.", "level": "EAL2", "product": "Swingvy HR Hub, Payroll and Benefits Platforms v2.1.29", "certification_date": "2020-09-14", "expiration_date": "2025-09-14", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/134", "enhanced": { "developer": "Lot 16.08, Level 16,1Powerhouse, No.1,Persiaran Bandar Utama,Bandar Utama,47800 Petaling Jaya Selangor Tel: +60-3-7665-1301Email: support@swingvy.comWebsite: www.swingvy.com", "status": "Archive", "scope": "The TOE is a software as a Service (SaaS) whilst installed, configured and deployed in the cloud platform services (PaaS). The TOE operates in Multi-Tenant Mode that provide solutions for managing and operating Human Resource, Payroll and Benefits. TOE is accessible via a web browser from mobile devices and PCs. The primary features of the TOE: HR Information System (HRIS) - provides employee management, leave management and employee talent management. Payroll - automatically calculates all government required tax calculations and provides automated payroll service to the users, specifically admins of companies. Benefits store - allows admins to purchase benefits (such as group insurance) for their employees.", "cert_id": "C099", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "Swingvy HR Hub, Payroll and Benefits Platforms v2.1.29", "certification_date": "2020-09-14", "expiration_date": "2025-09-14", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C099/Swingvy_Security_Target_v11.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C099/ISCB-5-RPT-C099-CR-V1a.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2020-007-C112", "developer": "Pernec Integrated Network Systems Sdn Bhd", "level": "EAL2", "product": "CYSECA Endpoint CYSECA Endpoint Application Control which consists of CYSECA Endpoint Application Control Server v1.2.0 and CYSECA Endpoint Application Control Client v1.1.12", "certification_date": "2020-10-23", "expiration_date": "2025-10-23", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/133", "enhanced": { "developer": "21, Jalan Setiawangsa 8,Taman Setiawangsa,54200 Kuala Lumpur,Wilayah Persekutuan Kuala Lumpur Tel: 03-4259 6000Email: marketing@pernec.com.myWebsite: https://www.pernec.com.my/", "status": "Archive", "scope": "The Target of Evaluation (TOE) is CYSECA Endpoint Application Control which consists of CYSECA Endpoint Application Control Server v1.2.0 (TOE Server) and CYSECA Endpoint Application Control Client v1.1.12 (TOE Client). The TOE is an endpoint application control allows organization to enhance the defences against executing unwanted or malicious application on critical endpoint computer. TOE comprise of server and client components that can be operated in one or more instance. TOE is designed with granular policy, extensive application catalogue as well as, real-time monitoring and defences, CYSECA reduces the risk of threat exposures on client. The TOE is designed for Application control implementation for client and allows only selected files or applications that are allowed/whitelisted to be executed while others are being stopped.", "cert_id": "C112", "category": "Other Devices and Systems", "assurance_level": "EAL2", "product": "CYSECA Endpoint CYSECA Endpoint Application Control which consists of CYSECA Endpoint Application Control Server v1.2.0 and CYSECA Endpoint Application Control Client v1.1.12", "certification_date": "2020-10-23", "expiration_date": "2025-10-23", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C112/CYSECA_Security_Target_v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C112/ISCB-5-RPT-C112-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2010-002-C004", "developer": "Tracenetwork Corporation Sdn Bhd", "level": "EAL3", "product": "MyBOX Firewall System, Version 3.1", "certification_date": "2010-11-23", "expiration_date": "2015-11-23", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/125", "enhanced": { "developer": "Hazmy Hazeman bin Zulkifli Tracenetwork Corporation Sdn BhdE-1-12A, 1st Floor, Block E,Jalan PJU 1A/20G, Daratan Ara Damansara, 47301 Petaling Jaya,Selangor Darul EhsanMALAYSIA URL: www.mytracenetwork.comEmail: hazmy@mytracenetwork.comPhone: +60 (3) 7831 4295Fax: +60 (3) 7831 4296", "status": "Archive", "scope": "MyBOX Firewall is a perimeter firewall product for securing data communication and protecting network connectivity. The firewall service includes the packet filtering control. The MyBOX Firewall is intended for use by organizations that need controlled, protected and audited access to services, both from inside or outside their organization's network, by allowing, denying and/or redirecting the flow of data through the firewall. The MyBOX Firewall comprises a firewall engine, its operating system and data repository platform, IDP modules, antivirus module, application proxy content filtering, and security management software. The firewall engine, audit event recording, and the security management system are included in the scope of the TOE. The IDP module, antivirus module and application proxy content filtering are outside of the scope of the evaluation.", "cert_id": "C004", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL3", "product": "MyBOX Firewall System, Version 3.1", "certification_date": "2010-11-23", "expiration_date": "2015-11-23", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C004/MyBox%20EAL3%20ST%20v2%204.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C004/MyCB-5-RPT-C004-CR-v1.pdf", "type": "Firewall" } }, { "cert_no": "2011-005-C011", "developer": "GHL Systems Berhad", "level": "EAL2", "product": "NetMATRIX TLE v1.0 Build number 00010003", "certification_date": "2011-03-15", "expiration_date": "2016-03-15", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/124", "enhanced": { "developer": "Jason Phua Vice President,Product Marketing & Strategic Alliances, L5-E-7B, Enterprise 4,Technology Park Malaysia, Bukit Jalil, 57000 Kuala LumpurMALAYSIA URL: www.ghl.comEmail: jason.phua@ghl.comMobile: + 6012 398 6805Phone: + 603 8998 3600 ext 217", "status": "Archive", "scope": "NetMATRIX TLE (Terminal Line Encryption) is a software solution that essentially provides a secure channel (through encryption and message authentication (MAC)), similar to VPN or SSL, layered over an Acquirer's existing POS infrastructure, to the terminals. Once installed and configured, it operates akin to a VPN-server. It will co-operate with the terminals to ensure that all sensitive information exchanged with the terminals is encrypted and that the whole messages are protected against changes and impersonation. The security functionalities within the scope of TOE evaluation are: Protection of confidential data elements exchanged with the terminals by encrypting all such data sent to the terminals on behalf of the processing host, and by decrypting any such data received from the terminals before forwarding it to the processing host; and Protection of integrity and authenticity of the messages exchanged with the terminal by protecting the whole message with a Message Authentication Code (MAC). The scope of evaluation consists of three major components which are the web administration subsystem, the TLE subsystem, and database subsystem.", "cert_id": "C011", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "NetMATRIX TLE v1.0 Build number 00010003", "certification_date": "2011-03-15", "expiration_date": "2016-03-15", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C011/C011.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C011/ISCB-5-RPT-C011-CR-v1a.pdf", "type": "Terminal Line Encryption Software" } }, { "cert_no": "2013-004-C040", "developer": "Juniper Networks, Inc.", "level": "EAL3+ALC_FLR.2", "product": "Juniper Networks Junos Pulse Secure Access Service 7.2 R4", "certification_date": "2013-07-15", "expiration_date": "2018-07-15", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/123", "enhanced": { "developer": "Juniper Networks, Inc1194 North Matilda Avenue,Sunnyvale, California 94089-1206UNITED STATES URL:http://www.juniper.netEmail: robertsmith@juniper.netTel: 978 589 8822", "status": "Archive", "scope": "The Target of Evaluation (TOE) is Juniper Networks Junos Pulse Secure Access Service 7.2 R4 (hereafter referred as Secure Access) is the appliance and software client running on a remote IT system. The TOE provides secure remote access to internal network resources. The TOE acts as a secure application-layer gateway that intermediates all request between remote computers and internal corporate resources. All requests from remote computers to a Secure Access appliance and from a Secure Access appliance to remote computers are encrypted using SSL/HTTPS 168-bit encryption. All unencrypted requests (e.g. HTTP) are redirected to HTTPS, which ensures the connection is encrypted. Each request is subject to administratively defined access control and authorisation policies, such as dual-factor or client-side digital certificate authentication, before the request is forwarded to an internal resource. Users gain authenticated access to authorised resources via an extranet session hosted by the appliance. From any Internet-connected Web browser, users can access Web-based enterprise applications, Java applications, file shares and terminal hosts. Secure Access generates audit records for security events. The administrator and read-only administrator are the only roles with access to the audit trail and have the ability to view the audit trail. In the context of the evaluation, the TOE provides the following major security features: Generates audit records for security events. Cryptographic support for secure communications between users and the TOE and between TOE components. Provides information flow security policy that limits traffic to URLs and resource types, such as file servers, to specific user roles. Identification and authentication before any information flows are permitted and user must be authenticated before performing any administrative functions. Security management functions for administrator to configure the TOE, manage users, information flow policy and auditing activities. Protection of the TOE security function (TSF) by enforcing session timeouts.", "cert_id": "C040", "category": "Access Control Devices and System", "assurance_level": "EAL3+ALC_FLR.2", "product": "Juniper Networks Junos Pulse Secure Access Service 7.2 R4", "certification_date": "2013-07-15", "expiration_date": "2018-07-15", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C040/JNPR%20SA%207.2R4%20EAL3%20ST%20v1.4.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C040/ISCB-5-RPT-C040-CR-v1a.pdf", "type": "Set of appliance and software client running on a remote IT system that provides secure remote access to internal network resources." } }, { "cert_no": "2013-005-C039", "developer": "Juniper Networks, Inc.", "level": "EAL3+ALC_FLR.2", "product": "Juniper Networks Junos Pulse Access Control Service 4.2 R4", "certification_date": "2013-08-05", "expiration_date": "2018-08-05", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/122", "enhanced": { "developer": "Juniper Networks, Inc1194 North Matilda Avenue,Sunnyvale, California 94089-1206UNITED STATES URL:http://www.juniper.netEmail: robertsmith@juniper.netTel: 978 589 8822", "status": "Archive", "scope": "The Target of Evaluation (TOE), Juniper Networks Junos Pulse Access Control Service 4.2 R4 (hereafter referred as Unified Access Control (UAC)) is an appliance and software client running on a remote IT system. The TOE provides central control point for Juniper Network’s Unified Access Control (UAC) solution. Users will contact the TOE using a variety of clients in order to request network access. The TOE authenticates users and retrieves the access policies for those users. The TOE also assesses the health of a user’s host machine and compares it to the policies in order to determine whether network access is allowed. Authorised users can communicate with a variety of enforcement points (including Juniper endpoint clients filters, Juniper firewalls, and standard 802.1X enabled switches or wireless access points) to communicate the network access constraints based on the TOE’s decision. The enforcement points will allow or deny access based on the TOE’s result of authentication and policy compliance. In the context of the evaluation, the TOE provides the following major security features: Generates audit records of security events. Cryptographic support for secure communications between TOE and other IT entities in order to authenticate users and to transmit authorisations to enforcement points. Information flow control to prevent unwanted and non-compliant endpoints from gaining access to the local area network. The TOE compares endpoint configuration with defined security policies; a non-compliant endpoint is not allowed full access to the network. All users are required to perform identification and authentication before any information flows are permitted. For administrators, they must also be authenticated before performing any administrative functions. Security management functions for the administrators to configure the TOE, manage users, manage information flow policy and auditing activities.", "cert_id": "C039", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL3+ALC_FLR.2", "product": "Juniper Networks Junos Pulse Access Control Service 4.2 R4", "certification_date": "2013-08-05", "expiration_date": "2018-08-05", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C039/JNPR%20UAC%204.2R4%20EAL3%20ST%20v1.3.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C039/ISCB-5-RPT-C039-CR-v1a.pdf", "type": "Set of appliance and software client running on a remote IT system that provides control point for Juniper Network's Unified Access Control (UAC) solution." } }, { "cert_no": "2015-005-C060", "developer": "RSA, The Security Division of EMC2", "level": "EAL2+ ALC_FLR.1", "product": "RSA Security Analytics v10.4", "certification_date": "2015-08-04", "expiration_date": "2020-08-04", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/121", "enhanced": { "developer": "Jon L. GoodwinManager, Federal ProgramsRSA Security LLC10700 Parkridge Blvd.Suite 600Reston, VA 20191 URL:www.rsa.comEmail: jon.goodwin@rsa.comCell: 469-855-5658", "status": "Archive", "scope": "The TOE provides real-time visibility into the monitored network and long-term network data storage to provide detection, investigation, analysis, forensics, and compliance reporting. The TOE primary features include: Generates audit records of security relevant events that include at least date and time of the event, subject identity and outcome for security events; Provides protection of the communications surrounding the remote administrative sessions from disclosure and from modification, Allows the users to acknowledge end-user license agreements and view warning banners prior to providing identification and authentication data, Identify potential misuse or intrusions and send an alarm to incident management SA views; Allows only authorized administrators to manage the security functions and TSF data of the TOE via a web-based User Interface; Provides protection mechanisms for its security functions through authentication and appropriate permissions before any administrative operations or access to TOE data and resources can be performed on the TSF; Terminates interactive sessions after administrative configured period of time; and Requires remote users to initiate a trusted communication path using TLS for initial user authentication.", "cert_id": "C060", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.1", "product": "RSA Security Analytics v10.4", "certification_date": "2015-08-04", "expiration_date": "2020-08-04", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C060/RSA%20SA%20v10%204%20ST%20v0%203.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C060/ISCB-5-RPT-C060-CR-v1.pdf", "type": "A collection of appliances that form a security infrastructure for an enterprise network" } }, { "cert_no": "2015-001-C055", "developer": "Trend Micro TippingPoint", "level": "EAL3+ALC_FLR.2", "product": "Trend Micro TippingPoint Intrusion Prevention Systems v3.7.2", "certification_date": "2015-03-18", "expiration_date": "2020-03-18", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/120", "enhanced": { "developer": "Freddy MercadoGlobal Compliance EngineerTrend Micro - TippingPointTel: +1 512 432-2947Cell: +1 512 632-6308VoIP: +1 512 319-5317Email: f.m@hp.com14231 Tandem Blvd.Austin, TX 78728 – USA URL:http://www.trendmicro.com/", "status": "Archive", "scope": "The TOE is a hardware and software appliance that contains all the functions needed for intrusion prevention, including Internet Protocol (IP) defragmentation, TCP flow reassembly, statistical analysis, traffic shaping, flow blocking, flow state tracking and application-layer parsing of network protocols. The primary function of the TOE is to protect networks from intrusion attempts by scanning network traffic, detecting intrusion attempts, and reacting to detected intrusion attempts according to the filters and action sets with which the device is configured. The scope of evaluation covers major security features as follows: Security Audit: The TOE is able to generate auditable events for the basic level of audit. Identification and authentication: The TOE identifies and authenticates all administrative users of the TOE before granting them access to the TOE. Intrusion Detection and Prevention: The TOE collects network traffic and subjects it to statistical and signature-based analysis, depending on configured IPS filters. Traffic Management: The TOE can be configured to operate as a firewall, blocking or permitting network traffic based on protocol or IP address and port. Security Management: The TOE provides the security management functions to enable the administrative users to manage user accounts, audit data and audit configurations, security configuration data, traffic management filters, and IDS data collection, analysis, and reaction. TSF Protection: The TOE includes its own time source for providing reliable time stamps that are used in audit records and stored IDS data. Trusted Path: The TOE provides a trusted path for remote administrative users of the TOE to communicate with the TOE. The trusted path is implemented over the network management port using HTTPS for access to the LSM and SSHv2 for access to the CLI.", "cert_id": "C055", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL3+ALC_FLR.2", "product": "Trend Micro TippingPoint Intrusion Prevention Systems v3.7.2", "certification_date": "2015-03-18", "expiration_date": "2020-03-18", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C055/TippingPointST%201-0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C055/ISCB-5-RPT-C055-CR-v1.pdf", "type": "Hardware-based intrusion prevention systems" } }, { "cert_no": "2018-002-C093", "developer": "DNSVAULT Sdn Bhd", "level": "EAL2", "product": "DNSVault Intelligent Threat Protection version 5.0", "certification_date": "2018-03-23", "expiration_date": "2023-03-23", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/119", "enhanced": { "developer": "DNSVAULT Sdn BhdAmir Haris Ahmad,Tel: +6012 312 1979Email: sales@dnsvault.netNo.29-2, Tingkat 2, Jalan Tukul N15/N,Seksyen 15, 40200 Shah Alam, Selangor,Malaysia URL: www.dnsvault.net", "status": "Archive", "scope": "The TOE is a web application that has the ability to perform DNSVault Node management, DNS management, DNS Statistics and logs monitoring. The following security functions are implemented by the TOE: Security Audit Identification & Authentication Security Management Secure Communication", "cert_id": "C093", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "DNSVault Intelligent Threat Protection version 5.0", "certification_date": "2018-03-23", "expiration_date": "2023-03-23", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C093/DNSVault%20ITP%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C093/ISCB-5-RPT-C093-CR-v1.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2018-006-C096", "developer": "RSA NetWitness Suite v11.0", "level": "EAL2+ ALC_FLR.1", "product": "RSA NetWitness Suite v11.0", "certification_date": "2018-07-31", "expiration_date": "2023-07-31", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/118", "enhanced": { "developer": "RSA Security LLCJon L. GoodwinManager, Federal ProgramsRSA Security LLC10700 Parkridge Blvd.Suite 600Reston, VA 20191 URL: www.rsa.comEmail: jon.goodwin@rsa.comCell: 469-855-5658", "status": "Archive", "scope": "The TOE is a collection of appliances that form a security infrastructure for an enterprise network. This architecture provides converged network security monitoring and centralized security information and event management (SIEM). The following security functions are implemented by the TOE: Security Audit; Cryptographic Support; Identification & Authentication; Security Monitoring with Security Information and Event Management (SIEM); Security Management; Protection of the TSF; TOE Access; and Trusted path/channels.", "cert_id": "C096", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.1", "product": "RSA NetWitness Suite v11.0", "certification_date": "2018-07-31", "expiration_date": "2023-07-31", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C096/RSA%20Netwitness%20v11.0%20ST_Final.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C096/ISCB-5-RPT-C096-CR-v1.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2017-007-C080", "developer": "Micro Focus", "level": "EAL2", "product": "Micro Focus ArcSight Data Platform v2.11", "certification_date": "2017-11-15", "expiration_date": "2022-11-15", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/117", "enhanced": { "developer": "Micro Focus1160 Enterprise Way,Sunnyvale CA, 94089 URL: www.microfocus.com", "status": "Archive", "scope": "The TOE provides unifies log data collection, storage, and security data management in a scalable, high-performance software or appliance solution. The TOE primary features include: Audit Identification and Authentication Security Management Protection of the TSF TOE Access Trusted Path/Channels Intrusion Detection System", "cert_id": "C080", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Micro Focus ArcSight Data Platform v2.11", "certification_date": "2017-11-15", "expiration_date": "2022-11-15", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C080/HPE%20ArcSight%20ADP%20ST.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C080/ISCB-5-RPT-C080-CR-v1.pdf", "type": "Next-generation data collection and storage engine functionality" } }, { "cert_no": "2017-001-C077", "developer": "RSA, The Security Division of EMC2", "level": "EAL2+ ALC_FLR.1", "product": "RSA Security Analytics v10.6.1", "certification_date": "2017-02-22", "expiration_date": "2022-02-22", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/116", "enhanced": { "developer": "Jon L. GoodwinManager, Federal ProgramsRSA Security LLC10700 Parkridge Blvd.Suite 600Reston, VA 20191 URL: www.rsa.comEmail: jon.goodwin@rsa.comCell: 469-855-5658", "status": "Archive", "scope": "The TOE provides real-time visibility into the monitored network and long-term network data storage to provide detection, investigation, analysis, forensics, and compliance reporting. The TOE primary features include: Generates audit records of security relevant events that include at least date and time of the event, subject identity and outcome for security events; Provides protection of the communications surrounding the remote administrative sessions from disclosure and from modification, Allows the users to acknowledge end-user license agreements and view warning banners prior to providing identification and authentication data, Identify potential misuse or intrusions and send an alarm to incident management SA views; Allows only authorized administrators to manage the security functions and TSF data of the TOE via a web-based User Interface; Provides protection mechanisms for its security functions through authentication and appropriate permissions before any administrative operations or access to TOE data and resources can be performed on the TSF; Terminates interactive sessions after administrative configured period of time; and Requires remote users to initiate a trusted communication path using TLS for initial user authentication.", "cert_id": "C077", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.1", "product": "RSA Security Analytics v10.6.1", "certification_date": "2017-02-22", "expiration_date": "2022-02-22", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C077/RSA%20SA%20v10.6.1%20ST%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C077/ISCB-5-RPT-C077-CR-v1.pdf", "type": "A collection of appliances that form a security infrastructure for an enterprise network" } }, { "cert_no": "2016-001-C070", "developer": "Hewlett Packard Enterprise", "level": "EAL3+ALC_FLR.2", "product": "Hewlett Packard Enterprise HSR6600 Series, HSR6800 Series, and MSR1000 Series Routers, all with Comware V7.1", "certification_date": "2016-04-22", "expiration_date": "2021-04-22", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/115", "enhanced": { "developer": "HP EnterpriseTel: +1 512 432-2947Cell: +1 512 632-6308VoIP: +1 512 319-5317Email: f.m@hp.com14231 Tandem Blvd.Austin, TX 78728 – USA URL: http://www.hpe.com/", "status": "Archive", "scope": "The TOE is comprised of the HP HSR6600 Series (2 devices), HSR6800 Series (3 devices) and MSR1000 Series (2 devices) Routers, all with Comware V7.1 software. Each router is a stand-alone network appliance that provides layer 2 switching and layer 3 routing and service functions. The following security functions are implemented by the TOE: Security Audit: The TOE is able to generate audit records of security-relevant events occurring on the TOE. Cryptographic Support: The TOE implements cryptographic algorithms that provide key management, random bit generation, data encryption and decryption, digital signature generation and verification, and secure hashing and key-hashing features in support of higher level cryptographic protocols, including IPsec and SSHv2. User Data Protection: The TOE provides firewall capabilities that allow for the definition of firewall rules, collectively known as access control lists (ACLs), which are applied to applicable network traffic as it is received and which would pass through the TOE between connected networks. Identification and Authentication: The TOE requires administrators to be successfully identified and authenticated before they can access any security management functions available in the TOE. Security Management: The TOE provides a command line interface (CLI) to access its security management functions. TSF Protection: The TOE implements a number of self-tests that it performs when it starts up, to ensure its cryptographic functions operate properly and that the Comware and TSF executable files have not been modified. TOE Access: The TOE will terminate interactive sessions after a period of inactivity configurable by an administrator. Trusted Channel/Path: The TOE protects interactive communication with administrators using SSHv2 for CLI access. Using SSHv2, both integrity and disclosure protection is ensured.", "cert_id": "C070", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL3+ALC_FLR.2", "product": "Hewlett Packard Enterprise HSR6600 Series, HSR6800 Series, and MSR1000 Series Routers, all with Comware V7.1", "certification_date": "2016-04-22", "expiration_date": "2021-04-22", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C070/HP%20HSR-MSR%20Routers%20EAL3%20ST%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C070/ISCB-5-RPT-C070-CR-v1.pdf", "type": "Network and Network related Devices and Systems" } }, { "cert_no": "2016-003-C073", "developer": "RSA Security LLC", "level": "EAL2+ ALC_FLR.2", "product": "RSA Archer GRC Platform version 6.1", "certification_date": "2016-09-14", "expiration_date": "2021-09-14", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/114", "enhanced": { "developer": "Jon L. GoodwinManager, Federal ProgramsRSA Security LLC10700 Parkridge Blvd.Suite 600Reston, VA 20191 URL: www.rsa.comEmail: jon.goodwin@rsa.comCell: 469-855-5658", "status": "Archive", "scope": "It enables organizations to build an efficient, collaborative enterprise GRC program across IT, finance, operations and legal domains. It supports organizations in managing risk, demonstrating compliance, automating business processes, and gaining visibility into corporate risk and security controls. The following security functions are implemented by the TOE: Security Audit User Data Protection Identification adn Authentication Security Management TOE Access", "cert_id": "C073", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "RSA Archer GRC Platform version 6.1", "certification_date": "2016-09-14", "expiration_date": "2021-09-14", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C073/RSA%20Archer%20ST%20v1.0%20-clean.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C073/ISCB-5-RPT-C073-CR-v1.pdf", "type": "Network and Network related Devices and Systems" } }, { "cert_no": "2016-004-C073", "developer": "Huawei Technologies Co., Ltd", "level": "EAL2", "product": "Huawei Access Terminal Platform ATP V200R001C03", "certification_date": "2016-12-06", "expiration_date": "2021-12-06", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/113", "enhanced": { "developer": "Amy ZouCompliance Project ManagerGlobal Compliance Testing CenterHuawei Technologies Co., LtdHuawei Industrial BaseBantian LonggangShenzhen 518129 P.R. China", "status": "Archive", "scope": "Huawei Access Terminals consists of network or network-related devices and systems such as a home gateway, wireless router, Customer Premises Equipment (CPE) and mobile broadband products. The ATP supports rich WAN interfaces and user access interfaces to provide WAN access, data access and voices services for home, personal and small office environments. The following security functions are implemented by the TOE: Security Audit User Data Protection Identification adn Authentication Security Management TSF Protection TOE Access; and Trusted Channel/Path", "cert_id": "C075", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Huawei Access Terminal Platform ATP V200R001C03", "certification_date": "2016-12-06", "expiration_date": "2021-12-06", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C075/CC%20Huawei%20Access%20Terminal%20Platform%20ATP%20Software%20V200R001C03%20-%20ASE_ST_V1%2071.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C075/ISCB-5-RPT-C075-CR-v2.pdf", "type": "Software platform that is used in Huawei Access Terminal products" } }, { "cert_no": "2017-002-C067", "developer": "DNSVAULT Sdn Bhd", "level": "EAL2", "product": "DNSVault version 4.8", "certification_date": "2017-05-11", "expiration_date": "2022-05-11", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/112", "enhanced": { "developer": "DNSVAULT Sdn BhdAmir Haris Ahmad,Tel: +6012 312 1979Email: sales@dnsvault.netNo.29-2, Tingkat 2, Jalan Tukul N15/N,Seksyen 15, 40200 Shah Alam, Selangor,Malaysia URL: www.dnsvault.net", "status": "Archive", "scope": "The TOE is is a DNS management system; installed in DNSVault Series of appliances (e.g. 2000, 5000 and 10000 series) and has the capability to view, manage and secure DNS services. The following security functions are implemented by the TOE: Security Audit Identification and Authentication Security Management TSF Protection Secure Communication", "cert_id": "C067", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "DNSVault version 4.8", "certification_date": "2017-05-11", "expiration_date": "2022-05-11", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C067/DNSVault%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C067/ISCB-5-RPT-C067-CR-v1.pdf", "type": "Network and Network related Devices and Systems" } }, { "cert_no": "2017-004-C084", "developer": "LINKDOOD TECHNOLOGIES Sdn Bhd", "level": "EAL2", "product": "Linkdood Endpoint Protection System v1.0.0", "certification_date": "2017-07-17", "expiration_date": "2022-07-17", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/111", "enhanced": { "developer": "Lenard LeeUnit 2 Level 3A, 1 Sentral,Jalan Sentral 5,50470 Kuala Lumpur,Wilayah Persekutuan Kuala Lumpur, Malaysia lenard.lee@linkdood.comMobile: +6013 4343816", "status": "Archive", "scope": "This TOE is an endpoint management system that enables consumer to manage their assets such as desktops, laptops and servers in the organization. It enable consumers to perform management of assets, maintenance of assets, security perimeters protections and secure access controls of the assets through secure communications within the internet networks. The following security functions are implemented by the TOE: Security Audit Identification adn Authentication Security Management User Data Protection Secure Communications", "cert_id": "C084", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Linkdood Endpoint Protection System v1.0.0", "certification_date": "2017-07-17", "expiration_date": "2022-07-17", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C084/EAL2-ST-LEP%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C084/ISCB-5-RPT-C084-CR-v1.pdf", "type": "Endpoint management system" } }, { "cert_no": "2016-005-C076", "developer": "Hewlett Packard Enterprise (HPE)", "level": "EAL2", "product": "Hewlett Packard Enterprise ArcSight Enterprise Security Manager (ESM)", "certification_date": "2016-12-14", "expiration_date": "2021-12-14", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/110", "enhanced": { "developer": "Lee IvyEngineering Director, ArcSightHewlett Packard Enterprise Security Products lee.ivy@hpe.comOffice: 650-265-3457Mobile: 408-386-17001160 Enterprise Way (Moffett Towers Building G, 7th Floor),Sunnyvale CA 94089", "status": "Archive", "scope": "ArcSight ESM is a Security Information and Event Management (SIEM) solution that combines event correlation and security analytics to identify and prioritize threats in real time and remediate incidents early. It is able to concentrate, normalize, analyze, and report the results of its analysis of security event data generated by various Intrusion Detection System (IDS) sensors and scanners in the operational environment. ArcSight ESM provides authorized users with capabilities to monitor events, correlate events for in-depth investigation and analysis, and resolve events with automated escalation procedures and actions. The following security functions are implemented by the TOE: Security Audit Identification adn Authentication Security Management Protection of the TSF Trusted Path/Channels Intrusion Detection System", "cert_id": "C076", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Hewlett Packard Enterprise ArcSight Enterprise Security Manager (ESM)", "certification_date": "2016-12-14", "expiration_date": "2021-12-14", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C076/HPE%20ArcSight%20ESM%20ST.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C076/ISCB-5-RPT-C076-CR-v1.pdf", "type": "Security Information and Event Management (SIEM)" } }, { "cert_no": "2018-005-C089", "developer": "Infoblox Inc.", "level": "EAL2+ ALC_FLR.2", "product": "Infoblox Trinzic Appliances with NIOS v8.2.6", "certification_date": "2018-06-22", "expiration_date": "2023-06-22", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/109", "enhanced": { "developer": "Infoblox Inc.3111 Coronado DriveSanta Clara, CA 95954 URL: www.infoblox.comEmail: info@infoblox.comTel: +1 408 986 4000", "status": "Archive", "scope": "The TOE is a network device that consolidates delivery and management of core IP network services including DNS, DHCP, IPAM, FTP, TFTP and HTTP. The TOE also provides the Secure Grid capability which allows Infoblox appliances to work cooperatively in an enterprise deployment. The following security functions are implemented by the TOE: Security Audit; Cryptography Support Identification and Authentication Security Management Protection of the TSF TOE Access Trusted Path/Channels", "cert_id": "C089", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Infoblox Trinzic Appliances with NIOS v8.2.6", "certification_date": "2018-06-22", "expiration_date": "2023-06-22", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C089/Infoblox%20Appliances%20with%20NIOS%20v8.2.6%20ST%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C089/ISCB-5-RPT-C089-CR-v1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2018-007-C097", "developer": "Trend Micro Incorporated", "level": "EAL2", "product": "Trend Micro TippingPoint Security Management System v5.1.0", "certification_date": "2018-10-09", "expiration_date": "2023-10-09", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/108", "enhanced": { "developer": "Paul Tucker | Compliance & CertificationsTrend Micro Incorporated11305 Alterra ParkwayAustin, TX 78758Mobile: 512.633.7945 Email: paul_tucker@trendmicro.com URL: www.trendmicro.com", "status": "Archive", "scope": "The TOE provides a server-based solution that acts as the control center for managing large-scale deployments of TippingPoint devices, including TippingPoint Threat Protection System (TPS) and TippingPoint Intrusion Prevention System (IPS). The following security functions are implemented by the TOE: Security Audit; Identification & Authentication; Security Management; Protection of the TSF; TOE Access; and Trusted path/channels.", "cert_id": "C097", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Trend Micro TippingPoint Security Management System v5.1.0", "certification_date": "2018-10-09", "expiration_date": "2023-10-09", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C097/Trend%20Micro%20SMS%20ST%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C097/ISCB-5-RPT-C097-CR-v1.pdf", "type": "Control center for managing large-scale deployments of network devices" } }, { "cert_no": "2019-002-C074", "developer": "LogRhythm Inc.", "level": "EAL2", "product": "LogRhythm Integrated Solution v7.3 with Microsoft SQL Server 2016 SP1 Standard Edition", "certification_date": "2019-04-12", "expiration_date": "2024-04-12", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/107", "enhanced": { "developer": "LogRhythm Inc.Project & Release Manager, Software EngineeringLogRhythm, Inc.4780 Pearl East CircleBoulder CO, 80301United States of America", "status": "Archive", "scope": "The TOE is the LogRhythm Integrated Solution v7.3 with Microsoft SQL Server 2016 SP1 Standard Edition software. The TOE is a fully integrated Security Information and Event Management (SIEM) solution that collects, categorizes, identifies, and normalizes log data from log sources such as Windows events, syslog, flat file, NetFlow, sFlow, databases, and applications, and provides automated alerting capabilities. The following security functions are implemented by the TOE: Security audit Identification and authentication Security management Protection of the TSF SEM Component requirements", "cert_id": "C074", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "LogRhythm Integrated Solution v7.3 with Microsoft SQL Server 2016 SP1 Standard Edition", "certification_date": "2019-04-12", "expiration_date": "2024-04-12", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C074/LogRhythm%207_ST_v0.93_1-16-2019.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C074/ISCB-5-RPT-C074-v1.pdf", "type": "Security Information and Event Management (SIEM)" } }, { "cert_no": "2020-002-C111", "developer": "Invisiron Pte Ltd", "level": "EAL2", "product": "Invisiron Cyber Defence Platform 3.1.0 executing on S-1000, S-2000, S-4000, S-6000, S-6000DNS, S-6000DDoS and microDefender appliances", "certification_date": "2020-04-16", "expiration_date": "2025-04-16", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/106", "enhanced": { "developer": "1 Pemimpin Drive #08-03, One Pemimpin, Singapore 576151", "status": "Archive", "scope": "The TOE is a software and hardware appliance. Each appliance model operate using an identical software image with identical functionality. The TOE is used as a network monitoring and incident management platform. They implement an intrusion and prevention system and reputation based detection. In addition to the security engines the TOE also provides security event logging and packet capture. This data is stored in files which can be exported out from the platforms. The TOE physical boundary defines all hardware and software that is required to support the TOE’s logical boundary as well as the TOE’s security functionality.", "cert_id": "C111", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Invisiron Cyber Defence Platform 3.1.0 executing on S-1000, S-2000, S-4000, S-6000, S-6000DNS, S-6000DDoS and microDefender appliances", "certification_date": "2020-04-16", "expiration_date": "2025-04-16", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C111/Invisiron_CDP_Security_Target_v10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C111/ISCB-5-RPT-C111-CR-v1a.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2019-005-C100", "developer": "1. Infoblox Inc. 2390 Mission College Blvd Suite 501, Santa Clara California 95054 United States of America 2. Leidos Inc. 6841 Benjamin Franklin Drive, Columbia Maryland 21046 United States of America", "level": "EAL2+ ALC_FLR.2", "product": "Infoblox Trinzic Appliances with NIOS v8.5.2", "certification_date": "2019-06-17", "expiration_date": "2024-06-17", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/104", "enhanced": { "developer": "Infoblox Inc.2390 Mission College BlvdSuite 501,Santa ClaraCalifornia 95054United States of America Website: https://www.infoblox.com", "status": "Archive", "scope": "The TOE is a network device that consolidates the delivery and management of core IP network services including DNS, DHCP, IPAM, FTP, TFTP, and HTTP. In addition to providing core network services expected from a network device, the TOE also provides Network Insight Discovery Services, Threat Insight, Response Policy Zone (RPZ) capabilities, and Secure Grid functionality. The TOE NIOS operating system is a hardened Linux distribution optimised for security and network performance. All algorithms implemented in support of SSH/TLS/HTTPS have been validated against CAVP requirements. It supports both CC Mode and FIPS mode which can meet the requirements for the CC evaluation. FIPS Mode also complies with FIPS certification standard to include required additional start-up steps.", "cert_id": "C100", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Infoblox Trinzic Appliances with NIOS v8.5.2", "certification_date": "2019-06-17", "expiration_date": "2024-06-17", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C118/Infoblox_Trinzic_Appliances_with_NIOS_v852_ST.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C118/ISCB-5-RPT-C118-CR-v1.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2020-001-C108", "developer": "RSA - The Security Division of EMC2", "level": "EAL2+ ALC_FLR.1", "product": "RSA NetWitness Platform v11.3", "certification_date": "2020-04-03", "expiration_date": "2025-04-03", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/103", "enhanced": { "developer": "10700 Parkridge Blvd. Suite 600 Reston, VA 20191", "status": "Archive", "scope": "RSA NetWitness Platform v11.3 is a collection of appliances that form a security infrastructure for an enterprise network. This architecture provides converged network security monitoring and centralised security information and event management (SIEM). The TOE provides real-time visibility into the monitored network and long-term network data storage to provide detection, investigation, analysis, forensics, and compliance reporting. The product collects log and packet data from the network. Packet collection extracts metadata, reassembles, and globally normalises all network traffic at layers 2 through 7 of the Open Systems Interconnection (OSI) model. This data allows NetWitness to perform real-time session analysis; incident detection, drill-down investigation, reporting, and forensic analysis functions.", "cert_id": "C108", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.1", "product": "RSA NetWitness Platform v11.3", "certification_date": "2020-04-03", "expiration_date": "2025-04-03", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C108/RSA_Netwitness_v113_v10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C108/ISCB-5-RPT-C108-CR-V1_.pdf", "type": "Network and Network-Related Devices and Systems" } }, { "cert_no": "2020-004-C105", "developer": "Open Kod Sdn. Bhd.", "level": "EAL2", "product": "Durio Unified Threat Management (UTM) v3.2.5", "certification_date": "2020-07-14", "expiration_date": "2025-07-14", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/101", "enhanced": { "developer": "Open Kod Sdn. Bhd.Suite 3-3A 4805,CBD Perdana 2Jalan Perdana Cyber 12Cyberjaya 63000Selangor Tel: +6038318 6736Email: enquiry@openkod.comWebsite: www.openkod.com", "status": "Archive", "scope": "The TOE is a hardware appliance that includes several features such as firewall. antivirus software, content filtering and a spam filter in a single integrated package. The TOE is designed to provide firewall services ensuring network protection for Internet Protocol version 4 (IPv4) and Internet Protocol version 6 (IPv6) networks. The TOE is capable of robust filtering based on information contained in IPv4, IPv6, ICMPv4, ICMPv6, TCP and UDP headers as specified by their respective RFC’s. Additionally, the TOE is capable of content inspection of FTP and H.323 protocols to work with the dynamic nature of these protocols. The TOE has extensive logging capabilities. These audit logs are capable of being exported to an external syslog server over a protected channel for further analysis and inspection.", "cert_id": "C105", "category": "Network and Network-Related Devices and Systems", "assurance_level": "EAL2", "product": "Durio Unified Threat Management (UTM) v3.2.5", "certification_date": "2020-07-14", "expiration_date": "2025-07-14", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C105/Open_Kod_Durio_Security_Target_v10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C105/ISCB-5-RPT-C105-CR-v1.pdf", "type": "Data Protection" } }, { "cert_no": "2013-001-C037", "developer": "AEP Networks Ltd.", "level": "EAL4+ AVA_VAN.5", "product": "Keyper Hardware Security Module (HSM) v2.0: a) Enterprise (Hardware: 9720, Software: 011126) b) Professional (Hardware: 9720, Software: 010405)", "certification_date": "2013-01-04", "expiration_date": "2018-01-04", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/98", "enhanced": { "developer": "AEP Networks Ltd. Knaves Beech Business Centre,Loudwater, Buckinghamshire,HP10 9UT,UNITED KINGDOM. URL: http://www.aepnetworks.com/Email: aepmarketing@ultra-aep.comPhone: +44 1628 642 600Fax: +44 1628 642 605", "status": "Archive", "scope": "Keyper Hardware Security Module (HSM) v2.0 or the Target of Evaluation (TOE) is a dedicated hardware product which provides secure digital signature services, cryptographic services and key management services to applications that reside on physically separate host computer systems. The TOE is a secure module that is contained within an outer casing. The outer casing includes a Keypad, LCD screen, smart card reader and a number of external ports; they are out of the evaluation scope. The TOE is tamper reactive; and has been validated against the requirements for the FIPS PUB 140-2 at level 4. Keyper Hardware Security Module (HSM) v2.0 is intended for use in a dedicated network with devices and applications that make use of its cryptographic functions. Keyper Hardware Security Module (HSM) v2.0 should be provided appropriate physical and logical protections. The TOE encompasses two models: AEP Keyper Enterprise (Hardware: 9720, Software: 011126) and AEP Keyper Professional (Hardware: 9720, Software: 010405). Both models share the same features and architecture (the only difference is performance), therefore both models shall be considered together. Two additional “High Availability” models also exist, however they are out of the scope of this evaluation. The functions of the TOE that are within the scope of evaluation covering: Secure generation, distribution and destruction of cryptographic keys. Secure storage and management of keys throughout their lifecycle. User authentication to facilitate controlled access to cryptographic key management and TOE management functions by trusted personnel only. Security management to enable role-based management of the core functions of the TOE. Access control for key management functions to ensure that only specified roles are permitted to perform defined tasks. Auditing of security relevant events to provide suitable accountability. Self-test of the core cryptographic functions and algorithms of the TOE. Tamper protection to ensure that the TOE is adequately protected from unauthorised physical access.", "cert_id": "C037", "category": "Key Management System", "assurance_level": "EAL4+ AVA_VAN.5", "product": "Keyper Hardware Security Module (HSM) v2.0: a) Enterprise (Hardware: 9720, Software: 011126) b) Professional (Hardware: 9720, Software: 010405)", "certification_date": "2013-01-04", "expiration_date": "2018-01-04", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C037/AEP_Keyper_EAL4_ASE_1.3.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C037/ISCB-5-RPT-C037-CR-v1a.pdf", "type": "Web based frontend to the Microsoft Certification Authority (CA) services" } }, { "cert_no": "2011-008-C012", "developer": "eVault Technologies Sdn Bhd", "level": "EAL2", "product": "eTrust Certificate Management System Version 3.5", "certification_date": "2011-04-19", "expiration_date": "2016-04-19", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/97", "enhanced": { "developer": "Liew Chee Meng 1st Floor, Block G,Excella Business Park,Jalan Ampang Putra,Taman Ampang Hilir,55100 Kuala Lumpur,MALAYSIA URL: http://www.evault.com.my/Email: jimmy@evault.com.myMobile: +6016 3222 817Phone: +603 4270 7661Fax: +603 4270 7662", "status": "Archive", "scope": "eTrust CMS is a web based frontend to the Microsoft Certification Authority (CA) services. eTrust CMS provide separation of roles in the management of certificates from creation to revocation and recovery, as appropriate for the organisation. There are two subsystems in eTrust CMS that are included in the scope of the evaluation: SeTrust CMS Website – hosted behind the second firewall in the corporate network. It is used by the internal authorised officer to manage the certificate lifecycle; and eTrust CA Portal – it is use by the applicant over the Internet to download their certificate and root certificate. Database, Directory (Certificate & CRL Repository) manages by Microsoft CA, hardware, and Operating System (including Microsoft Certificate Authority and Hardware Security Module (HSM)) are not part of the TOE. However, their services are essential to the operation of the TOE.", "cert_id": "C012", "category": "Key Management System", "assurance_level": "EAL2", "product": "eTrust Certificate Management System Version 3.5", "certification_date": "2011-04-19", "expiration_date": "2016-04-19", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C012/eTrust%20Certificate%20Management%20System%203.5%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C012/ISCB-5-RPT-C012-CR-v1a.pdf", "type": "Web based frontend to the Microsoft Certification Authority (CA) services" } }, { "cert_no": "2013-009-C049", "developer": "WannaStation.com (M) Sdn Bhd", "level": "EAL2", "product": "PKID ECC Generator v1.1", "certification_date": "2013-11-20", "expiration_date": "2018-11-20", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/96", "enhanced": { "developer": "Gan Chin Sam WannaStation.com (M) Sdn BhdLot 1109-A, 10th Floor Kelana Parkview Tower,No 1, Jalan SS6/2, Kelana Jaya,47301 Petaling Jaya, Selangor Darul EhsanMALAYSIA URL: http://www.wannastation.com/Email: gan@wannastation.comPhone: +603 7885 0977Fax: +603 7885 0979", "status": "Archive", "scope": "The Target of Evaluation (TOE) is PKID ECC Generator v1.1, software that generates public and private keys based on a user definable and recognisable ID of ASCII characters or known as PKID. A user may choose a PKID unique to himself or herself, such as PC/Notebook MAC address, IMEI number and email address. A chosen PKID will become the seed to generate a public and private key through a series of key generation processes. The generated public and private keys are tied to the chosen PKID. Using algorithm based on elliptic curve encryption algorithm, much smaller key size will be used and desirable as it allows the application on PC, smart phones or mobile communication devices for multi-function security applications. The evaluation scope only covers: the generation of the Master Key based on random keystroke input from client organisation. The Master Key will be used to generate the customised PKID ECC Generator specific to that client organisation, and the generation of public and private keys together with the access code, based on the user’s PKID entered manually to the generated customised PKID ECC Generator.Hardware, software like automation Detection Software and operating system, and revocation, destruction and recovery of keys are not covered in the TOE scope. The scope of evaluation covers major security features as follows: Authentication – in order to generate the customised PKID ECC Generator which is specific to the client organisation, authentication is required by the TOE administrator before the Master Key can be imported into the generator. Authentication is also required by the TOE administrator to access the customised PKID ECC Generator before any further action is permitted. Security Management – provides management of TOE security functions during customisation of the PKID ECC generator such as setting the access code for the generated Master Key, management of public and private keys, and management of administrator credential in the customised PKID ECC generator. Cryptographic Support – provides generation of Master Key during customisation of the PKID ECC Generator based on the random keystroke input from client organisation, and generation of public and private keys together with access code, in customised PKID ECC Generator using specified encryption algorithm.", "cert_id": "C049", "category": "Key Management System", "assurance_level": "EAL2", "product": "PKID ECC Generator v1.1", "certification_date": "2013-11-20", "expiration_date": "2018-11-20", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C049/PKIDECC-ST-v1.0-071013.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C049/ISCB-5-RPT-C049-CR-v1a.pdf", "type": "Software that generates public and private keys based on a user definable and recognisable ID of ASCII characters or known as PKID." } }, { "cert_no": "2015-004-C059", "developer": "QuintessenceLabs", "level": "EAL2", "product": "qCrypt-xStream R1.1", "certification_date": "2015-04-03", "expiration_date": "2020-04-03", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/95", "enhanced": { "developer": "QuintessenceLabsUnit 1 Lower Ground15 Denison StDeakin, ACT 2600 URL:http://www.quintessencelabs.com/", "status": "Archive", "scope": "The TOE is a cryptographic key management appliance, designed to centrally manage enterprise digital keys and certificates for enterprise applications, users and devices throughout their full life cycle, including key generation, distribution, usage, automated rotation and renewal in line with TOE-defined policy. The TOE primary features include: Secure generation, distribution and destruction of cryptographic keys; On-board cryptographic functions to secure traffic sent between the TOE and external users, Secure storage and management of keys throughout their lifecycle, Role-based authentication and access control mechanisms to facilitate controlled access to cryptographic key management and TOE management functions by trusted personnel only; Functionality to detect errors in received traffic or replay attacks; Auditing of security relevant events to provide suitable accountability; Protection of stored audit data to prevent modification or accidental deletion; and Self-test of the core cryptographic functions and algorithms of the TOE.", "cert_id": "C059", "category": "Key Management System", "assurance_level": "EAL2", "product": "qCrypt-xStream R1.1", "certification_date": "2015-04-03", "expiration_date": "2020-04-03", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C059/0001363%20-%20qCrypt-xStream%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C059/ISCB-5-RPT-C059-CR-v1.pdf", "type": "Key Management Systems" } }, { "cert_no": "2016-002-C068", "developer": "Hewlett Packard Enterprise", "level": "EAL2+ ALC_FLR.2", "product": "Hewlett Packard Enterprise Enterprise Secure Key Manager v5.0", "certification_date": "2016-05-30", "expiration_date": "2021-05-30", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/94", "enhanced": { "developer": "Hewlett Packard EnterpriseTel: 541 360 6218Email: indra.fitzgerald@hpe.com1160 Enterprise WaySunnyvale, California 94089 USA URL: Hewlett Packard Enterprise", "status": "Archive", "scope": "The ESKM provides capabilities for generating, storing, serving, controlling and auditing access to data encryption keys. It enables organizations to protect and preserve access to business-critical, sensitive, data-at-rest encryption keys, both locally and remotely. The TOE is an appliance that provides security policy and key management services to encrypting client devices and applications. The TOE primary features include: Security Audit Cryptographic Support User Data Protection Identification and authentication Security Management TSF Protection TOE Access Trusted Channel/ Path", "cert_id": "M006", "category": "Key Management System", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Hewlett Packard Enterprise Enterprise Secure Key Manager v5.0", "certification_date": "2016-05-30", "expiration_date": "2021-05-30", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C068/HP%20Atalla%20ESKM%20ST%201-0%20-clean.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C068/ISCB-5-RPT-C068-CR-1-v1.pdf", "type": "Key Management Systems" } }, { "cert_no": "2019-005-C100", "developer": "Blue Fortress Sdn Bhd", "level": "EAL2", "product": "Fortix Security Suite version 1.17.1", "certification_date": "2019-06-17", "expiration_date": "2024-06-17", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/93", "enhanced": { "developer": "Unit 05-06, Level 5, Tower B,Vertical Business Suite, Avenue 3,No. 8, Jalan Kerinchi, Bangsar South,59200 Kuala Lumpur, Malaysia Email: enquiry@blue-fortress.comTel. No: +603-2712 6666 @ +6012-201 5559URL: www.blue-fortress.com", "status": "Archive", "scope": "The TOE is a web application and web services to support secure delivery of PIN to customers and secure data communication between endpoints. The following security functions are implemented by the TOE: Identification and authentication User data protection Security management TOE access Security Audit", "cert_id": "C100", "category": "Key Management System", "assurance_level": "EAL2", "product": "Fortix Security Suite version 1.17.1", "certification_date": "2019-06-17", "expiration_date": "2024-06-17", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C100/Fortix%20Security%20Suite%20Security%20Target%200.5.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C100/ISCB-5-RPT-C100-CR-v1.pdf", "type": "Secure delivery of PIN and data communication between endpoints" } }, { "cert_no": "2019-008-C101", "developer": "Teron Labs Pty Ltd Verizon Australia Pty Ltd", "level": "EAL2+ ALC_FLR.2", "product": "Verizon UniCERT v5.4.1", "certification_date": "2019-07-15", "expiration_date": "2024-07-15", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/92", "enhanced": { "developer": "Teron Labs Pty Ltd Level 7,221 London Circuit Canberra,ACT 2601 AustraliaTelephone: +61 2 6172 1261Email: info@teronlabs.com Verizon AustraliaPty Ltd 330 Spencer St,West Melbourne VIC 3003, Australia", "status": "Archive", "scope": "The TOE is Verizon UniCERT v5.4.1 is a software product which provides all the (PKI-specific) functionality needed to implement a Public Key Infrastructure (PKI) system. The primary function of a PKI system is to issue and manage digital certificates that allow other IT systems to verify the identity of the holder. UniCERT provides all the functionality needed to implement a PKI system, essentially a system that provides certificate registration, PKI management, a Certification Authority, and certificate lifecycle management functions. The TOE can then be used to manage all the keys necessary for a system requiring security for end users, such as a secure messaging system, or secure use of Web browsers. UniCERT provides the ability to set up a centralized or a distributed PKI for organizations of any size. The TOE includes the following core components: Certification Authority (CA) core component. The CA is responsible for the generation and issuance (i.e. publication or distribution) of certificates and certificate revocation lists, and for the overall management of certificates and the PKI in general. Registration Authority (RA) core component. The RA is responsible for gathering registration information and revocation requests, authorizing requests, and handling renewals. The control over the functions the Registration Authority components are allowed to perform is provided by the Certification Authority Operator component. Although the TOE provides all the PKI-specific functionality needed to implement a PKI system, such a system must be hosted on a hardware platform and must also include a Windows or Linux operating system, a database management system (Oracle), a web server, and a browser.", "cert_id": "C104", "category": "Key Management System", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Verizon UniCERT v5.4.1", "certification_date": "2019-07-15", "expiration_date": "2024-07-15", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C104/Verizon%20(B190101)%20UniCERT%205.4.1%20Security%20Target%201.2.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C104/ISCB-5-RPT-C104-CR-V1a.pdf", "type": "Software product which provides all the (PKI-specific) functionality needed to implement a Public Key Infrastructure (PKI) System." } }, { "cert_no": "2019-003-C086", "developer": "Datasonic Smart Solutions Sdn Bhd", "level": "EAL4+ ALC_DVS.2 ALC_FLR.2", "product": "Datasonic Chip Operating System (DCOS) version 1.0", "certification_date": "2019-05-02", "expiration_date": "2024-05-02", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/90", "enhanced": { "developer": "Datasonic Smart Solutions Sdn BhdNO A1-1, Block A, Jalan Radius 1/1B,Off Jalan Teknokrat 2/1, Radius, Cyber 4,63000 Cyberjaya, Selangor, Malaysia Tel: +603 8861 5311Fax: +603 8861 5175", "status": "Archive", "scope": "The TOE, Multi-application Smart Card Operating System is composed of hardware and software components. The TOE operates as a platform that store cardholder credentials as definitive electronic national identity card in which serves as national e-passport. The following security functions are implemented by the TOE: File Management. Generic Application and Platform Management. Cryptographic Management. TOE Self Protection and Testing.", "cert_id": "C086", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "assurance_level": "EAL4+ ALC_DVS.2 ALC_FLR.2", "product": "Datasonic Chip Operating System (DCOS) version 1.0", "certification_date": "2019-05-02", "expiration_date": "2024-05-02", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C086/Datasonic%20DCOS%20EAL4+%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C086/ISCB-5-RPT-C086-CR-v1.pdf", "type": "Multi-application Smart Card Operating System" } }, { "cert_no": "2012-006-C006", "developer": "MCS Microsystems Sdn Bhd", "level": "EAL4+ ALC_DVS.2 ALC_FLR.1", "product": "MCS Small Machine Operating System - Common Criteria (SMOSCC)", "certification_date": "2012-09-25", "expiration_date": "2017-09-25", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/89", "enhanced": { "developer": "HW Chew 4th Floor, IRIS Smart Technology Complex,Technology Park Malaysia, Bukit Jalil, 57000 Kuala LumpurMALAYSIA URL: http://www.mcs-group.com.myEmail: hwchew@mcs-group.com.myPhone: +603 8996 9168Fax: +603 8996 3168", "status": "Archive", "scope": "Small Machine Operating System – Common Criteria or SMOSCC version 1.0.0 is a multi-application smart card integrated circuit (IC) operating system purpose-designed for national ID applications which also serves as an ideal platform for national e-passport. SMOSCC from MCS Microsystem Sdn Bhd is the Target of Evaluation (TOE) for Evaluation Assurance Level (EAL) 4 augmented with ALC_DVS.2 and ALC_FLR.1 evaluation. SMOSCC simultaneously supports multiple custom applets with custom instruction sets and data structures from several agencies on a single smart card, limited only by the IC specification. Consider a national ID card with a host of other functions like driving license, PKI token, e-purse, and frequent traveller which will simplify the cardholder’s dealings with various private and public agencies. The TOE includes an instruction agnostic virtual machine environment capable of providing a portable interface for smart card applications. It also provides several libraries providing hardware IC services such as cryptography to third party applications. The TOE implements the following components that reside upon hardware platform IC as mention below: Small Machine - To implement a virtual machine to run loaded application and runtime API. Early Lifecycle Manager - Used during the first phases of the TOEs lifecycle in order to commence the setup of the TOE. SMOS Card Manager - Used once the TOE is an initialised state and manages the installation and removal of loaded applications and the SMOS card lifecycle. Hardware Abstraction Layer - To provide access to low level IC routines. The security function within the scope of TOE includes: Application Firewall - To prevent applications from interfering with the execution and private data of other loaded applications and the operation of the TOE itself. Application and Platform Management - To provide functionality for managing the secure installation/removal of loaded applications and enforcing its lifecycle. Cryptographic Management - To utilise cryptographic mechanism in order to enforce the remaining TOE security functions. TOE Self Protection and Testing - To provide a secure environment on which to host loaded applications. The TOE protects itself from physical tampering attacks and hardware failures by working in conjunction with its underlying hardware platform. The TOE runs on a Common Criteria certified smart card IC hardware platform specified in Section 1.4 of the Security Target (Ref [6]). However, the underlying IC hardware platform, card acceptance devices and loaded applications (applets) are not part of the TOE. It communicates with card acceptance devices which exist within the environment, and supports ISO/IEC 7816 contact based, and ISO/IEC 14443 contactless based card acceptance devices.", "cert_id": "C006", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "assurance_level": "EAL4+ ALC_DVS.2 ALC_FLR.1", "product": "MCS Small Machine Operating System - Common Criteria (SMOSCC)", "certification_date": "2012-09-25", "expiration_date": "2017-09-25", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C006/SMCC-CC-ST-1v0v0(Public).pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C006/ISCB-5-RPT-C006-CR-v1a.pdf", "type": "Multi-application smart card integrated circuit (IC) operating system" } }, { "cert_no": "2019-001-C094", "developer": "MCS Microsystems Sdn Bhd", "level": "EAL4+ ALC_DVS.2 ATE_DPT.2 AVA_VAN.5", "product": "ePassport Application on MOS version 1.0.0", "certification_date": "2019-04-08", "expiration_date": "2024-04-08", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/88", "enhanced": { "developer": "MCS Microsystems Sdn Bhd4th Floor, IRIS Smart Technology Complex,Technology Park Malaysia,Bukit Jalil 57000 Kuala Lumpur", "status": "Archive", "scope": "The TOE, MCS Multi-Application Operating System (MOS) is a secure and powerful chip operating system purpose designed for trusted ID applications, especially e-passport and possibly ISO-compliant driving license and national ID. The following security functions are implemented by the TOE: File Manager based on the ISO/IEC 7816 standard. GlobalPlatform Card Manager. Early Lifecycle Manager. Biometric match-on-chip (optional).", "cert_id": "C094", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "assurance_level": "EAL4+ ALC_DVS.2 ATE_DPT.2 AVA_VAN.5", "product": "ePassport Application on MOS version 1.0.0", "certification_date": "2019-04-08", "expiration_date": "2024-04-08", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C094/MOS-CC-SecurityTarget-1v0v0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C094/ISCB-5-RPT-C094-CR-V1.pdf", "type": "Other Devices and Systems" } }, { "cert_no": "2011-006-C025", "developer": "SecureMetric Technology Sdn Bhd", "level": "EAL1", "product": "SecureToken ST3 version 1.0", "certification_date": "2011-03-21", "expiration_date": "2016-03-21", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/86", "enhanced": { "developer": "Tang En Lai2-2, Incubator 2, Technology Park MalaysiaLebuhraya Puchong - Sg. Besi, Bukit Jalil57000 Kuala LumpurMALAYSIA URL: www.securemetric.comEmail: enlai@securemetric.comPhone: +603 8996 8225Fax: +603 8996 7225", "status": "Archive", "scope": "SecureToken ST3 Version 1.0 is PKI-related security solution that is designed for Public Key Infrastructure (PKI) authentication token that stores digital identification. It provides a USB token with a security integrated circuit card (ICC) that is embedded with the SecureCOS and offers core PKI-related cryptographic functions. The evaluated security functionalities includes: Cryptographic Operation. User Authentication. Security Management.", "cert_id": "C025", "category": "Products for Digital Signatures", "assurance_level": "EAL1", "product": "SecureToken ST3 version 1.0", "certification_date": "2011-03-21", "expiration_date": "2016-03-21", "mutual_recognition": "MyCC", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C025/ISCB-5-RPT-C025-CR-v1a.pdf", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C025/SecureMetric%20EAL1%20Security%20Target%20(SecureToken%20ST3)%20v1.0.pdf", "type": "PKI-related security solutions" } }, { "cert_no": "2013-012-C051", "developer": "SecureMetric Technology Sdn Bhd", "level": "EAL2", "product": "ST3 Ace (ST3 Ace Token Manager v1.0.13.927, ST3 Ace Middleware v1.0.13.910, and SecureCOS Firmware v5.2)", "certification_date": "2013-12-20", "expiration_date": "2018-12-20", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/85", "enhanced": { "developer": "Yau Wai Chung2-2, Incubator 2, Technology Park MalaysiaLebuhraya Puchong - Sg. Besi, Bukit Jalil57000 Kuala LumpurMALAYSIA URL: http://www.securemetric.comEmail: nickson@securemetric.comPhone: + 603-8996 8225Fax: + 603-8996 7225", "status": "Archive", "scope": "The Target of Evaluation (TOE) is ST3 Ace that consists of ST3 Ace Token Manager v1.0.13.927, ST3 Ace Middleware v1.0.13.910, and SecureCOS Firmware v5.2. The TOE provides secure storage to store digital certificate(s) and cryptographic keys. The ST3 Ace follows the PKCS#11 standard and implements authentication via PIN to prevent unauthorised access to the token. The TOE is comprised of the three following core components of the ST3 Ace product: SecureCOS Operating System: The operating system (firmware) embedded in a microprocessor smart chip based USB token. The firmware provides the core cryptographic functionality of the TOE. ST3 Ace Middleware: Two compiled binaries that utilise exported APIs to provide an interface to the core cryptographic security functionality of the TOE, providing developers with an easily accessible method for engaging PKI-related functionality to support the development of enterprise authentication and integrity solutions. ST3 Ace Token Manager: The TOE provides an application for the user to manage the cryptographic key security of the TOE. The middleware and Token Manager are installed on a host computer for third party application to communicate with SecureCOS and provides key security functionality of the TOE. The scope of evaluation covers major security functions described as below: Cryptographic Operations - The TOE provides cryptographic library, which includes 3DES, RSA, MD5 and SHA-1, for cryptographic operations that can be used by third party applications such as encryption and decryption of email. The third party applications are outside the TOE evaluation scope. The TOE also provides the functionality to digitally sign documents and files. User Authentication - The TOE allows authorised users to access the TOE once the user is successfully identified and authenticated by the TOE. TOE user has to provide correct user PIN in order to access to TOE. The TOE enforces token blocking after 6 failed authentication attempts and Security Officer (SO) PIN is needed to unblock the token and reset the user PIN. The integration with the Token Management System Registration Authority (TMS RA) will allow a user to unblock the TOE and reset the User PIN without to deliver the physical token to the token management team. However, Secure Code is required in order to submit the unblock request or reset user PIN via TMS RA. TMS RA is outside the scope of the evaluation. Security Management - The TOE provides management functions such as token management (name change, PIN change, unblock token) and object management (view object, export/import object).", "cert_id": "C051", "category": "Products for Digital Signatures", "assurance_level": "EAL2", "product": "ST3 Ace (ST3 Ace Token Manager v1.0.13.927, ST3 Ace Middleware v1.0.13.910, and SecureCOS Firmware v5.2)", "certification_date": "2013-12-20", "expiration_date": "2018-12-20", "mutual_recognition": "MyCC", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C051/ISCB-5-RPT-C051-CR-v1a.pdf", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C051/SecureMetric%20ST3%20Ace%20Security%20Target%20v1.1.pdf", "type": "PKI-related security solutions that provides secure storage to store digital certificate(s) and cryptographic keys." } }, { "cert_no": "2011-009-C022", "developer": "SecureMetric Technology Sdn Bhd", "level": "EAL1", "product": "SecureCOS PKI Hybrid version 1.0", "certification_date": "2011-04-25", "expiration_date": "2016-04-25", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/84", "enhanced": { "developer": "Tang En Lai2-2, Incubator 2, Technology Park MalaysiaLebuhraya Puchong - Sg. Besi, Bukit Jalil57000 Kuala LumpurMALAYSIA URL: www.securemetric.comEmail: enlai@securemetric.comPhone: +603 8996 8225Fax: +603 8996 7225", "status": "Archive", "scope": "SecureCOS PKI Hybrid Version 1.0 is PKI-related security solution that is designed for Public Key Infrastructure (PKI) authentication token that stores digital identification. It provides a smartcard with contact and contactless interfaces and embedded with a security integrated circuit card (ICC) that is embedded with the SecureCOS and offers core PKI-related cryptographic functions. The evaluated security functionalities includes: Cryptographic Operation. User Authentication. Security Management.", "cert_id": "C022", "category": "Products for Digital Signatures", "assurance_level": "EAL1", "product": "SecureCOS PKI Hybrid version 1.0", "certification_date": "2011-04-25", "expiration_date": "2016-04-25", "mutual_recognition": "CCRA", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C022/ISCB-5-RPT-C022-CR-v1a.pdf", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C022/SecureMetric%20EAL1%20Security%20Target%20(SecureCOS%20PKI%20Hybrid)%20v1.0.pdf", "type": "PKI-related security solutions" } }, { "cert_no": "2013-013-C053", "developer": "EZMCOM Inc.", "level": "EAL2", "product": "EzIdentityTM mSignTM (Android v2.0.0.1 & iOS v2.0.0.1) and EzIdentityTM Authentication Platform v4.0.0.2", "certification_date": "2013-12-27", "expiration_date": "2018-12-27", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/83", "enhanced": { "developer": "Anupam Ratha2B-23A-3, Block 2B,Plaza Sentral, Jalan Stesen Sentral 5,50470 Kuala Lumpur,MALAYSIA URL: http://www.ezmcom.comEmail: anupam@ezmcom.comPhone: +6012-570-1114", "status": "Archive", "scope": "EzIdentity™ mSign™ (Android v2.0.0.1 & iOS v2.0.0.1) and EzIdentity™ Authentication Platform v4.0.0.2 (hereafter referred as mSign and EzIdentity Platform) from EZMCOM Inc. are the Target of Evaluation (TOE) for this Evaluation Assurance Level (EAL) 2 evaluation. The TOE is consists of two components as follows: Client side: EzIdentity™ mSign. mSign is a smartphone based application that provides users with the ability to apply digital signatures to documents and data that the users receive. The application allows for the generation of a digital signature, which can then be used to approve and sign transactions (such as internet banking, funds transfers, etc.). In addition, the application supports the generation of One Time Password (OTP) for software initialisation and challenge response code in order to unblock the blocked user. Server side: EzIdentity™ Authentication Platform. EzIdentity platform supports an organisations deployment of the mSign application by providing a back-end platform to manage and control deployment and configuration. The platform assists in the transfer of transaction data to be signed between third parties and mSign users, provides user and role management, security and management functions and allows organisations to manage and configure all aspects of both the EzIdentity platform and mSign application deployment. The scope of evaluation covers major security functions described as follows: Security Audit - EzIdentity platform generates audit records for security events. The Administrator, Super Operator and Operator who have roles with access to the audit report module are allowed to view the audit trail. Data Protection - User data such as device ID, user PIN and signature data that is stored within mSign application is encrypted with Triple-DES encryption to prevent from data modification and unauthorised access. Identification and Authentication - The TOE, both mSign and EzIdentity platform, enforce user identification and authentication mechanism prior to allow user to any user action or information flow being permitted. mSign user is required to enter user PIN before permitted to perform any actions. On the EzIdentity platform, users such as Administrators, Super Operators, and Operators must be authenticated using correct combination of username and password before permitted to perform any administrative functions. Security Management - EzIdentity platform provides a wide range of security management function for Administrators including TOE configuration, manage mSign client application, managing users, assign the information flow policy, and audit management among other routine maintenance activities. TOE Access - TOE provides session termination based on time limitation set on user inactivity. The TOE also enforce user blocking session if the user have wrongly entered user PIN after certain number of invalid authentication attempts are made. In order to unblock the session, user is required to request Challenge Response Code which will be sent to his or her registered mobile phone or email as defined during user registration process. Cryptographic Operation - Both mSign and EzIdentity platform provide users with functionality to digitally sign files, data and sensitive transaction (such as internet banking transfer) to provide integrity and non-repudiation. It also provides One Time Password (OTP) generation, secure transit of data between TOE components and secure storage of user data on device.", "cert_id": "C053", "category": "Products for Digital Signatures", "assurance_level": "EAL2", "product": "EzIdentityTM mSignTM (Android v2.0.0.1 & iOS v2.0.0.1) and EzIdentityTM Authentication Platform v4.0.0.2", "certification_date": "2013-12-27", "expiration_date": "2018-12-27", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C053/EZMCOM%20EzIdentity%20Security%20Target%20v1.1.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C053/ISCB-5-RPT-C053-CR-v1a.pdf", "type": "Software product used for digital signing of data, file, or transaction that includes the client and server components of the EzIdentityTM.Software product used for digital signing of data, file, or transaction that includes the client and server components of the EzIdentityTM." } }, { "cert_no": "2020-009-C109", "developer": "MIMOS Berhad", "level": "EAL2", "product": "MyDigital ID v1.1 consists of MyDigital ID Client v1.1 and MyDigital ID Server v1.1", "certification_date": "2020-11-24", "expiration_date": "2025-11-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/82", "enhanced": { "developer": "Jalan Inovasi 3, Taman Teknologi Malaysia, 57000, Wilayah Persekutuan Kuala Lumpur Tel: +603-8995 5000Email: info@mimos.myWebsite: http://www.mimos.my", "status": "Archive", "scope": "MyDigital ID v1.1 consists of MyDigital ID Client v1.1 and MyDigital ID Server v1.1. The TOE is a digital identity management and transaction signing platform. TOE provides convenient and secure method for third party mobile applications to use the digital identity of mobile. The TOE implements the digital identity management and signing capability which is, reside as a mobile application that utilize the communication protocol and responsible for the message exchange between TOE client and TOE Server, via inter-app communication protocol on the mobile platform. The TOE includes the following security functions: Cryptographic Operation Identification & Authentication Data Protection Secure Communication", "cert_id": "C109", "category": "Access Control Devices and System", "assurance_level": "EAL2", "product": "MyDigital ID v1.1 consists of MyDigital ID Client v1.1 and MyDigital ID Server v1.1", "certification_date": "2020-11-24", "expiration_date": "2025-11-24", "mutual_recognition": "CCRA", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C109/ISCB-5-RPT-C109-CR-v1.pdf", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C109/MyDigital_ID_v11_EAL2_ST_v10_1.pdf", "type": "Products for Digital Signatures" } }, { "cert_no": "2020-008-C103", "developer": "MIMOS Berhad", "level": "EAL3+ALC_FLR.2", "product": "MyDigital ID v1.1 consists of MyDigital ID Client v1.1 and MyDigital ID Server v1.1", "certification_date": "2020-11-24", "expiration_date": "2025-11-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/81", "enhanced": { "developer": "Jalan Inovasi 3, Taman Teknologi Malaysia, 57000, Wilayah Persekutuan Kuala Lumpur Tel: +603-8995 5000Email: info@mimos.myWebsite: http://www.mimos.my", "status": "Archive", "scope": "MyDigital ID v1.1 consists of MyDigital ID Client v1.1 and MyDigital ID Server v1.1. The TOE is a digital identity management and transaction signing platform. TOE provides convenient and secure method for third party mobile applications to use the digital identity of mobile. The TOE implements the digital identity management and signing capability which is, reside as a mobile application that utilize the communication protocol and responsible for the message exchange between TOE client and TOE Server, via inter-app communication protocol on the mobile platform. The TOE includes the following security functions: Cryptographic Operation Identification & Authentication Data Protection Secure Communication", "cert_id": "C103", "category": "Products for Digital Signatures", "assurance_level": "EAL3+ALC_FLR.2", "product": "MyDigital ID v1.1 consists of MyDigital ID Client v1.1 and MyDigital ID Server v1.1", "certification_date": "2020-11-24", "expiration_date": "2025-11-24", "mutual_recognition": "CCRA", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C103/ISCB-5-RPT-C103-CR-v1.pdf", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C103/MyDigital_ID_v1.1_ST_v1.0.pdf", "type": "Products for Digital Signatures" } }, { "cert_no": "2013-002-C010", "developer": "TecForte Sdn Bhd", "level": "EAL2", "product": "Log Radar v3.2.15 with modules Console, Collector and Archiver", "certification_date": "2013-02-13", "expiration_date": "2018-02-13", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/80", "enhanced": { "developer": "Leong Wei Khuan Level 27, Quill 7,Jalan Stesen Sentral 5,Kuala Lumpur Sentral,50470 Kuala Lumpur,MALAYSIA. URL: http://www.tecforte.comEmail: wkhuan@tecforte.comPhone: +603 2776 6936Fax: +603 2776 6999", "status": "Archive", "scope": "The Target of Evaluation (TOE) is Log Radar v3.2.15 with modules Console, Collector and Archiver; commonly referred as LogRadar. LogRadar is an automated software system used on enterprise data networks to centralise the storage and interpretation of logs, or events, generated by other devices or applications. Its key aims are to collect, normalise process and manage such information (logs) from a real time context. The modules included in the scope of the security evaluation and certification are: Console - acts as the interfacing point between user and TOE, Collector - its core function is to collect streams of data as and when they occur and process these device specific logs into a common and normalised form, and Archiver - functions as a backup daemon. In the context of the evaluation, the TOE is expected to provide the following major security features: Identification and authentication – the TOE provides user identification and authentication independent from the operating system on which it operates on. Security audit – the TOE records each individual user session and tracks each action within the session. Granular access control – the TOE allows users access permission within the application to be dynamically and granularly assigned via users and group memberships. Password management – the TOE provides a full password management function including the management of password policy rules as well as password expiry settings. Sessions management – the TOE maintain session management and restricts a single login for only a single valid session. Socket layer – the TOE runs on Secure Socket Layer (SSL) to protect its data when travelling thru the network. Import and export of configuration data – the TOE runs on Secure Socket Layer (SSL) to protect its data when travelling thru the network. Automated archive – the TOE provides a mechanism where the auto archival of aggregated reports, rawlogs and syslogs will be automatically hashed with MD-5 checksum, archived with AES encryption and stored at predetermined times. Real time syslog collection – the TOE provides the ability for authorised users to dynamically configure the TOE to listen to syslog streams from network devices, servers and/or any other supported applications.", "cert_id": "C010", "category": "Detection Devices and Systems", "assurance_level": "EAL2", "product": "Log Radar v3.2.15 with modules Console, Collector and Archiver", "certification_date": "2013-02-13", "expiration_date": "2018-02-13", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C010/LogRadar_ST-Document_v1-0R.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C010/ISCB-5-RPT-C010-CR-v1a.pdf", "type": "Automated software system used on enterprise data networks to centralise the storage and interpretation of logs, or events, generated by other devices or applications." } }, { "cert_no": "2011-014-C009", "developer": "OREA Technologies Sdn Bhd", "level": "EAL2", "product": "OREACryptUSB version 5.1", "certification_date": "2011-06-27", "expiration_date": "2016-06-27", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/79", "enhanced": { "developer": "Norshafida Khalid Block C-3A-2 & 3,Megan Avenue 1,189 Jalan Tun Razak,50400 Kuala LumpurMALAYSIA URL: http://oreatechnologies.comEmail: info@oreatechnologies.comPhone: + +603 2166 0181Fax: + 603 2166 0281", "status": "Archive", "scope": "OREACryptUSB is a stand-alone software security product that runs on USB platform by providing the need for authentication and identity verification requirements, and also a platform for storing and managing digital certificates. The TOE comprises of five subsystems that provides different functions for the TOE. They are Subsystem References, Subsystem Operation, Subsystem Storage, Subsystem Accessibility, and Subsystem Initialization. However, only several modules inside Subsystem Operation, Subsystem Storage and Subsystem Accessibility are part of the TOE. The TOE is designed to provide protection of end-user's data by forcing the TOE end-user to use passwords and the performing a process of encrypting and decrypting the end-user data. Additionally, the TOE provides for security verification by implementing digital certificated for web applications' access control, or document signing. The security functionalities that are covered under scope of the evaluation are End-user Authentication, Data protection, Digital certificate functionality, and Password Enforcement to authenticate the authorized user.", "cert_id": "C009", "category": "Data Protection", "assurance_level": "EAL2", "product": "OREACryptUSB version 5.1", "certification_date": "2011-06-27", "expiration_date": "2016-06-27", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c009/OREACryptUSB-Security%20Target%20(ST)-v1.11%20(final).pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c009/ISCB-5-RPT-C009-CR-v1a.pdf", "type": "Data Protection Software" } }, { "cert_no": "2011-015-C016", "developer": "OREA Technologies Sdn Bhd", "level": "EAL2", "product": "OREACryptHDisk version 2.1", "certification_date": "2011-07-08", "expiration_date": "2016-07-08", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/78", "enhanced": { "developer": "Norshafida Khalid Block C-3A-2 & 3,Megan Avenue 1,189 Jalan Tun Razak,50400 Kuala LumpurMALAYSIA URL: http://oreatechnologies.comEmail: info@oreatechnologies.comPhone: + +603 2166 0181Fax: + 603 2166 0281", "status": "Archive", "scope": "OREACryptHDisk is software application for protecting sensitive information stored in personal computers or mobile laptops, by encrypting the contents of confidential directories and files. Unauthorized access to the file's contents in the encrypted directories or files is denied even if the files were copied, backed up, or archived elsewhere. OREACryptHDisk comprises of five subsystems that provide different functions for the TOE. They are Subsystem References, Subsystem Operation, Subsystem Storage, Subsystem Installation, and Subsystem Setting. However, only several modules inside Subsystem Operation, Subsystem Storage and Subsystem Setting are part of the TOE. OREACryptHDisk is designed to provide protection of end-user's data by forcing the end-user to use passwords, and perform encryption and decryption process of the end-user data. Additionally, the OREACryptHDisk provides file recovery function if the end-user forgot their password by using backup key generated during OREACryptHDisk installation. Only the \"Public version\" configuration was evaluated where the end-users are responsible to generate their own public and private keys. \"Corporate version\" where it involves an organisation's system administrator to generate the end-user's private and public keys, and perform key recovery process is not included in the scope of the evaluation.", "cert_id": "C016", "category": "Data Protection", "assurance_level": "EAL2", "product": "OREACryptHDisk version 2.1", "certification_date": "2011-07-08", "expiration_date": "2016-07-08", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c016/OREACryptHDisk-Security%20Target%20(ST)-v1.12%20(final).pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c016/ISCB-5-RPT-C016-CR-v1a.pdf", "type": "Encryption Software" } }, { "cert_no": "2015-003-C054", "developer": "Biocryptodisk Sdn Bhd", "level": "EAL2+ ALC_FLR.1", "product": "Biocryptodisk Encryptor Model SD302 (Ver5.11 -3.03), SD302CR(Ver5.11 -5.03), ST302(Ver5.11 -1.00), and ST302B(Ver5.11 -1.00) with Remote Token Management System v1.00)", "certification_date": "2015-03-19", "expiration_date": "2020-03-19", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/77", "enhanced": { "developer": "Lee Kong Pheng27B, Jalan Sutera Tanjung 8/3,Taman Sutera Utama,81300 Skudai, JohorMALAYSIA URL: http://www.biocryptodisk.com/Email: leekp@biocryptodisk.comPhone: +6012-770-9510", "status": "Archive", "scope": "Biocryptodisk Encryptor is a USB portable hardware cryptographic module which consists of on-the-fly AES 256-bit hardware en-/decryption engine on board and capable to en-/decrypting the files from any computer detected storage such as USB external drive,network attached drive and virtual drives. The TOE scope of evaluation covers various major security functions described as below: Audit - The TOE (Biocryptodisk Encryptor) is designed to minimize threats to an organization by providing secure management and reporting capabilities. Cryptographic Support – TOE has cryptographic support module that can generate the keypair generation by using ECIES with 256-bits/384-bits key sizes; generate key for Digital Signature by using ECDSA with 256-bits/384-bits, and generate key using Random Number Generation (RNG) with 256-bits key sizes. User Data Protection - TOE has an access control policy that covers all authorized users access to perform all operations such as Token Management, Token Enrolment, Administrator Management, etc. Identification and Authentication – TOE allows an authorized user to access the encrypted drive and cryptographic services; and access RTM System to connect with SQL server by entering the valid username and password. Management –TOE has two roles defined in the Access Control Policy which is administrator and user. The Access Control Policy implements restrictive default values at the initial TOE start up or TOE initial execution. Testing - TOE enforces Testing module for self-tests during the start-up of Encryptor and preserve secure state on several failure events in order to maintain the integrity of the data and protect from any modification. Trusted Path - TOE enforces USB communication session between RTM System and Encryptor under Trusted Path module which is protected by P256 ECIES and AES-256 session key.", "cert_id": "C054", "category": "Data Protection", "assurance_level": "EAL2+ ALC_FLR.1", "product": "Biocryptodisk Encryptor Model SD302 (Ver5.11 -3.03), SD302CR(Ver5.11 -5.03), ST302(Ver5.11 -1.00), and ST302B(Ver5.11 -1.00) with Remote Token Management System v1.00)", "certification_date": "2015-03-19", "expiration_date": "2020-03-19", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C054/2014-12-%2029-Encryptor-ST-0.7.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C054/ISCB-5-RPT-C054-CR-v1.pdf", "type": "USB portable hardware cryptographic module" } }, { "cert_no": "2019-008-C101", "developer": "Cohesity Inc.", "level": "EAL2+ ALC_FLR.1", "product": "Cohesity DataPlatform and DataProtect 6.0.1", "certification_date": "2019-08-19", "expiration_date": "2024-08-19", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/76", "enhanced": { "developer": "Cohesity Inc.300 Park Ave Suite 1700, San Jose, CA 95110, USA URL: https://www.cohesity.com/contactPhone: +1 855-926-4374", "status": "Archive", "scope": "The product is a software suite that is used to hyperconverged secondary storage workloads (i.e., enterprise data backups) into a single managed backup solution, which may be distributed across multiple distributed appliances. The intent of this product is to simplify the infrastructure and resources used to administer data backup and recovery functions across an enterprise. The TOE natively supports backups for various virtual machines, databases, and network-attached storage (NAS) devices. The TOE also interfaces natively with various cloud service providers for long-term archival and retention of backup data. Backup data stored by the TOE is protected against unauthorized modification and disclosure using symmetric encryption. The TOE comprises two main components: Cohesity DataPlatform Cohesity DataPlatform is a software-defined, web-scale platform used consolidate secondary data. Cohesity DataProtect Cohesity DataProtect is a converged backup and recovery solution that runs on DataPlatform.", "cert_id": "C101", "category": "Data Protection", "assurance_level": "EAL2+ ALC_FLR.1", "product": "Cohesity DataPlatform and DataProtect 6.0.1", "certification_date": "2019-08-19", "expiration_date": "2024-08-19", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C101/Cohesity_ST_061519_v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C101/ISCB-5-RPT-C101-CR-V1.pdf", "type": "Administer data backup and recovery functions across an enterprise" } }, { "cert_no": "2020-003-C110", "developer": "Advanced Product Design Sdn. Bhd.", "level": "EAL2", "product": "Amaris Data Diode for Air Gap (ADD-GAP) v2.0.112", "certification_date": "2020-06-25", "expiration_date": "2025-06-25", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/75", "enhanced": { "developer": "Advanced Product Design Sdn. Bhd.No. 209, Jalan Impian Emas 22, Taman Impian Emas, 81300 Skudai, Johor, Malaysia. Tel: +6012 776 9949Email: leekp@biocryptodisk.comWebsite: www.biocryptodisk.com", "status": "Archive", "scope": "Amaris Data Diode For Air Gap (ADD-GAP) offers end users a means to convey user data across the communication interface between the SEND-ONLY circuit as MASTER and RECEIVE-ONLY circuit as SLAVE. ADD-GAP was designed as USB 2.0 mass storage controller with standard USB 2.0 Specification for both MASTER and SLAVE drive, it has fake capacity of 8GB only, support plug & play feature and not need any additional driver to be installed on the PC. The TOE consists of two microchips which is MASTER and SLAVE. These two microchips are logically connected to each other on a printed circuit board (PCB). MASTER is connected to the sender device while SLAVE is connected to the receiver device.", "cert_id": "C110", "category": "Data Protection", "assurance_level": "EAL2", "product": "Amaris Data Diode for Air Gap (ADD-GAP) v2.0.112", "certification_date": "2020-06-25", "expiration_date": "2025-06-25", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C110/Amaris_Data_Diode_For_Air_Gap_ADD-GAP_Security_Target-10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C110/ISCB-5-RPT-C110-CR-v1.pdf", "type": "Data Protection" } }, { "cert_no": "2020-010-C114", "developer": "Datasonic Smart Solution Sdn. Bhd", "level": "EAL2+ ALC_FLR.2", "product": "Dsonic eID Platform which consist of Dsonic eID Server v1.1.0 and Dsonic eID Key Management Service (KMS) v1.0.0", "certification_date": "2020-12-04", "expiration_date": "2025-12-04", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/74", "enhanced": { "developer": "A2-3-2, The Shop House 8C1 Ayer@8,Jalan P8G, Presint 8 62250, Putrajaya Tel: +603-8328 0377Email: enquiries@datasonic.com.myWebsite: https://datasonic.com.my", "status": "Archive", "scope": "Dsonic eID Platform which consist of Dsonic eID Server v1.1.0 and Dsonic eID Key Management Service (KMS) v1.0.0. The TOE is an integrated platform for trusted digital identity and serve as a digital identity management and authorising platform. It involves registration and generation of a single trusted digital ID that can be used for e- government and e-commerce services. It is a next generation platform that able to digitise and strengthen existing security document such as digital MyKad (Identity Card) and digital driving license. The TOE enables users to perform PKI-based authentication, digital signature generation and verification, single-sign on and digital document signing (signing on document hash value). The TOE also uses these cryptographic algorithms to generate cryptography key pair and secure the transaction communication. The TOE provides a secure communication of user data from disclosure and modification using a secure communication between application and the server-side components of the TOE. The TOE provides a secure communication of user data from disclosure and modification between the third- party mobile application and the server-side components of the TOE and also between Dsonic eID server and Dsonic eID KMS. The TOE implements the TLS v1.2 protocol.", "cert_id": "C114", "category": "Products for Digital Signatures", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Dsonic eID Platform which consist of Dsonic eID Server v1.1.0 and Dsonic eID Key Management Service (KMS) v1.0.0", "certification_date": "2020-12-04", "expiration_date": "2025-12-04", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C114/Dsonic_eID_Security_Target_v10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C114/ISCB-5-RPT-C114-CR-v1.pdf", "type": "Products for Digital Signatures" } }, { "cert_no": "2011-003-C029", "developer": "Scan Associates Berhad", "level": "EAL1", "product": "SCAN S3 Security Manager Console Version 1.0 Release 14556 integrated with SCAN S3 Identity Services Infrastructure Version 1.0 and SCAN S3 Multi Authentication Version 1.0", "certification_date": "2011-03-08", "expiration_date": "2016-03-08", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/72", "enhanced": { "developer": "Haslinda Ab. Hamid Level 7, Menara Naluri,161-B, Jalan Ampang,50450 Kuala LumpurMALAYSIA URL: www.scan-associates.netPhone: +603 7722 1760Fax: +603 7722 1762", "status": "Archive", "scope": "SCAN S3 SMC-ISI-MA is a web based application for Access Control Management, suitable for providing centralized authentication and audit services for user to securely access different applications. The TOE is software that comprises of: SCAN S3 Security Manager Console Version 1.0 Release 14556 or SCAN S3 SMC Version 1.0 Release 14556, a centralized administration of logon IDs, policy configuration and logging of events, SCAN S3 Multi Authentication Version 1.0 or SCAN S3 MA Version 1.0, to support multiple authentication mechanisms in a single system, and SCAN S3 Identity Service Infrastructure Version 1.0 or SCAN S3 ISI Version 1.0, to allow roaming of PKI key (soft token). The security functions of the TOE that are within the scope of evaluation covering the management of the security features which involves registering new users, defining and assigning access privileges and audit log of System Administrator activities pertaining to creation, update and delete of Administrator or Staff logon IDs as well as the assignment of Administrator or Staff role. The TOE security functions mentioned above provides the identification and authentication, security management, audit generation and views functionalities, TOE access and user data protection.", "cert_id": "C029", "category": "Access Control Devices and System", "assurance_level": "EAL1", "product": "SCAN S3 Security Manager Console Version 1.0 Release 14556 integrated with SCAN S3 Identity Services Infrastructure Version 1.0 and SCAN S3 Multi Authentication Version 1.0", "certification_date": "2011-03-08", "expiration_date": "2016-03-08", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C029/S3%20SMC%20Security%20Target%20V1-12.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C029/ISCB-5-RPT-C029-CR-v1a.pdf", "type": "Access Control Management" } }, { "cert_no": "2011-007-C005", "developer": "MagnaQuest Solutions Sdn. Bhd", "level": "EAL4", "product": "MQAssureTM/AppShield v1.2_CR6 integrated with MQAssureTM/IAM v1.0_CR6", "certification_date": "2011-04-11", "expiration_date": "2016-04-11", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/71", "enhanced": { "developer": "Ramdas Nemani A-2-07 & A-2-09SME Technopreneur Centre1,2270 Jalan Usahawan 2,63000 Cyberjaya, Selangor DE,MALAYSIA URL: http://www.magnaquest.comEmail: ramdas.nemani@magnaquest.comPhone: +60 (3) 8318 2964Fax: +60 (3) 8319 2534", "status": "Archive", "scope": "The Target of Evaluation (TOE) is a software product, which comprises of MQAssure™/AppShield v1.2_CR6 integrated with MQAssure™/IAM v1.0_CR6. The MQAssureTM/AppShield v1.2_CR6 (hereafter referred as Appshield) combined with MQAssureTM/IAM v1.0_CR6 (hereafter referred as IAM) is an access control software for web applications. The TOE controls access to web filtering applications by enforcing authentication and authorisation using multifactor authentication schemes. It is also capable of session control, and request validation based on its core engine policy and rules. IAM or Identity and Access Management is the core engine of the TOE. It is a centralised identity and access management platform that provides the back bone for the AppShield security functionality. In the overall infrastructure, AppShield acts as a policy enforcement agent for the web applications. The security features within the scope of the evaluation for IAM includes: Multifactor User Authentication which includes MyKad-Biometric, iKey-PIN or password. TOE Administration which provides a web based GUI console for the administrator to configure and manage the TOE. Security Audit which generates audit records for relevant authentication events and access events to various objects. The security features within the scope of the evaluation for AppShield includes: Access Control which enforces access control policy decision made by the IAM. HTTP request validation which protects the web applications from common input tampering attacks.", "cert_id": "C005", "category": "Access Control Devices and System", "assurance_level": "EAL4", "product": "MQAssureTM/AppShield v1.2_CR6 integrated with MQAssureTM/IAM v1.0_CR6", "certification_date": "2011-04-11", "expiration_date": "2016-04-11", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C005/MQAssure_AppShield_1.2_Security_Target_EAL4_1.21.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C005/ISCB-5-RPT-C005-CR-v1a.pdf", "type": "Access Control Software for Web Applications" } }, { "cert_no": "2012-005-C027", "developer": "MagnaQuest Solutions Sdn. Bhd", "level": "EAL1", "product": "NetSignOn Version 2.0", "certification_date": "2012-04-16", "expiration_date": "2017-04-16", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/70", "enhanced": { "developer": "Ramdas Nemani A-2-07 & A-2-09SME Technopreneur Centre1,2270 Jalan Usahawan 2,63000 Cyberjaya, Selangor DE,MALAYSIA URL: http://www.magnaquest.comEmail: ramdas.nemani@magnaquest.comPhone: +60 (3) 8318 2964Fax: +60 (3) 8319 2534", "status": "Archive", "scope": "The Target of Evaluation (TOE) is a software product, which comprises of MQAssure™/AppShield v1.2_CR6 integrated with MQAssure™/IAM v1.0_CR6. The MQAssureTM/AppShield v1.2_CR6 (hereafter referred as Appshield) combined with MQAssureTM/IAM v1.0_CR6 (hereafter referred as IAM) is an access control software for web applications. The TOE controls access to web filtering applications by enforcing authentication and authorisation using multifactor authentication schemes. It is also capable of session control, and request validation based on its core engine policy and rules. IAM or Identity and Access Management is the core engine of the TOE. It is a centralised identity and access management platform that provides the back bone for the AppShield security functionality. In the overall infrastructure, AppShield acts as a policy enforcement agent for the web applications. The security features within the scope of the evaluation for IAM includes: Multifactor User Authentication which includes MyKad-Biometric, iKey-PIN or password. TOE Administration which provides a web based GUI console for the administrator to configure and manage the TOE. Security Audit which generates audit records for relevant authentication events and access events to various objects. The security features within the scope of the evaluation for AppShield includes: Access Control which enforces access control policy decision made by the IAM. HTTP request validation which protects the web applications from common input tampering attacks.", "cert_id": "C027", "category": "Access Control Devices and System", "assurance_level": "EAL1", "product": "NetSignOn Version 2.0", "certification_date": "2012-04-16", "expiration_date": "2017-04-16", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C027/NetSignON%20ST%20v1.7.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C027/ISCB-5-RPT-C027-CR-v1a.pdf", "type": "Client agent runs on Windows operating system platforms that leverages multifactor user authentication methods." } }, { "cert_no": "2013-003-C043", "developer": "International Business Machine (IBM) Corporation", "level": "EAL4+ ALC_FLR.2", "product": "IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088", "certification_date": "2013-05-31", "expiration_date": "2018-05-31", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/69", "enhanced": { "developer": "International Business Machine (IBM) Corporation3605 Hwy 52 NorthRochester, MM 55901UNITED STATES URL:http://www.ibm.com/systems/power/Email: heyrman@us.ibm.comTel: 507 253 7051Fax: 507 253 2870", "status": "Archive", "scope": "The Target of Evaluation (TOE), IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088 (hereafter referred as LPAR), has been evaluated in the context of hardware models 770 (AM740_088 firmware) and 795 (AH730_087 firmware). The TOE firmware is designed to abstract and virtualise physical hardware resources to provide secure access to the underlying platform for one or more concurrent operating systems. Each virtual platform is known as a partition. The operating systems executing in the available partitions are treated as subjects of the TOE, where the TOE not only provides the necessary operational support for the hosted operating systems, but also serves to separate them from each other to ensure mutual non-interference. While not included as part of the TOE, the TOE is configured using a connected Hardware Management Console (HMC) that provides access to the functions necessary to enable administrative personnel to effectively manage the allocation of resources (i.e., processors, memory, and I/O devices) to the configured partitions. Once the TOE is configured, the HMC must be disconnected so that it offers no interfaces while the TOE is operating in its evaluated configuration. The TOE consists of the PowerVM Hypervisor which provides the virtualisation. The other components of the LPAR such as the Hardware Management Console (HMC), Flexible Service Processor (FSP), Bulk Power Assembly (BPA) and operating systems are outside the TOE scope. The underlying resources of the IBM Power 770 and Power 795 server platforms, including Disks, CPU, RAM, or networking, including the internal virtual switch are considered to be part of the TOE environment. In the context of the evaluation, the TOE provides the following major security features: User data protection – the TOE is designed to instantiate multiple partitions for the purpose of supporting and isolating simultaneous operating systems. As such, it implements a policy where each partition can access only those resources explicitly assigned to it. In terms of access control, the CPU, memory, and I/O devices can be assigned to a given partition and a partition can access those resources only when they are assigned to it. Identification and authentication – the active entity or user of the TOE is partition, which it instantiates. Partitions are implicitly identified and authenticated by internal numerical identifiers associated with partitions (using internal data structures) as they are defined. Being implicitly identified by the TOE, partitions have no need, nor means, to identify themselves. Furthermore, the identification of a partition is guaranteed by the TOE and as such each partition is also continuously authenticated. Security management – the TOE supports several management functions to configure the TOE via the dedicated physical HMC interface (out of scope for this evaluation). Once the TOE is operational (in evaluated configuration), the TOE effectively doesn’t offer any security management functions. However, the TOE serves to restrict the ability to change its own configuration nonetheless. Protection of the TOE Security Function (TSF) – the components of the TOE that protect themselves using the domains provided by Power7 processors. The TOE operates in the privileged domain and the partitions operate in the unprivileged domain. This allows the TOE to protect itself as well as the resources it makes selectively available to the applicable partitions. Beyond protecting itself and its resources, the TOE is also designed such that when the hardware that supports a partition fails, the other partitions will continue uninterrupted.", "cert_id": "C043", "category": "Access Control Devices and System", "assurance_level": "EAL4+ ALC_FLR.2", "product": "IBM Logical Partition Architecture for Power7 operating on IBM Power Systems hardware with AH730_087 or AM740_088", "certification_date": "2013-05-31", "expiration_date": "2018-05-31", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C043/IBM-LPAR-Security-Target-v0%2033_FINAL.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C043/ISCB-5-RPT-C043-CR-v1b.pdf", "type": "Set of hardware and firmware designed to abstract and virtualise physical hardware resources to provide secure access to the underlying platform for one or more concurrent operating systems." } }, { "cert_no": "2013-007-C044", "developer": "Reisetech (M) Sdn Bhd", "level": "EAL2", "product": "Single Card Access Maximum Security (SCAMS) 1.0 includes Ohanae Connect 2.1.2.0", "certification_date": "2013-09-06", "expiration_date": "2018-09-06", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/68", "enhanced": { "developer": "Mohamed Ridzwan Hussain Reisetech (M) Sdn Bhd8-2, Jalan Harimau,Taman Century,80250 Johor Baru, JohorMALAYSIA URL: http://www.reisetech.com.myEmail: ridzwan@reisetech.com / ridzwan@reisetech.com.myPhone: +601 6718 9682 / +607 331 1971Fax: +607 335 1668", "status": "Archive", "scope": "The Target of Evaluation (TOE) is Single Card Acces Maximum Security (SCAMS) 1.0 includes Ohanae Connect 2.1.2.0 or SCAMS. The TOE is an access control solution that consists of an access card that equipped with USB mass storage drive, and pre-installed with Ohanae software. However, the door access card and Ohanae registration module are not part of the evaluation scope. Ohanae provides random password generator, centralised user password management, data protection using encrypted drive/partition, data sanitisation that cleans user track when using USB mass storage drive outside of the secure operational environment and synchronisation capabilities. The TOE comprises of multiple security components as follows: Door Access Card - The hardware component of the SCAMS is a RFID hardware wiring with plastic casing that provides access door security features. However this is not part of the TOE. Ohanae Secure Sign-On - Provides users with capabilities of generating random password for any forms of web application that require identification and authentication process. It is also applicable to be use on messaging clients such as MSN Messenger, Yahoo Messenger and others. Ohanae Securworkplace - It provides data sanitisation while working with MS Windows 64 bit host operating system. Once this feature is activated, any user activities will be monitored by Ohanae Securworkplace module. Whereas, as the users completed his tasks or activities and plug-off Ohanae, any save data/files within the host operating system will be permanently deleted without any traces. Ohanae Securdrive - It provides encrypted drive services for user to store their data/files inside the USB mass storage drive equipped with the SCAMS Access Card. User will be able to store any data by mounting the encrypted drive on the host OS under the partition name of “INVICTA”. “INVICTA” partition is enforcing with AES 256 bit encryption within limited storage of 4GB formatted in FAT/FAT32 and unlimited storage for NTFS format. Ohanae Registration - To activate or deactivate devices that using Ohanae, which allows the user to have more than one device to be installed with Ohanae. However, this module is not part of the TOE. Users must enable Ohanae Secure Sign-On, Ohanae Securworkplace and Ohanae Securdrive for evaluated and secure configuration of the TOE. This process perform by Reisetech staffs during pre-installation process is described in Operational Guidance and Administrative Guidance. In order to perform these functions securely a number of security functions and capabilities have been implemented, including the following: Secure password management – provide users with secure password management via mobile storage i.e. USB Mass Storage, Secure operational environment – provide secure operational environment for users while operating/working inside unidentified or unprotected desktop operating system. The secure features include: secure data management, monitoring and storage, and Security management - centralised management system in TOE server that allows users to synchronise with Ohanae synchronisation databases. However, only Ohanae request to the TOE server is included in the evaluation scope.", "cert_id": "C044", "category": "Access Control Devices and System", "assurance_level": "EAL2", "product": "Single Card Access Maximum Security (SCAMS) 1.0 includes Ohanae Connect 2.1.2.0", "certification_date": "2013-09-06", "expiration_date": "2018-09-06", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C044/2013-08-22-E027-ST-v1.3.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C044/ISCB-5-RPT-C044-CR-v1a.pdf", "type": "Access control solution that provides random password generator, centralised user password management, data protection, data sanitisation and synchronisation capabilities." } }, { "cert_no": "2013-011-C046", "developer": "Magnaquest Solutions Sdn Bhd", "level": "EAL2", "product": "MQAssureTM NetSignOn v3.0", "certification_date": "2013-12-17", "expiration_date": "2018-12-17", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/67", "enhanced": { "developer": "Ramdas NemaniUnits A-02-07 & A-02-09 SME Technopreneur Center,Cyberjaya 2270 Jalan Usahawan 263000 Cyberjaya, Selangor,MALAYSIA URL: http://www.magnaquest.com/Email: ramdas.nemani@magnaquest.comPhone: 603 8318 2964Fax: 603 8319 2534", "status": "Archive", "scope": "MQAssureTM NetSignOn version 3.0 is a client authentication agent which integrates with Windows operating system platform for desktops and laptops. It leverages multiple authentication methods such as MyKAD, biometric (Fingerprinting/Iris), USB Token, and userid/password to perform login functionality to a system in a Domain (Network connected mode and network disconnected mode). The scope of the evaluation only covers NetSignOn that runs in system which is connected to the domain. MQAssure™ NetSignOn v2.0 is EAL1 certified by MyCC Scheme in 2012. The additional features of MQAssure™ NetSignOn v3.0 can be found in the Excutive Summary of the Certification Report. The scope of the evaluation covers major security features as follows: User Data Protection – The TOE provides various methods in enforcing user authentication. The users can login to the domain via one of the following methods: Userid and password combination, or MyKAD and PIN/password combination, or MyKAD and Biometric (finger printing) combination, or eKey and PIN combination, or iris Biometric image. Userid and password combination must be combined with either MyKAD or eKey or iris biometric authentication scheme. Regardless of the authentication mechanism used, the initial userid must be entered at the very beginning of the authentication process. Identification and Authentication - The TOE allows authorized user to access the TOE once user is successfully identified and authenticated by the TOE. Security Management - The TOE provides various management functions to ensure efficient and secure management of the TOE such as user management and changing password through NetSignOn user application or MQAssureTM Identity Manager (IM).", "cert_id": "C046", "category": "Access Control Devices and System", "assurance_level": "EAL2", "product": "MQAssureTM NetSignOn v3.0", "certification_date": "2013-12-17", "expiration_date": "2018-12-17", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C046/MQAssure_NetSignOn_v3_0_Security_Target_v1_10.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C046/ISCB-5-RPT-C046-CR-v1a.pdf", "type": "Client authentication agent that runs on Windows operating system platforms that leverages multiple authentication methods." } }, { "cert_no": "2014-003-C050", "developer": "Scan Associates Berhad", "level": "EAL2", "product": "SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2)", "certification_date": "2014-07-09", "expiration_date": "2019-07-09", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/66", "enhanced": { "developer": "Mohd Rizal Othman Scan Associates Berhad,Level 8, Menara Naluri,161-B, Jalan Ampang,50450 Kuala LumpurMalaysia URL: http://www.scan-associates.net/Email: rizal@scan-associates.netPhone: +603 2166 0020Fax: +603 2166 1020", "status": "Archive", "scope": "SCAN S3 SMC-AGENT is a Web-Based Application Access Control Management, which enable users to access their internal network resources securely through PKI implementation via soft-certificates, roaming certificates and smart cards. SCAN S3 SMC-AGENT is the combination of SCAN S3 SMC(Security Management Console), in which, the SCAN S3 SMC is define as the administration console for the operations SCAN S3 SMC-AGENT in the aspects of managing users and the access controls, thus, as for the SCAN S3 AGENT is the front-end interface for all users registered in the SCAN S3 SMC system, uses the interface as a secure platform in communicating with the protected resources govern by the security protection of SCAN S3 SMC-AGENT.With the new integration of software desktop that enable users to access the internal network resources, by inputting soft-certificate, roaming certificates orsmart cards through that application. The SCAN S3 SMCAGENTenables the organization to manage the overall security through a single framework that enables the defining and assignment or implementation of the following security functions in one system: Security Audit; The TOE will generate audit records for selected security events in several log files and categories. Authentication and Identification; TOE Administrator/smust login to SCAN S3 to identify themselves to the application together with the prompted (one of up to three) authentication means in order for them to gain access to the protected websites, using SCAN S3 AGENT software desktop. Cryptography; TOE has built-in feature of cryptography that bound to the operations of SCAN S3 AGENT at Users and Administrators workstation. Security Management; TOE Administrator/s has access to all TOE features, that applicable to be managed through web application portal hosted byTOE. User Data Protection; User/s data and credentials including TOE Administrator/s information is protected by ensuring that specific TOE Administrator/s that is assigned with roles and privileges can only access a specific web pages/portals and hence the data associated with the web pages/portal. Protection of the TSF; The security audit functions will generate audit records of events along with date and time of event. To ensure a reliable date and time, TOE enforce the time stamps to be taken from a reliable source from the environment.", "cert_id": "C050", "category": "Access Control Devices and System", "assurance_level": "EAL2", "product": "SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2)", "certification_date": "2014-07-09", "expiration_date": "2019-07-09", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C050/2014-04-14-ST-SCANS_S3-v2.7.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C050/ISCB-5-RPT-C050-CR-v1.pdf", "type": "Web-Based Application Access Control Management, which enable users to access their internal network resources securely through PKI implementation via soft-certificates, roaming certificates and smart cards." } }, { "cert_no": "2017-005-C081", "developer": "Lockswitch Sdn Bhd", "level": "EAL1", "product": "Lockswitch Bluetooth Access Control System consist of Lockswitch Bluetooth Controller (firmware v1.2.4, Hardware v5.4), Lockswitch Cloud (v1.3.1) and Lockswitch Mobile Application (Android v1.3.4)", "certification_date": "2017-08-24", "expiration_date": "2022-08-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/65", "enhanced": { "developer": "Lockswitch Sdn Bhd32A-2B, Jalan PJU 1/3B, SunwayMas Commercial Centre,Petaling Jaya, 47301Selangor Darul Ehsan URL:https://www.lockswitch.io", "status": "Archive", "scope": "The TOE provides secure access control systems using Bluetooth technology to restrict unauthorized user to physically access to a restricted assets area. Physical access control is a matter of whom, where, and when The following security functions are implemented by the TOE: Security Audit Identification and Authentication Security Management Secure Communication Tamper Protection", "cert_id": "C081", "category": "Access Control Devices and System", "assurance_level": "EAL1", "product": "Lockswitch Bluetooth Access Control System consist of Lockswitch Bluetooth Controller (firmware v1.2.4, Hardware v5.4), Lockswitch Cloud (v1.3.1) and Lockswitch Mobile Application (Android v1.3.4)", "certification_date": "2017-08-24", "expiration_date": "2022-08-24", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C081/Lockswitch%20Bluetooth%20Access%20Control%20System%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C081/ISCB-5-RPT-C081-CR-v1.pdf", "type": "Secure access control system using bluetooth" } }, { "cert_no": "2017-006-C064", "developer": "Evault Technologies Sdn Bhd", "level": "EAL2", "product": "SecureMi® v1.2", "certification_date": "2017-09-06", "expiration_date": "2022-09-06", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/64", "enhanced": { "developer": "Evault Technologies Sdn Bhd1st Floor Block G, Excella Business ParkJalan Ampang Putra, Taman Ampang Hilir55100 Kuala Lumpur URL:http://www.evault.com.my/", "status": "Archive", "scope": "The TOE a content aware Data Leakage Prevention (DLP) solution that is designed as a complete solution for preventing data leakage problems in government and corporate environments from the start. The following security functions are implemented by the TOE: Security Audit Identification and Authentication Security Management User Data Protection", "cert_id": "C064", "category": "Access Control Devices and System", "assurance_level": "EAL2", "product": "SecureMi® v1.2", "certification_date": "2017-09-06", "expiration_date": "2022-09-06", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C064/SecureMi%201.2%20Security%20Target%20v0.13.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C064/ISCB-5-RPT-C064-CR-v1.pdf", "type": "Access Control Devices and System" } }, { "cert_no": "2018-001-C092", "developer": "MicroEngine Technology Sdn Bhd", "level": "EAL2", "product": "xPortalNet HS Server version 2.0.0.2, xPortalNet H", "certification_date": "2018-03-16", "expiration_date": "2023-03-16", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/63", "enhanced": { "developer": "MicroEngine Technology Sdn BhdUnit 11-06, Block A, Phileo Damansara 2,Section 16, Jalan 16/11, Off jalan Damansara,46350 Petaling Jaya, Selangor Darul Ehsan. URL: www.microengine.netEmail: enquiry@microengine.netTel: (+603) 7957 2008/1300 88 3925", "status": "Archive", "scope": "The TOE is the xPortalNet HS system which consist of xPortalNet Server version 2.0.0.2, xPortalNet HS Client version 2.0.0.2 and Xp-GLS5100 Controllers. The TOE provides a centralise management system to manage MicroEngine controller(s) and supporting device from unauthorised user access and/or physical temper on controllers or device such as access control system, alarm system, parking payment system, lift access control system and other. The following security functions are implemented by the TOE: Security Audit Identification and Authentication Security Management Secure Communication Tamper Protection", "cert_id": "C092", "category": "Access Control Devices and System", "assurance_level": "EAL2", "product": "xPortalNet HS Server version 2.0.0.2, xPortalNet H", "certification_date": "2018-03-16", "expiration_date": "2023-03-16", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C092/xPortalNet%20HS%20Security%20Target%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C092/ISCB-5-RPT-C092-CR-v1.pdf", "type": "Access Control Devices and System" } }, { "cert_no": "2018-003-C090", "developer": "Evault Technologies Sdn Bhd", "level": "EAL2", "product": "Evault Mobile v1.0.1", "certification_date": "2018-05-25", "expiration_date": "2023-05-25", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/62", "enhanced": { "developer": "Evault Technologies Sdn Bhd1st Floor Block G, Excella Business ParkJalan Ampang Putra, Taman Ampang Hilir55100 Kuala Lumpur URL:http://www.evault.com.my/", "status": "Archive", "scope": "The TOE is a mobile application that caters for data leakage in mobile platform. It provides security solution for data at rest and data in motion. The following security functions are implemented by the TOE: Identification and Authentication Security Management", "cert_id": "C090", "category": "Access Control Devices and System", "assurance_level": "EAL2", "product": "Evault Mobile v1.0.1", "certification_date": "2018-05-25", "expiration_date": "2023-05-25", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C090/Evault%20Mobile%20ST%200.5.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C090/ISCB-5-RPT-C090-CR-v1.pdf", "type": "Access Control Devices and System" } }, { "cert_no": "2011-010-C026", "developer": "Neural Services Sdn Bhd", "level": "EAL1", "product": "E-Jari version 4.0", "certification_date": "2011-05-16", "expiration_date": "2016-05-16", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/61", "enhanced": { "developer": "Mushidy Ibrahim No.4-3, Jalan 9/32A,Off Jalan Usahawan,Setapak, 43200 Kuala LumpurMALAYSIA URL:www.neural.com.myEmail: mushidy@neural.com.myMobile: + 601 2390 2679Phone: + 603 4149 0566Fax: + 603 4149 1766", "status": "Archive", "scope": "E-Jari v 4.0, is biometric based identification and authentication system that implemented by the user as the access point to the portal. The portal means restricted area for the authorised user which assigned by the administrator. It comprises of: E-Jari v 4.0, is the software part of the TOE which controls the verification part and fingerprint matching; and NM4000 is the hardware part of the TOE that capture the fingerprint template and extracting them for use to be compared between the enrolled minutiae from the flash memory. E-Jari v 4.0 biometric verification system either verifies or rejects the claimed identity of a human being using unique characteristics of his body: his fingerprint. The scope of the evaluation only covers the operation of E-Jari v 4.0 in a verification mode only: the system verifies whether, for a specific user ID, the fingerprint offered matches the fingerprint stored for the and only that user (commonly referred to as 1:1 matching). Although it can be used in stand-alone or network-integrated solutions, the evaluation only covers stand-alone operation only.", "cert_id": "C026", "category": "Biometric Devices and Systems", "assurance_level": "EAL1", "product": "E-Jari version 4.0", "certification_date": "2011-05-16", "expiration_date": "2016-05-16", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C026/ST_v0.24.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C026/ISCB-5-RPT-C026-CR-v1a.pdf", "type": "Biometric Devices and Systems" } }, { "cert_no": "2011-017-C020", "developer": "Multimedia University", "level": "EAL1", "product": "Palm n' Go - Ezio version 1.0", "certification_date": "2011-07-21", "expiration_date": "2016-07-21", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/60", "enhanced": { "developer": "Goh Kah Ong Michael Faculty of Information Science & Technology (FIST) Multimedia University, Jalan Ayer Keroh Lama,75450 Bukit Beruang, Melaka,MALAYSIA URL: www.mmu.edu.myEmail: michael.goh@mmu.edu.myMobile: + 601 6553 7098Phone: + 606 252 3124Fax: + 606 231 8840", "status": "Archive", "scope": "Palm n' Go - Ezio Version 1.0, the Target of Evaluation (TOE), from Multimedia University is a touch-less hand geometry and palm print authentication application. It provides the ability to verify a claimed identity of a human being using the subject's palm vein pattern as a unique characteristic of their body thus providing a method for controlling access. The TOE works in verification mode only and does not provide biometric identification. Using Palm n' Go in an identification mode is considered outside the evaluated configuration. In this evaluation, it is assume that all authorised users have been successfully enrolled because the enrolment process is out of the evaluation scope. The TOE also utilises a non-biometric mechanism (username and password) to identify and authenticate an administrator of the TOE to enforce an access control policy for controlling access and to the management functions of the TOE. The TOE also provides the capability to capture audit records for events of interest associated with both the biometric identification and TOE configuration functions.", "cert_id": "C020", "category": "Biometric Devices and Systems", "assurance_level": "EAL1", "product": "Palm n' Go - Ezio version 1.0", "certification_date": "2011-07-21", "expiration_date": "2016-07-21", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c020/MMU_Palm%20N%20Go_EAL1_ASE_Security_Target_v1.3.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/c020/ISCB-5-RPT-C020-CR-v1a.pdf", "type": "Biometric Devices and Systems" } }, { "cert_no": "2013-008-C045", "developer": "Infosys Gateway Sdn Bhd", "level": "EAL2", "product": "iDeras Unified Threat Management (UTM) v5.02", "certification_date": "2013-11-04", "expiration_date": "2018-11-04", "recognition": "MyCC", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/59", "enhanced": { "developer": "Izzati Rasheeqa Abdullah Infosys Gateway Sdn BhdUnit 808, 8th Floor, Block E, Phileo Damansara I,No.9, Jalan 16/11, Off Jalan Damansara,46350 Petaling Jaya, Selangor Darul EhsanMALAYSIA URL: http://www.infosysgateway.com.myEmail: izzati@infosysgateway.com.myPhone: +603 7931 5800Fax: +603 7958 1930", "status": "Archive", "scope": "The Target of Evaluation (TOE) is iDeras Unified Threat Management (UTM) v5.02 or known as iDeras. The TOE is a Unified Threat Management (UTM) or hybrid solution consists of firewall packet filtering technology, offering server hosting services, network security with management features, and gateway security management within a single appliance. The scope of the evaluation only covers network gateway functions that are responsible to manage the enterprise network traffic flow. The TOE includes other supporting features that are not part of TOE scope such as Intrusion Detection/Prevention, antimalware, content filtering, VPN, network management, hosting server, and other features specified in Section 2.6.3 of the Security Target. The scope of evaluation covers major security features as follows: Identification and Authentication - TOE administrator can access TOE by providing username and password in the Webconfig interface and CLI interface. TOE administrator will be granted role based on built-in Groups, access to services and pages within Webconfig. Password for each administrator account is governed by password policy. TOE administrator is able to modify the existing configurable settings as per required by the organisational security policies implemented or enforced. User Data Protection – The TOE has capabilities of protecting internal network from external network intrusion by using information flow controls between internal and external network. The TOE will check the inbound and outbound IP network protocols, contents and ports before allowing or rejecting the IP network and packets. TOE Administrator can configure packet filter rules and policies based on the subject and information security attributes. By default, all external (internet) traffic will be blocked. TOE administrator can configure any services, ports and protocols that are accessible between Internet and internal networks. Security Management - TOE features can be managed through Webconfig and CLI by the TOE administrator. User of TOE, whom is assigned with TOE administrator roles, is configurable using built-in feature by assigning to administrator account “admin”. TOE administrator could enable, disable, modify the behaviour of services controlled by TOE packet filtering rules, user attributes values, network setting, time-of-day web access, NTP Time server, backup and restore configuration setting, restart and shutdown functions, password policies, and related functions of TOE. Security Audit - The TOE will generate audit records for selected security events in several log files and categories. Each audited events will be recorded along with date and time of event, account user who performed the event, event name, system filename related to event and other event details. Audit record can be viewed by TOE administrator but it cannot be edited. TOE Administrator could select and filter the logs for easy viewing. TOE will create a new log file to store the audit records if the size limit is reached for a single log file. Limitation of the log storage is based on the internal hard disk equipped within the TOE appliance. Protection of the TSF - The security audit functions will generate audit records of events along with date and time of event. To ensure a reliable date and time, TOE enforce the time stamps to be taken from a reliable source from the environment. TOE prevents modification of date and time manually.", "cert_id": "C045", "category": "Boundary Protection Devices and Systems", "assurance_level": "EAL2", "product": "iDeras Unified Threat Management (UTM) v5.02", "certification_date": "2013-11-04", "expiration_date": "2018-11-04", "mutual_recognition": "MyCC", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C045/2013-10-18-iDeras-ST-v1.3.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C045/ISCB-5-RPT-C045-CR-v1a.pdf", "type": "Boundary Protection Devices and Systems" } }, { "cert_no": "2017-009-C083", "developer": "Kaapagam Technologies Sdn Bhd.", "level": "EAL2", "product": "Valari Web Application Firewall v10.3.11", "certification_date": "2017-11-24", "expiration_date": "2022-11-24", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/58", "enhanced": { "developer": "B15-15, I-SOVO@I-City No. 6, Persiaran Multimedia, Section 7 40000 Shah Alam, Selangor Darul Ehsan URL: Valari Web Application Firewall Email: sales@kaapagamtech.com Phone: +603 8992 3172", "status": "Archive", "scope": "The TOE is designed to secure web applications from the attacks and provide a security layer by proxy-ing all HTTP(S) traffic and shield web servers and databases from direct access of the attackers irrespective of the underlying application vulnerabilities. The TOE primary features include: Identification and Authentication: The TOE enables audit functionality to tracks all activities within the TOE boundary network inclusive of its own operations as TOE Application Server. User Data Protection: The TOE protects the web application from external network intrusions by using information flow control between internal and external network. The TOE will log all HTTP requests and responses before allowing or rejecting the HTTP requests. Security Management: TOE functions can be managed through command-line interface. The TOE only allows limited user access to run a limited set of commands. These do not affect the running mode of the TOE. Security Audit: The TOE will generate audit records for HTTP Request and responses. Each audited events will be recorded along with date and time of event, source IP, account user who performed the event, event name, system filename related to event and other event details.", "cert_id": "C083", "category": "Boundary Protection Devices and Systems", "assurance_level": "EAL2", "product": "Valari Web Application Firewall v10.3.11", "certification_date": "2017-11-24", "expiration_date": "2022-11-24", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C083/Valari_Security_Target_0.5.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C083/ISCB-5-RPT-C083-CR-v1.pdf", "type": "Boundary Protection Devices and Systems" } }, { "cert_no": "2019-004-C102", "developer": "Forcepoint LLC.", "level": "EAL2+ ALC_FLR.2", "product": "Forcepoint On-Premise Security 8.5", "certification_date": "2019-06-27", "expiration_date": "2024-06-27", "recognition": "CCRA", "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/57", "enhanced": { "developer": "10900-A Stonelake Blvd.Quarry Oaks 1, Ste. 350Austin, TX 78759United States of America URL: www.forcepoint.com", "status": "Archive", "scope": "The TOE is a unified solution providing data protection. On-Premise Security 8.5 provides an email gateway and web scanning services, as well as data loss prevention capabilities. The following security functions are implemented by the TOE: Security Audit Cryptographic Support User Data Protection Identification and Authentication Security Management Protection of the TSF Resources Utilization TOE Access", "cert_id": "C102", "category": "Boundary Protection Devices and Systems", "assurance_level": "EAL2+ ALC_FLR.2", "product": "Forcepoint On-Premise Security 8.5", "certification_date": "2019-06-27", "expiration_date": "2024-06-27", "mutual_recognition": "CCRA", "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C102/Forcepoint%20On-Premise%20Security%20v1.0.pdf", "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C102/ISCB-3-RPT-C102-CR-v1.pdf", "type": "Boundary Protection Devices and Systems" } } ], "INEVALUATION": [ { "level": "EAL 2", "project_id": "M023", "toe_name": "Trend MicroTippingPoint Security Management System (SMS) v6.5.0", "developer": "Trend Micro Incorporated", "expected_completion": "Quarter 2, 2026" }, { "level": "EAL 2", "project_id": "M024", "toe_name": "Trend MicroTippingPoint Threat Protection System (TPS) v6.5.0", "developer": "Trend Micro Incorporated", "expected_completion": "Quarter 2, 2026" }, { "level": "EAL 2", "project_id": "C149", "toe_name": "CryptoSeal Server V1.1", "developer": "Zetvest Sdn Bhd", "expected_completion": "Quarter 3, 2026" }, { "level": "EAL 2", "project_id": "C147", "toe_name": "Symantec Data Center Security: Server Advanced v6.10", "developer": "Symantec Corporation", "expected_completion": "Quarter 1, 2026" }, { "level": "EAL 2", "project_id": "C144", "toe_name": "SigningCloud v1.0", "developer": "Signing Cloud Sdn. Bhd.", "expected_completion": "Quarter 1, 2026" }, { "level": "EAL 2", "project_id": "C143", "toe_name": "MyORI SmartSecure v1.0", "developer": "MyORI Services Sdn Bhd", "expected_completion": "Quarter 3, 2026" }, { "level": "EAL 4", "project_id": "C145", "toe_name": "NC2.vpn+ V2.2.1", "developer": "System Consultancy Services Sdn Bhd", "expected_completion": "Quarter 2, 2026" }, { "level": "EAL 2", "project_id": "C141", "toe_name": "Meja Bulat@iDeras", "developer": "Infosys Gateway", "expected_completion": "Quarter 3, 2025" }, { "level": "EAL 2 with ALC_FLR.1", "project_id": "C142", "toe_name": "Kripta Key 24.1.xxxx-GA", "developer": "PT Klavis Kripta Inovasi", "expected_completion": "Quarter 3, 2025" } ] } }, "NO": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "NO", "timestamp": "2026-03-30T12:13:00.012412", "lists": { "CERTIFIED": [ { "product": "XOmail 23.0.1", "url": "https://sertit.no/certified-products/xomail-23-0-1-article3656-1919.html", "category": "Messaging system", "developer": "Thales Norway AS", "certification_date": "2026-02-18", "enhanced": { "description": "Thales XOmail software (TOE) is a family of turn-key products tailored for formal military messaging, information handling and transfer in modern C4ISR solutions. The XOmail Server softwareenforces controlled message and information flow according to military requirements with integrated multi-level security and mandatory access control. The TOE provides priority handling for messaging, ensuring flash message traffic is delivered with minimal delay even with heavy traffic or congestion. The TOE preserves message security through consistent interpretation of security labels across all supported messaging protocols, and supports use of digital signatures to ensure message integrity. The TOE ensures all users are authenticated, and provides user management functions such as automated logout, lockout, and verification. The TOE provides fine grained access control for messaging operations and administrative commands, with complete accountability of all operations.", "cert_id": "SERTIT-128", "mutual_recognition": "CCRA, SOG-IS", "product": "XOmail 23.0.1 software", "category": "Messaging system", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Norconsult AS", "certification_date": "2026-02-18", "expiration_date": "2031-02-18", "level": "EAL 4, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1314985-1771424227/SERTIT/Sertifikater/2026/128/SERTIT-128%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1314988-1771424333/SERTIT/Sertifikater/2026/128/739_20859_aaaa_sc_ed4-public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1314991-1771424360/SERTIT/Sertifikater/2026/128/SERTIT-128%20Certification%20Report.pdf" } ] } } }, { "product": "TSF 201", "url": "https://sertit.no/certified-products/trusted-security-filter-tsf-201-article3652-1919.html", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2026-02-10", "enhanced": { "description": "Trusted Security Filter (TSF) 201 allows secure data transfer between different security levels. The TOE is a contents-filtering gateway consisting of both hardware and software. The purpose is to reject unwanted traffic by certain rules defined in a filter configuration file. It enables data transfer in a secure manner between two IP networks of different security classifications.", "cert_id": "SERTIT-130", "mutual_recognition": "CCRA, SOG-IS", "product": "TSF 201, comprising: HW version 3AQ 25960 BAAA rev. F, SW version rev 2.8 build 0157", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Nemko System Sikkerhet AS", "certification_date": "2026-02-10", "expiration_date": "2031-02-10", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1314976-1770728492/SERTIT/Sertifikater/2026/130/SERTIT-130%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1314982-1770728664/SERTIT/Sertifikater/2026/130/3AQ%2025940%20AAAA%20377%20TSF%20201%20ST%20008-lite_clean.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1314979-1770728549/SERTIT/Sertifikater/2026/130/SERTIT-130%20Certification%20Report.pdf" } ] } } }, { "product": "TactiGuard VSI", "url": "https://sertit.no/certified-products/tactiguard-vsi-voice-stream-interceptor-article3646-1919.html", "category": "Other Devices and Systems", "developer": "Saab Danmark A/S", "certification_date": "2026-02-06", "enhanced": { "description": "TactiGuard VSI (Voice Stream Interceptor) allows secure voice communication between different security levels. The main purpose of the TOE is to allow users to communicate through voice from a secure network to other networks at lower security levels. It is possible to have several different networks communicating using the same system.", "cert_id": "SERTIT-129", "mutual_recognition": "CCRA, SOG-IS", "product": "TactiGuard VSI Version 3 with Stock Numbers 111500 and 111501 for TPM version 1.2 and 2.0 respectively.", "category": "Other Devices and Systems", "sponsor": "Saab Danmark A/S", "developer": "Saab Danmark A/S", "evaluation_facility": "Nemko System Sikkerhet AS", "certification_date": "2026-02-06", "expiration_date": "2031-02-06", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1314967-1770719149/SERTIT/Sertifikater/2026/129/SERTIT-129%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1314970-1770719243/SERTIT/Sertifikater/2026/129/TactiGuard%20VSI%20-%20Security%20Target%20Lite%20%28SVP-365%20R1%29.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1314973-1770719281/SERTIT/Sertifikater/2026/129/SERTIT-129%20Certification%20Report.pdf" } ] } } }, { "product": "Trusted Security Filter (TSF) 401", "url": "https://sertit.no/certified-products/trusted-security-filter-tsf-401-article3632-1919.html", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2025-12-16", "enhanced": { "description": "Trusted Security Filter (TSF) 401 allows secure data transfer between different security levels. The main purpose of the TOE is to inspect and filter data addressed from one security domain to another and only allow transfer of data that complies with the filter specification. The TOE has two separate and independent channels and is capable of filtering in both directions on the main channel, or operate as diode allowing all traffic in one direction and blocking all traffic in the opposite direction. The secondary channel can be used as diode or for interface redundancy.", "cert_id": "SERTIT-127", "mutual_recognition": "CCRA, SOG-IS", "product": "TSF 401 SW 1.0.0", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Nemko System Sikkerhet AS", "certification_date": "2025-12-16", "expiration_date": "2030-12-16", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1314819-1765895272/SERTIT/Sertifikater/2025/127/SERTIT-127%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1314825-1765895276/SERTIT/Sertifikater/2025/127/3AQ%2033330%20AAAB%20938%20Security%20Target%20Lite%20TSF%20401%20Ed.%20001.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1314822-1765895275/SERTIT/Sertifikater/2025/127/SERTIT-127%20Certification%20Report.pdf" } ] } } }, { "product": "MLS Voice Guard (MVG)", "url": "https://sertit.no/certified-products/mls-voice-guard-mvg-article3370-1919.html", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2024-05-31", "enhanced": { "description": "MLS Voice Guard (MVG) provides voice connectivity (including signalling) between two connected security domains (High/Low) in an MLS Voice System (MVS).", "cert_id": "SERTIT-124", "mutual_recognition": "CCRA, SOG-IS", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Nemko System Sikkerhet AS", "certification_date": "2024-05-31", "expiration_date": "2029-05-31", "level": "EAL 4, ALC_FLR.3, AVA_VAN.4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1314001-1717768896/SERTIT/Sertifikater/2024/124/SERTIT-124%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1314004-1717768922/SERTIT/Sertifikater/2024/124/3AQ%2032626%20AAAB%20938%20-%20MLS%20Voice%20Guard%20Security%20Target%20EAL4%20v006-lite_240202.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1313998-1717768850/SERTIT/Sertifikater/2024/124/SERTIT-124%20CR%201.0.pdf" } ] } } }, { "product": "MLS Voice Terminal (MVT)", "url": "https://sertit.no/certified-products/mls-voice-terminal-mvt-article3369-1919.html", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2024-05-31", "enhanced": { "description": "MLS Voice Terminal (MVT) provides a secure voice handling SW module inside an Operator Terminal (OCP) in an MLS Voice System (MVS).The main purpose of the TOE is to provide the capabilities required to handle all voice presented at the OCP and to perform the required separation of voice data at different classification levels.", "cert_id": "SERTIT-123", "mutual_recognition": "CCRA, SOG-IS", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Nemko System Sikkerhet AS", "certification_date": "2024-05-31", "expiration_date": "2029-05-31", "level": "EAL 4, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1313995-1717768043/SERTIT/Sertifikater/2024/123/SERTIT-123%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1313989-1717767598/SERTIT/Sertifikater/2024/123/3AQ%2032627%20AAAA%20938%20-%20MLS%20Voice%20Terminal%20Security%20Target%20EAL4%20v007-lite_240214.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1313992-1717767603/SERTIT/Sertifikater/2024/123/SERTIT-123%20CR%201.0.pdf" } ] } } }, { "product": "Operator Terminal Adapter (OTA)", "url": "https://sertit.no/certified-products/operator-terminal-adapter-ota-article3361-1919.html", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2024-05-31", "enhanced": { "description": "Thales Operator Terminal Adapter (OTA) is a part of the Voice Communication System (VCS) used in military control centers. The main purpose of the OTA is to provide the capabilities required to handle all voice presented at the Operator Controller Position (OCP) and to perform required red/black separation of voice and data.", "cert_id": "SERTIT-126", "mutual_recognition": "CCRA, SOG-IS", "product": "Trusted kernel version: 3AQ 24860 AAAA version 6.2.7Hardware versions: 3AQ 21564 AAAA ICS7, - ICS7A, - ICS7B, -ICS8, -ICS8A, -ICS8B", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Nemko System Sikkerhet AS", "certification_date": "2024-05-31", "expiration_date": "2029-05-31", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1313986-1717753308/SERTIT/Sertifikater/2024/126/SERTIT-126%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1313980-1717753298/SERTIT/Sertifikater/2024/126/3AQ%2024863%20AAAA%20377%20EN%20Security%20Target%20for%20OTA%20ed.%206.2.10.docx.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1313983-1717753305/SERTIT/Sertifikater/2024/126/SERTIT-126%20CR%201.0.pdf" } ] } } }, { "product": "XOmail 22.2.0", "url": "https://sertit.no/certified-products/xomail-22-2-0-article3102-1919.html", "category": "Messaging system", "developer": "Thales Norway AS", "certification_date": "2023-06-20", "enhanced": { "description": "The XOmail Server software (TOE) enforces controlled message and information flow according to military requirements with integrated multi-level security and mandatory access control. The TOE provides priority handling for messaging, ensuring flash message traffic is delivered with minimal delay even with heavy traffic or congestion. The TOE preserves message security through consistent interpretation of security labels across all supported messaging protocols, and supports use of digital signatures to ensure message integrity. The TOE ensures all users are authenticated, and provides user management functions such as automated logout, lockout, and verification. The TOE provides fine grained access control for messaging operations and administrative commands, with complete accountability of all operations. The XOmail Server is themain building block of the XOmail product family. The XOmail Server provides secure message handling, transfer, storage, and administration functionality. The TOE can be deployed in different product configurations. Multiple configurations may be deployed to a single instance of the TOE.", "cert_id": "SERTIT-125", "mutual_recognition": "CCRA, SOG-IS", "product": "XOmail 22.2.0", "category": "Messaging system", "sponsor": "FMA Forsvarsmateriell", "developer": "Thales Norway AS", "evaluation_facility": "Norconsult AS", "certification_date": "2023-06-20", "expiration_date": "2028-06-20", "level": "EAL 4, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1313152-1691150778/SERTIT/Sertifikater/2023/125/SERTIT-125C_unsign.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1313155-1691150781/SERTIT/Sertifikater/2023/125/739_20802_aaaa_sc_ed4-public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1313296-1692360133/SERTIT/Sertifikater/2023/125/SERTIT-125%20CR%201.1.pdf" } ] } } }, { "product": "TNOR Guard", "url": "https://sertit.no/certified-products/tnor-guard-article2842-1919.html", "category": "Boundary Protection Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2022-05-12", "enhanced": { "description": "TNOR Guard is a technology that provides controlled information flow between networks with different system and application security policies. The TNOR Guard (TOE) is part of the XOmail product family for messaging and information exchange in mission-critical military and civilian networks. The Guard implements high-assurance information flow control for the trusted exchange of information across security domain boundaries. This product is also described in this report as the Target of Evaluation (TOE). The main security feature of the TOE is to mediate a one-way or bidirectional flow between two security domains. The TOE inspects every information object that is requested sent between the security domains, and makes an automated release decision according to configured policy. The TOE covers the following four Guard products: STANAG 4406 Ed 2 Message Guard For connectivity towards the NATO standard Military Message Handling System (MMHS), SMTP Message Guard (E-mail) For connectivity towards standard e-mail systems such as Microsoft Exchange. Supports RFC 6477 for Military Message Handling attributes within the SMTP domain, Chat (XMPP) Guard Instant Messaging service between security domains. XML/SOAP Guard Exchange of XML/SOAP data between security domains.", "cert_id": "SERTIT-120", "mutual_recognition": "CCRA, SOG-IS", "product": "TNOR Guard version 1.1.3", "category": "Boundary Protection Devices and Systems", "sponsor": "Forsvarsmateriell IKT-kapasiteter", "developer": "Thales Norway AS", "evaluation_facility": "System Sikkerhet AS", "certification_date": "2022-05-12", "expiration_date": "2027-05-12", "level": "EAL 4, ALC_FLR.3, AVA_VAN.4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/1311036-1656573547/SERTIT/Sertifikater/2022/120/SERTIT-120%20C%20v1.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/1310630-1654589563/SERTIT/Sertifikater/2022/120/TNOR%20Guards%20739_20726_aaaa_sc_ed10-4-public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/1310627-1654589561/SERTIT/Sertifikater/2022/120/SERTIT-120%20CR%20v1.0.pdf" } ] } } }, { "product": "Thinklogical TLX1280", "url": "https://sertit.no/certified-products/thinklogical-tlx1280-article2231-1919.html", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2019-12-12", "enhanced": { "description": "The TOE provides remote connections from a set of shared computers to a set of shared peripherals. The switching capability of the TOE is used to connect ports on a particular computer to a particular peripheral set. The corresponding electronic signal from a computer port is transformed into an optical signal by the Velocity or TLX extender, transmitted through an optical fiber, switched by the TOE to another optical fiber, and then transformed back to an electronic form by the Velocity or TLX extender. The resulting signal is used by the shared peripherals. The TOE provides a capability to dynamically change the switching configuration to connect a particular computer to a particular peripheral set. The TOE enforces secure separation of information flows corresponding to different switched connections. The corresponding Data Separation Security Policy is the main security feature of the TOE.", "cert_id": "SERTIT-119", "mutual_recognition": "CCRA, SOG-IS", "product": "TLX1280 Matrix Switch Chassis (TLX-MSC-001280 Rev A);TX1280 Matrix Switch Data Input / Output Card, 32 Ports, SFP+, Multi-Mode (TLX-MSD-M00032 Rev A),Single-Mode (TLX-MSD-S00032 Rev A);TLX1280 Matrix Switch Data Input / Output Card, 32 Ports, 6G+, SFP+, Multi-Mode (TLX-MSD-MV0032 Rev A),Single-Mode (TLX-MSD-SV0032 Rev A);TX1280 Matrix Switch Data Input / Output Card, 32 Ports, SFP+, Multi-Mode (TLX-MSD-M00032 Rev B),Single-Mode (TLX-MSD-S00032 Rev B);TLX1280 Matrix Switch Data Input / Output Card, 32 Ports, 6G+, SFP+, Multi-Mode (TLX-MSD-MV0032 Rev B),Single-Mode (TLX-MSD-SV0032 Rev B)", "category": "Other Devices and Systems", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2019-12-12", "expiration_date": "2024-12-12", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135616-1611654849/SERTIT/Sertifikater/2019/119/SERTIT-119%20C%20v%201.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135622-1611654871/SERTIT/Sertifikater/2019/119/ThinklogicalSecurityTarget_1_4_TLX1280.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135619-1611654862/SERTIT/Sertifikater/2019/119/SERTIT-119%20TLX1280%20Matrix%20Switch%20CR%20v%201.0.pdf" } ] } } }, { "product": "Operator Terminal Adapter (OTA)", "url": "https://sertit.no/certified-products/operator-terminal-adapter-ota-article2263-1919.html", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2019-07-15", "enhanced": { "description": "Thales Operator Terminal Adapter (OTA) is a part of the Voice Communication System (VCS) used in military control centers. The main purpose of the OTA is to provide the capabilities required to handle all voice presented at the Operator Controller Position (OCP) and to perform required red/black separation of voice and data.", "cert_id": "SERTIT-101", "mutual_recognition": "CCRA, SOG-IS", "product": "OTA hardware: 3AQ 21564 AAAA ICS7, -ICS7A, -ICS7B, -ICS8, -ICS8A, ICS8BOTA trusted kernel: 3AQ 24860 AAAA Version 6.2.5", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "System Sikkerhet AS", "certification_date": "2019-07-15", "expiration_date": "2024-07-15", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135415-1607954475/SERTIT/Sertifikater/2019/101/SERTIT-101%20C_v%201.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135421-1607954481/SERTIT/Sertifikater/2019/101/3AQ%2024863%20AAAA%20377%20EN%20Security%20Target%20for%20OTA%20ed.%206.2.9.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135418-1607954478/SERTIT/Sertifikater/2019/101/SERTIT-101%20CR_v1.0.pdf" } ] } } }, { "product": "Ruckus Solution", "url": "https://sertit.no/certified-products/ruckus-solution-article2252-1919.html", "category": "Network and Network-Related Devices and Systems", "developer": "Ruckus Wireless, Inc.", "certification_date": "2019-07-01", "enhanced": { "description": "The Ruckus SmartZone WLAN Controllers & Access Points (TOE) is a Wireless LAN access system. The system encompasses multiple products operating together to provide secure network access. The TOE provides end-to-end encryption, centralized WLAN management, authentication, authorization, accounting (AAA) and policy enforcement.", "cert_id": "SERTIT-111", "mutual_recognition": "CCRA", "product": "Wireless Controllers:Smart Zone 100 (includes SZ-104 and SZ-124 models)Smart Zone 300 (SZ-300)Ruckus virtual SmartZone (includes vSZ-E and vSZ-H) running on a specific physical hardware platform (Intel(R) Xeon(R) CPU E5-2620 v4 @ 2.10GHz with AES-NI)Ruckus virtual SmartZone – Data plane (vSZ-D) running on a specific physical hardware platform (Intel(R) Xeon(R) CPU E5-2620 v4 @ 2.10GHz with AES-NI) Access Points:R610; R710; R720; T610 (including T610S); T710 (including T710S); E510Software version: 5.1.1.3", "category": "Network and Network-Related Devices and Systems", "developer": "Ruckus Wireless, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2019-07-01", "expiration_date": "2024-07-01", "protection_profile": "Collaborative Protection Profile for Network Devices, Version 2.0 + Errata 20180314, 14 March 2018 (CPP_ND_V2.0E), and Extended Package for Wireless LAN Access System, v1.0, May 29, 2015 (PP_WLAN_AS_EP_V1.0).", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135430-1607954533/SERTIT/Sertifikater/2019/111/20190701_SERTIT-111_Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135427-1607954529/SERTIT/Sertifikater/2019/111/ST_Ruckus_Solution_1_2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135433-1607954536/SERTIT/Sertifikater/2019/111/20190701_Sertit-111_CR_v1_0.pdf" } ] } } }, { "product": "A10 Networks Thunder TPS 3030S", "url": "https://sertit.no/certified-products/a10-networks-thunder-tps-3030s-article2232-1919.html", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2019-06-25", "enhanced": { "description": "A10 Thunder TPS product line of Threat Protection Systems provides high-performance, network-wide protection against distributed denial of service (DDoS) attacks, and enables service availability against a variety of volumetric, protocol, resource and other sophisticated application attacks. The Thunder TPS product line is built upon our Advanced Core Operating System (ACOS) platform, with A10 Symmetric Scalable Multi-Core Processing (SSMP) software architecture that delivers high performance and leverages a shared memory architecture to provide efficient tracking of network flows, as well as accurate DDoS protection enforcement for service providers, Web site operators and enterprises. A10 Thunder TPS devices protect critical services in highly efficient hardware form factors, which enables your data center resources to be used productively. The combination of high performance in a small form factor results in lower OPEX through significantly lower power usage, reduced rack space and lowered cooling requirements.", "cert_id": "SERTIT-118", "mutual_recognition": "CCRA", "product": "3030S with firmware version 3.2.2-p7", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2019-06-25", "expiration_date": "2024-06-25", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135454-1607954602/SERTIT/Sertifikater/2019/118/20190625_Sertit-118_Certificate_v1-0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135448-1607954595/SERTIT/Sertifikater/2019/118/ST_A10_Networks_Thunder_TPS%20_v.1.2g-cln.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135451-1607954599/SERTIT/Sertifikater/2019/118/20190625_Sertit-118_CR_v1-0.pdf" } ] } } }, { "product": "Cloudian Solution", "url": "https://sertit.no/certified-products/cloudian-solution-article2246-1919.html", "category": "Other Devices and Systems", "developer": "Cloudian, Inc.", "certification_date": "2019-06-25", "enhanced": { "description": "Cloudian HyperStore object storage solves biggest storage challenges. Deploy HyperStore nodes wherever you need capacity storage, then scale seamlessly. Simplicity is built in. Nodes form a global data fabric that you manage within a single framework. With the industry's most compatible S3 API and a proven, hyperscale architecture, Cloudian HyperStore is the antidote to storage complexity.", "cert_id": "SERTIT-117", "mutual_recognition": "CCRA", "product": "HyperStore version 7.2", "category": "Other Devices and Systems", "developer": "Cloudian, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2019-06-25", "expiration_date": "2024-06-25", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135442-1607954564/SERTIT/Sertifikater/2019/117/20190625_SERTIT-117_Certificate_Cloudian_v_1-0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135445-1607954567/SERTIT/Sertifikater/2019/117/Hyperstore%20Object%20Storage%20Software%20Platform%20ST.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135439-1607954561/SERTIT/Sertifikater/2019/117/20190625_SERTIT-117_CR_Cloudian_v_1-0.pdf" } ] } } } ], "ARCHIVED": [ { "product": "Rubrik Cloud Data Management", "url": "https://sertit.no/certified-products/product-archive/rubrik-cloud-data-management", "category": "Other Devices and Systems", "developer": "Rubrik, Inc.", "certification_date": "2018-10-10", "enhanced": { "description": "Rubrik delivers backup, instant recovery, replication, and archival in one, infinitely scalable fabric. Rubrik Cloud Data Management collapses physically separate hardware and software resources' like backup software, replication, storage, and catalogs' into a single fabric that scales up to thousands of nodes.", "cert_id": "SERTIT-112", "mutual_recognition": "CCRA", "product": "Version 4.1.2", "category": "Other Devices and Systems", "developer": "Rubrik, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2018-10-10", "expiration_date": "2023-10-10", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135349-1607953899/SERTIT/Sertifikater/2018/112/20181010%20Sertit-112%20C%20v1_0Rubrik.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135343-1607953893/SERTIT/Sertifikater/2018/112/ST_Rubrik_Cloud_Data_Management_v.1.2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135346-1607953896/SERTIT/Sertifikater/2018/112/20181010%20Sertit-112%20CR%20v1_0Rubrik.pdf" } ] } } }, { "product": "X-Ware IoT Platform SC", "url": "https://sertit.no/certified-products/product-archive/x-ware-iot-platform-sc", "category": "Operating Systems", "developer": "Express Logic", "certification_date": "2018-09-28", "enhanced": { "description": "The TOE is an Industrial Grade solution for deeply embedded IoT devices based on proprietary, non-open source, ThreadX RTOS, NetX Duo IPv4/IPv6 TCP/IP stack with NetX Secure TLS 1.2 and MQTT support.", "cert_id": "SERTIT-113", "mutual_recognition": "CCRA, SOG-IS", "product": "Version 5.11", "category": "Operating Systems", "sponsor": "Express Logic", "developer": "Express Logic", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-09-28", "expiration_date": "2023-09-28", "level": "EAL 4, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135355-1607953929/SERTIT/Sertifikater/2018/113/SERTIT-113_Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135358-1607953931/SERTIT/Sertifikater/2018/113/%5BST%5D%20X-Ware%20IoT%20Platform%20SC%20Security%20Target%20V2.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135352-1607953925/SERTIT/Sertifikater/2018/113/SERTIT-113%20CR%20v1.0.pdf" } ] } } }, { "product": "Hikvision Network Camera Series", "url": "https://sertit.no/certified-products/product-archive/hikvision-network-camera-series", "category": "Other Devices and Systems", "developer": "Hangzhou Hikvision Digital Technology Co., Ltd.", "certification_date": "2018-09-18", "enhanced": { "description": "The TOE is a Network camera which comprises a hardware board and a specific firmware for the hardware. The TOE provides a management interface and video over IP functionalities with high security features such as security management, user identification and authentication, trusted path, audit logs, protection on the TSF, cryptographic support, TOE access and trusted firmware updates. Two series of IP cameras are included, namely DS- 2CD3 series and DS-2CD5 series.", "cert_id": "SERTIT-115", "mutual_recognition": "CCRA, SOG-IS", "product": "V5.5.60", "category": "Other Devices and Systems", "sponsor": "Hangzhou Hikvision Digital Technology Co., Ltd.", "developer": "Hangzhou Hikvision Digital Technology Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-09-18", "expiration_date": "2023-09-18", "level": "EAL 2, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135370-1607953999/SERTIT/Sertifikater/2018/115/HikVision_certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135376-1607954007/SERTIT/Sertifikater/2018/115/%5BASE%5D%20HikVision%20Network%20Camera%20Series%20ST%20v3.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135373-1607954002/SERTIT/Sertifikater/2018/115/SERTIT-115%20Hikvision%20CR%20v1.0.pdf" } ] } } }, { "product": "FT-JCOS V5.0", "url": "https://sertit.no/certified-products/product-archive/ft-jcos-v5-0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Feitian Technologies Co., Ltd.", "certification_date": "2018-09-17", "enhanced": { "description": "The TOE is an open Java Card Platforms (JCP), that is, smart cards or similar devices enabled with JavaCard technology that support post-issuance downloading of applications.The purpose of the TOE is to provide a limited Java Card environment for a single applet, specifically for e-passport and similar applications such as eID and driving license.The TOE is composed of a Smart Card Platform (SCP) and an embedded software (JCS + non-TSF parts). The JCP is compliant with Java Card Specification v3.0.4 and GlobalPlatform Specification v.2.3. The TOE allows for the loading of the customer applets, but after loading the single applet the platform must be closed to prevent further loading of applets after issuance of the card to the end user. To support this functionality, the TOE provides a closing mechanism with specific guidance. The applet should have been previously verified by an off-card trusted IT component. The JCP is managed by Card Manager that is a part of the TOE. The Card Manager(ISD) is a pre-issuance applet. The JCP is fully compliant with the Java Card Specification v3.0.4 excluding the optional part JCRMI which is not implemented by the TOE. The SCP is a certified hardware platform – the SLE77CLFX2400PM with specific IC dedicated software (firmware). The hardware platform is certified by the BSI under the certification ID: BSI-DSZ-CC-0964-V3-2017 . Not all functionality of the hardware is used by the composite TOE. Therefore some parts of the IC platform are not part of the composite TOEto ensure that the developed applet has sufficient ability to counter attacks.", "cert_id": "SERTIT-116", "mutual_recognition": "CCRA, SOG-IS", "product": "V5.0.9", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Feitian Technologies Co., Ltd.", "developer": "Feitian Technologies Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-09-17", "expiration_date": "2023-09-17", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135382-1607954033/SERTIT/Sertifikater/2018/116/20180917SERTIT-116%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135385-1607954035/SERTIT/Sertifikater/2018/116/%5B09895%5D%5BSERTIT-116%5D%5BST%5D%5Bv1.0.8%5D%20FTJCOS%20v5.0%20Security%20Target.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135379-1607954030/SERTIT/Sertifikater/2018/116/20180917%20Sertit-116%20CR%20Feitian%20v10.pdf" } ] } } }, { "product": "HUAWEI NE9000 Router", "url": "https://sertit.no/certified-products/product-archive/huawei-ne9000-router", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2018-07-04", "enhanced": { "description": "The HUAWEI NE9000 Core Router (NE9000) is a large-capacity and high-performance router designed by HUAWEI to provide carrier-class reliability. Based on the powerful versatile routing platform (VRP), the NE9000 provides strong switching capabilities, dense ports, and high reliability. NE9000s mainly serve as super-core nodes on carriers' backbone networks, core nodes on metropolitan area networks (MANs), egresses in large-scale Internet Data Centers (IDCs), and core nodes on large-scale enterprise networks. The NE9000 can be flexibly deployed at the edge or core of IP/MPLS networks to simplify the network structure and provide an extensive range of services and reliable service quality. The NE9000 is driving IP/MPLS bearer networks to develop greater broadband capacities and to become more secure, intelligent, and service-oriented.", "cert_id": "SERTIT-114", "mutual_recognition": "CCRA, SOG-IS", "product": "V800R010C00SPC200", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-07-04", "expiration_date": "2023-07-04", "level": "EAL 2, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135361-1607953962/SERTIT/Sertifikater/2018/114/20180704%20S114%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135364-1607953964/SERTIT/Sertifikater/2018/114/180515%20%5BHUA%5D%20%5BST%5D%20NE9000%20V800R010C00%20CC%20ST-Security%20Target%20V1.8.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135367-1607953969/SERTIT/Sertifikater/2018/114/SERTIT-114%20CR%20v1.0.pdf" } ] } } }, { "product": "A10 Networks Thunder TPS 14045", "url": "https://sertit.no/certified-products/product-archive/a10-networks-thunder-tps-14045", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2018-07-02", "enhanced": { "description": "A10 Thunder TPS product line of Threat Protection Systems provides high-performance, network-wide protection against distributed denial of service (DDoS) attacks, and enables service availability against a variety of volumetric, protocol, resource and other sophisticated application attacks. The Thunder TPS product line is built upon our Advanced Core Operating System (ACOS) platform, with A10's Symmetric Scalable Multi-Core Processing (SSMP) software architecture that delivers high performance and leverages a shared memory architecture to provide efficient tracking of network flows, as well as accurate DDoS protection enforcement for service providers, Web site operators and enterprises. A10 Thunder TPS devices protect critical services in highly efficient hardware form factors, which enables your data center resources to be used productively. The combination of high performance in a small form factor results in lower OPEX through significantly lower power usage, reduced rack space and lowered cooling requirements.", "cert_id": "SERTIT-107", "mutual_recognition": "CCRA", "product": "HW: 14045-TPS, FW: 3.2.2-P5", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2018-07-02", "expiration_date": "2023-07-02", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135310-1607953774/SERTIT/Sertifikater/2018/107/20180702%20S107%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135307-1607953771/SERTIT/Sertifikater/2018/107/ST_A10_Networks_Thunder_TPS%20_v.1.5_06_26_2018.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135304-1607953768/SERTIT/Sertifikater/2018/107/20180702%20SERTIT-107%20CR%20A10NetworksThunderTPS%20-%201.0.pdf" } ] } } }, { "product": "FM1280", "url": "https://sertit.no/certified-products/product-archive/fm1280", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Shanghai Fudan Microelectronics Group Co., Ltd.", "certification_date": "2018-07-02", "enhanced": { "description": "The TOE is a Dual Interface Smart Card Chip with IC Dedicated Software. It provides TDES, RSA, AES, ECC,True Random Number Generator and other security features. It can be widely and easily applied in various security fields such as banking and financial market, social security card, transport card, small-amount payment and security identification, etc. The TOE supports the following communication interfaces: - ISO/IEC 14443 TYPE A contactless interface - ISO/IEC 7816 contact interface - GPIO - SPI - I2C - UART", "cert_id": "SERTIT-109", "mutual_recognition": "CCRA, SOG-IS", "product": "V05", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Shanghai Fudan Microelectronics Group Co., Ltd.", "developer": "Shanghai Fudan Microelectronics Group Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-07-02", "expiration_date": "2023-07-02", "level": "EAL 5, ALC_DVS.2, ATE_DPT.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile with Augmentation Packages Version 1.0, BSI-CC-PP-0084-2014", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135331-1607953855/SERTIT/Sertifikater/2018/109/SERTIT-109%20C%20v%202.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135325-1607953847/SERTIT/Sertifikater/2018/109/FM1280%20EAL5%2B%20ST%20lite.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135328-1607953852/SERTIT/Sertifikater/2018/109/SERTIT-109%20Certification%20Report%20Fudan%20EAL5%2B%20v2.0_rev.pdf" } ], "maintenance": [ { "href": "https://sertit.no/getfile.php/135322-1607953843/SERTIT/Sertifikater/2018/109/SERTIT-109%20MR%20Maintenance%20Report%20v1.0-.pdf" } ] } } }, { "product": "Thinklogical TLX12", "url": "https://sertit.no/certified-products/product-archive/thinklogical-tlx12", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2018-05-08", "enhanced": { "description": "Thinklogical TLX12 Matrix Switch is a fiber optic switch that uses multi-mode or single-mode fiber optics to transmit and receive a digital video pulse stream without alteration or interpretation of the original signal.", "cert_id": "SERTIT-102", "mutual_recognition": "CCRA, SOG-IS", "product": "TLX12 Matrix Switch Chassis, Front Panel Control with 12 Multi-Mode Fiber 10G (TLX-MSC-M00012 Rev A); TLX12 Matrix Switch Chassis, Front Panel Control with 12 Multi-Mode Fiber 6G (TLX-MSC-MV0012 Rev A); TLX12 Matrix Switch Chassis, Front Panel Control with 12 Single-Mode Fiber 10G (TLX-MSC-S00012 Rev A); TLX12 Matrix Switch Chassis, Front Panel Control with 12 Single-Mode Fiber 6G (TLX-MSC-SV0012 Rev A); TLX12 Matrix Switch Chassis, CustomConfigA: No Front Ctrl Panel, 12 MMode Fiber Ports, 6G Ports11-16 (TLX-MSC-M00A12 Rev A)", "category": "Other Devices and Systems", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2018-05-08", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135265-1607953585/SERTIT/Sertifikater/2018/102/20180508%20S-102C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135259-1607953578/SERTIT/Sertifikater/2018/102/ThinklogicalSecurityTarget_1_2_TLX12.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135262-1607953581/SERTIT/Sertifikater/2018/102/20180508%20SERTIT-102%20CR%20Thinklogical%20TLX12%20v1.pdf" } ] } } }, { "product": "Thinklogical TLX24", "url": "https://sertit.no/certified-products/product-archive/thinklogical-tlx24", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2018-05-08", "enhanced": { "description": "Thinklogical TLX24 Matrix Switch is a fiber optic switch that uses multi-mode or single-mode fiber optics to transmit and receive a digital video pulse stream without alteration or interpretation of the original signal.", "cert_id": "SERTIT-103", "mutual_recognition": "CCRA, SOG-IS", "product": "TLX24 Matrix Switch Chassis, Front Panel Control with 24 Multi-Mode Fiber 10G (TLX-MSC-M00024 Rev A); TLX24 Matrix Switch Chassis, Front Panel Control with 24 Multi-Mode Fiber Ports, 6G (TLX-MSC-MV0024 Rev A); TLX24 Matrix Switch Chassis, Front Panel Control with 24 Single-Mode Fiber 10G (TLX-MSC-S00024 Rev A); TLX24 Matrix Switch Chassis, Front Panel Control with 24 Single-Mode Fiber Ports, 6G (TLX-MSC-SV0024 Rev A); TLX24 Matrix Switch Chassis, CustomConfigA: No Front Ctrl Panel, 24 MMode Fiber Ports, 6G Ports7-12 (TLX-MSC-M00A24 Rev B)", "category": "Other Devices and Systems", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2018-05-08", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135271-1607953615/SERTIT/Sertifikater/2018/103/20180508%20S-103C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135268-1607953612/SERTIT/Sertifikater/2018/103/ThinklogicalSecurityTarget_1_2_TLX24.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135274-1607953618/SERTIT/Sertifikater/2018/103/20180508%20SERTIT-103%20CR%20Thinklogical%20TLX24%20v1.pdf" } ] } } }, { "product": "Thinklogical TLX80", "url": "https://sertit.no/certified-products/product-archive/thinklogical-tlx80", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2018-05-08", "enhanced": { "description": "Thinklogical TLX160 Matrix Switch is a fiber optic switch that uses multi-mode or single-mode fiber optics to transmit and receive a digital video pulse stream without alteration or interpretation of the original signal.", "cert_id": "SERTIT-104", "mutual_recognition": "CCRA, SOG-IS", "product": "TLX80 Matrix Switch Chassis (TLX-MSC-000080 Rev A); TLX80 Matrix Switch Data Input and Output Card, 10 Ports, SFP+, 10G Multi-Mode (TLX-MSD-M00005 Rev B), Single Mode (TLX-MSD-S00005 Rev B);TLX80 Matrix Switch Data Input and Output Card, 10 Ports, SFP+, 6G; Multi-Mode (TLX-MSD-MV0005 Rev B), Single Mode (TLX-MSDSV0005 Rev B)", "category": "Other Devices and Systems", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2018-05-08", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135277-1607953657/SERTIT/Sertifikater/2018/104/20180508%20S-104C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135286-1607953696/SERTIT/Sertifikater/2018/105/ThinklogicalSecurityTarget_1_1_TLX160.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135283-1607953665/SERTIT/Sertifikater/2018/104/20180508%20SERTIT-104%20CR%20Thinklogical%20TLX80%20v1.pdf" } ] } } }, { "product": "Thinklogical TLX160", "url": "https://sertit.no/certified-products/product-archive/thinklogical-tlx160", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2018-05-08", "enhanced": { "description": "Thinklogical TLX160 Matrix Switch is a fiber optic switch that uses multi-mode or single-mode fiber optics to transmit and receive a digital video pulse stream without alteration or interpretation of the original signal.", "cert_id": "SERTIT-105", "mutual_recognition": "CCRA, SOG-IS", "product": "TLX160 Matrix Switch Chassis (TLX-MSC-000160 Rev B); TLX160 Matrix Switch Data Input and Output Card, 10 Ports, SFP+, 10G Multi-Mode (TLX-MSD-M00010 Rev A), Single Mode (TLX-MSDS00010 Rev A); TLX160 Matrix Switch Data Input and Output Card, 10 Ports, SFP+, 6G Multi-Mode (TLX-MSD-MV0010 Rev A), Single Mode (TLX-MSDSV0010 Rev A)", "category": "Other Devices and Systems", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2018-05-08", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135289-1607953700/SERTIT/Sertifikater/2018/105/20180508%20S-105C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135286-1607953696/SERTIT/Sertifikater/2018/105/ThinklogicalSecurityTarget_1_1_TLX160.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135292-1607953703/SERTIT/Sertifikater/2018/105/20180508%20SERTIT-105%20CR%20Thinklogical%20TLX160%20v1.pdf" } ] } } }, { "product": "Zyxel ZyWALL VPN Firewall series", "url": "https://sertit.no/certified-products/product-archive/zyxel-zywall-vpn-firewall-series", "category": "Network and Network-Related Devices and Systems", "developer": "Zyxel Communications Corporation", "certification_date": "2018-04-19", "enhanced": { "description": "The TOE is one of a series of Zyxel ZyWALL VPN Firewalls. Each TOE is a self-contained box consisting of hardware and firmware, that provides stateful firewall and VPN-services for IPv4 and IPv6 networks. The TOE resides between one or more internal (virtual) networks (that the TOE is protecting) and an external network such as the Internet.", "cert_id": "SERTIT-100", "mutual_recognition": "CCRA, SOG-IS", "product": "USG20-VPN V4.30(ABAQ.0); USG40 V4.30(AALA.0); USG60 V4.30(AAKY.0); VPN50 V4.30(ABHL.0); USG110 V4.30(AAPH.0); USG210 V4.30(AAPI.0); USG310 V4.30(AAPJ.0); ZyWALL 110 V4.30(AAAA.0); ZyWALL 310 V4.30(AAAB.0); VPN100 V4.30(ABFV.0); VPN300 V4.30(ABFC.0); USG1100 V4.30(AAPK.0); USG1900 V4.30(AAPL.0); ZyWALL1100 V4.30(AAAC.0); USG2200-VPN V4.30(ABAE.0)", "category": "Network and Network-Related Devices and Systems", "sponsor": "Zyxel Communications Corporation", "developer": "Zyxel Communications Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-04-19", "level": "EAL 2, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135250-1607953537/SERTIT/Sertifikater/2018/100/20180419_SERTIT_S-100_C_v.1.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135253-1607953539/SERTIT/Sertifikater/2018/100/180126%20%5BZXL%5D%20Zyxel%20ST%20v1.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135256-1607953544/SERTIT/Sertifikater/2018/100/20180419_SERTIT-100_CR_v1.0.pdf" } ] } } }, { "product": "Huawei IP Camera Series Products", "url": "https://sertit.no/certified-products/product-archive/huawei-ip-camera-series-products", "category": "Other Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2018-04-19", "enhanced": { "description": "Huawei IP Camera Series Products are network cameras / IP cameras, used primarily to send video/audio over an IP network such as a local area network (LAN) or the Internet. Some security features include: Security Audit, Cryptographic support, Identification and Authentication, Security Management, Protection of the TSF, TOE access, Trusted Path. TOE is composed of a hardware platform and a firmware running within the platform as a whole system.", "cert_id": "SERTIT-106", "mutual_recognition": "CCRA, SOG-IS", "product": "V200R003C20", "category": "Other Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-04-19", "level": "EAL 3, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135301-1607953744/SERTIT/Sertifikater/2018/106/20180419_SERTIT_S-106_C_v.1.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135295-1607953735/SERTIT/Sertifikater/2018/106/Huawei%20IP%20Camera%20Series%20products%20V200R003C20%20Security%20Target%20V1.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135298-1607953740/SERTIT/Sertifikater/2018/106/20180419_SERTIT-106_CR_v1.0.pdf" } ] } } }, { "product": "TOSMART-GP1 (Supporting PACE PP-0499)", "url": "https://sertit.no/certified-products/product-archive/tosmart-gp1-supporting-pace-pp-0499", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Toshiba Infrastructure Systems & Solutions Corporation", "certification_date": "2018-02-28", "enhanced": { "description": "Toshiba TOSMART GP-1 is an e-passport secure IC consisting of the hardware IFX_CCI_000005H, which is used as the evaluated underlying platform, and the e-passport (OS and application) software implementing PACE", "cert_id": "SERTIT-097", "mutual_recognition": "CCRA, SOG-IS", "product": "V01.00.00", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Toshiba Infrastructure Systems & Solutions Corporation", "developer": "Toshiba Infrastructure Systems & Solutions Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-02-28", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "protection_profile": "Protection Profile for ePassport IC with SAC (PACE) and Active Authentication, version 1.00, March 8, 2016", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135391-1607954244/SERTIT/Sertifikater/2018/097/20180228%20SERTIT-097%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135394-1607954247/SERTIT/Sertifikater/2018/097/IB-MC-SM1908_ST%28Public%20Security%20Target%20by%20PP-C0499%29.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135388-1607954240/SERTIT/Sertifikater/2018/097/20180228%20SERTIT-097%20Certification%20Report%201.0.pdf" } ] } } }, { "product": "TOSMART-GP1 (Supporting PACE and BAC PP-0500)", "url": "https://sertit.no/certified-products/product-archive/tosmart-gp1-supporting-pace-and-bac-pp-0500", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Toshiba Infrastructure Systems & Solutions Corporation", "certification_date": "2018-02-28", "enhanced": { "description": "Toshiba TOSMART GP-1 is an e-passport secure IC consisting of the hardware IFX_CCI_000005H, which is used as the evaluated underlying platform, and the e-passport (OS and application) software implementing BAC+PACE", "cert_id": "SERTIT-098", "mutual_recognition": "CCRA, SOG-IS", "product": "ePassport application OS Ver. V01.00.00", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Toshiba Infrastructure Systems & Solutions Corporation", "developer": "Toshiba Infrastructure Systems & Solutions Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-02-28", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "protection_profile": "Protection Profile for ePassport IC with SAC (BAC+PACE) and Active Authentication, version 1.00, March 8, 2016", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135403-1607954385/SERTIT/Sertifikater/2018/098/20180228%20SERTIT-098%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135397-1607954375/SERTIT/Sertifikater/2018/098/IB-MC-SM1969_ST%28Public%20Security%20Target%20by%20PP-C0500%29.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135400-1607954381/SERTIT/Sertifikater/2018/098/20180228%20SERTIT-098%20Certification%20Report%201.0.pdf" } ] } } }, { "product": "Huawei iTrustee", "url": "https://sertit.no/certified-products/product-archive/huawei-itrustee", "category": "Trusted Computing", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2018-02-22", "enhanced": { "description": "The TOE type is the Trusted OS, which is only the software part of the Trusted Execution Environment (TEE) defined by [TEE PP]. It is for embedded devices implementing GlobalPlatform TEE specifications (see TEE System Architecture [SA], TEE Internal API [IAPI] and TEE Client API [CAPI]). However, the ST does not claim full functional compliance with GlobalPlatform TEE APIs specifications.", "cert_id": "SERTIT-108", "mutual_recognition": "CCRA, SOG-IS", "product": "2.0", "category": "Trusted Computing", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-02-22", "level": "EAL 2, ASE_TEE.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135319-1607953813/SERTIT/Sertifikater/2018/108/20180223133209.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135313-1607953805/SERTIT/Sertifikater/2018/108/CC%20Huawei%20iTrustee%20Software%20V2.0%20Security%20Target%202.1.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135316-1607953810/SERTIT/Sertifikater/2018/108/SERTIT-108%20CR%201.0.pdf" } ] } } }, { "product": "FM1280 V05 Dual Interface Smart Card Chip with IC Dedicated Software", "url": "https://sertit.no/certified-products/product-archive/fm1280-v05-dual-interface-smart-card-chip-with-ic-dedicated-software", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Shanghai Fudan Microelectronics Group Co., Ltd.", "certification_date": "2018-02-09", "enhanced": { "description": "The TOE is a Dual Interface Smart Card Chip with IC Dedicated Software. It provides TDES, RSA, True Random Number Generator and other security features. It can be widely and easily applied in various security fields such as banking and finance market, social security card, transport card, small-amount payment and security identification, etc. The TOE supports the following communication interfaces: - ISO/IEC 14443 TYPE A contactless interface - ISO/IEC 7816 contact interface. - GPIO - SPI - I2C - UART", "cert_id": "SERTIT-099", "mutual_recognition": "CCRA, SOG-IS", "product": "V05", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Shanghai Fudan Microelectronics Group Co., Ltd.", "developer": "Shanghai Fudan Microelectronics Group Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2018-02-09", "level": "EAL 4, ALC_DVS.2, ATE_DPT.2, AVA_VAN.5", "protection_profile": "PP name: BSI-CC-PP-0084-2014, Version 1.0, 13-01- 2014", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135412-1607954414/SERTIT/Sertifikater/2018/099/20180209%20S-099%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135406-1607954405/SERTIT/Sertifikater/2018/099/Fudan%20FM1280V05_ST_L_1.8.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135409-1607954411/SERTIT/Sertifikater/2018/099/SERTIT-099%20CR%20v1.0.pdf" } ] } } }, { "product": "Rubrik Converged Data Management", "url": "https://sertit.no/certified-products/product-archive/rubrik-converged-data-management", "category": "Other Devices and Systems", "developer": "Rubrik, Inc.", "certification_date": "2017-12-16", "enhanced": { "description": "Rubrik delivers backup, instant recovery, replication, and archival in one, infinitely scalable fabric. Rubrik Converged Data Management collapses physically separate hardware and software resources' like backup software, replication, storage, and catalogs' into a single fabric that scales up to thousands of nodes.", "cert_id": "SERTIT-085", "mutual_recognition": "CCRA", "product": "Version 3.1.11", "category": "Other Devices and Systems", "developer": "Rubrik, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2017-12-16", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135181-1607953211/SERTIT/Sertifikater/2017/85/20171206_SERTIT-085_C_Rubrik.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135184-1607953213/SERTIT/Sertifikater/2017/85/ST_Rubrik_Converged_Data_Management_v.1.3.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135178-1607953209/SERTIT/Sertifikater/2017/85/20171206_SERTIT-085_CR_Rubrik_v10.pdf" } ] } } }, { "product": "XOmail", "url": "https://sertit.no/certified-products/product-archive/xomail", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2017-11-14", "enhanced": { "description": "SERTIT-008 C", "cert_id": "SERTIT-008", "mutual_recognition": "CCRA", "product": "Version 14.2.4", "category": "Messaging system", "sponsor": "Forsvarets logistikkorganisasjon / Investeringsavdeling (FLO/I)", "developer": "Thales Norway AS", "evaluation_facility": "Norconsult AS", "certification_date": "2010-02-23", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134632-1607949916/SERTIT/Sertifikater/2010/08/XOmail_Version_14.2_Security_Target_739_20597_aaaa_sc_ed10-public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134629-1607949911/SERTIT/Sertifikater/2010/08/20100223_SERTIT-008CR_issue%201.0.pdf" } ] } } }, { "product": "ZTE ZXCTN 6000 Series Access Router Running ZXROSng Operating System", "url": "https://sertit.no/certified-products/product-archive/zte-zxctn-6000-series-access-router-running-zxrosng-operating-system", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2017-11-08", "enhanced": { "description": "The TOE is a ZXCTN 6000 Series Access Router running the operating system ZXROSng v4.00.30R3. The ZXCTN 6000 products include ZXCTN 608-GF,608-GE,608-GK,608P,6120E,6120S,6120H,6150,6180 and 6180H. The TOE is a Carrier Multiservice Provisioning Platform promoted by ZTE to follow the IP telecom service development trend. Taking packets as the kernel to implement multiservice bearing, it provides the customers with mobile backhaul network and FMC E2E solution. The supported protocols are layer2/layer 3 encapsulation and Internet Protocol (IP), and Ethernet. TOE also support IP/MPLS and MPLS-TP protocols.", "cert_id": "SERTIT-094", "mutual_recognition": "CCRA, SOG-IS", "product": "ZXCTN 6000 Series Access Router- ZXCTN 608-GF, V3.10.10, Build version 12- ZXCTN 608-GE, V3.10.10, Build version 12- ZXCTN 608-GK, V3.10.10, Build version 12- ZXCTN 6120E-XK, V3.10.10, Build version 12- ZXCTN 6120E-XF, V3.10.10, Build version 12- ZXCTN 6120S,V3.10.10, Build version 12- ZXCTN 6150,V3.10.10, Build version 12- ZXCTN 6180, V3.10.10, Build version 12; Software: TOE/Product Software/ZXROSng Operating system/ ZTE Carrier Grade Embedded Linux/Linux Kernel608-GF/GE/GK/ V3.10.10B12/v4.00.30R3/CGEL_V5.0.1.30 3.10.55;6120S/V3.10.10B12/v4.00.30R3/CGEL_V_3.04.10.P6.F5/2.6.21;6150/V3.10.10B12/v4.00.30R 3/CGEL_V_3.04.10.P6.F5/2.6.21;6180/V3.10.10B12/v4.00.30R3/CGEL_V_3.04.10.P6.F5/2.6.21;6120E-XF/XK/V3.10.10B12/v4.00.30R3/CGEL_V4.03.20_P6B3 2.6.32", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2017-11-08", "level": "EAL 2, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135199-1607953305/SERTIT/Sertifikater/2017/94/Sertit-094%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135205-1607953310/SERTIT/Sertifikater/2017/94/170912%20%5BZTE%5D%20%5BASE%20ST%5D%20ZTE%206000%20Routers%20v3.3.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135202-1607953307/SERTIT/Sertifikater/2017/94/SERTIT-094%20ZTE%20ZXCTN%206000%20series%20CR%20v1.0.pdf" } ] } } }, { "product": "HED Secure Chip CIU9872B_01", "url": "https://sertit.no/certified-products/product-archive/hed-secure-chip-ciu9872b-01", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "CEC Huada Electronic Design Co., Ltd.", "certification_date": "2017-11-06", "enhanced": { "description": "The TOE is a high-end secure integrated circuit suitable for financial or governmental applications. The TOE consists of the IC hardware, IC dedicated test software and IC dedicated support software providing cryptographic functions. The hardware is based on a 32-bit CPU with volatile, non-volatile and read-only memory. The microcontroller incorporates cryptographic coprocessors for acceleration of symmetric and asymmetric encryption algorithms. The IC dedicated support software, also known as Crypto Library, provides DES, AES, RSA and random number generation functions.", "cert_id": "SERTIT-078", "mutual_recognition": "CCRA, SOG-IS", "product": "C12", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "CEC Huada Electronic Design Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2017-11-06", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135154-1607953116/SERTIT/Sertifikater/2017/78/Sertit-078%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135151-1607953112/SERTIT/Sertifikater/2017/78/Security%20Target%20Lite%20of%20CIU9872B_01%20C12%20Secure%20Chip%20v1.2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135157-1607953118/SERTIT/Sertifikater/2017/78/20171106_SERTIT-078_CR_v1.pdf" } ] } } }, { "product": "Cisco HyperFlex Systems HX Series", "url": "https://sertit.no/certified-products/product-archive/cisco-hyperflex-systems-hx-series", "category": "Other Devices and Systems", "developer": "Cisco Inc.", "certification_date": "2017-11-06", "enhanced": { "description": "The TOE is the Cisco HyperFlex Systems HX Series, a hyper-convergent software-centric solution that tightly integrates computing, storage, networking and virtualization resources in a single hardware platform.", "cert_id": "SERTIT-095", "mutual_recognition": "CCRA, SOG-IS", "product": "Hardware versions:▪ Cisco HyperFlex HX220C M4 Node▪ Cisco HyperFlex HX240c M4 Node▪ Cisco HyperFlexHX240c M4 Node with Cisco UCS B200 Blade Server; Software version:▪ Cisco HyperFlex HX Data Platform Software, version 2.5(1c)", "category": "Other Devices and Systems", "sponsor": "Cisco Inc.", "developer": "Cisco Inc.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2017-11-06", "level": "EAL 2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135214-1607953351/SERTIT/Sertifikater/2017/95/Sertit-095%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135220-1607953358/SERTIT/Sertifikater/2017/95/HyperFlex-HX_SecurityTarget_v1.0.pdf" }, { "href": "https://sertit.no/getfile.php/135217-1607953353/SERTIT/Sertifikater/2017/95/HyperFlex-HX_SecurityTarget_v2.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135211-1607953348/SERTIT/Sertifikater/2017/95/SERTIT-095%20Cisco%20HyperFlex%20Systems%20HX%20Series%20CR%20v1.0.pdf" } ], "maintenance": [ { "href": "https://sertit.no/getfile.php/135208-1607953346/SERTIT/Sertifikater/2017/95/20181008%20SERTIT%20095%20Maintenance%20Report%200.9.pdf" } ] } } }, { "product": "A10 Networks Thunder TPS", "url": "https://sertit.no/certified-products/product-archive/a10-networks-thunder-tps", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2017-06-29", "enhanced": { "description": "A10 Thunder TPS product line of Threat Protection Systems provides high-performance, network-wide protection against distributed denial of service (DDoS) attacks, and enables service availability against a variety of volumetric, protocol, resource and other sophisticated application attacks. The Thunder TPS product line is built upon our Advanced Core Operating System (ACOS) platform, with A10's Symmetric Scalable Multi-Core Processing (SSMP) software architecture that delivers high performance and leverages a shared memory architecture to provide efficient tracking of network flows, as well as accurate DDoS protection enforcement for service providers, Web site operators and enterprises. A10 Thunder TPS devices protect critical services in highly efficient hardware form factors, which enables your data center resources to be used productively. The combination of high performance in a small form factor results in lower OPEX through significantly lower power usage, reduced rack space and lowered cooling requirements.", "cert_id": "SERTIT-062", "mutual_recognition": "CCRA", "product": "4435S, 5435S and 6435S", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2017-06-29", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135130-1607953013/SERTIT/Sertifikater/2017/62/20170629_Sertit-062_C_v1.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135124-1607953007/SERTIT/Sertifikater/2017/62/ST_A10_Networks_Thunder_TPS%20_v.1.5_06_01_2017-1ce.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135127-1607953010/SERTIT/Sertifikater/2017/62/20170629%20Sertit-062%20CR%20v1.0.pdf" } ] } } }, { "product": "Voice Stream Interceptor", "url": "https://sertit.no/certified-products/product-archive/voice-stream-interceptor", "category": "Other Devices and Systems", "developer": "SAAB Danmark A/S", "certification_date": "2017-06-21", "enhanced": { "description": "Saab Voice Stream Interceptor (VSI) is a software security product providing secure domain separation between voice with different classification level. VSI has very few requirements to the underlying platform and can be installed on a Common Criteria approved Linux Operating System with IPsec tunnel and Trusted Platform Module (TPM). VSI supports standardized Voice over IP (VoIP) communication and is used for VoIP clients. The VoIP client user application is completely separated from VSI and does not require being trusted for the secure separation of classified voice. The separation between the VoIP client user application and VSI gives the possibility to change or upgrade the user application and still maintain a secure domain separation of classified voice by an unchanged VSI. From an users point of view the VoIP client containing VSI can both be used for classified (RED) and lower classified or non-classified (BLACK) voice communication. In this way, a conversation can start as non-classified and during the conversation be switched to a classified conversation. Operational modes on radio based communication are supported in this way. It is also possible to listen to both BLACK and RED voice at the same time. VSI also controls the suppression of RED incoming voice stream to the VoIP client, such that while sending BLACK voice the possible pickup and cross talk via the speaker to the microphone is eliminated. During authorized configuration the suppression functionality can either be enabled or disabled depending on the required operational procedure. Saab provides the Secure Tacticall VoIP client, where VSI has been integrated into a user friendly end product and can be used in a secure RED/BLACK system solution.", "cert_id": "SERTIT-072", "mutual_recognition": "CCRA, SOG-IS", "product": "Stock no. SV000071, Version 1", "category": "Other Devices and Systems", "sponsor": "Norwegian Defence Logistics Organization Naval System", "developer": "SAAB Danmark A/S", "evaluation_facility": "NTT Com Security (Norway) AS", "certification_date": "2017-06-21", "level": "EAL 5", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135133-1607953045/SERTIT/Sertifikater/2017/72/C%20SERTIT-072.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135136-1607953047/SERTIT/Sertifikater/2017/72/SV000073-Voice-Stream-Interceptor-Security-Target-Lite.pdf" }, { "href": "https://sertit.no/getfile.php/137492-1633083420/SERTIT/Sertifikater/2017/72/SV000073-Voice-Stream-Interceptor-Security-Target-Lite-2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135139-1607953051/SERTIT/Sertifikater/2017/72/CR%20SERTIT-072_1.PDF" } ], "maintenance": [ { "href": "https://sertit.no/getfile.php/137486-1633083312/SERTIT/Sertifikater/2017/72/SERTIT-072%20MR%20v%201.0.pdf" } ] } } }, { "product": "Huawei NE40E&CX600&ME60&NE20E Router", "url": "https://sertit.no/certified-products/product-archive/huawei-ne40e-cx600-me60-ne20e-router", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2017-04-07", "enhanced": { "description": "HUAWEI NE40, CX600, ME60, NE20-S full range of products V800R008, high-end network edge router products. Universal services in transportation, finance, government, enterprise networks, but also deployed in the mobile bearer network and telecom operators network services. Based on powerful versatile platform (VRP), The TOE of both and software. hardware system security, reliability and quality of service to ensure a variety of systems in consists.", "cert_id": "SERTIT-087", "mutual_recognition": "CCRA, SOG-IS", "product": "V800R008Build: C10SPC945T", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2017-04-07", "level": "EAL 2, ALC_FLR.2", "protection_profile": "BSI-CC-PP-0084-2014 v1.0", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/135190-1607953248/SERTIT/Sertifikater/2017/87/170223%20%5BHUA%5D%20%5BST%5D%20NE40ECX600ME60NE20E%20V800R008%20CC%20ST-Security%20Target-v1%2051.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135187-1607953245/SERTIT/Sertifikater/2017/87/20170407%20SERTIT-087%20Huawei%20NE-series%20Router%20CR%20v1.0i.pdf" } ] } } }, { "product": "Attivo BotSink Solution", "url": "https://sertit.no/certified-products/product-archive/attivo-botsink-solution", "category": "Network and Network-Related Devices and Systems", "developer": "Attivo Networks, Inc.", "certification_date": "2017-02-13", "enhanced": { "description": "The Attivo BOTsink Deception System Deception and Decoy for Inside-the-Network Threat Detection The Attivo BOTsink solution uses dynamic deception techniques and a matrix of distributed decoy systems to turn an entire network into a trap, which is designed to deceive and detect attackers and their automated tools into revealing themselves. Whether the attack vector is zero day, stolen credential, ransomware, phishing or an insider threat, the BOTsink system provides an effective and efficient solution to detect these threats in real-time. Prevention-based detection does not reliably detect signature-less attacks, the use of stolen credentials, and the lateral movement of attacks that have bypassed firewall, anti-virus and other prevention solutions. Not reliant on known attack patterns or signatures, Attivo will instead use deception to deceive the attacker into engaging. Once the attacker engages, an alert is immediately created with the substantiated attack detail required to block the attacker and quarantine the infected device. The attack details can be viewed in the Attivo Threat Intelligence Dashboard, through a variety of reports, and can be automatically uploaded into 3rd party prevention solutions dramatically improving incident response. Elements of the BOTsink - Physical, virtual and cloud engagement servers provide the threat detection engine, a multi-dimensional correlation engine, and the analysis engine that allows the attack sequence to safely play out, allows viewing of lateral movement and can open communications with the Command and Control to better understand the attacker tools, methodologies, and intent. - Decoys based on a wide variety of operating systems and services, which can also be golden image customized to match a customers production environment. - Server and end-point deception lures combined with other deception techniques are used to deceive an attacker into engaging with the BOTsink system for detection. - Central Manager provides global deployment and management of BOTsink devices and the aggregation of threat intelligence for all types of BOTsink devices. Environments supported - User networks, data centers, AWS, VMWare, SCADA - Endpoint deceptions for Mac and PC", "cert_id": "SERTIT-084", "mutual_recognition": "CCRA", "product": "BOTsink appliances: Model 3200, Model 5100; vBOTsink for Vmware Version 3.3, ACM appliance Version 200; Software: ACM Version 3.3, BOTsink and Endpoint Version 3.3", "category": "Network and Network-Related Devices and Systems", "developer": "Attivo Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2017-02-13", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135169-1607953178/SERTIT/Sertifikater/2017/84/20170213%20S-084%20C%20Attivo.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135172-1607953180/SERTIT/Sertifikater/2017/84/ST%20Attivo%20Networks%20-%20Botsink%20Solution%20v.1.3%20-%20Final_Release.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135175-1607953183/SERTIT/Sertifikater/2017/84/20170201%20S-084%20CRv1.0%20Attivo.pdf" } ] } } }, { "product": "DMT-CBS-CE3D3 Family (DMT-CBS-CE3D3/CC080/CC048) Dual Interface smart card chips with HAL library", "url": "https://sertit.no/certified-products/product-archive/dmt-cbs-ce3d3-family-dmt-cbs-ce3d3-cc080-cc048-dual-interface-smart-card-chips-with-hal-library", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Datang Microelectronics Technology Co., Ltd (DMT)", "certification_date": "2017-02-10", "enhanced": { "description": "The DMT-CBS-CE3D3 Family TOE is a dual interface smart card chips suitable for instance to support a Java Card OS, ID cards, Banking card, etc. The TOE consists of hardware and IC dedicated software. The hardware is based on a 32-bit CPU with ROM (Non-Volatile Read-Only Memory), EEPROM (Non-volatile Programmable Memory) and RAM (Volatile Memory). The hardware of the DMT-CBS-CE3D3 Family also incorporates communication peripherals and cryptographic coprocessors for execution and acceleration of symmetric and asymmetric cryptographic algorithms. The IC dedicated software contains a library of cryptographic services.", "cert_id": "SERTIT-093", "mutual_recognition": "CCRA, SOG-IS", "product": "2.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Datang Microelectronics Technology Co., Ltd (DMT)", "developer": "Datang Microelectronics Technology Co., Ltd (DMT)", "evaluation_facility": "Brightsight B.V.", "certification_date": "2017-02-10", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135637-1611769644/SERTIT/Sertifikater/2017/93/SERTIT-093%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135193-1607953274/SERTIT/Sertifikater/2017/93/%5B09083%5D%5BSERTIT-093%5D%5BST%5D%5B0.3%5D%20ASE_DMT-CBS-CE3D3%20Security%20Target%20Lite.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135640-1611769655/SERTIT/Sertifikater/2017/93/SERTIT-093%20CR.pdf" } ] } } }, { "product": "CEITEC ePassport Module CTC21001", "url": "https://sertit.no/certified-products/product-archive/ceitec-epassport-module-ctc21001-1", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "CEITEC S.A.", "certification_date": "2017-01-17", "enhanced": { "description": "The TOE is an electronic module for machine readable travel documents (MRTDs) based on the requirements of the International Civil Aviation Organization, as defined in ICAO Doc 9303. The TOE is developed and produced by CEITEC and delivered to the passport manufacturer as micro modules. The TOE contains at the physical level: Integrated circuit chip; IC Software; data necessary to enable the MRTD personalization; the associated guidance documentation. The TOE also provides the security functions: integrity and confidentiality of personal data; access control, identification and authentication; protection against abuse of functionality, information leakage, physical tampering, malfunctions", "cert_id": "SERTIT-073", "mutual_recognition": "CCRA, SOG-IS", "product": "1.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "CEITEC S.A.", "developer": "CEITEC S.A.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2017-01-17", "level": "EAL 4, ALC_DVS.2", "protection_profile": "BSI-CC-PP-0055, \"Machine Readable Travel Document with 'ICAO Application', Basic Access Control\"", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135148-1607953088/SERTIT/Sertifikater/2017/73/20170117%20Sertit-073%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135145-1607953083/SERTIT/Sertifikater/2017/73/%5BSTlite-BAC%5D%20CEITECSA%205.410.051%20-%20ST-Lite%20ePassport%20Module%20BAC%203.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135142-1607953079/SERTIT/Sertifikater/2017/73/20170117%20S-073%20CR%20Ceitec%20BAC.pdf" } ] } } }, { "product": "CEITEC ePassport Module CTC21001", "url": "https://sertit.no/certified-products/product-archive/ceitec-epassport-module-ctc21001", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "CEITEC S.A.", "certification_date": "2017-01-17", "enhanced": { "description": "The TOE is an electronic module for machine readable travel documents (MRTDs) based on the requirements of the International Civil Aviation Organization, as defined in ICAO Doc 9303. The TOE is developed and produced by CEITEC and delivered to the passport manufacturer as micro modules. The TOE contains at the physical level: Integrated circuit chip; IC Software; data necessary to enable the MRTD personalization; the associated guidance documentation. The TOE also provides the security functions: integrity and confidentiality of personal data; access control, identification and authentication; protection against abuse of functionality, information leakage, physical tampering, malfunctions.", "cert_id": "SERTIT-080", "mutual_recognition": "CCRA, SOG-IS", "product": "1.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "CEITEC S.A.", "developer": "CEITEC S.A.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2017-01-17", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "protection_profile": "BSI-CC-PP-0056, \"Machine Readable Travel Document with 'ICAO Application', Extended Access Control\"", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135163-1607953148/SERTIT/Sertifikater/2017/80/20170117%20Sertit-080%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135166-1607953151/SERTIT/Sertifikater/2017/80/%5BSTlite-EAC%5D%20CEITECSA%205.410.052%20-%20ST-Lite%20ePassport%20Module%20EAC%202.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135160-1607953146/SERTIT/Sertifikater/2017/80/20170117%20S-080%20CR%20Ceitec%20EAC.pdf" } ] } } }, { "product": "Huawei S series Ethernet Switches", "url": "https://sertit.no/certified-products/product-archive/huawei-s-series-ethernet-switches", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2016-11-25", "enhanced": { "description": "The S series switches are next-generation, high-performance switches designed for campus and data center networks. The S series switches include S12700, S9700, S9300, S7700, S6720, S6320, S5720, S5320, S2700, S2300, S600-E and so on can serve as core, convergence, access switches for services requiring high security, high bandwidth and for bearing multiple services.", "cert_id": "SERTIT-088", "mutual_recognition": "CCRA, SOG-IS", "product": "S2300 series, S2700 series, S5700 series, S5300 series, S6700 series, S6300 series, E600 series, S5720 series, S6720 series, S6320 series, S12700 series, S7700 series, S9300 series, and S9700 series of switches,running VRP V200R008C00", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-11-25", "level": "EAL 3, ALC_FLR.2", "protection_profile": "BSI-CC-PP-0084-2014 v1.0", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135091-1607952864/SERTIT/Sertifikater/2016/88/20161125%20SERTIT-088%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135097-1607952869/SERTIT/Sertifikater/2016/88/%5BST%5D%20CC%20Huawei%20S%20Series%20Ethernet%20Switches%20V200R008%20-%20Security%20Target%20V2.2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135094-1607952866/SERTIT/Sertifikater/2016/88/20161125%20SERTIT-088%20CR%20v1.0%20%20Huawei%20S%20Series%20Ethernet%20Switches.pdf" } ] } } }, { "product": "HED Secure Smart Card Chip CIU9872B_01", "url": "https://sertit.no/certified-products/product-archive/hed-secure-smart-card-chip-ciu9872b-01", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "CEC Huada Electronic Design Co., Ltd.", "certification_date": "2016-11-25", "enhanced": { "description": "The TOE is a high-end secure smart card integrated circuit with dedicated software mainly for financial applications. The scope of the TOE includes the IC hardware and IC dedicated software which is constitutive of Chip Management System (CMS) and cryptographic library. CMS supports two functionalities, which are booting process controlling and chip module function testing. The cryptographic library implements the arithmetic function like RSA, DES, and TDES with cooperating of hardware. The whole IC dedicated software is programed with C language.", "cert_id": "SERTIT-090", "mutual_recognition": "CCRA, SOG-IS", "product": "C11", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "CEC Huada Electronic Design Co., Ltd.", "developer": "CEC Huada Electronic Design Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-11-25", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "protection_profile": "BSI-CC-PP-0084-2014 v1.0", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135106-1607952924/SERTIT/Sertifikater/2016/90/20161125%20SERTIT-090%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135112-1607952929/SERTIT/Sertifikater/2016/90/Security%20Target-lite%20of%20CIU9872B_01%20C11%20Secure%20Smart%20Card%20Chip%20V1.1.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135109-1607952926/SERTIT/Sertifikater/2016/90/20161125%20S-090%20CR%20%20v1.0%20Huada.pdf" } ] } } }, { "product": "Feitian FT-JCOS", "url": "https://sertit.no/certified-products/product-archive/feitian-ft-jcos", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Feitian Technologies Co., Ltd.", "certification_date": "2016-11-22", "enhanced": { "description": "FT-JCOS V1.0 is a Java Card Platform compliant with Java Card Specification v.2.2.2 and GlobalPlatform Specification v.2.1.1. It allows post-issuance downloading of applications that have been previously verified by an off-card trusted IT component. It constitutes a secure generic platform that supports multi-application runtime environment and provides facilities for secure loading and interoperability between different applications. Typical applications of FT-JCOS V1.0 are financial applications, transport ticketing, telephony, personal identification, electronic passports, secure information storage, loyalty programs and so on.", "cert_id": "SERTIT-091", "mutual_recognition": "CCRA, SOG-IS", "product": "Hardware M7892 B11; Software FT-JCOS v1.0 0.106.13; Document FT-JCOS v1.0/0.106.13 Administrator Manual 1.0.5, FT-JCOS v1.0/0.106.13 User Manual 1.0.4", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Feitian Technologies Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-11-22", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "protection_profile": "Java Card™ System Protection Profile Open Configuration, Version 3.0", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135115-1607952953/SERTIT/Sertifikater/2016/91/20161122%20SERTIT-091%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135118-1607952955/SERTIT/Sertifikater/2016/91/%5B08250%5D%5BFTJCOS%5D%5BST%5D%5BV1.0.12%5DFTJCOS_Security_Target.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135121-1607952961/SERTIT/Sertifikater/2016/91/SERTIT-091CR%20Feitian%20v1.0.pdf" } ] } } }, { "product": "DMT-CBS-CE3D3 Family (DMT-CBS-CE3D3/CC080/CC048) Dual Interface smart card chips with HAL library version 1.0", "url": "https://sertit.no/certified-products/product-archive/dmt-cbs-ce3d3-family-dmt-cbs-ce3d3-cc080-cc048-dual-interface-smart-card-chips-with-hal-library-version-1-0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Datang Microelectronics Technology Co., Ltd (DMT)", "certification_date": "2016-10-10", "enhanced": { "description": "The DMT-CBS-CE3D3 Family TOE is a dual interface smart card chips suitable for instance to support a Java Card OS, ID cards, Banking card, etc. The TOE consists of hardware and IC dedicated software. The hardware is based on a 32-bit CPU with ROM (Non-Volatile Read-Only Memory), EEPROM (Non-volatile Programmable Memory) and RAM (Volatile Memory). The hardware of the DMT-CBS-CE3D3 Family also incorporates communication peripherals and cryptographic coprocessors for execution and acceleration of symmetric and asymmetric cryptographic algorithms. The IC dedicated software contains a library of cryptographic services.", "cert_id": "SERTIT-089", "mutual_recognition": "CCRA, SOG-IS", "product": "1.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Datang Microelectronics Technology Co., Ltd (DMT)", "developer": "Datang Microelectronics Technology Co., Ltd (DMT)", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-10-10", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "protection_profile": "BSI-CC-PP-0084-2014 v1.0", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/135100-1607952895/SERTIT/Sertifikater/2016/89/%5B08237%5D%5BDMT-CBS-CE3D3_CC%20with%20HAL%20Library%5D%5BST%20Lite%5D%5B0.9%5D%20ASE_DMT-CBS-CE3D3%20Security%20Target%20Lite.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135103-1607952898/SERTIT/Sertifikater/2016/89/SERTIT-089%20CR%201.0.pdf" } ] } } }, { "product": "Thinklogical TLX320 Matrix Switch", "url": "https://sertit.no/certified-products/product-archive/thinklogical-tlx320-matrix-switch", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2016-09-22", "enhanced": { "description": "The TOE provides remote connections from a set of shared computers to a set of shared peripherals. The switching capability of the TOE is used to connect ports on a particular computer to a particular peripheral set. The corresponding electronic signal from a computer port is transformed into an optical signal by the Velocity extender, transmitted through an optical fiber, switched by the TOE to another optical fiber, and then transformed back to an electronic form by the Velocity extender. The resulting signal is used by the shared peripherals. The TOE provides a capability to dynamically change the switching configuration to connect a particular computer to a particular peripheral set. The TOE enforces secure separation of information flows corresponding to different switched connections. The corresponding Data Separation Security Policy is the main security feature of the TOE.", "cert_id": "SERTIT-076", "mutual_recognition": "CCRA, SOG-IS", "product": "TLX320 Matrix Switch Chassis (TLX-MSC-000320 Rev A), TLX48 / TLX320 Matrix Switch Data Input and Output Card, 16 Ports, SFP+, Multi-Mode (TLX-MSD-M00016 Rev A), Single Mode (TLX-MSDS00016 Rev A), Velocity Matrix Switch 320 Data Input Retimer Card, 16 Ports, SFP+, Multi-Mode (VXM-D00T16 Rev A), Single Mode (VXM-D0ST16 Rev A)", "category": "Other Devices and Systems", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2016-09-22", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135040-1607952626/SERTIT/Sertifikater/2016/76/20160922%20Sertit-076%20C%20v1.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135043-1607952629/SERTIT/Sertifikater/2016/76/ThinklogicalSecurityTarget_1_3_TLX320.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135046-1607952632/SERTIT/Sertifikater/2016/76/20160922%20Sertit-076%20CR%20v1.0%20Certification%20Report%20TLX320.pdf" } ] } } }, { "product": "Thinklogical TLX640 Matrix Switch", "url": "https://sertit.no/certified-products/product-archive/thinklogical-tlx640-matrix-switch", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2016-09-22", "enhanced": { "description": "The TOE provides remote connections from a set of shared computers to a set of shared peripherals. The switching capability of the TOE is used to connect ports on a particular computer to a particular peripheral set. The corresponding electronic signal from a computer port is transformed into an optical signal by the Velocity extender, transmitted through an optical fiber, switched by the TOE to another optical fiber, and then transformed back to an electronic form by the Velocity extender. The resulting signal is used by the shared peripherals. The TOE provides a capability to dynamically change the switching configuration to connect a particular computer to a particular peripheral set. The TOE enforces secure separation of information flows corresponding to different switched connections. The corresponding Data Separation Security Policy is the main security feature of the TOE. The TOE is a high-end secure integrated circuit suitable for financial or governmental applications. The TOE consists of the IC hardware, IC dedicated test software and IC dedicated support software providing cryptographic functions. The hardware is based on a 32-bit CPU with volatile, non-volatile and read-only memory. The microcontroller incorporates cryptographic coprocessors for acceleration of symmetric and asymmetric encryption algorithms. The IC dedicated support software, also known as Crypto Library, provides DES, AES, RSA and random number generation functions.", "cert_id": "SERTIT-077", "mutual_recognition": "CCRA, SOG-IS", "product": "TLX640 Matrix Switch Chassis (TLX-MSC-000640 Rev B), TLX640 Matrix Switch Data Input and Output Card, 20 Ports, SFP+, Multi-Mode (TLX-MSD-M00020 Rev C), Single Mode (TLX-MSD-S00020 Rev C), Velocity Matrix Switch 640 Data Input and Output Card, 20 Ports, SFP+, Multi-Mode (VXM-DIOR20 Rev A), Single-Mode (VXM-DIOS20 Rev A)", "category": "Other Devices and Systems", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2016-09-22", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135052-1607952667/SERTIT/Sertifikater/2016/77/20160922%20Sertit-077%20C%20v1.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135055-1607952669/SERTIT/Sertifikater/2016/77/ThinklogicalSecurityTarget_1_4_TLX640.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135049-1607952664/SERTIT/Sertifikater/2016/77/20160922%20Sertit-077%20CR%20v1.0%20Certification%20Report%20TLX640.pdf" } ] } } }, { "product": "Mobile FeliCa OS 3.0 on T6NE1/0115_432B", "url": "https://sertit.no/certified-products/product-archive/mobile-felica-os-3-0-on-t6ne1-0115-432b", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "FeliCa Networks, Inc.", "certification_date": "2016-09-05", "enhanced": { "description": "The TOE is an integrated circuit with an embedded smartcard operating system. The operating system is the FeliCa Networks Mobile FeliCa Operating System and the integrated circuit is the Toshiba CORPORATION chip T6NE1.", "cert_id": "SERTIT-081", "mutual_recognition": "CCRA, SOG-IS", "product": "Software: Mobile FeliCa OS Version 3.0 0115_432B; Hardware Toshiba T6NE1 4.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "FeliCa Networks, Inc.", "developer": "FeliCa Networks, Inc.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-09-05", "level": "EAL 4, ALC_DVS.2, ATE_DPT.2, AVA_VAN.4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/135067-1607952737/SERTIT/Sertifikater/2016/81/%5BSTP-T%5D%20F03T-ASEP01-E01-70.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135070-1607952743/SERTIT/Sertifikater/2016/81/SERTIT-081%20CR%201.0.pdf" } ] } } }, { "product": "Mobile FeliCa OS 3.0 on S3CS9AB/0114_5329", "url": "https://sertit.no/certified-products/product-archive/mobile-felica-os-3-0-on-s3cs9ab-0114-5329", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "FeliCa Networks, Inc.", "certification_date": "2016-09-05", "enhanced": { "description": "The TOE is an integrated circuit with an embedded smartcard operating system. The operating system is the FeliCa Networks Mobile FeliCa Operating System and the integrated circuit is the Samsung Electronics Co., Ltd chip S3CS9AB.", "cert_id": "SERTIT-082", "mutual_recognition": "CCRA, SOG-IS", "product": "Software: Mobile FeliCa OS Version 3.0 0114_5329; Hardware: S3CS9AB 32-Bit RISC Microcontroller for Smart Card 0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "FeliCa Networks, Inc.", "developer": "FeliCa Networks, Inc.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-09-05", "level": "EAL 4, ALC_DVS.2, ATE_DPT.2, AVA_VAN.4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/135073-1607952767/SERTIT/Sertifikater/2016/82/%5BSTP-S%5D%20F03S-ASEP01-E01-70.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135076-1607952771/SERTIT/Sertifikater/2016/82/SERTIT-082%20CR%201.0.pdf" } ] } } }, { "product": "FiberHome Optical Transmission Equipment Series FONST 1000, FONST 1000 U5, FONST 5000, FONST 5000 U Series (U10, U20, U30, U40, U60), managed by EMS Server and EMS Client", "url": "https://sertit.no/certified-products/product-archive/fonst-1000-fonst-1000-u5-fonst-5000-fonst-5000-u-series-otn-equipment", "category": "Network and Network-Related Devices and Systems", "developer": "FiberHome Telecommunication Technologies Co., Ltd.", "certification_date": "2016-08-22", "enhanced": { "description": "Equipment, FIBERHOME Optical Transport Equipment is an optical Network Terminal (ONT) equipment used to terminate the optical fiberline, demultiplex the signal into its component parts (voice telephone, television, and Internet), and provide power to customer telephones. As well as, FIBERHOME Optical Transport Equipment helps to provide secure Internet connectivity.", "cert_id": "SERTIT-083", "mutual_recognition": "CCRA, SOG-IS", "product": "HW: FONST 1000, SW: RP0201; HW: FONST 1000 U5, SW: RP0100; HW: FONST 5000, SW: RP0201; HW: FONST 5000 U10, SW: RP0101; HW: FONST 5000 U20, SW: RP0101; HW: FONST 5000 U30, SW: RP0101; HW: FONST 5000 U40, SW: RP0101; HW: FONST 5000 U60, SW: RP0101; e-FimOTNM 2000: SW: mysql5.5.34 e-Fim OTNM2000 Element Management System V2.0R5; EMS Client: e-Fim OTNM 2000 ClientV2.0R5(Build04.20.05.50BD4)", "category": "Network and Network-Related Devices and Systems", "sponsor": "FiberHome Telecommunication Technologies Co., Ltd.", "developer": "FiberHome Telecommunication Technologies Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-08-22", "level": "EAL 2, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/136114-1612860773/SERTIT/Sertifikater/2016/83/20160822%20S-083%20Certificate%20FiberHome.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135082-1607952802/SERTIT/Sertifikater/2016/83/FH_ST_1.5.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135079-1607952799/SERTIT/Sertifikater/2016/83/SERTIT-083%20CR%20v1.0.pdf" } ] } } }, { "product": "Ruckus Solution", "url": "https://sertit.no/certified-products/product-archive/ruckus-solution-1", "category": "Network and Network-Related Devices and Systems", "developer": "Ruckus Wireless, Inc.", "certification_date": "2016-06-27", "enhanced": { "description": "The Ruckus Solution (TOE) is a Wireless LAN access system (WLAN). The Wireless LAN access system defined in this ST are multiple products operating together to provide secure wireless access to a wired and wireless network. The TOE provides end-to-end wireless encryption, centralized WLAN management, authentication, authorization, and accounting (AAA) policy enforcement. SZ 100 SmartZoneâ„¢ 100 (SZ 100) is the most Scalable, Resilient, and Highest Performing Wireless LAN controller within Ruckus family of WLAN controllers for Enterprises around the world. It manages up to 1,024 ZoneFlex Smart Wi-Fi access points, 2,000 WLANs, and 25,000 clients per device. Its RuckOS' unique architecture enables SZ 100 to be deployed in 3+1 Active-Active cluster. With Active-Active clustering all members (up to 4) of cluster will actively manage APs in the network and also provides the highest resiliency. With clustering it can manage up to 3,000 APs and 60,000 clients. Its Smart licensing allows customers to manage all the licensing needs online at https://Support.ruckuswireless.com. With Smart licensing, customers will have the ability to buy and assign licenses as granular as 1 (one) AP license. vSCG Ruckus virtual SmartCellâ„¢ Gateway (vSCG), is a Network Functions Virtualization (NFV) based WLAN Controller for service providers and enterprises who desire a carrier-class solution that runs in the cloud. It supports all of the WLAN Controller features of the industry leading SCG-200, while also enabling the rollout of highly scalable and resilient wireless LAN cloud services. SCG-200 The SmartCellâ„¢ Gateway (SCG) 200 represents the first in a new category of scalable and versatile WLAN controllers with support for 3GPP compatible WLAN gateway functionality. It has been designed to eliminate the difficulties service providers and enterprises are experiencing when building and managing large-scale Wi-Fi radio access networks and integrating them into their core networks. R310 ZoneFlex R310 Smart Wi-Fi Indoor delivers high-performance and reliable wireless networking and combines patented adaptive antenna technology and automatic interference mitigation to deliver consistent, predictable performance. R500 The Ruckus ZoneFlex R500 delivers high-performance and reliable 802.11ac wireless networking at a competitive price point. Unlike any other 802.11ac wireless solution in its class, the ZoneFlex R500 combines patented adaptive antenna technology and automatic interference mitigation to deliver consistent, predictable performance at extended ranges with up to an additional 4dB of BeamFlex gain on top of the physical antenna gain and up to 10dB of interference mitigation. A sleek and low-profile design, the ZoneFlex R500 was purpose built for enterprises requiring reliable high speed client connectivity. It is ideal for a variety of medium density enterprise and hotspot environments including SMBs, hotels, retail outlets, and branch offices. R600 The Ruckus ZoneFlex R600 delivers high-performance and reliable 802.11ac wireless networking at a competitive price point for medium density venues such as in K-12 or education. The ZoneFlex R600 combines patented adaptive antenna technology and automatic interference mitigation to deliver consistent, predictable performance at extended ranges with up to an additional 6dB of BeamFlex gain on top of the physical antenna gain and up to 15dB of interference mitigation. The R600 is ideal for wireless networks servicing mobile devices with dual-polarized antennas that adapt in real time to maximize performance for the mobile enterprise. A sleek and low-profile design, the ZoneFlex R600 was purposebuilt for enterprises requiring reliable high speed client connectivity. It is ideal for a variety of medium density enterprise and hotspot environments including SMBs, hotels, and schools. R710 ZoneFlex R710 Smart Wi-Fi Indoor is purpose-built for high-capacity, high performance and interference-laden environments such as airports, public venues, hotels, universities and conference centers. Built for data-intensive streaming multimedia applications, for delivering of picture HD-quality IP video while supporting VoIP and data applications that have stringent quality of service requirements. The ZoneFlex T300 Series, are dual-band 802.11ac outdoor access points (AP) designed explicitly for high density public venues such as airports, conventions centers, plazas & malls, and other dense urban environments. Offered as either with an internal omni directional antennas or with optional external 5GHz antenna support, the T300 Series is designed for easy installation within an ultra-lightweight and low profile enclosure. The T300 is ideal for venue owners and enterprises looking to quickly and economically deploy Wi-Fi in high-capacity environments.", "cert_id": "SERTIT-071", "mutual_recognition": "CCRA", "product": "Wireless Controllers: SmartCell Gateway 200 (SCG 200); Virtual SmartCell Gateway (vSCG); Smart Zone 100 (SZ 100); Access Points: ZoneFlex R500 Smart Wi-Fi Indoor (R500); ZoneFlex R600 Smart Wi-Fi Indoor (R600); ZoneFlex T300 Smart Wi-Fi Outdoor (T300); ZoneFlex R710 Smart Wi-Fi Indoor (R710); ZoneFlex R310 Smart Wi-Fi Indoor (R310); Software: RuckOS 3.2.1", "category": "Network and Network-Related Devices and Systems", "developer": "Ruckus Wireless, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2016-06-27", "level": "EAL 2, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135025-1607952560/SERTIT/Sertifikater/2016/71/20160627_SERTIT-071_Ruckus%20Solution_C_v.1.0.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135028-1607952564/SERTIT/Sertifikater/2016/71/ST%20Ruckus%20Wireless%20-%20Ruckus%20Solution%20final%20v1.8.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135022-1607952557/SERTIT/Sertifikater/2016/71/20160627_SERTIT-071_Ruckus%20Solution_CR_v.1.0.pdf" } ] } } }, { "product": "FT-JCOS", "url": "https://sertit.no/certified-products/product-archive/ft-jcos", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Feitian Technologies Co., Ltd.", "certification_date": "2016-06-27", "enhanced": { "description": "The TOE is a Java Card Platform compliant with Java Card Specification v.2.2.2 and GlobalPlatformSpecification v.2.1.1. The TOE allows post-issuance downloading of applications that have been previously verified by an off-card trusted IT component. It constitutes a secure generic platform that supports multi-application runtime environment and provides facilities for secure loading and interoperability between different applications. The TOE does not implement JCRMI and does not include any software on the application layer.", "cert_id": "SERTIT-079", "mutual_recognition": "CCRA, SOG-IS", "product": "Feitian FT-JCOS v1.0/0.106.13 running on Infineon M7892 B11", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Feitian Technologies Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-06-27", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135064-1607952717/SERTIT/Sertifikater/2016/79/20160627_SERTIT-079_Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135061-1607952711/SERTIT/Sertifikater/2016/79/%5B08250%5D%5BFTJCOS%5D%5BST%5D%5BV1.0.11%5DFTJCOS_Security_Target.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135058-1607952708/SERTIT/Sertifikater/2016/79/20160627_SERTIT-079_CR_1.pdf" } ] } } }, { "product": "THD88/M2064 Secure Microcontroller with Crypto Library", "url": "https://sertit.no/certified-products/product-archive/thd88-m2064-secure-microcontroller-with-crypto-library", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Tongfang Microelectronics Company Co., LTD.", "certification_date": "2016-04-14", "enhanced": { "description": "The TOE is a secure microcontroller with crypto library suitable for instance to support ID cards, Banking cards, ePassport applications, etc.", "cert_id": "SERTIT-086", "mutual_recognition": "CCRA, SOG-IS", "product": "Hardware THD88, version 0.1 (M2064); Software: Crypto library, version 1.2; Boot code, version 1.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Tongfang Microelectronics Company Co., LTD.", "developer": "Tongfang Microelectronics Company Co., LTD.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-04-14", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/135085-1607952833/SERTIT/Sertifikater/2016/86/%5B08760%5D%5BTHD88%5D%5BST_Lite%5D%5BV1.4%5DST0084%20for%20Tong%20Fang%20THD88-M2064%20v1.4.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135088-1607952837/SERTIT/Sertifikater/2016/86/SERTIT-086%20CR%20v%201.0.pdf" } ] } } }, { "product": "Thales Trusted Security Filter TSF201", "url": "https://sertit.no/certified-products/product-archive/thales-trusted-security-filter-tsf201", "category": "Boundary Protection Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2016-02-01", "enhanced": { "description": "The TOE is a contents-filtering gateway consisting of both hardware and software. It enables data transfer in a secure manner between two IP networks of different security classifications. Its design shall be trusted to perform separation of data between a HIGH (high security classification) network and a LOW (low security classification) network in a way upholding the security policy concerning data export and import between the individual networks.", "cert_id": "SERTIT-060", "mutual_recognition": "CCRA, SOG-IS", "product": "HW version: 3AQ 25960 BAAA rev. C; SW version: 3AQ 25950 AAAA rev. 2.2 build 0013", "category": "Boundary Protection Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "NTT Com Security (Norway) AS", "certification_date": "2016-02-01", "expiration_date": "2021-02-01", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/135010-1607952512/SERTIT/Sertifikater/2016/60/20160201%20Sertit-060%20C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135016-1607952522/SERTIT/Sertifikater/2016/60/2018%20TSF201%20Security%20Target.pdf" }, { "href": "https://sertit.no/getfile.php/135019-1607952527/SERTIT/Sertifikater/2016/60/3AQ%2025940%20AAAA%20377%20EN%20Security%20Target%20for%20TSF%20201%20ed%20%202.pdf" }, { "href": "https://sertit.no/getfile.php/136621-1625575272/SERTIT/Sertifikater/2016/60/3AQ%2025940%20AAAA%20377%20Security%20Target%20for%20TSF%20201%20v4.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135013-1607952517/SERTIT/Sertifikater/2016/60/20160201%20SERTIT-060%20CR%20v1.0.pdf" } ], "maintenance": [ { "href": "https://sertit.no/getfile.php/135007-1607952508/SERTIT/Sertifikater/2016/60/20181129%20Sertit-060%20Maintenance%20report%201.0.pdf" }, { "href": "https://sertit.no/getfile.php/136615-1625568416/SERTIT/Sertifikater/2016/60/SERTIT-060%20MR%20v%202.0.pdf" } ] } } }, { "product": "Good Work System", "url": "https://sertit.no/certified-products/product-archive/good-work-system", "category": "Data protection", "developer": "Good Technology, Inc.", "certification_date": "2015-12-09", "enhanced": { "description": "The Good Work system is an end to end solution for securing and managing email, calendar, contact, presence, instant messaging, secure browsing and other mobile applications. The Good Work system consists of server side and client side components. The server components include the Good Proxy Server, the Good Enterprise Mobility Server (application server), and the Good Control Server (administrative console functions). All servers run on standard Microsoft server platforms. On the client side, the Good Work system includes the Good Work application, Good Access (secure browser) application, and other mobile applications running on iOS and Android devices using the Good Dynamics framework. Good Control: Good Control Server provides dashboard visibility and management of enterprise users, apps, and security policies. Good Proxy: Good Proxy Server provides the secure communications infrastructure between the Good Secure Cloud and application servers within the enterprise firewall. Good Enterprise Mobility Server: Good Enterprise Mobility Server provides the implementation of device facing Good Dynamics server side services invoked by Good client applications using the Good Dynamics Services Framework. This includes a service to provide Presence information for Contacts, a service to provide storage and synchronization of application data, and delivery of Push Notifications, in response to updates detected for user mailboxes. Good Work Client: Good Work Client is a mobile device application suite that provides secure email, calendar, contacts, presence and other mobile applications. Good Connect Client: Good Connect Client is an instant messaging application that integrates with the enterprise desktop Microsoft Lync system. Good Access Client: Good Access Client is a secure web browser application for accessing corporate web-based resources from a mobile device.", "cert_id": "SERTIT-063", "mutual_recognition": "CCRA", "product": "Good Work Client for iOS: 1.5.3.247; Good Work Client for Android: 1.5.3.162; Good Access Client for iOS: 2.4.3.734; Good Access Client for Android: 2.4.3.657; Good Dynamics SDK for iOS: 2.0.4413; Good Dynamics SDK for Android: 2.0.1226; Good Connect Client for iOS: 2.3.10.0.458445.12; Good Connect Client for Android: 2.3.10.0.456604.571; Good Control Server: 2.0.3.11; Good Proxy Server: 2.0.3.7; Good Enterprise Mobility Server: 1.5.35.45", "category": "Data protection", "developer": "Good Technology, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2015-12-09", "level": "EAL 4, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134959-1607951939/SERTIT/Sertifikater/2015/63/20151209%20Sertit-063%20Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134962-1607951944/SERTIT/Sertifikater/2015/63/ST%20GW_Release_1.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134956-1607951934/SERTIT/Sertifikater/2015/63/20151209_S-063_CR_v.1.0_GoodWork.pdf" } ] } } }, { "product": "THD88/M2064 Secure Microcontroller With Crypto Library", "url": "https://sertit.no/certified-products/product-archive/thd88-m2064-secure-microcontroller-with-crypto-library", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Beijing Tongfang Microelectronics Co., Ltd.", "certification_date": "2015-12-09", "enhanced": { "description": "The TOE is a secure microcontroller with crypto library suitable for instance to support ID cards, Banking cards, ePassport applications, etc.", "cert_id": "SERTIT-086", "mutual_recognition": "CCRA, SOG-IS", "product": "Hardware THD88, version 0.1 (M2064); Software: Crypto library, version 1.2; Boot code, version 1.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Tongfang Microelectronics Company Co., LTD.", "developer": "Tongfang Microelectronics Company Co., LTD.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2016-04-14", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/135085-1607952833/SERTIT/Sertifikater/2016/86/%5B08760%5D%5BTHD88%5D%5BST_Lite%5D%5BV1.4%5DST0084%20for%20Tong%20Fang%20THD88-M2064%20v1.4.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/135088-1607952837/SERTIT/Sertifikater/2016/86/SERTIT-086%20CR%20v%201.0.pdf" } ] } } }, { "product": "FusionSphere", "url": "https://sertit.no/certified-products/product-archive/fusionsphere", "category": "Other Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2015-11-23", "enhanced": { "description": "FusionSphere is a software system that can provide multiple virtual machines on industry standard x86-compatible hardware platforms (64-bit) and allows the management of these virtual machines.", "cert_id": "SERTIT-064", "mutual_recognition": "CCRA, SOG-IS", "product": "v5", "category": "Other Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2015-11-23", "level": "EAL 3, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134971-1607952239/SERTIT/Sertifikater/2015/64/20151123_Sertit-064_C_FusionSphere.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134968-1607952233/SERTIT/Sertifikater/2015/64/%5BASE%5DFusionSphere%20Security%20Target%20V1.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134965-1607952229/SERTIT/Sertifikater/2015/64/20151123_SERTIT-064_CR_FusionSphere5_%20v1.0.pdf" } ] } } }, { "product": "AR Series Routers", "url": "https://sertit.no/certified-products/product-archive/ar-series-routers", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2015-11-23", "enhanced": { "description": "Huawei AR Routers are the next-generation routing and gateway devices, which privide the routing, switching, wireless, voice and security functions.", "cert_id": "SERTIT-070", "mutual_recognition": "CCRA, SOG-IS", "product": "Hardware: AR150 series; AR160 series; AR200 series; AR1200 series; AR3200 series; AR510 series; AR502 series; AR530 series; AR550 series; Software: V200R006C10SPC030. Details in Certification Report.", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2015-11-23", "level": "EAL 3, ALC_FLR.2", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134998-1607952385/SERTIT/Sertifikater/2015/70/20151123_Sertit-070_C_AR_Router.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134995-1607952379/SERTIT/Sertifikater/2015/70/CC%20Huawei%20AR%20Series%20Service%20Routers%20V200R006C10%20-%20Security%20Target%20V1.4.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134992-1607952374/SERTIT/Sertifikater/2015/70/20151123_SERTIT-070_CR_AR_router_v1.0.pdf" } ] } } }, { "product": "EROAD System", "url": "https://sertit.no/certified-products/product-archive/eroad-system", "category": "Other Devices and Systems", "developer": "EROAD", "certification_date": "2015-06-25", "enhanced": { "description": "EROAD is a fully integrated technology, tolling and services provider. EROAD is the first company in the world to implement a GPS/cellular based road charging platform across an entire country. EROAD's advanced technology provides road charging, compliance and commercial services with the same platform to lower overall client and delivery costs. EROAD's goal is to offer flexible and powerful solutions based on our innovative technology platform to assist in the creation of a transport sector that is responsive to the evolving needs of business, government and the wider community. The core element of EROAD's satellite-based solution is the secure Ehubo unit which reliably and accurately measures distance and location using multiple sensors. Data is transmitted via a secure cellular link to a back office facility that supports a wide range of regulatory and value-added applications, allowing clients to manage their vehicles and assets in the same web browser. The EROAD Depot is the secure web services and payment gateway, where customers manage their tax and compliance obligations, oversee their fleets, and access a wide range of EROAD services. It provides a comprehensive and evolving suite of reports that can be viewed, saved, exported and downloaded. Within the Depot, users are assigned - roles' which give them access to different functions and, depending on their role, allow them to create and filter fleets to focus on critical information.", "cert_id": "SERTIT-059", "mutual_recognition": "CCRA", "product": "TOE versions of EROAD OBU:Hardware version: 03Firmware version: 1.18.05;TOE versions of EROAD Application:Software version: 11-11-2014-0239", "category": "Other Devices and Systems", "sponsor": "EROAD", "developer": "EROAD", "evaluation_facility": "Advanced Data Security", "certification_date": "2015-06-25", "expiration_date": "2020-06-25", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134947-1607951850/SERTIT/Sertifikater/2015/59/20150626_Sertit-059_C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134944-1607951845/SERTIT/Sertifikater/2015/59/ST_EROAD_v1.3_FINAL.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134941-1607951842/SERTIT/Sertifikater/2015/59/20150625_SERTIT-059_CR_v10.pdf" } ] } } }, { "product": "Huawei NetEngine5000E Core Router", "url": "https://sertit.no/certified-products/product-archive/huawei-netengine5000e-core-router", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2015-06-04", "enhanced": { "description": "Huawei NetEngine5000E Core Router V800R006, which has large capacity and high performance, is developed to meet the requirement of carrier-class reliability. Based on the powerful versatile routing platform (VRP), the NE5000E provides strong switching capabilities, dense ports, and high reliability. NE5000Es mainly serve as super-core nodes on carriers' backbone networks, core nodes on metropolitan area networks (MANs), egresses in large-scale Internet data centres (IDCs), or core nodes on large-scale enterprise networks. NE5000E clusters are positioned as super-core nodes on backbone networks, supporting Layer 3 routing and Multiprotocol Label Switching (MPLS) forwarding. The TOE consists of both hardware and software.", "cert_id": "SERTIT-061", "mutual_recognition": "CCRA, SOG-IS", "product": "V800R006Build: C00SPC200", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2015-06-04", "level": "EAL 3, ALC_CMC.4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134950-1607951874/SERTIT/Sertifikater/2015/61/NetEngine5000E%20V800R006%20CC%20ST-Security%20Target-v1.6.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134953-1607951880/SERTIT/Sertifikater/2015/61/SERTIT-061%20CR%20v1.0.pdf" } ] } } }, { "product": "Huawei iManager U2000", "url": "https://sertit.no/certified-products/product-archive/huawei-imanager-u2000", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2015-06-04", "enhanced": { "description": "Huawei's iManager U2000 (U2000) Element Management system is a software system which provides centralized operation and maintenance for Huawei's fixed network element management solution. The U2000 manages the fixed network element including the Transport, Access and IP equipment, and provides external interfaces for interoperability with other systems. The core of Huawei iManager U2000 is the iMAP Platform, U2000 V100R009C00SPC301 is based on the iMAP Platform.", "cert_id": "SERTIT-067", "mutual_recognition": "CCRA, SOG-IS", "product": "V100R009C00SPC301", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2015-06-04", "level": "EAL 3, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134983-1607952306/SERTIT/Sertifikater/2015/67/Huawei%20iManager%20U2000%20Version%201%20Release%206%20Security%20Target%20v1.6.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134980-1607952303/SERTIT/Sertifikater/2015/67/SERTIT-067%20CR%20v1.0.pdf" } ] } } }, { "product": "USP running on Huawei Transmission Equipment Series (WDM/OTN, SDH/MSTP, RTN)", "url": "https://sertit.no/certified-products/product-archive/usp-running-on-huawei-transmission-equipment-series-wdm-otn-sdh-mstp-rtn", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2015-06-02", "enhanced": { "description": "Huawei Technologies USP running on Huawei Transmission Equipment Series (WDM/OTN, SDH/MSTP, RTN) is an optical transmission system transparently transmit client services from one place to another. During the transmission, transmission equipment encapsulates client services into signals of certain rates, performs error control, and monitors the quality of the signals. To achieve transparent transmission, the transmission equipment does not process client services transmitted from other equipment. The Optix OSN 1800(I/II) /1800V /3800 /3800A /6800 /6800A /8800(T16/T32/T64) /9600(U32/U64) /9800(U32/U64) are WDM/OTN products. The Optix OSN 500 /550 /580 /1500(A/B) / 3500 /7500 /7500II are SDH/MSTP products. The Optix RTN 360 /380 /905(1A/1C/1E/2A/2E) /950 /950A /980 /980L are RTN products. The USP is the software core of the transmission equipment. It is the software platform for managing and running communication networking functionalities.", "cert_id": "SERTIT-065", "mutual_recognition": "CCRA, SOG-IS", "product": "V100R013C00", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2015-06-02", "level": "EAL 3, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134974-1607952272/SERTIT/Sertifikater/2015/65/Huawei%20Transmission%20Equipment%20Series%20Security%20Target%20v1.7.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134977-1607952277/SERTIT/Sertifikater/2015/65/SERTIT-065%20CR%20v%201.0.pdf" } ] } } }, { "product": "Thunder 4430S, 5630S and 6630S Application Delivery Controllers", "url": "https://sertit.no/certified-products/product-archive/thunder-4430s-5630s-and-6630s-application-delivery-controllers", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2015-05-13", "enhanced": { "description": "A10 Thunder Series are 64-bit Application Delivery Controllers (ADCs) that are built on A10's scalable and flexible Advanced Core Operating System (ACOS) architecture unifying and consolidating stand-alone applications delivery solutions into a single compact platform. The Thunder Series appliances are designed to be highly scalable, the best in class performance and power consumption compared to any other vendors based on per rack unit throughput, and having reliability and quality that meet stringent Carrier Class and large scale Web Services deployments.", "cert_id": "SERTIT-068", "mutual_recognition": "CCRA", "product": "Hardware: 4430S, 5630S and 6630S; Firmware 2.7.2-P5", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2015-05-13", "level": "EAL 2, ALC_FLR.1", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134986-1607952333/SERTIT/Sertifikater/2015/68/ST_4430S_5630S_6630S.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134989-1607952338/SERTIT/Sertifikater/2015/68/20150513_Sertit-068_CR_v1.0.pdf" } ] } } }, { "product": "TNP ECC2 CPU Card", "url": "https://sertit.no/certified-products/product-archive/tnp-ecc2-cpu-card", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Taiwan Name Plate Co., Ltd. (TNP)", "certification_date": "2014-08-22", "enhanced": { "description": "The TOE is an anonymous Electronic Purse (EP) smartcard application running on the InfineonM7794 A12 (BSI-DSZ-CC-0883-2013) IC to the implementation of ECC EP functionalities. TheInfineon M7794 A12 smartcard was certified conformant to [PP0035]. The firmware is installedon the NVM of the chip.", "cert_id": "SERTIT-056", "mutual_recognition": "CCRA", "product": "Version 1.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Taiwan Name Plate Co., Ltd. (TNP)", "developer": "Taiwan Name Plate Co., Ltd. (TNP)", "evaluation_facility": "Brightsight B.V.", "certification_date": "2014-08-22", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile, Version 1.0", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134926-1607951736/SERTIT/Sertifikater/2014/56/%5BST%5D%20ECC2%20CPU%20Card%20Security%20Target%20v1.0.1.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134923-1607951732/SERTIT/Sertifikater/2014/56/SERTIT-056%20CR%20v1.0.pdf" } ] } } }, { "product": "Huawei CloudEngine Series Switch", "url": "https://sertit.no/certified-products/product-archive/huawei-cloudengine-series-switch", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2014-05-23", "enhanced": { "description": "The CloudEngine series switches are next-generation, high-performance core switches designed for data center networks and high-end campus networks. The CloudEngine series switches provide stable, reliable, secure, and high-performance L2/L3 switching capabilities, helping build a scalable, virtualized, and converged network.", "cert_id": "SERTIT-057", "mutual_recognition": "CCRA, SOG-IS", "product": "V100R002", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2014-05-23", "level": "EAL 3, ALC_CMC.4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134929-1607951760/SERTIT/Sertifikater/2014/57/%5BASE%5DCloudEngine%20V100R002%20Security%20Target%20V0.8_1113.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134932-1607951765/SERTIT/Sertifikater/2014/57/SERTIT-057%20CR%20v%201.0.pdf" } ] } } }, { "product": "A10 Networks - Thunder Series", "url": "https://sertit.no/certified-products/product-archive/sertit-058", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2014-03-11", "enhanced": { "description": "A10 Thunder Series are 64-bit Application Delivery Controllers (ADCs) that are built on A10's scalable and flexible Advanced Core Operating System (ACOS) architecture unifying and consolidating stand-alone applications delivery solutions into a single compact platform. The Thunder Series appliances are designed to be highly scalable, the best in class performance and power consumption compared to any other vendors based on per rack unit throughput, and having reliability and quality that meet stringent Carrier Class and large scale Web Services deployments.", "cert_id": "SERTIT-058", "mutual_recognition": "CCRA", "product": "HW: 3030S and 1030S FW: 2.7.1-P2", "category": "Network and Network-Related Devices and Systems", "sponsor": "A10 Networks, Inc.", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2014-03-11", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134938-1607951800/SERTIT/Sertifikater/2014/58/20140311_Sertit-058_C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/135528-1610008385/SERTIT/Sertifikater/2014/58/STA10Net_Thunder_3030S_1030S_1_1.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134935-1607951797/SERTIT/Sertifikater/2014/58/20140311_Sertit-058_CR_v1_0.pdf" } ] } } }, { "product": "Huawei USN9810 Unified Service Node", "url": "https://sertit.no/certified-products/product-archive/huawei-usn9810-unified-service-node", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2014-03-07", "enhanced": { "description": "SERTIT-054 C", "cert_id": "SERTIT-054", "mutual_recognition": "CCRA", "product": "V900R012, build C00SPC300", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2014-03-07", "level": "EAL 3, ALC_CMC.4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134917-1607951696/SERTIT/Sertifikater/2014/54/ST%20USN9810%20V900R012C00%20ST%20v1.5%20%28final%29.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134920-1607951702/SERTIT/Sertifikater/2014/54/SERTIT-054%20CR%201.0.pdf" } ] } } }, { "product": "Huawei UGW9811", "url": "https://sertit.no/certified-products/product-archive/huawei-ugw9811", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2013-12-13", "enhanced": { "description": "SERTIT-053 C", "cert_id": "SERTIT-053", "mutual_recognition": "CCRA", "product": "V200R003, build ENGC00SPC200", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2013-12-13", "level": "EAL 3, ALC_CMC.4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134902-1607951613/SERTIT/Sertifikater/2013/53/%5BST%5D%20UGW9811%20V900R010C00%20ST%20v1.5.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134905-1607951618/SERTIT/Sertifikater/2013/53/SERTIT-053%20CR%201.0.pdf" } ] } } }, { "product": "A10 Networks - Thunder Series", "url": "https://sertit.no/certified-products/product-archive/a10-networks-thunder-series", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2013-12-05", "enhanced": { "description": "A10 Thunder Series are 64-bit Application Delivery Controllers (ADCs) that are built on A10's scalable and flexible Advanced Core Operating System (ACOS) architecture unifying and consolidating stand-alone applications delivery solutions into a single compact platform. The Thunder Series appliances are designed to be highly scalable, the best in class performance and power consumption compared to any other vendors based on per rack unit throughput, and having reliability and quality that meet stringent Carrier Class and large scale Web Services deployments.", "cert_id": "SERTIT-055", "mutual_recognition": "CCRA", "product": "Hardware: 5430S and 6430S, Firmware: R2.7.1-P2", "category": "Network and Network-Related Devices and Systems", "sponsor": "A10 Networks, Inc.", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2013-12-05", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134914-1607951648/SERTIT/Sertifikater/2013/55/20131205_SERTIT-055_C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134908-1607951640/SERTIT/Sertifikater/2013/55/ST_055_A10Net_Thunder_5430S_6430S_1_2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134911-1607951645/SERTIT/Sertifikater/2013/55/20131205_CR-055_v1_0.pdf" } ] } } }, { "product": "Thinklogical VX640", "url": "https://sertit.no/certified-products/product-archive/thinklogical-vx640", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2013-11-28", "enhanced": { "description": "SERTIT-051 C", "cert_id": "SERTIT-051", "mutual_recognition": "CCRA, SOG-IS", "product": "KVM Matrix Switch (VXR-000640 Rev B); Data Input/Output cards: Velocity Matrix Router 640 Data Input/Output Card, 20 Ports, SFP+, Multi Mode (VXM-DIOR20 Rev A)", "category": "Other Devices and Systems", "sponsor": "Thinklogical", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2013-11-28", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134893-1607951550/SERTIT/Sertifikater/2013/51/20131128_SERTIT-051C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134890-1607951546/SERTIT/Sertifikater/2013/51/ThinklogicalSecurityTarget_1_4_VX640.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134887-1607951542/SERTIT/Sertifikater/2013/51/20131128_SERTIT-051CR_v10_ThinklogicalVX640.pdf" } ] } } }, { "product": "Thinklogical VX320 V", "url": "https://sertit.no/certified-products/product-archive/thinklogical-vx320-v", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2013-11-28", "enhanced": { "description": "SERTIT-050 C", "cert_id": "SERTIT-050", "mutual_recognition": "CCRA, SOG-IS", "product": "KVM Matrix Switch: Video Router KVM Matrix Switch (VXRV00320 Rev A); Data Input/Output cards: Velocity Matrix Router 320 Data Input/Output Card, 16 Ports, SFP+, Multi Mode (VXM-D00016 Rev A), Velocity Matrix Router 320 Data Input/Output Card, 16 Ports, SFP+, Single Mode (VXM-D00S16 Rev A), Velocity Matrix Router 320 Data Input Retimer Card, 16 Ports, SFP+, Multi Mode (VXM-D00T16 Rev A), Velocity Matrix Router 320 Data Input Retimer Card, 16 Ports, SFP+, Single Mode (VXM-D0ST16 Rev A)", "category": "Other Devices and Systems", "sponsor": "Thinklogical", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2013-11-28", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134884-1607951512/SERTIT/Sertifikater/2013/50/20131128_SERTIT-050C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134881-1607951507/SERTIT/Sertifikater/2013/50/ThinklogicalSecurityTarget_1_2_VX320V.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134878-1607951503/SERTIT/Sertifikater/2013/50/20131128_SERTIT-050CR_v10_ThinklogicalVX320V.pdf" } ] } } }, { "product": "Thinklogical VX320 A", "url": "https://sertit.no/certified-products/product-archive/thinklogical-vx320-a", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2013-11-28", "enhanced": { "description": "SERTIT-049 C", "cert_id": "SERTIT-049", "mutual_recognition": "CCRA, SOG-IS", "product": "KVM Matrix Switch: Audio Router Matrix Switch (VXRA00320 Rev A); Data Input/Output cards: Velocity Matrix Router 320 Audio Data Input/Output Card, 16 Ports, SFP+, Multi Mode (VXM-A00016 Rev A), Velocity Matrix Router 320 Audio Data Input/Output Card, 16 Ports, SFP+, Single Mode (VXM-A00S16 Rev A), Velocity Matrix Router 320 Audio Data Input Retimer Card, 16 Ports, SFP+, Multi Mode (VXM-A00T16 Rev A), Velocity Matrix Router 320 Audio Data Input Retimer Card, 16 Ports, SFP+, Single Mode (VXM-A0ST16 Rev A)", "category": "Other Devices and Systems", "sponsor": "Thinklogical", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2013-11-28", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134875-1607951472/SERTIT/Sertifikater/2013/49/20131128_SERTIT-049C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134869-1607951466/SERTIT/Sertifikater/2013/49/ThinklogicalSecurityTarget_1_2_VX320A.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134872-1607951469/SERTIT/Sertifikater/2013/49/20131128_SERTIT-049CR_v10_ThinklogicalVX320A.pdf" } ] } } }, { "product": "Thinklogical VX80", "url": "https://sertit.no/certified-products/product-archive/thinklogical-vx80", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2013-11-28", "enhanced": { "description": "SERTIT-048 C", "cert_id": "SERTIT-048", "mutual_recognition": "CCRA, SOG-IS", "product": "KVM Matrix Switch: VXR-000080 Rev B; Data Input/Output cards: Velocity Matrix Router 80 Data Input/Output Card, 5 Ports, SFP+, Multi Mode (VXM-D00005 Rev A), , Velocity Matrix Router 80 Data Input/Output Card, 5 Ports, SFP+, Single Mode (VXM-D00S05 Rev A)", "category": "Other Devices and Systems", "sponsor": "Thinklogical", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2013-11-28", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134866-1607951435/SERTIT/Sertifikater/2013/48/20131128_SERTIT-048C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134863-1607951431/SERTIT/Sertifikater/2013/48/ThinklogicalSecurityTarget_1_2_VX80.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134860-1607951426/SERTIT/Sertifikater/2013/48/20131128_SERTIT-048CR_v10_ThinklogicalVX80.pdf" } ] } } }, { "product": "Thinklogical MX48", "url": "https://sertit.no/certified-products/product-archive/thinklogical-mx48", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2013-11-28", "enhanced": { "description": "SERTIT-047 C", "cert_id": "SERTIT-047", "mutual_recognition": "CCRA, SOG-IS", "product": "KVM Matrix Switch: Multi-media Matrix Router 48 with Front Mount Touch Panel (MXR-000048-FM Rev B) , Multi-media Matrix Router 48 with Rack Mount Touch Panel (MXR-000048-RM Rev B) , Multi-media Matrix Router 48 with Stand Alone Touch Panel (MXR-000048-SA Rev B); Data Input/Output cards: Multi-media Matrix Router 48 Data Input/Output Card, 16 Ports, SFP+, Multi Mode (MXM-D00016 Rev A), , Multi-media Matrix Router 48 Data Input/Output Card, 16 Ports, SFP+, Single Mode (MXM-D00S16 Rev A)", "category": "Other Devices and Systems", "sponsor": "Thinklogical", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2013-11-28", "level": "EAL 4", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134857-1607951395/SERTIT/Sertifikater/2013/47/20131128_SERTIT-047C.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134854-1607951391/SERTIT/Sertifikater/2013/47/ThinklogicalSecurityTarget_1_2_MX48.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134851-1607951385/SERTIT/Sertifikater/2013/47/20131128_SERTIT-047CR_v10_ThinklogicalMX48.pdf" } ] } } }, { "product": "SHHIC SHC1302/2907M4 with Crypto Library V1.10 and ITCOS V1.00 version HHIC2907M4", "url": "https://sertit.no/certified-products/product-archive/shhic-shc1302-2907m4-with-crypto-library-v1-10-and-itcos-v1-00-version-hhic2907m4", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "Shanghai Huahong Integrated Circuit Co., Ltd.", "certification_date": "2013-11-20", "enhanced": { "description": "SERTIT-044 C", "cert_id": "SERTIT-044", "mutual_recognition": "CCRA", "product": "HHIC2907M4", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "Shanghai Huahong Integrated Circuit Co., Ltd", "developer": "Shanghai Huahong Integrated Circuit Co., Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2013-11-20", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile, Version 1.0", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134833-1607951279/SERTIT/Sertifikater/2013/44/%5BST%5D%20QRCC_001_SHC1302_2907M4_ST_V1.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134836-1607951285/SERTIT/Sertifikater/2013/44/SERTIT-044%20CR%20v%201.0.pdf" } ] } } }, { "product": "Huawei S2300, S2700, S5300, S5700, S6300, S6700, S7700, S9300, S9700 Ethernet Switches", "url": "https://sertit.no/certified-products/product-archive/huawei-s2300-s2700-s5300-s5700-s6300-s6700-s7700-s9300-s9700-ethernet-switches", "category": "Network and Network-Related Devices and Systems", "developer": "Huawei Technologies Co. , Ltd.", "certification_date": "2013-08-28", "enhanced": { "description": "SERTIT-052 C", "cert_id": "SERTIT-052", "mutual_recognition": "CCRA", "product": "V200R003", "category": "Network and Network-Related Devices and Systems", "sponsor": "Huawei Technologies Co., Ltd.", "developer": "Huawei Technologies Co. , Ltd.", "evaluation_facility": "Brightsight B.V.", "certification_date": "2013-08-28", "level": "EAL 3, ALC_CMC.4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134896-1607951580/SERTIT/Sertifikater/2013/52/%5BASE%5D%20CC%20Huawei%20S%20Series%20Ethernet%20Switches%20V200R003%20-%20Security%20Target%20V1.0_Final%20from%20Huawei.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134899-1607951586/SERTIT/Sertifikater/2013/52/SERTIT-052%20CR%20v%201.0.pdf" } ] } } }, { "product": "Toshiba T6NE1", "url": "https://sertit.no/certified-products/product-archive/toshiba-t6ne1", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "TOSHIBA CORPORATION Semiconductors Company", "certification_date": "2013-08-21", "enhanced": { "description": "SERTIT-045 C", "cert_id": "SERTIT-045", "mutual_recognition": "CCRA", "product": "HW Version 4", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "TOSHIBA CORPORATION Semiconductors Company", "developer": "TOSHIBA CORPORATION Semiconductors Company", "evaluation_facility": "Brightsight B.V.", "certification_date": "2013-08-21", "level": "EAL 5, ALC_DVS.2, AVA_VAN.5", "protection_profile": "Security IC Platform Protection Profile, Version 1.0", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134839-1607951312/SERTIT/Sertifikater/2013/45/%5BST%5D%20CC-T6NE1-ST-ENG-001.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134842-1607951316/SERTIT/Sertifikater/2013/45/SERTIT-045-T6NE1-CR_v.1.0.pdf" } ] } } }, { "product": "Good for Enterprise System", "url": "https://sertit.no/certified-products/product-archive/good-for-enterprise-system", "category": "Data protection", "developer": "Good Technology, Inc.", "certification_date": "2013-08-12", "enhanced": { "description": "SERTIT-039 C", "cert_id": "SERTIT-039", "mutual_recognition": "CCRA", "product": "Good For Enterprise iOS client: 2.1.5 ; Good For Enterprise Android client: 2.1.2 ; Good Mobile Control Server 64bit-Domino: 2.3.1 ; Good Mobile Control Server 64bit-Exchange: 2.3.0 ; Good Mobile Messaging Server for Exchange: 7.1.0 ; Good Mobile Messaging Server for Domino: 7.0.2", "category": "Data protection", "sponsor": "Good Technology, Inc.", "developer": "Good Technology, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2013-08-12", "level": "EAL 4, ALC_FLR.1", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134818-1607951201/SERTIT/Sertifikater/2013/39/ST_Good_Technology_v_1_19.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134815-1607951196/SERTIT/Sertifikater/2013/39/20130812_CR-039_v1_0.pdf" } ] } } }, { "product": "ZTE Access System Series", "url": "https://sertit.no/certified-products/product-archive/zte-access-system-series-1", "category": "Access Control Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2013-03-04", "enhanced": { "description": "SERTIT-043 C", "cert_id": "SERTIT-043", "mutual_recognition": "CCRA", "product": "ZXA10 C300 V2.0.0T2, C300M V3.0T2, C350M V3.0T2", "category": "Access Control Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2013-03-04", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134827-1607951253/SERTIT/Sertifikater/2013/43/ZTE%20Access%20Systems%20Series%20ZXA10%20C300%20C300M%20C350M%20v1.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134830-1607951257/SERTIT/Sertifikater/2013/43/SERTIT-043%20CR%20v%201.0.pdf" } ] } } }, { "product": "ZTE Optical Transmission Equipment Series", "url": "https://sertit.no/certified-products/product-archive/zte-optical-transmission-equipment-series", "category": "Other Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2013-02-25", "enhanced": { "description": "SERTIT-042 C", "cert_id": "SERTIT-042", "mutual_recognition": "CCRA", "product": "ZXONE 5800 v1.10, ZXMP S325 v2.10, ZXMP S385 v2.60, ZXMP M720 v1.00, ZXMP M820 v2.51, ZXWM M920 V4.20P01, ZXONE 8300 v1.00, ZXONE 8500 v1.00", "category": "Other Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2013-02-25", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134824-1607951230/SERTIT/Sertifikater/2013/42/ZTE%20Optical%20Transmission%20Equipment%20Security%20Target%20v1.2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134821-1607951226/SERTIT/Sertifikater/2013/42/SERTIT-042%20CR%20v%201.0.pdf" } ] } } }, { "product": "A10 Networks - The AX Series Advanced Traffic Manager", "url": "https://sertit.no/certified-products/product-archive/a10-networks-the-ax-series-advanced-traffic-manager-1", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2013-02-12", "enhanced": { "description": "SERTIT-046 C", "cert_id": "SERTIT-046", "mutual_recognition": "CCRA", "product": "Advanced Traffic Manager AX3200-12, AX1030, AX5630, AX3530; HW: AX3200-12, AX1030, AX5630, AX3530 with software version 2.7.0-P1", "category": "Network and Network-Related Devices and Systems", "sponsor": "A10 Networks, Inc.", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2013-02-12", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134845-1607951351/SERTIT/Sertifikater/2013/46/STA10_1_4.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134848-1607951355/SERTIT/Sertifikater/2013/46/20130212_CR-046_v1_0.pdf" } ] } } }, { "product": "A10 Networks - The AX Series Advanced Traffic Manager", "url": "https://sertit.no/certified-products/product-archive/a10-networks-the-ax-series-advanced-traffic-manager", "category": "Network and Network-Related Devices and Systems", "developer": "A10 Networks, Inc.", "certification_date": "2012-10-26", "enhanced": { "description": "SERTIT-040 C", "cert_id": "SERTIT-040", "mutual_recognition": "CCRA", "product": "Advanced Traffic Manager AX2500, AX2600-GCF, AX3000-11-GCF, AX5100, AX5200-11, AX3030 and AX3400; Hardware versions: AX2500, AX2600-GCF, AX3000-11-GCF, AX5100, AX5200-11, AX3030, AX3400; Software version: R261-GR1", "category": "Network and Network-Related Devices and Systems", "sponsor": "A10 Networks, Inc.", "developer": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "certification_date": "2012-10-26", "level": "EAL 2, ALC_FLR.1", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134806-1607951117/SERTIT/Sertifikater/2012/40/20121026_SERTIT-040C_Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134803-1607951113/SERTIT/Sertifikater/2012/40/STA10NetworksV1_6Oct2_2012.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134800-1607951109/SERTIT/Sertifikater/2012/40/20121026_CR-040_v1_0.pdf" } ] } } }, { "product": "ZTE Base Station Controller Series", "url": "https://sertit.no/certified-products/product-archive/zte-base-station-controller-series", "category": "Access Control Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2012-09-14", "enhanced": { "description": "SERTIT-038 C", "cert_id": "SERTIT-038", "mutual_recognition": "CCRA", "product": "ZTE ZXG10 iBSC Base Station Controller, V6.20.614, ZXC10 BSCB CDMA2000 Base Station Controller, V8.0.3.400, and ZXWR RNC WCDMA Radio Network Controller, V3.09.30", "category": "Access Control Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2012-09-14", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134797-1607951074/SERTIT/Sertifikater/2012/38/%5BST%5D%20ZTE%20Base%20Station%20Controllers%20Security%20Target%20v1.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134794-1607951069/SERTIT/Sertifikater/2012/38/SERTIT-038%20CR%20v.1.0.pdf" } ] } } }, { "product": "ZTE Access System Series", "url": "https://sertit.no/certified-products/product-archive/zte-access-system-series", "category": "Access Control Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2012-08-17", "enhanced": { "description": "SERTIT-037 C", "cert_id": "SERTIT-037", "mutual_recognition": "CCRA", "product": "ZXMSG5200 V3.2P03T2, C300M V2.1T5, C350M V2.1T5, ZXMSG 5208 V1.0.1, FSAP 9800 V1.0.6P9, FSAP 9800 V3.2P3, ZXDSL 9806H V1.2P20, ZXDSL 9806H V2.1P5, ZXDSL 9816 V2.0.0 and ZXDSL 9836 V1.0.0P1", "category": "Access Control Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2012-08-17", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134788-1607951034/SERTIT/Sertifikater/2012/37/%5BST%5D%20Access%20Gateways%20ST%20v1.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134791-1607951037/SERTIT/Sertifikater/2012/37/SERTIT-037%20CR%20v%201.0.pdf" } ] } } }, { "product": "ZTE eNodeB solution", "url": "https://sertit.no/certified-products/product-archive/zte-enodeb-solution", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2012-06-28", "enhanced": { "description": "SERTIT-036 C", "cert_id": "SERTIT-036", "mutual_recognition": "CCRA", "product": "Version 1.0", "category": "Network and Network-Related Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2012-06-28", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134782-1607951010/SERTIT/Sertifikater/2012/36/ZTE%20eNodeB%20Solution%20Security%20Target%20v0.8-0626.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134785-1607951014/SERTIT/Sertifikater/2012/36/SERTIT-036%20CR%20v%201.0.pdf" } ] } } }, { "product": "TOSMART-P080-AAJePassport", "url": "https://sertit.no/certified-products/product-archive/tosmart-p080-aajepassport-1", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "TOSHIBA CORPORATION Social Infrastructure Systems Company", "certification_date": "2012-03-15", "enhanced": { "description": "SERTIT-041 C", "cert_id": "SERTIT-041", "mutual_recognition": "CCRA", "product": "01.07.05 + NVM Ver.01.00.00", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "TOSHIBA CORPORATION Social Infrastructure Systems Company", "developer": "TOSHIBA CORPORATION Social Infrastructure Systems Company", "evaluation_facility": "Brightsight B.V.", "certification_date": "2012-03-15", "level": "EAL 4, ALC_DVS.2, ASE_TEE.2, AVA_VAN.5", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134809-1607951149/SERTIT/Sertifikater/2012/41/CC-E-passport-ST-%20ENG_PP_C0247_public2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134812-1607951154/SERTIT/Sertifikater/2012/41/SERTIT-041%20CR%20Toshiba%20TOSMART-P080-AAJePassport%20v.1.0.pdf" } ] } } }, { "product": "ZTE Softswitch and Media Gateway Communication System", "url": "https://sertit.no/certified-products/product-archive/zte-softswitch-and-media-gateway-communication-system", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2012-03-15", "enhanced": { "description": "SERTIT-030 C", "cert_id": "SERTIT-030", "mutual_recognition": "CCRA", "product": "Version 1.0", "category": "Network and Network-Related Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2012-03-15", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134776-1607950978/SERTIT/Sertifikater/2012/30/%5BST%5D%20ZTE%20Softswitch%20and%20Media%20Gateway%20Communication%20System%20Security%20Target%20v0.8.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134779-1607950983/SERTIT/Sertifikater/2012/30/SERTIT-030%20CR%20v%201.0.pdf" } ] } } }, { "product": "ZXUN USPP Universal Subscriber Profile Platform", "url": "https://sertit.no/certified-products/product-archive/zxun-uspp-universal-subscriber-profile-platform", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2011-12-16", "enhanced": { "description": "SERTIT-034 C", "cert_id": "SERTIT-034", "mutual_recognition": "CCRA", "product": "Version 4.11.10", "category": "Network and Network-Related Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2011-12-16", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134764-1607950886/SERTIT/Sertifikater/2011/34/%5BST%5D%20ZXUN%20USPP%20Security%20Target%20v1.1%20-%20PUBLIC.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134767-1607950891/SERTIT/Sertifikater/2011/34/SERTIT-034%20CR%20v.1.0%20-%20signed.pdf" } ] } } }, { "product": "ZXR10 5900&5900E&8900&ZSR&T1200 Series Switches and Routers running the ZXROS Operating System", "url": "https://sertit.no/certified-products/product-archive/zxr10-5900-5900e-8900-zsr-t1200-series-switches-and-routers-running-the-zxros-operating-system", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2011-11-22", "enhanced": { "description": "SERTIT-035 C", "cert_id": "SERTIT-035", "mutual_recognition": "CCRA", "product": "Version 4.08", "category": "Network and Network-Related Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2011-11-22", "level": "EAL 3, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134770-1607950923/SERTIT/Sertifikater/2011/35/%5BST%20Public%5D%20ZXR10%205900%265900E%268900%26ZSR%26T1200%20Series%20Switches%20and%20Routers%20Running%20ZXROS_ST%20v1.3.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134773-1607950927/SERTIT/Sertifikater/2011/35/SERTIT-035%20CR%20v%201.0.pdf" } ] } } }, { "product": "ZXR10 M6000&T8000&8900E Series Routers and Switches Running the ZXROSNG Operating System", "url": "https://sertit.no/certified-products/product-archive/zxr10-m6000-t8000-8900e-series-routers-and-switches-running-the-zxrosng-operating-system", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2011-11-10", "enhanced": { "description": "SERTIT-029 C", "cert_id": "SERTIT-029", "mutual_recognition": "CCRA", "product": "Version 1.00.20", "category": "Network and Network-Related Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2011-11-10", "level": "EAL 3, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134755-1607950826/SERTIT/Sertifikater/2011/29/%5BST%20Public%5D%20ZXR10%20M6000%26T8000%268900E%20Series%20Routers%20and%20Switches%20Running%20ZXROSNG%20ST%20v1.6.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134752-1607950821/SERTIT/Sertifikater/2011/29/SERTIT-029%20CR%20v%201.0.pdf" } ] } } }, { "product": "ZXR10 3900 Series Switches Running the ZXROS Operating System", "url": "https://sertit.no/certified-products/product-archive/zxr10-3900-series-switches-running-the-zxros-operating-system", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2011-10-21", "enhanced": { "description": "SERTIT-028 C", "cert_id": "SERTIT-028", "mutual_recognition": "CCRA", "product": "Version 4.08", "category": "Network and Network-Related Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2011-10-21", "level": "EAL 3, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134749-1607950787/SERTIT/Sertifikater/2011/28/%5BST%20Public%5D%20ZXR10%203900%20Series%20Switches%20Running%20ZXROS_ST%20v1.5.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134746-1607950781/SERTIT/Sertifikater/2011/28/SERTIT-028%20CR%20v%201.0.pdf" } ] } } }, { "product": "ZTE Mobile Switching Center Server / intelligent Controller Extensive", "url": "https://sertit.no/certified-products/product-archive/zte-mobile-switching-center-server-intelligent-controller-extensive", "category": "Network and Network-Related Devices and Systems", "developer": "ZTE Corporation", "certification_date": "2011-09-26", "enhanced": { "description": "SERTIT-031 C", "cert_id": "SERTIT-031", "mutual_recognition": "CCRA", "product": "ZXWN MSCS / ZXUN iCX v4.10.13, ZXUN LIG v3.10.22", "category": "Network and Network-Related Devices and Systems", "sponsor": "ZTE Corporation", "developer": "ZTE Corporation", "evaluation_facility": "Brightsight B.V.", "certification_date": "2011-09-26", "level": "EAL 2, ALC_FLR.2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134758-1607950847/SERTIT/Sertifikater/2011/31/%5BST%5DZXWN_MSCS_ZXUN_iCX_Security_Target_V1.1.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134761-1607950851/SERTIT/Sertifikater/2011/31/SERTIT-031-MSCS-CR_v.1.0.pdf" } ] } } }, { "product": "Special Processing Indicator Filter", "url": "https://sertit.no/certified-products/product-archive/special-processing-indicator-filter", "category": "Other Devices and Systems", "developer": "Kongsberg Defence and Aerospace", "certification_date": "2011-09-16", "enhanced": { "description": "SERTIT-019 C", "cert_id": "SERTIT-019", "mutual_recognition": "CCRA", "product": "Version 1.2", "category": "Other Devices and Systems", "sponsor": "FLO Luftkapasiteter", "developer": "Kongsberg Defence and Aerospace", "evaluation_facility": "Norconsult AS", "certification_date": "2011-09-16", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134734-1607950727/SERTIT/Sertifikater/2011/19/ST%20SPI%20Filter%20public%20version%201.0.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134737-1607950731/SERTIT/Sertifikater/2011/19/SERTIT-019-SPI_Filter-CR_v.1.0.pdf" } ] } } }, { "product": "GL1 Computer Software Component of SkyView", "url": "https://sertit.no/certified-products/product-archive/gl1-computer-software-component-of-skyview", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2011-06-28", "enhanced": { "description": "SERTIT-013 C", "cert_id": "SERTIT-013", "mutual_recognition": "CCRA", "product": "2.0.9-i2", "category": "Other Devices and Systems", "sponsor": "Forsvarets logistikkorganisasjon / Investeringsavdeling (FLO/I)", "developer": "Thales Norway AS", "evaluation_facility": "Secode Norge AS", "certification_date": "2011-06-28", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134713-1607950264/SERTIT/Sertifikater/2011/13/3AQ_23805_AAAA_SC-D.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134710-1607950260/SERTIT/Sertifikater/2011/13/20110628_SERTIT-013_CR_v1.0.pdf" } ] } } }, { "product": "TOSMART-P080-AAJePassport", "url": "https://sertit.no/certified-products/product-archive/tosmart-p080-aajepassport", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "TOSHIBA CORPORATION Social Infrastructure Systems Company", "certification_date": "2011-05-23", "enhanced": { "description": "SERTIT-021 C", "cert_id": "SERTIT-021", "mutual_recognition": "CCRA", "product": "Version 01.05.04 + NVM version 01.00.00", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "TOSHIBA CORPORATION Social Infrastructure Systems Company", "developer": "TOSHIBA CORPORATION Social Infrastructure Systems Company", "evaluation_facility": "Brightsight B.V.", "certification_date": "2011-05-23", "level": "EAL 4, ALC_DVS.2, ASE_TEE.2, AVA_VAN.5", "protection_profile": "Protection Profile for IC for ePassport - Active Authentication Support - [PP-C0247]", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134743-1607950758/SERTIT/Sertifikater/2011/21/CC-E-passport-ST-%20ENG_PP_C0247_public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134740-1607950754/SERTIT/Sertifikater/2011/21/SERTIT-021%20CR%20Toshiba_TOSMART-P080-AAJePassport_v.1.0.pdf" } ] } } }, { "product": "VX 320 Router KVM Matrix Switch", "url": "https://sertit.no/certified-products/product-archive/vx-320-router-kvm-matrix-switch", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2011-04-18", "enhanced": { "description": "SERTIT-018 C", "cert_id": "SERTIT-018", "mutual_recognition": "CCRA", "product": "Velocity Matrix Router 320 (VXR-000320 Rev A); Velocity Matrix Router 320 Data Input and Output Card, 16 Ports, SFP+, Multi-Mode (VXM-D00016 Rev A)", "category": "Other Devices and Systems", "sponsor": "Forsvarets Logistikkorganisasjon / lnvesteringsavdelingen/ NBF", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2011-04-18", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134731-1607950374/SERTIT/Sertifikater/2011/18/ThinklogicalSecurityTarget_3_6_VX320.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134728-1607950368/SERTIT/Sertifikater/2011/18/SERTIT-018%20CR_Thinklogical_VX320_KVM_Matrix_switch_v1.0.pdf" } ] } } }, { "product": "VX 160 Router KVM Matrix Switch", "url": "https://sertit.no/certified-products/product-archive/vx-160-router-kvm-matrix-switch", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2011-04-18", "enhanced": { "description": "SERTIT-017 C", "cert_id": "SERTIT-017", "mutual_recognition": "CCRA", "product": "Velocity Matrix Router 160 (VXR-000160 Rev B); Velocity Matrix Router 160 Data Upstream Card, 20 Ports, SFP+, Multi-Mode (VXMDI0020 Rev B); Velocity Matrix Router 160 Data Downstream Card, 20 Ports, SFP+, Multi-Mode (VXM-DO0020 Rev B)", "category": "Other Devices and Systems", "sponsor": "Forsvarets Logistikkorganisasjon / lnvesteringsavdelingen/ NBF", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2011-04-18", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134722-1607950332/SERTIT/Sertifikater/2011/17/ThinklogicalSecurityTarget_3_6_VX160.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134725-1607950336/SERTIT/Sertifikater/2011/17/SERTIT-017_CR_Thinklogical_VX160_KVM_Matrix_switch_v1.0.pdf" } ] } } }, { "product": "VX 40 Router KVM Matrix Switch", "url": "https://sertit.no/certified-products/product-archive/vx-40-router-kvm-matrix-switch", "category": "Other Devices and Systems", "developer": "Thinklogical", "certification_date": "2011-04-18", "enhanced": { "description": "SERTIT-016 C", "cert_id": "SERTIT-016", "mutual_recognition": "CCRA", "product": "Velocity Matrix Router 40 (VXR-000040 Rev B); Velocity Matrix Router 40 Data Upstream Card, 5 Ports, SFP+, Multi-Mode (VXMDI0005 Rev A); Velocity Matrix Router 40 Data Downstream Card, 5 Ports , SFP+, Multi-Mode (VXMDO0005 Rev A)", "category": "Other Devices and Systems", "sponsor": "Forsvarets Logistikkorganisasjon / lnvesteringsavdelingen/ NBF", "developer": "Thinklogical", "evaluation_facility": "Norconsult AS", "certification_date": "2011-04-18", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134716-1607950294/SERTIT/Sertifikater/2011/16/ThinklogicalSecurityTarget_3_6_VX40.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134719-1607950298/SERTIT/Sertifikater/2011/16/SERTIT-016_CR_Thinklogical_VX40_KVM_Matrix_switch_v1.0.pdf" } ] } } }, { "product": "T6ND5", "url": "https://sertit.no/certified-products/product-archive/t6nd5", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "TOSHIBA CORPORATION Semiconductors Company", "certification_date": "2010-12-21", "enhanced": { "description": "SERTIT-027 C", "cert_id": "SERTIT-027", "mutual_recognition": "CCRA", "product": "Version 5.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "TOSHIBA CORPORATION Semiconductors Company", "developer": "TOSHIBA CORPORATION Semiconductors Company", "evaluation_facility": "Brightsight B.V.", "certification_date": "2010-12-21", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "documents": { "report": [ { "href": "https://sertit.no/getfile.php/134707-1607950212/SERTIT/Sertifikater/2010/27/20101221_SERTIT-027-T6ND5-CR_v.1.0.pdf" } ] } } }, { "product": "T6ND4", "url": "https://sertit.no/certified-products/product-archive/t6nd4", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "developer": "TOSHIBA CORPORATION Semiconductors Company", "certification_date": "2010-12-21", "enhanced": { "description": "SERTIT-020 C", "cert_id": "SERTIT-020", "mutual_recognition": "CCRA", "product": "Version 5.0", "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems", "sponsor": "TOSHIBA CORPORATION Semiconductors Company", "developer": "TOSHIBA CORPORATION Semiconductors Company", "evaluation_facility": "Brightsight B.V.", "certification_date": "2010-12-21", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134704-1607950173/SERTIT/Sertifikater/2010/20/%5BST-Lite%5D-CC-T6ND4-ST-ENG-001%20v0.1.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134701-1607950169/SERTIT/Sertifikater/2010/20/20101221_SERTIT-020-T6ND4-CR_v.1.0.pdf" } ] } } }, { "product": "Thales Trusted Security Filter TSF101", "url": "https://sertit.no/certified-products/product-archive/thales-trusted-security-filter-tsf101", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2010-05-03", "enhanced": { "description": "SERTIT-015 C", "cert_id": "SERTIT-015", "product": "Hardware versions: 3AQ 21564 AAAA ICS5, -ICS5A, -ICS6, -ICS6A, -ICS6B, -ISC7, -ICS7A and -ISC7B; Software version 3AQ 21850 CAAA Version 2.1.4", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Secode Norge AS", "certification_date": "2010-05-03", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134689-1607950129/SERTIT/Sertifikater/2010/15/20100503_SERTIT-015_Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134683-1607950120/SERTIT/Sertifikater/2010/15/TSF101_ST-edition-2_2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134695-1607950137/SERTIT/Sertifikater/2010/15/20100503_SERTIT-015%20_CR_v1_0.pdf" } ], "maintenance": [ { "href": "https://sertit.no/getfile.php/134680-1607950115/SERTIT/Sertifikater/2010/15/20140117_Sertit-015_Maintenance_Report_v_1_0.pdf" }, { "href": "https://sertit.no/getfile.php/134698-1607950143/SERTIT/Sertifikater/2010/15/20160120%20Sertit%20015%20Maintenance%20Report%20v_2_0.pdf" } ] } } }, { "product": "Thales Operator Terminal Adapter (OTA)", "url": "https://sertit.no/certified-products/product-archive/thales-operator-terminal-adapter-ota-1", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2010-03-24", "enhanced": { "description": "Thales Operator Terminal Adapter (OTA) is a part of the Voice Communication System (VCS) used in operation sites. The main purpose of the OTA is to provide the capabilities required to handle all voice presented at the Operator Controller Position (OCP) and to perform required red/black separation of voice and data", "cert_id": "SERTIT-012", "product": "Trusted Kernel version 3AQ 24860 AAAA 6.2.1; Firewall definitions file 3AQ 24862 EAAA 6.2.2; Hardware version 3AQ 21564 AAAA ICS5A, -ICS7, -ICS7A and -ICS7B", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Secode Norge AS", "certification_date": "2010-03-24", "level": "EAL 5, ALC_FLR.3", "documents": { "cert": [ { "href": "https://sertit.no/getfile.php/134647-1607950011/SERTIT/Sertifikater/2010/12/20100324_SERTIT-012_Certificate.pdf" } ], "target": [ { "href": "https://sertit.no/getfile.php/134644-1609931839/SERTIT/Sertifikater/2010/12/OTA_Security_Target_ed6_2_2.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134665-1607950035/SERTIT/Sertifikater/2010/12/20100324_SERTIT-012%20_CR_v1_0.pdf" } ], "maintenance": [ { "href": "https://sertit.no/getfile.php/134641-1609875883/SERTIT/Sertifikater/2010/12/20100929_Sertit%20012%20_Maintenance%20_Report_v_1_0%20_sign.pdf" }, { "href": "https://sertit.no/getfile.php/134635-1607949992/SERTIT/Sertifikater/2010/12/20111107_Sertit%20012_Maintenance_Report_v_2_0_sig.pdf" }, { "href": "https://sertit.no/getfile.php/134638-1607949997/SERTIT/Sertifikater/2010/12/20131120_SERTIT-012_Maintenance_Report_v_3_0.pdf" }, { "href": "https://sertit.no/getfile.php/134656-1607950025/SERTIT/Sertifikater/2010/12/20140429_Sertit_012_Maintenance_Report_v_4.pdf" }, { "href": "https://sertit.no/getfile.php/134659-1607950028/SERTIT/Sertifikater/2010/12/20150701_Sertit_012_Maintenance_Report_v_5_0.pdf" } ] } } }, { "product": "Fort Fox Hardware Data Diode", "url": "https://sertit.no/certified-products/product-archive/fort-fox-hardware-data-diode", "category": "Other Devices and Systems", "developer": "Fox-IT BV", "certification_date": "2010-03-03", "enhanced": { "description": "SERTIT-014 C", "cert_id": "SERTIT-014", "mutual_recognition": "CCRA", "product": "FFHDD2", "category": "Other Devices and Systems", "sponsor": "Fox-IT BV", "developer": "Fox-IT BV", "evaluation_facility": "Brightsight B.V.", "certification_date": "2010-03-03", "level": "EAL 4, ALC_DVS.2, AVA_VAN.5", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134674-1607950086/SERTIT/Sertifikater/2010/14/FFHDD-ASE_1.07_Public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134677-1607950089/SERTIT/Sertifikater/2010/14/20100303_SERTIT-014_FortFox_Hardware_Data_Diode_-_v1.0.pdf" } ] } } }, { "product": "XOmail", "url": "https://sertit.no/certified-products/product-archive/xomail", "category": "Messaging system", "developer": "Thales Norway AS", "certification_date": "2010-02-23", "enhanced": { "description": "SERTIT-008 C", "cert_id": "SERTIT-008", "mutual_recognition": "CCRA", "product": "Version 14.2.4", "category": "Messaging system", "sponsor": "Forsvarets logistikkorganisasjon / Investeringsavdeling (FLO/I)", "developer": "Thales Norway AS", "evaluation_facility": "Norconsult AS", "certification_date": "2010-02-23", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134632-1607949916/SERTIT/Sertifikater/2010/08/XOmail_Version_14.2_Security_Target_739_20597_aaaa_sc_ed10-public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134629-1607949911/SERTIT/Sertifikater/2010/08/20100223_SERTIT-008CR_issue%201.0.pdf" } ] } } }, { "product": "AirMagnet Enterprise System 8.5", "url": "https://sertit.no/certified-products/product-archive/airmagnet-enterprise-system-8-5", "category": "WLAN Security Monitoring System", "developer": "Airmagnet Inc.", "certification_date": "2009-12-14", "enhanced": { "description": "SERTIT-011 C", "cert_id": "SERTIT-011", "mutual_recognition": "CCRA", "product": "Version 8.5, build 12047", "category": "WLAN Security Monitoring System", "sponsor": "AirMagnet Inc.", "developer": "Airmagnet Inc.", "evaluation_facility": "Secode Norge AS", "certification_date": "2009-12-14", "level": "EAL 2", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134626-1607949814/SERTIT/Sertifikater/2009/11/AirMagnet_SecurityTarget_004.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134623-1607949811/SERTIT/Sertifikater/2009/11/20091214_CR-011_v1_0.pdf" } ] } } }, { "product": "Motorola RFS7000 RF Switch", "url": "https://sertit.no/certified-products/product-archive/motorola-rfs7000-rf-switch", "category": "Other Devices and Systems", "developer": "Motorola, Inc.", "certification_date": "2009-07-09", "enhanced": { "description": "SERTIT-010 C", "cert_id": "SERTIT-010", "mutual_recognition": "CCRA, SOG-IS", "product": "HW: RFS7000; SW: RFS7000-1.0.0.0-022GR", "category": "Other Devices and Systems", "sponsor": "Motorola, Inc.", "developer": "Motorola, Inc.", "evaluation_facility": "Aspect Labs", "certification_date": "2009-07-09", "level": "EAL 4, ALC_FLR.2", "protection_profile": "US Government Wireless Local Area Network (WLAN) Access System Protection Profile for Basic Robustness Environments, Version 1.0, April 2006", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/135534-1610011059/SERTIT/Sertifikater/2009/10/MOTOROLA_ST-v1.5.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134620-1607949745/SERTIT/Sertifikater/2009/10/20090709_SERTIT-010_CR_v1_0.pdf" } ] } } }, { "product": "Motorola WS5100 Wireless Switch", "url": "https://sertit.no/certified-products/product-archive/motorola-ws5100-wireless-switch", "category": "Other Devices and Systems", "developer": "Motorola, Inc.", "certification_date": "2009-07-09", "enhanced": { "description": "SERTIT-009 C", "cert_id": "SERTIT-009", "mutual_recognition": "CCRA, SOG-IS", "product": "HW: WS5100; SW: WS5100-3.0.0.0-022GR", "category": "Other Devices and Systems", "sponsor": "Motorola, Inc.", "developer": "Motorola, Inc.", "evaluation_facility": "Aspect Labs", "certification_date": "2009-07-09", "level": "EAL 4, ALC_FLR.2", "protection_profile": "US Government Wireless Local Area Network (WLAN) Access System Protection Profile for Basic Robustness Environments, Version 1.0, April 2006", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134617-1607949712/SERTIT/Sertifikater/2009/09/MOTOROLA_ST-v1.5.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134614-1607949708/SERTIT/Sertifikater/2009/09/20090709_SERTIT-009_CR_v1_0.pdf" } ] } } }, { "product": "XFER Service", "url": "https://sertit.no/certified-products/product-archive/xfer-service", "category": "Other Devices and Systems", "developer": "Forsvarets logistikkorganisasjon / Investeringsavdeling (FLO/I)", "certification_date": "2009-02-04", "enhanced": { "description": "SERTIT-005 C", "cert_id": "SERTIT-005", "mutual_recognition": "CCRA", "product": "2.0.1", "category": "Other Devices and Systems", "sponsor": "Norwegian Defence Communication and Information Services Division", "developer": "Forsvarets logistikkorganisasjon / Investeringsavdeling (FLO/I)", "evaluation_facility": "Secode Norge AS", "certification_date": "2009-02-04", "level": "EAL 4", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134608-1607949648/SERTIT/Sertifikater/2009/05/2008xxxx_ST_NORDIS-S_rapport.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134611-1607949653/SERTIT/Sertifikater/2009/05/20090204_SERTIT-005_CR_issue_1_0.pdf" } ] } } }, { "product": "Trusted Security Filter - TSF 101", "url": "https://sertit.no/certified-products/product-archive/trusted-security-filter-tsf-101", "category": "Other Devices and Systems", "developer": "Thales Norway AS", "certification_date": "2007-11-01", "enhanced": { "description": "SERTIT-006 C", "cert_id": "SERTIT-006", "product": "Software: 3AQ 21850 BAAA 1.6; Hardware: 3AQ 21564 AAAA ICS5, -ICS5A, -ICS6, -ICS6A, -ICS6B, -ICS7, -ICS7A and -ICS7B", "category": "Other Devices and Systems", "sponsor": "Thales Norway AS", "developer": "Thales Norway AS", "evaluation_facility": "Secode Norge AS", "certification_date": "2007-11-01", "level": "EAL 5", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134602-1607949497/SERTIT/Sertifikater/2007/06/3aq-21840-xaaa-sczza-ed4.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134605-1607949500/SERTIT/Sertifikater/2007/06/20071101_SERTIT-006_CR_issue_1_0.pdf" } ] } } }, { "product": "Sospita License Protection QX Operating System", "url": "https://sertit.no/certified-products/product-archive/sospita-license-protection-qx-operating-system", "category": "Other Devices and Systems", "developer": "Thales Communications AS Norway", "certification_date": "2005-04-12", "enhanced": { "description": "SERTIT-002 C", "cert_id": "SERTIT-002", "product": "Sospita License Protection QX Operating System, Version 3.2", "category": "Other Devices and Systems", "sponsor": "Thales Communications AS Norway", "developer": "Thales Communications AS Norway", "evaluation_facility": "Secode System Sikkerhet AS", "certification_date": "2005-04-12", "level": "EAL 3", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134596-1607949436/SERTIT/Sertifikater/2005/02/QX_Security_Target.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134599-1609919477/SERTIT/Sertifikater/2005/02/20050412_SERTIT-002-CR_issue_1_0.pdf" } ] } } }, { "product": "Thales Operator Terminal Adapter (OTA)", "url": "https://sertit.no/certified-products/product-archive/thales-operator-terminal-adapter-ota", "category": "Other Devices and Systems", "developer": "Thales Communications AS Norway", "certification_date": "2004-05-19", "enhanced": { "description": "SERTIT-003 C", "cert_id": "SERTIT-003", "product": "Software: 3AQ 21530 XAAA Version 2.9; Hardware: 3AQ 21564 AAAA ICS5A", "category": "Other Devices and Systems", "sponsor": "Thales Communications AS Norway", "developer": "Thales Communications AS Norway", "evaluation_facility": "Secode System Sikkerhet AS", "certification_date": "2004-05-19", "level": "EAL 5", "documents": { "target": [ { "href": "https://sertit.no/getfile.php/134593-1607949370/SERTIT/Sertifikater/2004/03/3aq-21900-xaaa-sczza-8_public.pdf" } ], "report": [ { "href": "https://sertit.no/getfile.php/134590-1607949358/SERTIT/Sertifikater/2004/03/20040519_SERTIT-003_CR_issue_1_0.pdf" } ] } } } ] } }, "KR": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "KR", "timestamp": "2026-03-30T12:13:32.732392", "lists": { "CERTIFIED": [ { "product": "Smart TV and Monitor Security Solution V9.0 for Samsung Knox", "cert_id": "KECS-CISS-1392-2026", "product_link": "https://itscc.kr/certprod/view.do?product_id=1392&product_class=1", "vendor": "SAMSUNG ELECTRONICS Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2026-03-09", "enhanced": { "product": "Smart TV and Monitor Security Solution V9.0 for Samsung Knox", "cc_version": "CC:2022 R1", "assurance_level": "EAL1", "certification_date": "2026-03-09", "expiration_date": "2031-03-09", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-1392-2026", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002731", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002732", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002733", "protection_profile": "None", "developer": "SAMSUNG ELECTRONICS Co., Ltd.", "holder": "SAMSUNG ELECTRONICS Co., Ltd." } }, { "product": "LG App Monitoring Security Solution V2.0 for webOS TV", "cert_id": "KECS-CISS-1391-2026", "product_link": "https://itscc.kr/certprod/view.do?product_id=1391&product_class=1", "vendor": "LG Electronics, Inc.", "level": "EAL2", "category": "Smart TV Security Solution", "certification_date": "2026-02-27", "enhanced": { "product": "LG App Monitoring Security Solution V2.0 for webOS TV", "cc_version": "CC:2022 R1", "assurance_level": "EAL2", "certification_date": "2026-02-27", "expiration_date": "2031-02-27", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-1391-2026", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002726", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002727", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002728", "protection_profile": "None", "developer": "LG Electronics, Inc.", "holder": "LG Electronics, Inc." } }, { "product": "V-FRONT v8", "cert_id": "KECS-CISS-1390-2026", "product_link": "https://itscc.kr/certprod/view.do?product_id=1390&product_class=1", "vendor": "AirCUVE", "level": "PP Compliant", "category": "SSO", "certification_date": "2026-02-25", "enhanced": { "product": "V-FRONT v8", "cc_version": "CC:2022 R1", "assurance_level": "PP Compliant", "certification_date": "2026-02-25", "expiration_date": "2031-02-25", "product_type": "SSO", "cert_id": "KECS-CISS-1390-2026", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002723", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002721", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002724", "protection_profile": "Korean National Protection Profile for Single Sign On V3.1", "developer": "AirCUVE", "holder": "AirCUVE" } }, { "product": "AutoPassword Enterprise v4", "cert_id": "KECS-CISS-1378-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1378&product_class=1", "vendor": "eSTORM", "level": "EAL1", "category": "etc", "certification_date": "2025-12-05", "enhanced": { "product": "AutoPassword Enterprise v4", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2025-12-05", "expiration_date": "2030-12-05", "product_type": "etc", "cert_id": "KECS-CISS-1378-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002683", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002684", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002685", "protection_profile": "None", "developer": "eSTORM", "holder": "eSTORM" } }, { "product": "KCOS e-Passport Version 5.1 - SAC, EAC and AA on S3D384E", "cert_id": "KECS-ISIS-1372-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1372&product_class=1", "vendor": "KOMSCO", "level": "EAL5+", "category": "e-Passport", "certification_date": "2025-09-30", "enhanced": { "product": "KCOS e-Passport Version 5.1 - SAC, EAC and AA on S3D384E", "cc_version": "CC:2022 R1", "assurance_level": "EAL5+", "certification_date": "2025-09-30", "expiration_date": "2030-09-30", "product_type": "e-Passport", "cert_id": "KECS-ISIS-1372-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002662", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002663", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002668", "protection_profile": "Common Criteria Protection Profile Machine Readable Trabel Document using Standard Inspection Procedure with PACE (PACE PP) Version 1.01, (BSI-CC-PP-0068-V2-2011-MA-01,2014.07.22)", "developer": "KOMSCO", "holder": "KOMSCO" } }, { "product": "KCOS e-Passport Version 5.1 - BAC and AA on S3D384E", "cert_id": "KECS-ISIS-1371-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1371&product_class=1", "vendor": "KOMSCO", "level": "EAL4+", "category": "e-Passport", "certification_date": "2025-09-30", "enhanced": { "product": "KCOS e-Passport Version 5.1 - BAC and AA on S3D384E", "cc_version": "CC:2022 R1", "assurance_level": "EAL4+", "certification_date": "2025-09-30", "expiration_date": "2030-09-30", "product_type": "e-Passport", "cert_id": "KECS-ISIS-1371-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002659", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002660", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002667", "protection_profile": "Common Criteria Protection Profile, \"ICAO Application\" Basic Access Control, BSI-CC-PP-0055(Version 1.10, March 25, 2009)", "developer": "KOMSCO", "holder": "KOMSCO" } }, { "product": "KOMSCO JK62 V1.1", "cert_id": "KECS-ISIS-1370-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1370&product_class=1", "vendor": "KOMSCO", "level": "EAL5+", "category": "Java card platform", "certification_date": "2025-09-30", "enhanced": { "product": "KOMSCO JK62 V1.1", "cc_version": "CC:2022 R1", "assurance_level": "EAL5+", "certification_date": "2025-09-30", "expiration_date": "2030-09-30", "product_type": "Java card platform", "cert_id": "KECS-ISIS-1370-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002656", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002657", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002664", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO", "holder": "KOMSCO" } }, { "product": "Alpha DBGuard V2.1", "cert_id": "KECS-CISS-1368-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1368&product_class=1", "vendor": "Alphabit Co.,Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2025-09-25", "enhanced": { "product": "Alpha DBGuard V2.1", "cc_version": "CC:2022 R1", "assurance_level": "PP Compliant", "certification_date": "2025-09-25", "expiration_date": "2030-09-25", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1368-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002650", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002651", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002654", "protection_profile": "Korean National Protection Profile for Database Encryption V3.1", "developer": "Alphabit Co.,Ltd.", "holder": "Alphabit Co.,Ltd." } }, { "product": "eXSignOn V4.0", "cert_id": "KECS-CISS-1366-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1366&product_class=1", "vendor": "tomatosystem", "level": "PP Compliant", "category": "SSO", "certification_date": "2025-09-12", "enhanced": { "product": "eXSignOn V4.0", "cc_version": "CC:2022 R1", "assurance_level": "PP Compliant", "certification_date": "2025-09-12", "expiration_date": "2030-09-12", "product_type": "SSO", "cert_id": "KECS-CISS-1366-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002643", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002644", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002645", "protection_profile": "Korean National Protection Profile for Single Sign On V3.1", "developer": "tomatosystem", "holder": "tomatosystem" } }, { "product": "PrivacyDB V3.0", "cert_id": "KECS-CISS-1345-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1345&product_class=1", "vendor": "OWL Systems Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2025-05-26", "enhanced": { "product": "PrivacyDB V3.0", "cc_version": "CC:2022 R1", "assurance_level": "PP Compliant", "certification_date": "2025-05-26", "expiration_date": "2030-05-26", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1345-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002566", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002568", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002569", "protection_profile": "Korean National Protection Profile for Database Encryption V3.0", "developer": "OWL Systems Inc.", "holder": "OWL Systems Inc." } }, { "product": "KSignAccess V5.0", "cert_id": "KECS-CISS-1342-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1342&product_class=1", "vendor": "KSign Co., LTD.", "level": "PP Compliant", "category": "SSO", "certification_date": "2025-03-07", "enhanced": { "product": "KSignAccess V5.0", "cc_version": "CC:2022 R1", "assurance_level": "PP Compliant", "certification_date": "2025-03-07", "expiration_date": "2030-03-07", "product_type": "SSO", "cert_id": "KECS-CISS-1342-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002554", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002556", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002559", "protection_profile": "Korean National Protection Profile for Single Sign On V3.0", "developer": "KSign Co., LTD.", "holder": "KSign Co., LTD." } }, { "product": "DocuRay x v3.5", "cert_id": "KECS-CISS-1341-2025", "product_link": "https://itscc.kr/certprod/view.do?product_id=1341&product_class=1", "vendor": "BlueMoonSoft Inc.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2025-03-04", "enhanced": { "product": "DocuRay x v3.5", "cc_version": "CC:2022 R1", "assurance_level": "PP Compliant", "certification_date": "2025-03-04", "expiration_date": "2030-03-04", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-1341-2025", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002552", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002549", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002550", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V3.0", "developer": "BlueMoonSoft Inc.", "holder": "BlueMoonSoft Inc." } }, { "product": "Sindoh MF2000, MF3000, MF4000, N630 Series", "cert_id": "KECS-CISS-1334-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1334&product_class=1", "vendor": "Sindoh Co., Ltd.", "level": "EAL2", "category": "Digital Multifunction Printer", "certification_date": "2024-11-13", "enhanced": { "product": "Sindoh MF2000, MF3000, MF4000, N630 Series", "cc_version": "CC V3.1 R5", "assurance_level": "EAL2", "certification_date": "2024-11-13", "expiration_date": "2029-11-13", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-1334-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002529", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002530", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002531", "protection_profile": "None", "developer": "Sindoh Co., Ltd.", "holder": "Sindoh Co., Ltd." } }, { "product": "D'Guard v5.0", "cert_id": "KECS-CISS-1333-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1333&product_class=1", "vendor": "INEB Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2024-10-25", "enhanced": { "product": "D'Guard v5.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-10-25", "expiration_date": "2029-10-25", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1333-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002524", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002525", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002526", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "INEB Inc.", "holder": "INEB Inc." } }, { "product": "Petra Cipher V4.0", "cert_id": "KECS-CISS-1332-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1332&product_class=1", "vendor": "Parataxis Ethereum, Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2024-10-22", "enhanced": { "product": "Petra Cipher V4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-10-22", "expiration_date": "2029-10-22", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1332-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002520", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002522", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002729", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "Parataxis Ethereum, Inc.", "holder": "Parataxis Ethereum, Inc." } }, { "product": "Hancom xDB V5.0", "cert_id": "KECS-CISS-1330-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1330&product_class=1", "vendor": "Hancom With Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2024-10-04", "enhanced": { "product": "Hancom xDB V5.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-10-04", "expiration_date": "2029-10-04", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1330-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002512", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002514", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002515", "protection_profile": "Korean National Protection Profile for Database Encryption V3.0", "developer": "Hancom With Inc.", "holder": "Hancom With Inc." } }, { "product": "Echelon V4.5", "cert_id": "KECS-CISS-1329-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1329&product_class=1", "vendor": "UbimInfo Co., Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2024-09-27", "enhanced": { "product": "Echelon V4.5", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-09-27", "expiration_date": "2029-09-27", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1329-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002508", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002509", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002510", "protection_profile": "Korean National Protection Profile for Database Encryption V3.0", "developer": "UbimInfo Co., Ltd.", "holder": "UbimInfo Co., Ltd." } }, { "product": "Magic SSO V4.5", "cert_id": "KECS-CISS-1326-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1326&product_class=1", "vendor": "Dream Security Co., Ltd.", "level": "PP Compliant", "category": "SSO", "certification_date": "2024-08-29", "enhanced": { "product": "Magic SSO V4.5", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-08-29", "expiration_date": "2029-08-29", "product_type": "SSO", "cert_id": "KECS-CISS-1326-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002499", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002500", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002503", "protection_profile": "Korean National Protection Profile for Single Sign On V3.0", "developer": "Dream Security Co., Ltd.", "holder": "Dream Security Co., Ltd." } }, { "product": "KOMSCO JK72 V1.0", "cert_id": "KECS-ISIS-1324-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1324&product_class=1", "vendor": "KOMSCO", "level": "EAL5+", "category": "Java card platform", "certification_date": "2024-08-12", "enhanced": { "product": "KOMSCO JK72 V1.0", "cc_version": "CC V3.1 R5", "assurance_level": "EAL5+", "certification_date": "2024-08-12", "expiration_date": "2029-08-12", "product_type": "Java card platform", "cert_id": "KECS-ISIS-1324-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002490", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002491", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002493", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO", "holder": "KOMSCO" } }, { "product": "iSIGN+ v4.0", "cert_id": "KECS-CISS-1323-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1323&product_class=1", "vendor": "Penta Security Inc.", "level": "PP Compliant", "category": "SSO", "certification_date": "2024-08-12", "enhanced": { "product": "iSIGN+ v4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-08-12", "expiration_date": "2029-08-12", "product_type": "SSO", "cert_id": "KECS-CISS-1323-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002487", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002488", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002492", "protection_profile": "Korean National Protection Profile for Single Sign On V3.0", "developer": "Penta Security Inc.", "holder": "Penta Security Inc." } }, { "product": "KSignSecureDB V3.7", "cert_id": "KECS-CISS-1321-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1321&product_class=1", "vendor": "KSign Co., LTD.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2024-08-02", "enhanced": { "product": "KSignSecureDB V3.7", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-08-02", "expiration_date": "2029-08-02", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1321-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002478", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002479", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002480", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "KSign Co., LTD.", "holder": "KSign Co., LTD." } }, { "product": "SafeDB V4.1", "cert_id": "KECS-CISS-1317-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1317&product_class=1", "vendor": "INITECH Co., Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2024-06-28", "enhanced": { "product": "SafeDB V4.1", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-06-28", "expiration_date": "2029-06-28", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1317-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002466", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002467", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002470", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "INITECH Co., Ltd.", "holder": "INITECH Co., Ltd." } }, { "product": "MagicDBPlus v2.0 SP1", "cert_id": "KECS-CISS-1308-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1308&product_class=1", "vendor": "Dreamsecurity Co., Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2024-06-25", "enhanced": { "product": "MagicDBPlus v2.0 SP1", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-06-25", "expiration_date": "2029-06-25", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1308-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002420", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002421", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002469", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "Dreamsecurity Co., Ltd.", "holder": "Dreamsecurity Co., Ltd." } }, { "product": "FilingBox MEGA2 v2", "cert_id": "KECS-CISS-1298-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1298&product_class=1", "vendor": "Namusoft Co., Ltd.", "level": "EAL1", "category": "etc", "certification_date": "2024-03-28", "enhanced": { "product": "FilingBox MEGA2 v2", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2024-03-28", "expiration_date": "2029-03-28", "product_type": "etc", "cert_id": "KECS-CISS-1298-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002392", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002393", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002398", "protection_profile": "None", "developer": "Namusoft Co., Ltd.", "holder": "Namusoft Co., Ltd." } }, { "product": "Document SAFER Blue 3", "cert_id": "KECS-CISS-1293-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1293&product_class=1", "vendor": "MarkAny Inc.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2024-02-26", "enhanced": { "product": "Document SAFER Blue 3", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-02-26", "expiration_date": "2029-02-26", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-1293-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002379", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002373", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002378", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0 Assurance maintenance1", "developer": "MarkAny Inc.", "holder": "MarkAny Inc." } }, { "product": "Smart TV Security Solution V8.0 for Samsung Knox", "cert_id": "KECS-CISS-1291-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1291&product_class=1", "vendor": "Samsung Electronics Co,. Ltd", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2024-02-23", "enhanced": { "product": "Smart TV Security Solution V8.0 for Samsung Knox", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2024-02-23", "expiration_date": "2029-02-23", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-1291-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002362", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002364", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002374", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd", "holder": "Samsung Electronics Co,. Ltd" } }, { "product": "Pass-Ni SSO v5.0", "cert_id": "KECS-CISS-1288-2024", "product_link": "https://itscc.kr/certprod/view.do?product_id=1288&product_class=1", "vendor": "UbiNtisLab Co., Ltd", "level": "PP Compliant", "category": "SSO", "certification_date": "2024-02-07", "enhanced": { "product": "Pass-Ni SSO v5.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2024-02-07", "expiration_date": "2029-02-07", "product_type": "SSO", "cert_id": "KECS-CISS-1288-2024", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002354", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002357", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002358", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0 Assurance maintenance1", "developer": "UbiNtisLab Co., Ltd", "holder": "UbiNtisLab Co., Ltd" } }, { "product": "CubeOne V3.0", "cert_id": "KECS-CISS-1276-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1276&product_class=1", "vendor": "eGlobal Systems Co., LTD.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2023-11-29", "enhanced": { "product": "CubeOne V3.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-11-29", "expiration_date": "2028-11-29", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1276-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002321", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002322", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002323", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "eGlobal Systems Co., LTD.", "holder": "eGlobal Systems Co., LTD." } }, { "product": "INISAFE Nexess V4.3", "cert_id": "KECS-CISS-1270-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1270&product_class=1", "vendor": "INITECH Co., Ltd.", "level": "PP Compliant", "category": "SSO", "certification_date": "2023-10-19", "enhanced": { "product": "INISAFE Nexess V4.3", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-10-19", "expiration_date": "2028-10-19", "product_type": "SSO", "cert_id": "KECS-CISS-1270-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002300", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002301", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002302", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0 Assurance maintenance1", "developer": "INITECH Co., Ltd.", "holder": "INITECH Co., Ltd." } }, { "product": "HDS v1.0", "cert_id": "KECS-CISS-1268-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1268&product_class=1", "vendor": "HD Korea Shipbuilding & Offshore Engineering Co., Ltd.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2023-10-16", "enhanced": { "product": "HDS v1.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-10-16", "expiration_date": "2028-10-16", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-1268-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002291", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002292", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002295", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0 Assurance maintenance1", "developer": "HD Korea Shipbuilding & Offshore Engineering Co., Ltd.", "holder": "HD Korea Shipbuilding & Offshore Engineering Co., Ltd." } }, { "product": "D'Amo v5.0", "cert_id": "KECS-CISS-1246-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1246&product_class=1", "vendor": "Penta Security Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2023-06-15", "enhanced": { "product": "D'Amo v5.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-06-15", "expiration_date": "2028-06-15", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1246-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002214", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002215", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002306", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "Penta Security Inc.", "holder": "Penta Security Inc." } }, { "product": "TouchEn Wiseaccess v1.4", "cert_id": "KECS-CISS-1244-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1244&product_class=1", "vendor": "RaonSecure Co., Ltd.", "level": "PP Compliant", "category": "SSO", "certification_date": "2023-06-02", "enhanced": { "product": "TouchEn Wiseaccess v1.4", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-06-02", "expiration_date": "2028-06-02", "product_type": "SSO", "cert_id": "KECS-CISS-1244-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002272", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002206", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002205", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0 Assurance maintenance1", "developer": "RaonSecure Co., Ltd.", "holder": "RaonSecure Co., Ltd." } }, { "product": "OTACToken V1.0", "cert_id": "KECS-CISS-1237-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1237&product_class=1", "vendor": "SSenStone Inc.", "level": "EAL1+", "category": "etc", "certification_date": "2023-05-03", "enhanced": { "product": "OTACToken V1.0", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1+", "certification_date": "2023-05-03", "expiration_date": "2028-05-03", "product_type": "etc", "cert_id": "KECS-CISS-1237-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002268", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002177", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002181", "protection_profile": "None", "developer": "SSenStone Inc.", "holder": "SSenStone Inc." } }, { "product": "ubCUBE v3.7", "cert_id": "KECS-CISS-1236-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1236&product_class=1", "vendor": "Iqpad, Inc.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2023-04-28", "enhanced": { "product": "ubCUBE v3.7", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-04-28", "expiration_date": "2028-04-28", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-1236-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002271", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002174", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002182", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0 Assurance maintenance1", "developer": "Iqpad, Inc.", "holder": "Iqpad, Inc." } }, { "product": "Echelon V3.5", "cert_id": "KECS-CISS-1218-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1218&product_class=1", "vendor": "UbimInfoCo., Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2023-03-17", "enhanced": { "product": "Echelon V3.5", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-03-17", "expiration_date": "2028-03-17", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1218-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002098", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002123", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002183", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "UbimInfoCo., Ltd.", "holder": "UbimInfoCo., Ltd." } }, { "product": "PrivacyDB V2.1", "cert_id": "KECS-CISS-1210-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1210&product_class=1", "vendor": "OWL Systems Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2023-01-10", "enhanced": { "product": "PrivacyDB V2.1", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-01-10", "expiration_date": "2028-01-10", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1210-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002065", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002066", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002069", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "OWL Systems Inc.", "holder": "OWL Systems Inc." } }, { "product": "FED 5 SP1", "cert_id": "KECS-CISS-1207-2023", "product_link": "https://itscc.kr/certprod/view.do?product_id=1207&product_class=1", "vendor": "Fasoo Co., Ltd.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2023-01-02", "enhanced": { "product": "FED 5 SP1", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2023-01-02", "expiration_date": "2028-01-02", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-1207-2023", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002267", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002056", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002063", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0 Assurance maintenance1", "developer": "Fasoo Co., Ltd.", "holder": "Fasoo Co., Ltd." } }, { "product": "Document Security V6.0", "cert_id": "KECS-CISS-1203-2022", "product_link": "https://itscc.kr/certprod/view.do?product_id=1203&product_class=1", "vendor": "SoftCamp Co., Ltd.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2022-12-14", "enhanced": { "product": "Document Security V6.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2022-12-14", "expiration_date": "2027-12-14", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-1203-2022", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002266", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002038", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002053", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0 Assurance maintenance1", "developer": "SoftCamp Co., Ltd.", "holder": "SoftCamp Co., Ltd." } }, { "product": "Smart TV Security Solution V7.0 for Samsung Knox", "cert_id": "KECS-CISS-1190-2022", "product_link": "https://itscc.kr/certprod/view.do?product_id=1190&product_class=1", "vendor": "SAMSUNG ELECTRONICS Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2022-11-01", "enhanced": { "product": "Smart TV Security Solution V7.0 for Samsung Knox", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2022-11-01", "expiration_date": "2027-11-01", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-1190-2022", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002004", "target_link": "https://itscc.kr/file/download.do?file=KPR100000002005", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002035", "protection_profile": "None", "developer": "SAMSUNG ELECTRONICS Co., Ltd.", "holder": "SAMSUNG ELECTRONICS Co., Ltd." } }, { "product": "Spiceware DBE v2.0", "cert_id": "KECS-CISS-1182-2022", "product_link": "https://itscc.kr/certprod/view.do?product_id=1182&product_class=1", "vendor": "AhnLab, Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2022-09-02", "enhanced": { "product": "Spiceware DBE v2.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2022-09-02", "expiration_date": "2027-09-02", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1182-2022", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001971", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001972", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002399", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "Spiceware Co., Ltd.", "holder": "AhnLab, Inc." } }, { "product": "LG App Monitoring Security Solution V1.0 for webOS TV", "cert_id": "KECS-CISS-1174-2022", "product_link": "https://itscc.kr/certprod/view.do?product_id=1174&product_class=1", "vendor": "LG ELECTRONICS Co., Ltd.", "level": "EAL2", "category": "Smart TV Security Solution", "certification_date": "2022-06-23", "enhanced": { "product": "LG App Monitoring Security Solution V1.0 for webOS TV", "cc_version": "CC V3.1 R5", "assurance_level": "EAL2", "certification_date": "2022-06-23", "expiration_date": "2027-06-23", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-1174-2022", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001946", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001954", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001953", "protection_profile": "None", "developer": "LG ELECTRONICS Co., Ltd.", "holder": "LG ELECTRONICS Co., Ltd." } }, { "product": "KSignAccess V4.1", "cert_id": "KECS-CISS-1153-2022", "product_link": "https://itscc.kr/certprod/view.do?product_id=1153&product_class=1", "vendor": "KSign Co., LTD.", "level": "PP Compliant", "category": "SSO", "certification_date": "2022-03-30", "enhanced": { "product": "KSignAccess V4.1", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2022-03-30", "expiration_date": "2027-03-30", "product_type": "SSO", "cert_id": "KECS-CISS-1153-2022", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002265", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001891", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001894", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0 Assurance maintenance1", "developer": "KSign Co., LTD.", "holder": "KSign Co., LTD." } }, { "product": "Sindoh MF2000, MF3000, MF4000, N620 Series", "cert_id": "KECS-CISS-1147-2022", "product_link": "https://itscc.kr/certprod/view.do?product_id=1147&product_class=1", "vendor": "Sindoh Co., Ltd.", "level": "EAL2", "category": "Digital Multifunction Printer", "certification_date": "2022-01-20", "enhanced": { "product": "Sindoh MF2000, MF3000, MF4000, N620 Series", "cc_version": "CC V3.1 R5", "assurance_level": "EAL2", "certification_date": "2022-01-20", "expiration_date": "2027-01-20", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-1147-2022", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001866", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001867", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001882", "protection_profile": "None", "developer": "Sindoh Co., Ltd.", "holder": "Sindoh Co., Ltd." } }, { "product": "XSmart e-Passport V1.5 BAC with AA on M7892", "cert_id": "KECS-ISIS-1140-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1140&product_class=1", "vendor": "LG CNS", "level": "EAL4+", "category": "e-Passport", "certification_date": "2021-12-23", "enhanced": { "product": "XSmart e-Passport V1.5 BAC with AA on M7892", "cc_version": "CC V3.1 R5", "assurance_level": "EAL4+", "certification_date": "2021-12-23", "expiration_date": "2026-12-23", "product_type": "e-Passport", "cert_id": "KECS-ISIS-1140-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001846", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001847", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001855", "protection_profile": "Common Criteria Protection Profile, \"ICAO Application\" Basic Access Control, BSI-CC-PP-0055(Version 1.10, March 25, 2009)", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "XSmart e-Passport V1.5 EAC with PACE on M7892", "cert_id": "KECS-ISIS-1139-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1139&product_class=1", "vendor": "LG CNS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2021-12-23", "enhanced": { "product": "XSmart e-Passport V1.5 EAC with PACE on M7892", "cc_version": "CC V3.1 R5", "assurance_level": "EAL5+", "certification_date": "2021-12-23", "expiration_date": "2026-12-23", "product_type": "e-Passport", "cert_id": "KECS-ISIS-1139-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001843", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001844", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001852", "protection_profile": "Common Criteria Protection Profile Machine Readable Trabel Document using Standard Inspection Procedure with PACE (PACE PP) Version 1.01, (BSI-CC-PP-0068-V2-2011-MA-01,2014.07.22)", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "Smart TV Security Solution V6.0 for Samsung Knox", "cert_id": "KECS-CISS-1136-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1136&product_class=1", "vendor": "Samsung Electronics Co., Ltd", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2021-11-22", "enhanced": { "product": "Smart TV Security Solution V6.0 for Samsung Knox", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2021-11-22", "expiration_date": "2026-11-22", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-1136-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001828", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001829", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001830", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd", "holder": "Samsung Electronics Co., Ltd" } }, { "product": "SafeIdentity v5.1", "cert_id": "KECS-CISS-1133-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1133&product_class=1", "vendor": "HancomWITH Inc.", "level": "PP Compliant", "category": "SSO", "certification_date": "2021-11-05", "enhanced": { "product": "SafeIdentity v5.1", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2021-11-05", "expiration_date": "2026-11-05", "product_type": "SSO", "cert_id": "KECS-CISS-1133-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001817", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001818", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001831", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0 Assurance maintenance1", "developer": "HancomWITH Inc.", "holder": "HancomWITH Inc." } }, { "product": "D'Amo Agent v4.0", "cert_id": "KECS-CISS-1132-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1132&product_class=1", "vendor": "Penta Security Systems Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2021-11-04", "enhanced": { "product": "D'Amo Agent v4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2021-11-04", "expiration_date": "2026-11-04", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1132-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001811", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001812", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001832", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "Penta Security Systems Inc.", "holder": "Penta Security Systems Inc." } }, { "product": "Bandi SSO v7.0", "cert_id": "KECS-CISS-1122-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1122&product_class=1", "vendor": "Bandi S&C Co., Ltd", "level": "PP Compliant", "category": "SSO", "certification_date": "2021-09-08", "enhanced": { "product": "Bandi SSO v7.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2021-09-08", "expiration_date": "2026-09-08", "product_type": "SSO", "cert_id": "KECS-CISS-1122-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001782", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001783", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001784", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0 Assurance maintenance1", "developer": "Bandi S&C Co., Ltd", "holder": "Bandi S&C Co., Ltd" } }, { "product": "KOMSCO JK31 V1.1 on M7892", "cert_id": "KECS-ISIS-1113-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1113&product_class=1", "vendor": "KOMSCO", "level": "EAL5+", "category": "Java card platform", "certification_date": "2021-07-29", "enhanced": { "product": "KOMSCO JK31 V1.1 on M7892", "cc_version": "CC V3.1 R5", "assurance_level": "EAL5+", "certification_date": "2021-07-29", "expiration_date": "2026-07-29", "product_type": "Java card platform", "cert_id": "KECS-ISIS-1113-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001747", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001748", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001785", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO", "holder": "KOMSCO" } } ], "ARCHIVED": [ { "product": "HEDES v1.0", "cert_id": "KECS-CISS-1084-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1084&product_class=4", "vendor": "HumaneSystem Co., Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2021-03-17", "enhanced": { "product": "HEDES v1.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2021-03-17", "expiration_date": "2026-03-17", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1084-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002264", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001659", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001753", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "HumaneSystem Co., Ltd.", "holder": "HumaneSystem Co., Ltd." } }, { "product": "ShadowCube V7.0", "cert_id": "KECS-CISS-1080-2021", "product_link": "https://itscc.kr/certprod/view.do?product_id=1080&product_class=4", "vendor": "Duruan Co., Ltd", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2021-03-09", "enhanced": { "product": "ShadowCube V7.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2021-03-09", "expiration_date": "2026-03-09", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-1080-2021", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001648", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001649", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001650", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0 Assurance maintenance1", "developer": "Duruan Co., Ltd", "holder": "Duruan Co., Ltd" } }, { "product": "KSignSecureDB V3.6", "cert_id": "KECS-CISS-1059-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1059&product_class=4", "vendor": "KSign Co., LTD.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2020-12-03", "enhanced": { "product": "KSignSecureDB V3.6", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2020-12-03", "expiration_date": "2025-12-03", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1059-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001618", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001619", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001651", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "KSign Co., LTD.", "holder": "KSign Co., LTD." } }, { "product": "CubeOne V2.5 SP1", "cert_id": "KECS-CISS-1054-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1054&product_class=4", "vendor": "eGlobal Systems Co., ltd", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2020-11-26", "enhanced": { "product": "CubeOne V2.5 SP1", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2020-11-26", "expiration_date": "2025-11-26", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1054-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002263", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001612", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001652", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0", "developer": "eGlobal Systems Co., ltd", "holder": "eGlobal Systems Co., ltd" } }, { "product": "Smart TV Security Solution V5.0 for Samsung Knox", "cert_id": "KECS-CISS-1047-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1047&product_class=4", "vendor": "Samsung Electronics Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2020-10-08", "enhanced": { "product": "Smart TV Security Solution V5.0 for Samsung Knox", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2020-10-08", "expiration_date": "2025-10-08", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-1047-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001596", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001597", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001600", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "Samsung Electronics Co., Ltd." } }, { "product": "EdgeDB v4.0", "cert_id": "KECS-CISS-1046-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1046&product_class=4", "vendor": "SECUCEN", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2020-10-06", "enhanced": { "product": "EdgeDB v4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2020-10-06", "expiration_date": "2025-10-06", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1046-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001593", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001594", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001601", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "SECUCEN", "holder": "SECUCEN" } }, { "product": "MagicDBPlus v2.0", "cert_id": "KECS-CISS-1042-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1042&product_class=4", "vendor": "Dreamsecurity", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2020-09-08", "enhanced": { "product": "MagicDBPlus v2.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2020-09-08", "expiration_date": "2025-09-08", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1042-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001581", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001582", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001589", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "Dreamsecurity", "holder": "Dreamsecurity" } }, { "product": "Samsung Multifunction MultiXpress K4250, K4300, K4350, K401, X4220, X4250, X4300, X401, X400, K7400, K7500, K7600, X7400, X7500, X7600, X704, X706, K705, K706 Series", "cert_id": "KECS-CISS-1035-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1035&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2020-08-26", "enhanced": { "product": "Samsung Multifunction MultiXpress K4250, K4300, K4350, K401, X4220, X4250, X4300, X401, X400, K7400, K7500, K7600, X7400, X7500, X7600, X704, X706, K705, K706 Series", "cc_version": "CC V3.1 R5", "assurance_level": "EAL2+", "certification_date": "2020-08-26", "expiration_date": "2025-08-26", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-1035-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001569", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001570", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001577", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "HP Printing Korea Co., Ltd", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung Multifunction MultiXpress K4250, K4300, K4350, K401, X4220, X4250, X4300, X401, X400, K7400, K7500, K7600, X7400, X7500, X7600, X704, X706, K705, K706 Series Assurance maintenance1", "certification_date": "2023-11-09", "cert_id": "KECS-CISS-1035a-2020", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001712", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001713" } ] } }, { "product": "KOMSCO JK62 V1.0", "cert_id": "KECS-ISIS-1031-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1031&product_class=4", "vendor": "KOMSCO", "level": "EAL5+", "category": "Java card platform", "certification_date": "2020-08-04", "enhanced": { "product": "KOMSCO JK62 V1.0", "cc_version": "CC V3.1 R5", "assurance_level": "EAL5+", "certification_date": "2020-08-04", "expiration_date": "2025-08-04", "product_type": "Java card platform", "cert_id": "KECS-ISIS-1031-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001561", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001563", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001578", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO", "holder": "KOMSCO", "maintenance_update": [ { "name": "KOMSCO JK62 V1.0 Assurance maintenance1", "certification_date": "2023-08-04", "cert_id": "KECS-ISIS-1031a-2020", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001699", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001700" }, { "name": "KOMSCO JK62 V1.0 Assurance maintenance2", "certification_date": "2024-04-23", "cert_id": "KECS-ISIS-1031b-2020", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001745", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001746" } ] } }, { "product": "D'Guard v3.0", "cert_id": "KECS-CISS-1016-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1016&product_class=4", "vendor": "INEB Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2020-05-20", "enhanced": { "product": "D'Guard v3.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2020-05-20", "expiration_date": "2025-05-20", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1016-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001533", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001534", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001542", "protection_profile": "국가용 데이터베이스 암호화 보호프로파일 V1.0 Assurance maintenance1", "developer": "INEB Inc.", "holder": "INEB Inc." } }, { "product": "Petra Cipher V3.2", "cert_id": "KECS-CISS-1003-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=1003&product_class=4", "vendor": "SINSIWAY Co., LTD.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2020-04-02", "enhanced": { "product": "Petra Cipher V3.2", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2020-04-02", "expiration_date": "2025-04-02", "product_type": "DB Encryption", "cert_id": "KECS-CISS-1003-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002262", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001516", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001541", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0 Assurance maintenance1", "developer": "SINSIWAY Co., LTD.", "holder": "SINSIWAY Co., LTD." } }, { "product": "Samsung SDS Database Encryption v1.0", "cert_id": "KECS-CISS-0998-2020", "product_link": "https://itscc.kr/certprod/view.do?product_id=998&product_class=4", "vendor": "Samsung SDS Co., Ltd", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2020-03-03", "enhanced": { "product": "Samsung SDS Database Encryption v1.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2020-03-03", "expiration_date": "2025-03-03", "product_type": "DB Encryption", "cert_id": "KECS-CISS-0998-2020", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001503", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001504", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001508", "protection_profile": "국가용 데이터베이스 암호화 보호프로파일 V1.0 Assurance maintenance1", "developer": "Samsung SDS Co., Ltd", "holder": "Samsung SDS Co., Ltd" } }, { "product": "Magic SSO V4.0", "cert_id": "KECS-CISS-0977-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=977&product_class=4", "vendor": "Dreamsecurity Co., Ltd.", "level": "PP Compliant", "category": "SSO", "certification_date": "2019-11-15", "enhanced": { "product": "Magic SSO V4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-11-15", "expiration_date": "2024-11-15", "product_type": "SSO", "cert_id": "KECS-CISS-0977-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002261", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001471", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001490", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0", "developer": "Dreamsecurity Co., Ltd.", "holder": "Dreamsecurity Co., Ltd.", "maintenance_update": [ { "name": "Magic SSO V4.0 Assurance maintenance1", "certification_date": "2022-12-08", "cert_id": "KECS-CISS-0977a-2019", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001648", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001649" } ] } }, { "product": "Hancom xDB V2.8", "cert_id": "KECS-CISS-0976-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=976&product_class=4", "vendor": "Hancom With Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2019-11-15", "enhanced": { "product": "Hancom xDB V2.8", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-11-15", "expiration_date": "2024-11-15", "product_type": "DB Encryption", "cert_id": "KECS-CISS-0976-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001467", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001468", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001491", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0", "developer": "Hancom With Inc.", "holder": "Hancom With Inc." } }, { "product": "Document Security V5.0", "cert_id": "KECS-CISS-0969-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=969&product_class=4", "vendor": "SoftCamp Co., Ltd.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2019-11-05", "enhanced": { "product": "Document Security V5.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-11-05", "expiration_date": "2024-11-05", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-0969-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001457", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001458", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001461", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0", "developer": "SoftCamp Co., Ltd.", "holder": "SoftCamp Co., Ltd." } }, { "product": "Smart TV Security Solution V4.0 for Samsung Knox", "cert_id": "KECS-CISS-0963-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=963&product_class=4", "vendor": "Samsung Electronics Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2019-10-10", "enhanced": { "product": "Smart TV Security Solution V4.0 for Samsung Knox", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2019-10-10", "expiration_date": "2024-10-10", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-0963-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001447", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001448", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001453", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "Samsung Electronics Co., Ltd." } }, { "product": "Document SAFER Blue 2", "cert_id": "KECS-CISS-0962-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=962&product_class=4", "vendor": "MarkAny Inc.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2019-09-26", "enhanced": { "product": "Document SAFER Blue 2", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-09-26", "expiration_date": "2024-09-26", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-0962-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001443", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001444", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001445", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0", "developer": "MarkAny Inc.", "holder": "MarkAny Inc." } }, { "product": "KSignSecureDB V3.5", "cert_id": "KECS-CISS-0958-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=958&product_class=4", "vendor": "KSign Co., LTD.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2019-08-27", "enhanced": { "product": "KSignSecureDB V3.5", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-08-27", "expiration_date": "2024-08-27", "product_type": "DB Encryption", "cert_id": "KECS-CISS-0958-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001425", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001426", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001427", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0", "developer": "KSign Co., LTD.", "holder": "KSign Co., LTD." } }, { "product": "D'Amo v4.0", "cert_id": "KECS-CISS-0939-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=939&product_class=4", "vendor": "Penta Security System Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2019-06-25", "enhanced": { "product": "D'Amo v4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-06-25", "expiration_date": "2024-06-25", "product_type": "DB Encryption", "cert_id": "KECS-CISS-0939-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002260", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001389", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001403", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0", "developer": "Penta Security System Inc.", "holder": "Penta Security System Inc." } }, { "product": "KCOS e-Passport Version 5.0 - SAC, EAC and AA on S3D350A Family", "cert_id": "KECS-ISIS-0937-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=937&product_class=4", "vendor": "KOMSCO", "level": "EAL5+", "category": "e-Passport", "certification_date": "2019-06-18", "enhanced": { "product": "KCOS e-Passport Version 5.0 - SAC, EAC and AA on S3D350A Family", "cc_version": "CC V3.1 R5", "assurance_level": "EAL5+", "certification_date": "2019-06-18", "expiration_date": "2024-06-18", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0937-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001383", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001384", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001401", "protection_profile": "Common Criteria Protection Profile Machine Readable Trabel Document using Standard Inspection Procedure with PACE (PACE PP) Version 1.01, (BSI-CC-PP-0068-V2-2011-MA-01,2014.07.22)", "developer": "KOMSCO", "holder": "KOMSCO" } }, { "product": "KCOS e-Passport Version 5.0 - BAC and AA on S3D350A Family", "cert_id": "KECS-ISIS-0936-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=936&product_class=4", "vendor": "KOMSCO", "level": "EAL4+", "category": "e-Passport", "certification_date": "2019-06-18", "enhanced": { "product": "KCOS e-Passport Version 5.0 - BAC and AA on S3D350A Family", "cc_version": "CC V3.1 R5", "assurance_level": "EAL4+", "certification_date": "2019-06-18", "expiration_date": "2024-06-18", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0936-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001380", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001381", "protection_profile": "Common Criteria Protection Profile, \"ICAO Application\" Basic Access Control, BSI-CC-PP-0055(Version 1.10, March 25, 2009)", "developer": "KOMSCO", "holder": "KOMSCO" } }, { "product": "ZombieZERO Inspector V4.0", "cert_id": "KECS-CISS-0927-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=927&product_class=4", "vendor": "NPCore, Inc.", "level": "EAL2", "category": "etc", "certification_date": "2019-04-23", "enhanced": { "product": "ZombieZERO Inspector V4.0", "cc_version": "CC V3.1 R5", "assurance_level": "EAL2", "certification_date": "2019-04-23", "expiration_date": "2024-04-23", "product_type": "etc", "cert_id": "KECS-CISS-0927-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000892", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000894", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000002077", "protection_profile": "None", "developer": "NPCore, Inc.", "holder": "NPCore, Inc." } }, { "product": "ISign+ v3.0", "cert_id": "KECS-CISS-0924-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=924&product_class=4", "vendor": "Penta Security Inc.", "level": "PP Compliant", "category": "SSO", "certification_date": "2019-04-10", "enhanced": { "product": "ISign+ v3.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-04-10", "expiration_date": "2024-04-10", "product_type": "SSO", "cert_id": "KECS-CISS-0924-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002258", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000897", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001509", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0", "developer": "Penta Security Inc.", "holder": "Penta Security Inc." } }, { "product": "SafeDB V4.0", "cert_id": "KECS-CISS-0921-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=921&product_class=4", "vendor": "INITECH Co., Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2019-03-11", "enhanced": { "product": "SafeDB V4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-03-11", "expiration_date": "2024-03-11", "product_type": "DB Encryption", "cert_id": "KECS-CISS-0921-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000898", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000900", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001608", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0", "developer": "INITECH Co., Ltd.", "holder": "INITECH Co., Ltd." } }, { "product": "CubeOne V2.5", "cert_id": "KECS-CISS-0919-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=919&product_class=4", "vendor": "eGlobal Systems Co., Ltd.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2019-03-04", "enhanced": { "product": "CubeOne V2.5", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-03-04", "expiration_date": "2024-03-04", "product_type": "DB Encryption", "cert_id": "KECS-CISS-0919-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000901", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000903", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000902", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0", "developer": "eGlobal Systems Co., Ltd.", "holder": "eGlobal Systems Co., Ltd." } }, { "product": "Pass-Ni SSO v4.0", "cert_id": "KECS-CISS-0918-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=918&product_class=4", "vendor": "UbiNtisLab Co., Ltd.", "level": "PP Compliant", "category": "SSO", "certification_date": "2019-03-04", "enhanced": { "product": "Pass-Ni SSO v4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-03-04", "expiration_date": "2024-03-04", "product_type": "SSO", "cert_id": "KECS-CISS-0918-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000904", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000906", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000905", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0", "developer": "UbiNtisLab Co., Ltd.", "holder": "UbiNtisLab Co., Ltd." } }, { "product": "PrivacyDB V2.0", "cert_id": "KECS-CISS-0913-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=913&product_class=4", "vendor": "OWL Systems Inc.", "level": "PP Compliant", "category": "DB Encryption", "certification_date": "2019-02-21", "enhanced": { "product": "PrivacyDB V2.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-02-21", "expiration_date": "2024-02-21", "product_type": "DB Encryption", "cert_id": "KECS-CISS-0913-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000907", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000909", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000908", "protection_profile": "Korean National Protection Profile for Database Encryption V1.0", "developer": "OWL Systems Inc.", "holder": "OWL Systems Inc." } }, { "product": "KSignAccess V4.0", "cert_id": "KECS-CISS-0908-2019", "product_link": "https://itscc.kr/certprod/view.do?product_id=908&product_class=4", "vendor": "KSign Co., LTD.", "level": "PP Compliant", "category": "SSO", "certification_date": "2019-01-11", "enhanced": { "product": "KSignAccess V4.0", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2019-01-11", "expiration_date": "2024-01-11", "product_type": "SSO", "cert_id": "KECS-CISS-0908-2019", "report_link": "https://itscc.kr/file/download.do?file=KPR100000002259", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000912", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000911", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0", "developer": "KSign Co., LTD.", "holder": "KSign Co., LTD." } }, { "product": "Smart TV Security Solution V3.0 for Samsung Knox", "cert_id": "KECS-CISS-0903-2018", "product_link": "https://itscc.kr/certprod/view.do?product_id=903&product_class=4", "vendor": "Samsung Electronics Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2018-11-08", "enhanced": { "product": "Smart TV Security Solution V3.0 for Samsung Knox", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2018-11-08", "expiration_date": "2023-11-08", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-0903-2018", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000913", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000915", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000914", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "Samsung Electronics Co., Ltd." } }, { "product": "TouchEn wiseaccess v1.3", "cert_id": "KECS-CISS-0893-2018", "product_link": "https://itscc.kr/certprod/view.do?product_id=893&product_class=4", "vendor": "RaonSecure Co., Ltd.", "level": "PP Compliant", "category": "SSO", "certification_date": "2018-09-20", "enhanced": { "product": "TouchEn wiseaccess v1.3", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2018-09-20", "expiration_date": "2023-09-20", "product_type": "SSO", "cert_id": "KECS-CISS-0893-2018", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000922", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000924", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000923", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0", "developer": "RaonSecure Co., Ltd.", "holder": "RaonSecure Co., Ltd." } }, { "product": "INISAFE Nexess V4", "cert_id": "KECS-CISS-0885-2018", "product_link": "https://itscc.kr/certprod/view.do?product_id=885&product_class=4", "vendor": "INITECH", "level": "PP Compliant", "category": "SSO", "certification_date": "2018-08-20", "enhanced": { "product": "INISAFE Nexess V4", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2018-08-20", "expiration_date": "2023-08-20", "product_type": "SSO", "cert_id": "KECS-CISS-0885-2018", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000925", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000927", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001607", "protection_profile": "Korean National Protection Profile for Single Sign On V1.0", "developer": "INITECH", "holder": "INITECH" } }, { "product": "FED 5", "cert_id": "KECS-CISS-0858-2018", "product_link": "https://itscc.kr/certprod/view.do?product_id=858&product_class=4", "vendor": "Fasoo.com Inc.", "level": "PP Compliant", "category": "Electronic Document Encryption", "certification_date": "2018-03-27", "enhanced": { "product": "FED 5", "cc_version": "CC V3.1 R5", "assurance_level": "PP Compliant", "certification_date": "2018-03-27", "expiration_date": "2023-03-27", "product_type": "Electronic Document Encryption", "cert_id": "KECS-CISS-0858-2018", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000928", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000930", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000929", "protection_profile": "Korean National Protection Profile for Electronic Document Encryption V1.0", "developer": "Fasoo.com Inc.", "holder": "Fasoo.com Inc." } }, { "product": "Smart TV Security Solution V2.0 for Samsung Knox", "cert_id": "KECS-CISS-0846-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=846&product_class=4", "vendor": "Samsung Electronics Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2017-12-27", "enhanced": { "product": "Smart TV Security Solution V2.0 for Samsung Knox", "cc_version": "CC V3.1 R5", "assurance_level": "EAL1", "certification_date": "2017-12-27", "expiration_date": "2022-12-27", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-0846-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000931", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000933", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000932", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "Samsung Electronics Co., Ltd." } }, { "product": "Samsung Multifunction M4560, M4562 Series", "cert_id": "KECS-CISS-0828-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=828&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2017-09-19", "enhanced": { "product": "Samsung Multifunction M4560, M4562 Series", "cc_version": "CC V3.1 R5", "assurance_level": "EAL2+", "certification_date": "2017-09-19", "expiration_date": "2022-09-19", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0828-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000934", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000936", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000935", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "S-Printing Solution Co., Ltd.", "holder": "HP Inc." } }, { "product": "KT Secure Vault V1.0", "cert_id": "KECS-CISS-0811-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=811&product_class=4", "vendor": "KT Corp.", "level": "EAL1", "category": "etc", "certification_date": "2017-07-26", "enhanced": { "product": "KT Secure Vault V1.0", "cc_version": "CC V3.1 R4", "assurance_level": "EAL1", "certification_date": "2017-07-26", "expiration_date": "2022-07-26", "product_type": "etc", "cert_id": "KECS-CISS-0811-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000940", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000942", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000941", "protection_profile": "None", "developer": "KT Corp.", "holder": "KT Corp." } }, { "product": "KOMSCO JK41 V1.0 KOR on S3FT9PS", "cert_id": "KECS-ISIS-0799-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=799&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL5+", "category": "Java card platform", "certification_date": "2017-06-21", "enhanced": { "product": "KOMSCO JK41 V1.0 KOR on S3FT9PS", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2017-06-21", "expiration_date": "2022-06-21", "product_type": "Java card platform", "cert_id": "KECS-ISIS-0799-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000943", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000945", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000944", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd." } }, { "product": "KOMSCO JK41 V1.0 ADV on S3FT9PS", "cert_id": "KECS-ISIS-0798-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=798&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL5+", "category": "Java card platform", "certification_date": "2017-06-21", "enhanced": { "product": "KOMSCO JK41 V1.0 ADV on S3FT9PS", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2017-06-21", "expiration_date": "2022-06-21", "product_type": "Java card platform", "cert_id": "KECS-ISIS-0798-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000946", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000948", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000947", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd." } }, { "product": "KOMSCO JK41 V1.0 ESS on S3FT9PE/PS", "cert_id": "KECS-ISIS-0797-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=797&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL5+", "category": "Java card platform", "certification_date": "2017-06-21", "enhanced": { "product": "KOMSCO JK41 V1.0 ESS on S3FT9PE/PS", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2017-06-21", "expiration_date": "2022-06-21", "product_type": "Java card platform", "cert_id": "KECS-ISIS-0797-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000949", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000951", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000950", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd." } }, { "product": "PAS-K V2.2", "cert_id": "KECS-NISS-0792-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=792&product_class=4", "vendor": "PIOLINK, Inc.", "level": "PP Compliant", "category": "Network Device", "certification_date": "2017-05-31", "enhanced": { "product": "PAS-K V2.2", "cc_version": "CC V3.1 R4", "assurance_level": "PP Compliant", "certification_date": "2017-05-31", "expiration_date": "2022-05-31", "product_type": "Network Device", "cert_id": "KECS-NISS-0792-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000952", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000954", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000953", "protection_profile": "Korean National Protection Profile for Network Device V1.1", "developer": "PIOLINK, Inc.", "holder": "PIOLINK, Inc.", "maintenance_update": [ { "name": "PAS-K V2.2 Assurance maintenance1", "certification_date": "2017-10-12", "cert_id": "KECS-NISS-0792a-2017", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001226" }, { "name": "PAS-K V2.2 Assurance maintenance2", "certification_date": "2019-05-07", "cert_id": "KECS-NISS-0792b-2017", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001235", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001236" } ] } }, { "product": "PersonalUTM 1.0 for wiz stick 1.0", "cert_id": "KECS-CISS-0788-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=788&product_class=4", "vendor": "KT Corp.", "level": "EAL1", "category": "etc", "certification_date": "2017-05-02", "enhanced": { "product": "PersonalUTM 1.0 for wiz stick 1.0", "cc_version": "CC V3.1 R4", "assurance_level": "EAL1", "certification_date": "2017-05-02", "expiration_date": "2022-05-02", "product_type": "etc", "cert_id": "KECS-CISS-0788-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000955", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000957", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000956", "protection_profile": "None", "developer": "KT Corp.", "holder": "KT Corp." } }, { "product": "Sindoh MF2000, MF3000, MF4000, N610, N410 Series", "cert_id": "KECS-CISS-0786-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=786&product_class=4", "vendor": "Sindoh Co., Ltd.", "level": "EAL2", "category": "Digital Multifunction Printer", "certification_date": "2017-04-21", "enhanced": { "product": "Sindoh MF2000, MF3000, MF4000, N610, N410 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2", "certification_date": "2017-04-21", "expiration_date": "2022-04-21", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0786-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000958", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000960", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000959", "protection_profile": "None", "developer": "Sindoh Co., Ltd.", "holder": "Sindoh Co., Ltd." } }, { "product": "Application Security Solution V1.0 for LG webOS TV", "cert_id": "KECS-CISS-0783-2017", "product_link": "https://itscc.kr/certprod/view.do?product_id=783&product_class=4", "vendor": "LG Electronics, Inc.", "level": "EAL2", "category": "Smart TV Security Solution", "certification_date": "2017-04-19", "enhanced": { "product": "Application Security Solution V1.0 for LG webOS TV", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2", "certification_date": "2017-04-19", "expiration_date": "2022-04-19", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-0783-2017", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000961", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000963", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000962", "protection_profile": "None", "developer": "LG Electronics, Inc.", "holder": "LG Electronics, Inc." } }, { "product": "Samsung Smart TV Security Solution V1.0", "cert_id": "KECS-CISS-0741-2016", "product_link": "https://itscc.kr/certprod/view.do?product_id=741&product_class=4", "vendor": "Samsung Electronics Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2016-08-30", "enhanced": { "product": "Samsung Smart TV Security Solution V1.0", "cc_version": "CC V3.1 R4", "assurance_level": "EAL1", "certification_date": "2016-08-30", "expiration_date": "2021-08-30", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-0741-2016", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000964", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000966", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000965", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "Samsung Electronics Co., Ltd." } }, { "product": "Samsung Multifunction X704, X706, K705, K706, M5360, C4060, C4062 Series", "cert_id": "KECS-CISS-0731-2016", "product_link": "https://itscc.kr/certprod/view.do?product_id=731&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2016-08-01", "enhanced": { "product": "Samsung Multifunction X704, X706, K705, K706, M5360, C4060, C4062 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2016-08-01", "expiration_date": "2021-08-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0731-2016", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000967", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000969", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000968", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc." } }, { "product": "Samsung Multifunction MultiXpress X3220, X3280, K3250, K3300 Series", "cert_id": "KECS-CISS-0690-2016", "product_link": "https://itscc.kr/certprod/view.do?product_id=690&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2016-01-21", "enhanced": { "product": "Samsung Multifunction MultiXpress X3220, X3280, K3250, K3300 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2016-01-21", "expiration_date": "2021-01-21", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0690-2016", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000970", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000972", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000971", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung Multifunction MultiXpress X3220, X3280, K3250, K3300 Series Assurance maintenance1", "certification_date": "2016-07-22", "cert_id": "KECS-CISS-0690a-2016", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001224", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001225" } ] } }, { "product": "Samsung Smart TV Security Solution GAIA V1.0", "cert_id": "KECS-CISS-0689-2016", "product_link": "https://itscc.kr/certprod/view.do?product_id=689&product_class=4", "vendor": "Samsung Electronics Co., Ltd.", "level": "EAL1", "category": "Smart TV Security Solution", "certification_date": "2016-01-21", "enhanced": { "product": "Samsung Smart TV Security Solution GAIA V1.0", "cc_version": "CC V3.1 R4", "assurance_level": "EAL1", "certification_date": "2016-01-21", "expiration_date": "2021-01-21", "product_type": "Smart TV Security Solution", "cert_id": "KECS-CISS-0689-2016", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000973", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000975", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000974", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "Samsung Electronics Co., Ltd." } }, { "product": "XSmart e-Passport V1.4 EAC with SAC on M7892", "cert_id": "KECS-ISIS-0677-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=677&product_class=4", "vendor": "LG CNS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2015-12-15", "enhanced": { "product": "XSmart e-Passport V1.4 EAC with SAC on M7892", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2015-12-15", "expiration_date": "2020-12-15", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0677-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000976", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000978", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000977", "protection_profile": "Common Criteria Protection Profile, \"ICAO Application\" Extended Access Control with PACE (EAC PP), BSI-CC-PP0056-V2-2012(Version 1.3.2, December 5, 2012)", "developer": "LG CNS", "holder": "LG CNS", "maintenance_update": [ { "name": "XSmart e-Passport V1.4 EAC with SAC on M7892 Assurance maintenance1", "certification_date": "2017-12-20", "cert_id": "KECS-ISIS-0677a-2015", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001222", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001223" } ] } }, { "product": "XSmart e-Passport V1.4 BAC with AA on M7892", "cert_id": "KECS-ISIS-0676-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=676&product_class=4", "vendor": "LG CNS", "level": "EAL4+", "category": "e-Passport", "certification_date": "2015-12-15", "enhanced": { "product": "XSmart e-Passport V1.4 BAC with AA on M7892", "cc_version": "CC V3.1 R4", "assurance_level": "EAL4+", "certification_date": "2015-12-15", "expiration_date": "2020-12-15", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0676-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001089", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001091", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001090", "protection_profile": "Common Criteria Protection Profile, \"ICAO Application\" Basic Access Control, BSI-CC-PP-0055(Version 1.10, March 25, 2009)", "developer": "LG CNS", "holder": "LG CNS", "maintenance_update": [ { "name": "XSmart e-Passport V1.4 BAC with AA on M7892 Assurance maintenance1", "certification_date": "2017-12-20", "cert_id": "KECS-ISIS-0676a-2015", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001220", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001221" } ] } }, { "product": "XSmart e-Passport V1.3 R3 on S3CT9KW/S3CT9KC/S3CT9K9", "cert_id": "KECS-ISIS-0675-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=675&product_class=4", "vendor": "LG CNS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2015-12-15", "enhanced": { "product": "XSmart e-Passport V1.3 R3 on S3CT9KW/S3CT9KC/S3CT9K9", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2015-12-15", "expiration_date": "2020-12-15", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0675-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001092", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001094", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001093", "protection_profile": "ePassport Protection Profile V2.1", "developer": "LG CNS", "holder": "LG CNS", "maintenance_update": [ { "name": "XSmart e-Passport V1.3 R3 on S3CT9KW/S3CT9KC/S3CT9K9 Assurance maintenance1", "certification_date": "2016-05-20", "cert_id": "KECS-ISIS-0675a-2015", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001218", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001219" } ] } }, { "product": "SAMSUNG SDS FIDO Server Solution V1.1", "cert_id": "KECS-ISIS-0645-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=645&product_class=4", "vendor": "Samsung SDS", "level": "EAL2", "category": "FIDO Authentication Solution", "certification_date": "2015-09-10", "enhanced": { "product": "SAMSUNG SDS FIDO Server Solution V1.1", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2", "certification_date": "2015-09-10", "expiration_date": "2020-09-10", "product_type": "FIDO Authentication Solution", "cert_id": "KECS-ISIS-0645-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001095", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001097", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001096", "protection_profile": "None", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "Samsung Multifunction ProXpress C2680, M4080 Series", "cert_id": "KECS-CISS-0644-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=644&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2015-09-09", "enhanced": { "product": "Samsung Multifunction ProXpress C2680, M4080 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2015-09-09", "expiration_date": "2020-09-09", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0644-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001098", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001100", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001099", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd", "holder": "HP Inc." } }, { "product": "AITHER v1.0", "cert_id": "KECS-NISS-0612-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=612&product_class=4", "vendor": "Korea Information Security System Co., Ltd", "level": "EAL2", "category": "Wireless AP", "certification_date": "2015-06-10", "enhanced": { "product": "AITHER v1.0", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2", "certification_date": "2015-06-10", "expiration_date": "2020-06-10", "product_type": "Wireless AP", "cert_id": "KECS-NISS-0612-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001101", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001103", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001102", "protection_profile": "None", "developer": "Korea Information Security System Co., Ltd", "holder": "Korea Information Security System Co., Ltd" } }, { "product": "Samsung Multifunction MultiXpress X7400, X7500, X7600, X703 Series", "cert_id": "KECS-CISS-0603-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=603&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2015-04-17", "enhanced": { "product": "Samsung Multifunction MultiXpress X7400, X7500, X7600, X703 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2015-04-17", "expiration_date": "2020-04-17", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0603-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001104", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001106", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001105", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc." } }, { "product": "Samsung Multifunction MultiXpress K7400, K7500, K7600, K7650, K703 Series", "cert_id": "KECS-CISS-0602-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=602&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2015-04-17", "enhanced": { "product": "Samsung Multifunction MultiXpress K7400, K7500, K7600, K7650, K703 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2015-04-17", "expiration_date": "2020-04-17", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0602-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001107", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001109", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001108", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc." } }, { "product": "KOMSCO JK31 V1.0 on M7892", "cert_id": "KECS-ISIS-0579-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=579&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL5+", "category": "Java card platform", "certification_date": "2015-01-22", "enhanced": { "product": "KOMSCO JK31 V1.0 on M7892", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2015-01-22", "expiration_date": "2020-01-22", "product_type": "Java card platform", "cert_id": "KECS-ISIS-0579-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001110", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001112", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001111", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd." } }, { "product": "Samsung Multifunction ProXpress M4580, M4583 Series", "cert_id": "KECS-CISS-0578-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=578&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2015-01-20", "enhanced": { "product": "Samsung Multifunction ProXpress M4580, M4583 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2015-01-20", "expiration_date": "2020-01-20", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0578-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001113", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001115", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001114", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc." } }, { "product": "Samsung Multifunction MultiXpress M4370, M5370, M5270 Series", "cert_id": "KECS-CISS-0577-2015", "product_link": "https://itscc.kr/certprod/view.do?product_id=577&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2015-01-20", "enhanced": { "product": "Samsung Multifunction MultiXpress M4370, M5370, M5270 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2015-01-20", "expiration_date": "2020-01-20", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0577-2015", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001116", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001118", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001117", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc." } }, { "product": "Samsung Multifunction MultiXpress X4220, X4250, X4300, X401, K4250, K4300, K4350, K401 Series", "cert_id": "KECS-CISS-0547-2014", "product_link": "https://itscc.kr/certprod/view.do?product_id=547&product_class=4", "vendor": "HP Inc.", "level": "EAL2+", "category": "Digital Multifunction Printer", "certification_date": "2014-11-13", "enhanced": { "product": "Samsung Multifunction MultiXpress X4220, X4250, X4300, X401, K4250, K4300, K4350, K401 Series", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2+", "certification_date": "2014-11-13", "expiration_date": "2019-11-13", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0547-2014", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001119", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001121", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001120", "protection_profile": "U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std.2600.2-2009)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung Multifunction MultiXpress X4220, X4250, X4300, X401, K4250, K4300, K4350, K401 Series Assurance maintenance1", "certification_date": "2016-07-22", "cert_id": "KECS-CISS-0547a-2014", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001216", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001217" } ] } }, { "product": "XSmart OpenPlatform V1.1 on S3CT9KW/S3CT9KC/S3CT9K9", "cert_id": "KECS-ISIS-0533-2014", "product_link": "https://itscc.kr/certprod/view.do?product_id=533&product_class=4", "vendor": "LG CNS", "level": "EAL4+", "category": "Java card platform", "certification_date": "2014-09-19", "enhanced": { "product": "XSmart OpenPlatform V1.1 on S3CT9KW/S3CT9KC/S3CT9K9", "cc_version": "CC V3.1 R4", "assurance_level": "EAL4+", "certification_date": "2014-09-19", "expiration_date": "2019-09-19", "product_type": "Java card platform", "cert_id": "KECS-ISIS-0533-2014", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001122", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001124", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001123", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "XSmart e-Passport V1.3 R2 on S3CT9KW/S3CT9KC/S3CT9K9", "cert_id": "KECS-ISIS-0513-2014", "product_link": "https://itscc.kr/certprod/view.do?product_id=513&product_class=4", "vendor": "LG CNS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2014-06-25", "enhanced": { "product": "XSmart e-Passport V1.3 R2 on S3CT9KW/S3CT9KC/S3CT9K9", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2014-06-25", "expiration_date": "2019-06-25", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0513-2014", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001128", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001130", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001129", "protection_profile": "ePassport Protection Profile V2.1", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "Samsung CLX-9252 CLX-9352 CLX-9258 CLX-9358 CLX-9821 CLX-9822 SCX-8230 SCX-8240 SCX-8238 SCX-8248 SCX-8821 SCX-8822 Multi-Function Printers", "cert_id": "KECS-CISS-0501-2014", "product_link": "https://itscc.kr/certprod/view.do?product_id=501&product_class=4", "vendor": "HP Inc.", "level": "EAL3+", "category": "Digital Multifunction Printer", "certification_date": "2014-04-21", "enhanced": { "product": "Samsung CLX-9252 CLX-9352 CLX-9258 CLX-9358 CLX-9821 CLX-9822 SCX-8230 SCX-8240 SCX-8238 SCX-8248 SCX-8821 SCX-8822 Multi-Function Printers", "cc_version": "CC V3.1 R4", "assurance_level": "EAL3+", "certification_date": "2014-04-21", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0501-2014", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001131", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001133", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001132", "protection_profile": "IEEE Std 2600.1-2009 (2600.1, Protection Profile for Hardcopy Devices, Operational Environment A, Version 1.0)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc." } }, { "product": "Samsung CLX-9201 CLX-9251 CLX-9301 CLX-9206 CLX-9256 CLX-9306 CLX-8650 CLX-8640 CLX-9811 CLX-9812 CLX-9813 SCX-8128 Multi-Function Printers", "cert_id": "KECS-CISS-0500-2014", "product_link": "https://itscc.kr/certprod/view.do?product_id=500&product_class=4", "vendor": "HP Inc.", "level": "EAL3+", "category": "Digital Multifunction Printer", "certification_date": "2014-04-21", "enhanced": { "product": "Samsung CLX-9201 CLX-9251 CLX-9301 CLX-9206 CLX-9256 CLX-9306 CLX-8650 CLX-8640 CLX-9811 CLX-9812 CLX-9813 SCX-8128 Multi-Function Printers", "cc_version": "CC V3.1 R4", "assurance_level": "EAL3+", "certification_date": "2014-04-21", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0500-2014", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001134", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001136", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001135", "protection_profile": "IEEE Std 2600.1-2009 (2600.1, Protection Profile for Hardcopy Devices, Operational Environment A, Version 1.0)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc." } }, { "product": "XSmart e-Passport V1.3 on S3CT9KW/S3CT9KC/S3CT9K9", "cert_id": "KECS-ISIS-0490-2014", "product_link": "https://itscc.kr/certprod/view.do?product_id=490&product_class=4", "vendor": "LG CNS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2014-02-17", "enhanced": { "product": "XSmart e-Passport V1.3 on S3CT9KW/S3CT9KC/S3CT9K9", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2014-02-17", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0490-2014", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001137", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001139", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001138", "protection_profile": "ePassport Protection Profile V2.1", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "KCOS e-Passport Version 3.0 S3FT9KS/KT/KF", "cert_id": "KECS-ISIS-0489-2014", "product_link": "https://itscc.kr/certprod/view.do?product_id=489&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL5+", "category": "ePassport + IDL", "certification_date": "2014-02-07", "enhanced": { "product": "KCOS e-Passport Version 3.0 S3FT9KS/KT/KF", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2014-02-07", "expiration_date": "2019-06-01", "product_type": "ePassport + IDL", "cert_id": "KECS-ISIS-0489-2014", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001140", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001142", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001141", "protection_profile": "ePassport Protection Profile V2.1", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd." } }, { "product": "KOMSCO JK21 V1.0 on S3CT9KA/KC/KW", "cert_id": "KECS-ISIS-0468-2013", "product_link": "https://itscc.kr/certprod/view.do?product_id=468&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL5+", "category": "Java card platform", "certification_date": "2013-11-08", "enhanced": { "product": "KOMSCO JK21 V1.0 on S3CT9KA/KC/KW", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2013-11-08", "expiration_date": "2019-06-01", "product_type": "Java card platform", "cert_id": "KECS-ISIS-0468-2013", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001143", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001145", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001144", "protection_profile": "Smart Card Open Platform Protection Profile V2.2", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd." } }, { "product": "AhnLab TrusGuard V2.2", "cert_id": "KECS-NISS-0459-2013", "product_link": "https://itscc.kr/certprod/view.do?product_id=459&product_class=4", "vendor": "AhnLab, Inc.", "level": "EAL2", "category": "FW+VPN", "certification_date": "2013-08-12", "enhanced": { "product": "AhnLab TrusGuard V2.2", "cc_version": "CC V3.1 R4", "assurance_level": "EAL2", "certification_date": "2013-08-12", "expiration_date": "2019-06-01", "product_type": "FW+VPN", "cert_id": "KECS-NISS-0459-2013", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001146", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001148", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001147", "protection_profile": "None", "developer": "AhnLab, Inc.", "holder": "AhnLab, Inc." } }, { "product": "SPass NX V1.0 R3 on S3CT9KW/S3CT9KC/S3CT9K9", "cert_id": "KECS-ISIS-0456-2013", "product_link": "https://itscc.kr/certprod/view.do?product_id=456&product_class=4", "vendor": "Samsung SDS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2013-07-05", "enhanced": { "product": "SPass NX V1.0 R3 on S3CT9KW/S3CT9KC/S3CT9K9", "cc_version": "CC V3.1 R4", "assurance_level": "EAL5+", "certification_date": "2013-07-05", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0456-2013", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001149", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001151", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001150", "protection_profile": "ePassport Protection Profile V2.1", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "SNIPER IPS-G V8.0", "cert_id": "KECS-NISS-0455-2013", "product_link": "https://itscc.kr/certprod/view.do?product_id=455&product_class=4", "vendor": "WINS Co., Ltd.", "level": "EAL4", "category": "IPS", "certification_date": "2013-06-21", "enhanced": { "product": "SNIPER IPS-G V8.0", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4", "certification_date": "2013-06-21", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0455-2013", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001152", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001154", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001153", "protection_profile": "None", "developer": "Wins Technet Co., Ltd.", "holder": "WINS Co., Ltd.", "maintenance_update": [ { "name": "SNIPER IPS-G V8.0 Assurance maintenance1", "certification_date": "2014-07-08", "cert_id": "KECS-NISS-0455a-2013", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001215" } ] } }, { "product": "KCOS e-Passport Version 2.1 S3CT9KW/KC/K9", "cert_id": "KECS-ISIS-0435-2013", "product_link": "https://itscc.kr/certprod/view.do?product_id=435&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL5+", "category": "e-Passport", "certification_date": "2013-01-28", "enhanced": { "product": "KCOS e-Passport Version 2.1 S3CT9KW/KC/K9", "cc_version": "CC V3.1 R3", "assurance_level": "EAL5+", "certification_date": "2013-01-28", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0435-2013", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001155", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001157", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001156", "protection_profile": "ePassport Protection Profile V2.1", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd.", "maintenance_update": [ { "name": "KCOS e-Passport Version 2.1 S3CT9KW/KC/K9 Assurance maintenance1", "certification_date": "2013-05-31", "cert_id": "KECS-ISIS-0435a-2013", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001213" } ] } }, { "product": "WAPPLES v4.0", "cert_id": "KECS-NISS-0426-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=426&product_class=4", "vendor": "Penta Security Systems Inc.", "level": "EAL4", "category": "Web Application Firewall", "certification_date": "2012-11-19", "enhanced": { "product": "WAPPLES v4.0", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4", "certification_date": "2012-11-19", "expiration_date": "2019-06-01", "product_type": "Web Application Firewall", "cert_id": "KECS-NISS-0426-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001161", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001163", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001162", "protection_profile": "None", "developer": "Penta Security Systems Inc.", "holder": "Penta Security Systems Inc.", "maintenance_update": [ { "name": "WAPPLES v4.0 Assurance maintenance1", "certification_date": "2013-03-18", "cert_id": "KECS-NISS-0426a-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001205", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001206" }, { "name": "WAPPLES v4.0 Assurance maintenance2", "certification_date": "2013-05-31", "cert_id": "KECS-NISS-0426b-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001207", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001208" }, { "name": "WAPPLES v4.0 Assurance maintenance3", "certification_date": "2014-07-15", "cert_id": "KECS-NISS-0426c-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001209", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001210" }, { "name": "WAPPLES v4.0 Assurance maintenance4", "certification_date": "2015-11-30", "cert_id": "KECS-NISS-0426d-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001211", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001212" } ] } }, { "product": "Ucard UBJ31-G11 V1.1", "cert_id": "KECS-ISIS-0419-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=419&product_class=4", "vendor": "UBIVELOX", "level": "EAL4+", "category": "Java card platform", "certification_date": "2012-10-31", "enhanced": { "product": "Ucard UBJ31-G11 V1.1", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4+", "certification_date": "2012-10-31", "expiration_date": "2019-06-01", "product_type": "Java card platform", "cert_id": "KECS-ISIS-0419-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001164", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001166", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001165", "protection_profile": "Java Card™ System Protection Profile Open Configuration, Version 2.6, 19 April 2010", "developer": "UBIVELOX", "holder": "UBIVELOX" } }, { "product": "SPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9", "cert_id": "KECS-ISIS-0394-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=394&product_class=4", "vendor": "Samsung SDS", "level": "EAL4+", "category": "e-Passport", "certification_date": "2012-06-15", "enhanced": { "product": "SPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4+", "certification_date": "2012-06-15", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0394-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001167", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001169", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001168", "protection_profile": "ePassport Protection Profile V2.1", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "Samsung SCX-8030 SCX-8040 SCX-8038 SCX-8048 CLX-9250 CLX-9350 CLX-9258 CLX-9358 Multi-Function Printers", "cert_id": "KECS-CISS-0385-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=385&product_class=4", "vendor": "HP Inc.", "level": "EAL3+", "category": "Digital Multifunction Printer", "certification_date": "2012-04-24", "enhanced": { "product": "Samsung SCX-8030 SCX-8040 SCX-8038 SCX-8048 CLX-9250 CLX-9350 CLX-9258 CLX-9358 Multi-Function Printers", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3+", "certification_date": "2012-04-24", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0385-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001170", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001172", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001171", "protection_profile": "IEEE Std 2600.1-2009 (2600.1, Protection Profile for Hardcopy Devices, Operational Environment A, Version 1.0)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung SCX-8030 SCX-8040 SCX-8038 SCX-8048 CLX-9250 CLX-9350 CLX-9258 CLX-9358 Multi-Function Printers Assurance maintenance1", "certification_date": "2013-06-21", "cert_id": "KECS-CISS-0385a-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001203", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001204" } ] } }, { "product": "Samsung SCX-5637FR/SCX-5639FR Control Software V2.00.03.00", "cert_id": "KECS-CISS-0380-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=380&product_class=4", "vendor": "HP Inc.", "level": "EAL3+", "category": "Digital Multifunction Printer", "certification_date": "2012-03-30", "enhanced": { "product": "Samsung SCX-5637FR/SCX-5639FR Control Software V2.00.03.00", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3+", "certification_date": "2012-03-30", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0380-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001173", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001175", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001174", "protection_profile": "IEEE Std 2600.1-2009 (2600.1, Protection Profile for Hardcopy Devices, Operational Environment A, Version 1.0)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung SCX-5637FR/SCX-5639FR Control Software V2.00.03.00 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0380a-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001201", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001202" } ] } }, { "product": "Samsung SCX-5737FW/SCX-5739FW Control Software V2.00.03.00", "cert_id": "KECS-CISS-0379-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=379&product_class=4", "vendor": "HP Inc.", "level": "EAL3+", "category": "Digital Multifunction Printer", "certification_date": "2012-03-30", "enhanced": { "product": "Samsung SCX-5737FW/SCX-5739FW Control Software V2.00.03.00", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3+", "certification_date": "2012-03-30", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0379-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001179", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001181", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001180", "protection_profile": "IEEE Std 2600.1-2009 (2600.1, Protection Profile for Hardcopy Devices, Operational Environment A, Version 1.0)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung SCX-5737FW/SCX-5739FW Control Software V2.00.03.00 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0379a-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001199", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001200" } ] } }, { "product": "SSCOS V1.0 on S3CC9LC", "cert_id": "KECS-ISIS-0378-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=378&product_class=4", "vendor": "Samsung SDS", "level": "EAL4+", "category": "e-Passport", "certification_date": "2012-03-30", "enhanced": { "product": "SSCOS V1.0 on S3CC9LC", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4+", "certification_date": "2012-03-30", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0378-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001182", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001184", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001183", "protection_profile": "ePassport Protection Profile V2.1", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "Samsung SCX-5835NX/SCX-6555NX/SCX-6545NX/CLX-8385NX/CLX-8540NX Control Software V2.00.03.00", "cert_id": "KECS-CISS-0365-2012", "product_link": "https://itscc.kr/certprod/view.do?product_id=365&product_class=4", "vendor": "HP Inc.", "level": "EAL3+", "category": "Digital Multifunction Printer", "certification_date": "2012-01-25", "enhanced": { "product": "Samsung SCX-5835NX/SCX-6555NX/SCX-6545NX/CLX-8385NX/CLX-8540NX Control Software V2.00.03.00", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3+", "certification_date": "2012-01-25", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0365-2012", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001185", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001187", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001186", "protection_profile": "IEEE Std 2600.1-2009 (2600.1, Protection Profile for Hardcopy Devices, Operational Environment A, Version 1.0)", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung SCX-5835NX/SCX-6555NX/SCX-6545NX/CLX-8385NX/CLX-8540NX Control Software V2.00.03.00 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0365a-2012", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001197", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001198" } ] } }, { "product": "Mobiledesk VPN v1.0", "cert_id": "KECS-NISS-0356-2011", "product_link": "https://itscc.kr/certprod/view.do?product_id=356&product_class=4", "vendor": "Samsung SDS", "level": "EAL3", "category": "VPN", "certification_date": "2011-12-29", "enhanced": { "product": "Mobiledesk VPN v1.0", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3", "certification_date": "2011-12-29", "expiration_date": "2019-06-01", "product_type": "VPN", "cert_id": "KECS-NISS-0356-2011", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001188", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001190", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001189", "protection_profile": "None", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "Chakra Max Core v2.0", "cert_id": "KECS-CISS-0355-2011", "product_link": "https://itscc.kr/certprod/view.do?product_id=355&product_class=4", "vendor": "WareValley", "level": "EAL4", "category": "DB Access Control", "certification_date": "2011-12-29", "enhanced": { "product": "Chakra Max Core v2.0", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4", "certification_date": "2011-12-29", "expiration_date": "2019-06-01", "product_type": "DB Access Control", "cert_id": "KECS-CISS-0355-2011", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001191", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001193", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001192", "protection_profile": "None", "developer": "WareValley", "holder": "WareValley" } }, { "product": "XSmart e-Passport V1.2", "cert_id": "KECS-ISIS-0319-2011", "product_link": "https://itscc.kr/certprod/view.do?product_id=319&product_class=4", "vendor": "LG CNS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2011-06-23", "enhanced": { "product": "XSmart e-Passport V1.2", "cc_version": "CC V3.1 R3", "assurance_level": "EAL5+", "certification_date": "2011-06-23", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0319-2011", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001194", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001196", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001195", "protection_profile": "ePassport Protection Profile V2.1", "developer": "LG CNS", "holder": "LG CNS", "maintenance_update": [ { "name": "XSmart e-Passport V1.2 Assurance maintenance1", "certification_date": "2011-07-04", "cert_id": "KECS-ISIS-0319a-2011", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001195", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001196" } ] } }, { "product": "KOMSCO JK11", "cert_id": "KECS-ISIS-0272-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=272&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL4+", "category": "SmartCard Operating System", "certification_date": "2010-10-12", "enhanced": { "product": "KOMSCO JK11", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4+", "certification_date": "2010-10-12", "expiration_date": "2019-06-01", "product_type": "SmartCard Operating System", "cert_id": "KECS-ISIS-0272-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001200", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001202", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001201", "protection_profile": "Smart Card Open Platform Protection Profile V2.1", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd." } }, { "product": "삼성SDS SPass V2.0", "cert_id": "KECS-ISIS-0271-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=271&product_class=4", "vendor": "Samsung SDS", "level": "EAL5+", "category": "ePassport COS", "certification_date": "2010-10-12", "enhanced": { "product": "삼성SDS SPass V2.0", "cc_version": "CC V3.1 R3", "assurance_level": "EAL5+", "certification_date": "2010-10-12", "expiration_date": "2019-06-01", "product_type": "ePassport COS", "cert_id": "KECS-ISIS-0271-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001203", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001205", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001204", "protection_profile": "ePassport Protection Profile V2.1", "developer": "Samsung SDS", "holder": "Samsung SDS", "maintenance_update": [ { "name": "SAMSUNG SDS SPass V2.0 Assurance maintenance1", "certification_date": "2010-12-30", "cert_id": "KECS-ISIS-0271a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001193", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001194" } ] } }, { "product": "Samsung MFP Security Kit Type_C V1.5", "cert_id": "KECS-CISS-0270-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=270&product_class=4", "vendor": "HP Inc.", "level": "EAL3", "category": "Digital Multifunction Printer", "certification_date": "2010-09-28", "enhanced": { "product": "Samsung MFP Security Kit Type_C V1.5", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3", "certification_date": "2010-09-28", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0270-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001206", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001208", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001207", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung MFP Security Kit Type_C V1.5 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0270a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001191", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001192" } ] } }, { "product": "Samsung MFP Security Kit Type_C V1.0", "cert_id": "KECS-CISS-0269-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=269&product_class=4", "vendor": "HP Inc.", "level": "EAL3", "category": "Digital Multifunction Printer", "certification_date": "2010-09-28", "enhanced": { "product": "Samsung MFP Security Kit Type_C V1.0", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3", "certification_date": "2010-09-28", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0269-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001209", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001211", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001210", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung MFP Security Kit Type_C V1.0 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0269a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001189", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001190" } ] } }, { "product": "Samsung MFP Security Kit Type_B V1.5", "cert_id": "KECS-CISS-0268-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=268&product_class=4", "vendor": "HP Inc.", "level": "EAL3", "category": "Digital Multifunction Printer", "certification_date": "2010-09-28", "enhanced": { "product": "Samsung MFP Security Kit Type_B V1.5", "cc_version": "CC V3.1 R3", "assurance_level": "EAL3", "certification_date": "2010-09-28", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0268-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001212", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001214", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001213", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung MFP Security Kit Type_B V1.5 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0268a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001187", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001188" } ] } }, { "product": "SK e-Pass V1.0", "cert_id": "KECS-ISIS-0254-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=254&product_class=4", "vendor": "SK C&C Co., Ltd.", "level": "EAL4+", "category": "e-Passport", "certification_date": "2010-07-22", "enhanced": { "product": "SK e-Pass V1.0", "cc_version": "CC V3.1 R3", "assurance_level": "EAL4+", "certification_date": "2010-07-22", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0254-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001215", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001217", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001216", "protection_profile": "ePassport Protection Profile V2.1", "developer": "SK C&C Co., Ltd.", "holder": "SK C&C Co., Ltd." } }, { "product": "XSmart e-Passport V1.1", "cert_id": "KECS-ISIS-0253-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=253&product_class=4", "vendor": "LG CNS", "level": "EAL5+", "category": "e-Passport", "certification_date": "2010-07-22", "enhanced": { "product": "XSmart e-Passport V1.1", "cc_version": "CC V3.1 R3", "assurance_level": "EAL5+", "certification_date": "2010-07-22", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0253-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001218", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001220", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001219", "protection_profile": "ePassport Protection Profile V2.1", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "Samsung MFP Security Kit Type_D V1.0", "cert_id": "KECS-CISS-0230-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=230&product_class=4", "vendor": "HP Inc.", "level": "EAL3", "category": "Digital Multifunction Printer", "certification_date": "2010-04-22", "enhanced": { "product": "Samsung MFP Security Kit Type_D V1.0", "cc_version": "CC V3.1 R2", "assurance_level": "EAL3", "certification_date": "2010-04-22", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0230-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001221", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001223", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001222", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung MFP Security Kit Type_D V1.0 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0230a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001185", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001186" } ] } }, { "product": "Samsung MFP Security Kit Type_B V1.0", "cert_id": "KECS-CISS-0229-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=229&product_class=4", "vendor": "HP Inc.", "level": "EAL3", "category": "Digital Multifunction Printer", "certification_date": "2010-04-22", "enhanced": { "product": "Samsung MFP Security Kit Type_B V1.0", "cc_version": "CC V3.1 R2", "assurance_level": "EAL3", "certification_date": "2010-04-22", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0229-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001224", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001226", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001225", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung MFP Security Kit Type_B V1.0 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0229a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001183", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001184" } ] } }, { "product": "Samsung MFP Security Kit Type_A V2.0", "cert_id": "KECS-CISS-0228-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=228&product_class=4", "vendor": "HP Inc.", "level": "EAL3", "category": "Digital Multifunction Printer", "certification_date": "2010-04-22", "enhanced": { "product": "Samsung MFP Security Kit Type_A V2.0", "cc_version": "CC V3.1 R2", "assurance_level": "EAL3", "certification_date": "2010-04-22", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0228-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001227", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001229", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001228", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung MFP Security Kit Type_A V2.0 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0228a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001181", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001182" } ] } }, { "product": "Samsung MFP Security Kit Type_A V1.5", "cert_id": "KECS-CISS-0227-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=227&product_class=4", "vendor": "HP Inc.", "level": "EAL3", "category": "Digital Multifunction Printer", "certification_date": "2010-04-22", "enhanced": { "product": "Samsung MFP Security Kit Type_A V1.5", "cc_version": "CC V3.1 R2", "assurance_level": "EAL3", "certification_date": "2010-04-22", "expiration_date": "2019-06-01", "product_type": "Digital Multifunction Printer", "cert_id": "KECS-CISS-0227-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001230", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001232", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001231", "protection_profile": "None", "developer": "Samsung Electronics Co., Ltd.", "holder": "HP Inc.", "maintenance_update": [ { "name": "Samsung MFP Security Kit Type_A V1.5 Assurance maintenance1", "certification_date": "2013-07-05", "cert_id": "KECS-CISS-0227a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001179", "target_link": "https://itscc.kr/file/download.do?file=KPR200000001180" } ] } }, { "product": "삼성 SDS SPass V1.1", "cert_id": "KECS-ISIS-0223-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=223&product_class=4", "vendor": "Samsung SDS", "level": "EAL4+", "category": "e-Passport", "certification_date": "2010-03-19", "enhanced": { "product": "삼성 SDS SPass V1.1", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2010-03-19", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0223-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001233", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001235", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001234", "protection_profile": "ePassport Protection Profile V1.0", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "KCOS e-Passport V1.1 S3CC9 LC/GC/GW", "cert_id": "KECS-ISIS-0222-2010", "product_link": "https://itscc.kr/certprod/view.do?product_id=222&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL4+", "category": "e-Passport", "certification_date": "2010-03-19", "enhanced": { "product": "KCOS e-Passport V1.1 S3CC9 LC/GC/GW", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2010-03-19", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0222-2010", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001236", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001238", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001237", "protection_profile": "ePassport Protection Profile V1.0", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd.", "maintenance_update": [ { "name": "KCOS e-Passport V1.1 S3CC9 LC/GC/GW Assurance maintenance1", "certification_date": "2010-07-15", "cert_id": "KECS-ISIS-0222a-2010", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001178" } ] } }, { "product": "XSmart OpenPlatform V1.0", "cert_id": "KECS-ISIS-0189-2009", "product_link": "https://itscc.kr/certprod/view.do?product_id=189&product_class=4", "vendor": "LG CNS", "level": "EAL4+", "category": "Smartcard OS & App", "certification_date": "2009-09-08", "enhanced": { "product": "XSmart OpenPlatform V1.0", "cc_version": "CC V3.1 R2", "assurance_level": "EAL4+", "certification_date": "2009-09-08", "expiration_date": "2019-06-01", "product_type": "Smartcard OS & App", "cert_id": "KECS-ISIS-0189-2009", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001242", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001244", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001243", "protection_profile": "Smart Card Open Platform Protection Profile V2.0", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "S3FS91J/S3FS91H/S3FS91V/S3FS93I 32-bits RISC Microcontroller for SmartCard with SWP", "cert_id": "KECS-ISIS-0162-2009", "product_link": "https://itscc.kr/certprod/view.do?product_id=162&product_class=4", "vendor": "Samsung Electronics", "level": "EAL4+", "category": "Smartcard", "certification_date": "2009-05-04", "enhanced": { "product": "S3FS91J/S3FS91H/S3FS91V/S3FS93I 32-bits RISC Microcontroller for SmartCard with SWP", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2009-05-04", "expiration_date": "2019-06-01", "product_type": "Smartcard", "cert_id": "KECS-ISIS-0162-2009", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001245", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001247", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001246", "protection_profile": "Smartcard IC Platform Protection Profile, Version 1.0, July 2001, BSI-PP-0002", "developer": "Samsung Electronics", "holder": "Samsung Electronics" } }, { "product": "WEBS-RAY V2.5", "cert_id": "KECS-NISS-0137-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=137&product_class=4", "vendor": "TrinitySoft Co., Ltd.", "level": "EAL4", "category": "Web Application Firewall", "certification_date": "2008-12-22", "enhanced": { "product": "WEBS-RAY V2.5", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2008-12-22", "expiration_date": "2019-06-01", "product_type": "Web Application Firewall", "cert_id": "KECS-NISS-0137-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001248", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001250", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001249", "protection_profile": "None", "developer": "TrinitySoft Co., Ltd.", "holder": "TrinitySoft Co., Ltd.", "maintenance_update": [ { "name": "WEBS-RAY V2.5 Assurance maintenance1", "certification_date": "2009-06-24", "cert_id": "KECS-NISS-0137a-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001170" }, { "name": "WEBS-RAY V2.5 Assurance maintenance2", "certification_date": "2010-10-29", "cert_id": "KECS-NISS-0137b-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001171" }, { "name": "WEBS-RAY V2.5 Assurance maintenance3", "certification_date": "2011-08-03", "cert_id": "KECS-NISS-0137c-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001172" }, { "name": "WEBS-RAY V2.5 Assurance maintenance5", "certification_date": "2011-12-19", "cert_id": "KECS-NISS-0137e-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001174" }, { "name": "WEBS-RAY V2.5 Assurance maintenance4", "certification_date": "2011-12-19", "cert_id": "KECS-NISS-0137d-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001173" }, { "name": "WEBS-RAY V2.5 Assurance maintenance6", "certification_date": "2012-04-16", "cert_id": "KECS-NISS-0137f-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001175" }, { "name": "WEBS-RAY V2.5 Assurance maintenance7", "certification_date": "2012-07-31", "cert_id": "KECS-NISS-0137g-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001176" }, { "name": "WEBS-RAY V2.5 Assurance maintenance8", "certification_date": "2012-08-20", "cert_id": "KECS-NISS-0137h-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001177" }, { "name": "WEBS-RAY V2.5 Assurance maintenance9", "certification_date": "2012-10-05", "cert_id": "KECS-NISS-0137i-2008" } ] } }, { "product": "AhnLab Suhoshin Absolute v3.0", "cert_id": "KECS-NISS-0136-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=136&product_class=4", "vendor": "AhnLab, Inc.", "level": "EAL4", "category": "FW", "certification_date": "2008-12-22", "enhanced": { "product": "AhnLab Suhoshin Absolute v3.0", "cc_version": "CC V3.1 R2", "assurance_level": "EAL4", "certification_date": "2008-12-22", "expiration_date": "2019-06-01", "product_type": "FW", "cert_id": "KECS-NISS-0136-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001251", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001253", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001252", "protection_profile": "Firewall Protection Profile V2.0", "developer": "AhnLab, Inc.", "holder": "AhnLab, Inc.", "maintenance_update": [ { "name": "AhnLab Suhoshin Absolute v3.0 Assurance maintenance1", "certification_date": "2009-11-27", "cert_id": "KECS-NISS-0136b-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001169" } ] } }, { "product": "삼성 SDS SPass V1.0", "cert_id": "KECS-ISIS-0120-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=120&product_class=4", "vendor": "Samsung SDS", "level": "EAL4+", "category": "e-Passport", "certification_date": "2008-09-24", "enhanced": { "product": "삼성 SDS SPass V1.0", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2008-09-24", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0120-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001259", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001260", "protection_profile": "ePassport Protection Profile V1.0", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "XSmart e-Passport V1.0", "cert_id": "KECS-ISIS-0119-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=119&product_class=4", "vendor": "LG CNS", "level": "EAL4+", "category": "e-Passport", "certification_date": "2008-09-24", "enhanced": { "product": "XSmart e-Passport V1.0", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2008-09-24", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0119-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001261", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001263", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001262", "protection_profile": "ePassport Protection Profile V1.0", "developer": "LG CNS", "holder": "LG CNS", "maintenance_update": [ { "name": "XSmart e-Passport V1.0 Assurance maintenance1", "certification_date": "2010-05-07", "cert_id": "KECS-ISIS-0119b-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001168" } ] } }, { "product": "KCOS e-Passport Version 1.0", "cert_id": "KECS-ISIS-0118-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=118&product_class=4", "vendor": "KOMSCO Co., Ltd.", "level": "EAL4+", "category": "e-Passport", "certification_date": "2008-09-24", "enhanced": { "product": "KCOS e-Passport Version 1.0", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2008-09-24", "expiration_date": "2019-06-01", "product_type": "e-Passport", "cert_id": "KECS-ISIS-0118-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001264", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001266", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001265", "protection_profile": "ePassport Protection Profile V1.0", "developer": "KOMSCO Co., Ltd.", "holder": "KOMSCO Co., Ltd.", "maintenance_update": [ { "name": "KCOS e-Passport Version 1.0 Assurance maintenance1", "certification_date": "2010-06-25", "cert_id": "KECS-ISIS-0118a-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001167" } ] } }, { "product": "S3FS91J/S3FS91H/S3FS91V", "cert_id": "KECS-ISIS-0117-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=117&product_class=4", "vendor": "Samsung Electronics", "level": "EAL4+", "category": "Smartcard", "certification_date": "2008-09-24", "enhanced": { "product": "S3FS91J/S3FS91H/S3FS91V", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2008-09-24", "expiration_date": "2019-06-01", "product_type": "Smartcard", "cert_id": "KECS-ISIS-0117-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001267", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001269", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001268", "protection_profile": "Smartcard IC Platform Protection Profile, Version 1.0, July 2001, BSI-PP-0002", "developer": "Samsung Electronics", "holder": "Samsung Electronics", "maintenance_update": [ { "name": "S3FS91J/S3FS91H/S3FS91V Assurance maintenance1", "certification_date": "2008-12-30", "cert_id": "KECS-ISIS-0117a-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001166" } ] } }, { "product": "OfficeServ 7400 GWIMC", "cert_id": "KECS-NISS-0108-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=108&product_class=4", "vendor": "Samsung Electronics", "level": "EAL3+", "category": "FW+VPN", "certification_date": "2008-07-16", "enhanced": { "product": "OfficeServ 7400 GWIMC", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2008-07-16", "expiration_date": "2019-06-01", "product_type": "FW+VPN", "cert_id": "KECS-NISS-0108-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001273", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001275", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001274", "protection_profile": "Virtual Private Network Protection Profile V1.2", "developer": "Inopia Corp.", "holder": "Samsung Electronics" } }, { "product": "eXshield V1.0.1.R", "cert_id": "KECS-NISS-0105-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=105&product_class=4", "vendor": "Samsung Networks", "level": "EAL4", "category": "IPS", "certification_date": "2008-06-13", "enhanced": { "product": "eXshield V1.0.1.R", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2008-06-13", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0105-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001276", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001278", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001277", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "Secui.com", "holder": "Samsung Networks", "maintenance_update": [ { "name": "eXshield V1.0.1.R Assurance maintenance1", "certification_date": "2009-09-18", "cert_id": "KECS-NISS-0105a-2008", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001165" } ] } }, { "product": "RedCastle v3.0 for Asianux Server 3", "cert_id": "KECS-CISS-0104-2008", "product_link": "https://itscc.kr/certprod/view.do?product_id=104&product_class=4", "vendor": "REDGATE Co., Ltd.", "level": "EAL4", "category": "LBAC+RBAC", "certification_date": "2008-04-30", "enhanced": { "product": "RedCastle v3.0 for Asianux Server 3", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2008-04-30", "expiration_date": "2019-06-01", "product_type": "LBAC+RBAC", "cert_id": "KECS-CISS-0104-2008", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001279", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001281", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001280", "protection_profile": "None", "developer": "REDGATE Co., Ltd.", "holder": "REDGATE Co., Ltd." } }, { "product": "SNIPER IPS V6.0.e", "cert_id": "KECS-NISS-0083-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=83&product_class=4", "vendor": "WINS Co., Ltd.", "level": "EAL4", "category": "IPS", "certification_date": "2007-12-21", "enhanced": { "product": "SNIPER IPS V6.0.e", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2007-12-21", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0083-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001282", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001284", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001283", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "Nowcom Co., Ltd.", "holder": "WINS Co., Ltd.", "maintenance_update": [ { "name": "SNIPER IPS V6.0.e Assurance maintenance1", "certification_date": "2010-07-07", "cert_id": "KECS-NISS-0083a-2007" } ] } }, { "product": "RedCastle v2.0 for Windows", "cert_id": "KECS-CISS-0082-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=82&product_class=4", "vendor": "REDGATE Co., Ltd.", "level": "EAL3+", "category": "LBAC", "certification_date": "2007-12-21", "enhanced": { "product": "RedCastle v2.0 for Windows", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2007-12-21", "expiration_date": "2019-06-01", "product_type": "LBAC", "cert_id": "KECS-CISS-0082-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001291", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001293", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001292", "protection_profile": "Label-based Access Control System Protection Profile for Government V1.1", "developer": "REDGATE Co., Ltd.", "holder": "REDGATE Co., Ltd." } }, { "product": "REDOWL SecuOS V4.0 for MS Windows 2003", "cert_id": "KECS-CISS-0070-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=70&product_class=4", "vendor": "Hauri, Inc.", "level": "EAL3+", "category": "LBAC", "certification_date": "2007-06-22", "enhanced": { "product": "REDOWL SecuOS V4.0 for MS Windows 2003", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2007-06-22", "expiration_date": "2019-06-01", "product_type": "LBAC", "cert_id": "KECS-CISS-0070-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001300", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001302", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001301", "protection_profile": "Label-based Access Control System Protection Profile for Government V1.1", "developer": "TSonNet Co., Ltd.", "holder": "Hauri, Inc." } }, { "product": "NXG IPS 6000 V1.6", "cert_id": "KECS-NISS-0069-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=69&product_class=4", "vendor": "SECUI, Inc.", "level": "EAL4", "category": "IPS", "certification_date": "2007-06-22", "enhanced": { "product": "NXG IPS 6000 V1.6", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2007-06-22", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0069-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001303", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001305", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001304", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "Secui.com", "holder": "SECUI, Inc." } }, { "product": "SECUINXG V1.6", "cert_id": "KECS-NISS-0068-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=68&product_class=4", "vendor": "SECUI, Inc.", "level": "EAL4", "category": "IPS", "certification_date": "2007-06-22", "enhanced": { "product": "SECUINXG V1.6", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2007-06-22", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0068-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001306", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001308", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001307", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "Secui.com", "holder": "SECUI, Inc." } }, { "product": "SafezoneIPSⓤ V1.0(SZ240U)", "cert_id": "KECS-NISS-0066-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=66&product_class=4", "vendor": "LG CNS", "level": "EAL4", "category": "IPS", "certification_date": "2007-04-05", "enhanced": { "product": "SafezoneIPSⓤ V1.0(SZ240U)", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2007-04-05", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0066-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001312", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001314", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001313", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "SafezoneIPSⓤ V1.0(SZ5XU)", "cert_id": "KECS-NISS-0065-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=65&product_class=4", "vendor": "LG CNS", "level": "EAL4", "category": "IPS", "certification_date": "2007-04-05", "enhanced": { "product": "SafezoneIPSⓤ V1.0(SZ5XU)", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2007-04-05", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0065-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001315", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001317", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001316", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "LG CNS", "holder": "LG CNS", "maintenance_update": [ { "name": "SafezoneIPSⓤ V1.0(SZ5XU) Assurance maintenance1", "certification_date": "2011-02-05", "cert_id": "KECS-NISS-0065a-2007" } ] } }, { "product": "REDOWL SecuOS V4.0 for RHEL4", "cert_id": "KECS-CISS-0060-2007", "product_link": "https://itscc.kr/certprod/view.do?product_id=60&product_class=4", "vendor": "Hauri, Inc.", "level": "EAL3+", "category": "LBAC", "certification_date": "2007-01-05", "enhanced": { "product": "REDOWL SecuOS V4.0 for RHEL4", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2007-01-05", "expiration_date": "2019-06-01", "product_type": "LBAC", "cert_id": "KECS-CISS-0060-2007", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001325", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001327", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001326", "protection_profile": "Label-based Access Control System Protection Profile for Government V1.1", "developer": "TSonNet Co., Ltd.", "holder": "Hauri, Inc.", "maintenance_update": [ { "name": "REDOWL SecuOS V4.0 for RHEL4 Assurance maintenance1", "certification_date": "2011-04-06", "cert_id": "KECS-CISS-0060a-2007" } ] } }, { "product": "TESS TMS V4.5", "cert_id": "KECS-NISS-0059-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=59&product_class=4", "vendor": "KORNIC GLORY", "level": "EAL4", "category": "IPS", "certification_date": "2006-12-22", "enhanced": { "product": "TESS TMS V4.5", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2006-12-22", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0059-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001328", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001330", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001329", "protection_profile": "None", "developer": "INFOSEC Technologies Co., Ltd.", "holder": "KORNIC GLORY" } }, { "product": "RedCastle v2.0 for Asianux", "cert_id": "KECS-CISS-0058-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=58&product_class=4", "vendor": "RedGate Co., Ltd.", "level": "EAL3+", "category": "LBAC", "certification_date": "2006-12-22", "enhanced": { "product": "RedCastle v2.0 for Asianux", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2006-12-22", "expiration_date": "2019-06-01", "product_type": "LBAC", "cert_id": "KECS-CISS-0058-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001331", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001333", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001332", "protection_profile": "None", "developer": "RedGate Co., Ltd.", "holder": "RedGate Co., Ltd." } }, { "product": "RedCastle v2.0 for RedHat", "cert_id": "KECS-CISS-0057-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=57&product_class=4", "vendor": "RedGate Co., Ltd.", "level": "EAL3+", "category": "LBAC", "certification_date": "2006-12-22", "enhanced": { "product": "RedCastle v2.0 for RedHat", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2006-12-22", "expiration_date": "2019-06-01", "product_type": "LBAC", "cert_id": "KECS-CISS-0057-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001334", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001336", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001335", "protection_profile": "None", "developer": "RedGate Co., Ltd.", "holder": "RedGate Co., Ltd." } }, { "product": "ActiveTSM V3.0", "cert_id": "KECS-ISIS-0056-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=56&product_class=4", "vendor": "EOSOFT Co., Ltd.", "level": "EAL4", "category": "ESM", "certification_date": "2006-10-27", "enhanced": { "product": "ActiveTSM V3.0", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2006-10-27", "expiration_date": "2019-06-01", "product_type": "ESM", "cert_id": "KECS-ISIS-0056-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001337", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001339", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001338", "protection_profile": "None", "developer": "EOSOFT Co., Ltd.", "holder": "EOSOFT Co., Ltd." } }, { "product": "SNIPER IPS V5.0(E4000)", "cert_id": "KECS-NISS-0055-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=55&product_class=4", "vendor": "WINS Co., Ltd.", "level": "EAL4", "category": "IPS", "certification_date": "2006-10-27", "enhanced": { "product": "SNIPER IPS V5.0(E4000)", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2006-10-27", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0055-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001340", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001342", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001341", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "NOWCOM Co., Ltd.", "holder": "WINS Co., Ltd." } }, { "product": "SNIPER IPS V5.0(E2000)", "cert_id": "KECS-NISS-0054-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=54&product_class=4", "vendor": "WINS Co., Ltd.", "level": "EAL4", "category": "IPS", "certification_date": "2006-10-27", "enhanced": { "product": "SNIPER IPS V5.0(E2000)", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2006-10-27", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0054-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001343", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001345", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001344", "protection_profile": "Network Intrusion Blocking System Protection Profile V1.1", "developer": "NOWCOM Co., Ltd.", "holder": "WINS Co., Ltd." } }, { "product": "VForce 2200 V1.0", "cert_id": "KECS-NISS-0053-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=53&product_class=4", "vendor": "NexG Co., Ltd.", "level": "EAL3+", "category": "FW+VPN", "certification_date": "2006-10-27", "enhanced": { "product": "VForce 2200 V1.0", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2006-10-27", "expiration_date": "2019-06-01", "product_type": "FW+VPN", "cert_id": "KECS-NISS-0053-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001346", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001348", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001347", "protection_profile": "VPN Protection Profile V1.1", "developer": "NexG Co., Ltd.", "holder": "NexG Co., Ltd.", "maintenance_update": [ { "name": "VForce 2200 V1.0 Assurance maintenance1", "certification_date": "2010-03-16", "cert_id": "KECS-NISS-0053a-2006", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001164" } ] } }, { "product": "VForce 1700 V1.0", "cert_id": "KECS-NISS-0052-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=52&product_class=4", "vendor": "NexG Co., Ltd.", "level": "EAL3+", "category": "FW+VPN", "certification_date": "2006-10-27", "enhanced": { "product": "VForce 1700 V1.0", "cc_version": "CC V2.3", "assurance_level": "EAL3+", "certification_date": "2006-10-27", "expiration_date": "2019-06-01", "product_type": "FW+VPN", "cert_id": "KECS-NISS-0052-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001349", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001351", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001350", "protection_profile": "VPN Protection Profile V1.1", "developer": "NexG Co., Ltd.", "holder": "NexG Co., Ltd.", "maintenance_update": [ { "name": "VForce 1700 V1.0 Assurance maintenance1", "certification_date": "2010-03-16", "cert_id": "KECS-NISS-0052a-2006", "maintenance_link": "https://itscc.kr/file/download.do?file=KPR200000001163" } ] } }, { "product": "MULTOS SM10", "cert_id": "KECS-ISIS-0051-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=51&product_class=4", "vendor": "Samsung SDS", "level": "EAL4+", "category": "SmartCard Operating System", "certification_date": "2006-09-29", "enhanced": { "product": "MULTOS SM10", "cc_version": "CC V2.3", "assurance_level": "EAL4+", "certification_date": "2006-09-29", "expiration_date": "2019-06-01", "product_type": "SmartCard Operating System", "cert_id": "KECS-ISIS-0051-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000001355", "target_link": "https://itscc.kr/file/download.do?file=KPR100000001357", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000001356", "protection_profile": "Smart Card Open Platform Protection Profile for Government V1.0", "developer": "Samsung SDS", "holder": "Samsung SDS" } }, { "product": "SafeZoneIPS V3.0(SZ-4000)", "cert_id": "KECS-NISS-0050-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=50&product_class=4", "vendor": "LG CNS", "level": "EAL4", "category": "IPS", "certification_date": "2006-08-30", "enhanced": { "product": "SafeZoneIPS V3.0(SZ-4000)", "cc_version": "CC V2.2", "assurance_level": "EAL4", "certification_date": "2006-08-30", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0050-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000889", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000891", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000890", "protection_profile": "Network Intrusion Prevention System Protection Profile V1.1", "developer": "LG CNS", "holder": "LG CNS" } }, { "product": "SECUREWORKS IPSWall 1000 V4.0", "cert_id": "KECS-NISS-0049-2006", "product_link": "https://itscc.kr/certprod/view.do?product_id=49&product_class=4", "vendor": "OULLIM Information Technology Inc.", "level": "EAL4", "category": "IPS", "certification_date": "2006-08-30", "enhanced": { "product": "SECUREWORKS IPSWall 1000 V4.0", "cc_version": "CC V2.3", "assurance_level": "EAL4", "certification_date": "2006-08-30", "expiration_date": "2019-06-01", "product_type": "IPS", "cert_id": "KECS-NISS-0049-2006", "report_link": "https://itscc.kr/file/download.do?file=KPR100000000886", "target_link": "https://itscc.kr/file/download.do?file=KPR100000000888", "cert_link": "https://itscc.kr/file/download.do?file=KPR100000000887", "protection_profile": "Network Intrusion Prevention System Protection Profile V1.0", "developer": "OULLIM Information Technology Inc.", "holder": "OULLIM Information Technology Inc." } } ] } }, "PL": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "PL", "timestamp": "2026-03-30T12:15:10.627745", "lists": { "CERTIFIED": [ { "product": "SGOC – Certification Body Management System, version 21.814", "client": "Miguel Fadrique Bañón Puente Madrid, Spain", "cc_version": "CC v.3.1 r.5", "assurance_level": "EAL1", "decision_date": "2021-06-28", "report_link": "https://certyfikacja.nask.pl/certyfikaty/cc/SGOC/SGOC_certification_report.pdf", "target_link": "https://certyfikacja.nask.pl/certyfikaty/cc/SGOC/SGOC_security_target.pdf", "cert_link": "https://certyfikacja.nask.pl/certyfikaty/cc/SGOC/NASK-1_PC1_AC223_2022.pdf", "certification_date": "2022-01-28", "expiration_date": "2026-07-15" }, { "product": "WIPERAPP EP WIPERAPP_CORE, software, version 3.4.0", "client": "WIPERAPP sp. z o.o., Wrocław, Poland", "decision_date": "2023-07-04", "certification_date": "2023-08-02", "expiration_date": "2028-08-02", "report_link": "https://nask.pl/download/30/4434/SGOCcertificationreport.pdf", "target_link": "https://certyfikacja.nask.pl/certyfikaty/cc/WIPPERAPP/WIPERAPP_1PC1AC2232023_STLite_.pdf", "cert_link": "https://certyfikacja.nask.pl/certyfikaty/cc/WIPPERAPP/Certyfikacja__NASK_1PC1AC2232023-sig.pdf" }, { "product": "A.R.I.C. NDS Optical Industry Data Diode, version 2.0.0", "client": "Dynacon Sp. z o.o., ul. Wrzosowa 2, 55-080 Kąty Wrocławskie", "decision_date": "2023-09-07", "certification_date": "2023-10-24", "expiration_date": "2028-10-24", "report_link": "https://certyfikacja.nask.pl/certyfikaty/cc/ARIC_NDS/DYNACON_2PC1AC2232023_REP-86.pdf", "target_link": "http://http/certyfikaty/cc/ARIC_NDS/A.R.I.C._NDS_DD_ST_LITE_1.0%20-%20final.pdf", "cert_link": "https://archiwum.nask.pl/download/30/4791/CertyfikacjaNASK2PC1AC2232023-sig.pdf" }, { "product": "biocertiX – handwritten biometric signatures on PDF documents, version 1.1", "client": "Asseco Data Systems S.A., Jana z Kolna 11, 80-864 Gdańsk, Poland", "cc_version": "CC v3.1 r.5", "assurance_level": "EAL 2", "decision_date": "2024-02-29", "certification_date": "2024-04-30", "expiration_date": "2029-02-28", "report_link": "https://certyfikacja.nask.pl/certyfikaty/cc/Asseco/biocertiX-CR-NASK_2021-5-REP-84.pdf", "target_link": "https://nask.pl/download/30/4435/SGOCsecuritytarget.pdf", "cert_link": "https://certyfikacja.nask.pl/certyfikaty/cc/Asseco/NASK_1PC1AC2232024-signed.pdf" }, { "product": "SimplySign Signature Activation Module (SAM), version 6.2.0", "client": "Asseco Data Systems S.A., Jana z Kolna 11, 80-864 Gdańsk, Poland", "decision_date": "2024-04-05", "certification_date": "2024-04-25", "expiration_date": "2029-04-04", "report_link": "https://certyfikacja.nask.pl/certyfikaty/cc/Asseco/SimplySign-CR-NASK_2021-4-REP-85.pdf", "target_link": "https://certyfikacja.nask.pl/certyfikaty/cc/Asseco/SimplySign-STLite-NASK_2021-4-EXT-1256.pdf", "cert_link": "https://certyfikacja.nask.pl/certyfikaty/cc/Asseco/NASK_2PC1AC2232024-signed.pdf" }, { "product": "DTMS-2 (typ: Motion Sensor), version 2.0", "client": "CB ELECTRONICS SP. Z O.O., ul. Przybyszewskiego 43, 01-849 Warsaw", "decision_date": "2025-07-01", "certification_date": "2025-07-01", "expiration_date": "2030-06-30", "report_link": "https://certyfikacja.nask.pl/certyfikaty/cc/CBE/DTMS-2_CertificationReportPublic_NASK_2022.pdf", "target_link": "https://certyfikacja.nask.pl/certyfikaty/cc/CBE/DTMS-2_SecurityTargetLite_NASK_2022.pdf", "cert_link": "https://certyfikacja.nask.pl/certyfikaty/cc/CBE/NASK_1_PC1_AC223_2025-signed.pdf" } ], "INEVALUATION": [ { "client": "ENCEDO LIMITED Paul Street, London, EC2A 4NE, United Kingdomrepresented by: ENCEDO LIMITED Sp. z o.o. Oddział w Polsce", "product": "Encedo nGINE HSM v.1.0" } ] } }, "ES": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "ES", "timestamp": "2026-03-30T12:15:15.251218", "lists": { "CERTIFIED": [ { "product": "ESET ENDPOINT SECURITY V12.1.2057.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1082-eset-endpoint-security-v12-1-2057-3", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "ESET SPOL. S R.O.", "certification_date": "2026-02-24", "enhanced": { "description": "The TOE is an application software which runs on a Windows platform that provides malware detection and mitigation in the system where it is installed.", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "ESET SPOL. S R.O.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "certification_date": "2026-02-24", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2438", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2439", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2440" } }, { "product": "CosmicGuard for Linux v2.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1081-cosmicguard-for-linux-v2-2", "category": "Otras herramientas", "manufacturer": "GMV Soluciones Globales Internet, S.A.U.", "certification_date": "2026-02-24", "enhanced": { "description": "The TOE consists of three elements: the client, the server, which are the software CosmicGuard for Linux endpoints v2.2, and its accompanying documentation. The TOE is comprised of these elements: The client consists of an agent that protects Linux endpoints by executing an ACL that prevents the execution of unwanted applications. The server consists of a centralized web management console for operating the solution and a platform that handles communications between the client and the server, called CosmicGuard Gateway, which is not a separate element but part of the server. The documentation needed for the installation and administration of the solution is provided in conjunction with the software. The ACL can be built by a learning mechanism that automatically populates the rules or by including rules manually. It is recommended that this process be conducted in a test environment. Once the process is complete, the ACL can be sent to the target endpoint in the production environment, since then the rules will be applied immediately.", "category": "Otras herramientas", "manufacturer": "GMV Soluciones Globales Internet, S.A.U.", "type": "Product", "evaluation_facility": "SGS Brightsight Barcelona S.L. (Unipersonal)", "status": "Certified", "certification_date": "2026-02-24", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2434", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2435", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2436" } }, { "product": "Mi eID eSIGN v1.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1080-mi-eid-esign-v1-3", "category": "Herramientas de videoidentificación", "manufacturer": "ANF Certification Authority", "certification_date": "2026-02-20", "enhanced": { "description": "El TOE es una herramienta de video identificación, denominada Mi eID eSIGN, que permite a los operadores verificar la identidad del usuario, comparando la información biométrica facial extraída del documento de identidad y su biometría facial. Algunas de estas comprobaciones incluyen la verificación de los datos personales de los usuarios finales y la caducidad del documento.", "category": "Herramientas de videoidentificación", "manufacturer": "ANF Certification Authority", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2026-02-20", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE+ (MEB)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2430", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2431", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2432" } }, { "product": "A400M MPRS_TOE_Std_E_5.5", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1076-a400m-mprs-toe-std-e-5-5", "category": "Otras herramientas", "manufacturer": "Airbus Defence and Space", "certification_date": "2026-02-13", "enhanced": { "description": "", "category": "Otras herramientas", "manufacturer": "Airbus Defence and Space", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2026-02-13", "cc_version": "ITSEC", "level": "E3" } }, { "product": "SDE-10000", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1078-sde-10000", "category": "RoutersSwitchesFirewall", "manufacturer": "Teldat, S.A.", "certification_date": "2026-02-13", "enhanced": { "description": "El SDE-10000 (también conocido como SDE-10K) funciona como dispositivo de borde para centros de datos, así como para grandes sucursales y oficinas filiales. Está diseñado para su despliegue en pequeñas y medianas empresas con requisitos de rendimiento moderados. Para grandes empresas con elevados requisitos de rendimiento (hasta 1 Gbps) en sucursales descentralizadas, el SDE- 10000 permite despliegues SD-WAN con ZTP, túneles overlay y clustering para mejorar la seguridad y el rendimiento. El SDE-10000 admite configuraciones activo-activo con conmutación por error (failover) automática y establece túneles overlay tanto sobre enlaces MPLS como sobre enlaces de Internet. La combinación de hardware y software optimizados para plataformas x86 garantiza una asignación dedicada de recursos y un rendimiento adecuado para entornos de alta demanda. Este dispositivo admite virtualización sobre x86 desnudo (bare metal), lo que permite ejecutar simultáneamente múltiples funciones de red en un único equipo. Para el estado operativo, el SDE-10000 debe ejecutarse en su modo operativo seguro. Se alcanza este modo mediante la realización de un conjunto de configuraciones en el producto. En resumen, de dicha configuración: el producto limita configuraciones no seguras relacionadas con algunos protocolos, la configuración segura relativa a autenticación y acceso viene establecida por defecto, las contraseñas se almacenan cifradas, la política de contraseñas se considera robusta, los algoritmos criptográficos utilizados por el producto se consideran seguros y se configura la generación de los registros de auditoría. El SDE-10000 ejecuta el sistema operativo OSDx v4.2.1.3 y puede utilizarse como plataforma de router, switch y cortafuegos.", "category": "Routers", "manufacturer": "Teldat, S.A.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2026-02-13", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2426", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2427", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2428" } }, { "product": "Cartera Digital Beta Android v1.0.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1077-cartera-digital-beta-android-v1-0-1", "category": "Otras herramientas", "manufacturer": "Agencia Estatal de Administración Digital", "certification_date": "2026-02-03", "enhanced": { "description": "Se trata de una aplicación móvil que almacena y gestiona credenciales emitidas por el Gobierno de España. A nivel de caso de uso el sistema permite: Activar la Cartera Digital Beta pasando por un proceso de identificación del usuario y la creación de un registro de activación. Solicitud de credenciales de mayoría de edad, estudios universitarios y no universitarios, empadronamiento y ausencia de delitos sexuales. Presentación ante un proveedor de contenidos autorizado.", "category": "Otras herramientas", "manufacturer": "Agencia Estatal de Administración Digital", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2026-02-03", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE+ (MCF)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2406", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2407", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2408" } }, { "product": "Cartera Digital Beta iOS v1.0.0 (2025072214)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1079-cartera-digital-beta-ios-v1-0-0-2025072214", "category": "Otras herramientas", "manufacturer": "Agencia Estatal de Administración Digital", "certification_date": "2026-02-03", "enhanced": { "description": "Se trata de una aplicación móvil que almacena y gestiona credenciales emitidas por el Gobierno de España. A nivel de caso de uso el sistema permite: Activar la Cartera Digital Beta pasando por un proceso de identificación del usuario y la creación de un registro de activación. Solicitud de credenciales de mayoría de edad, estudios universitarios y no universitarios, empadronamiento y ausencia de delitos sexuales. Presentación ante un proveedor de contenidos autorizado.", "category": "Otras herramientas", "manufacturer": "Agencia Estatal de Administración Digital", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2026-02-03", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE+ (MCF)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2422", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2423", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2424" } }, { "product": "GEOP02 on GSE20 Security Chip, version 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1070-geop02-on-gse20-security-chip-version-1-0", "category": "Smart Cards and similiar devices", "manufacturer": "Shenzhen Goodix Technology Co., Ltd.", "certification_date": "2026-01-18", "enhanced": { "description": "The TOE is a Java Card System comprising the JCOS and the IC. It is a composite TOE with the Security Card Operating System (COS) running on the Goodix GSE20 Security Chip with IC Dedicated Software. The COS provides the following functionality: Virtual Machine Software and a Runtime Environment Common Application Programming Interface Software Application Programming Interface for HCI seRoot, implements OS Patch Update/Config Software. This component ensures that only Goodix Authorized updates may be applied EDA (Event Driven Architecture) for task management Kernel for managing system resources and communication between the IC and OS Limited Mode, provide functions to defend against continuous attacks Exception Handler, preserve TOE into secure state when physical attacks are detected", "category": "Smart Cards and similiar devices", "manufacturer": "Shenzhen Goodix Technology Co., Ltd.", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + (ALC_DVS.2, AVA_VAN.5)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2366", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2367", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2368" } }, { "product": "MK Lotus GovID IMDa in BAC configuration v4.6.8.8", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1068-mk-lotus-govid-imda-in-bac-configuration-v4-6-8-8", "category": "Smart Cards and similiar devices", "manufacturer": "MK Smart Joint Stock Company", "certification_date": "2026-01-18", "enhanced": { "description": "", "category": "Smart Cards and similiar devices", "manufacturer": "MK Smart Joint Stock Company", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + (ADV_FSP.5, ADV_INT.2, ADV_TDS.4, ALC_CMS.5, ALC_DVS.2, ALC_TAT.2, ATE_DPT.3)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2354", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2355", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2356" } }, { "product": "MK Lotus GovID IMDa in EAC with PACE configuration v4.6.8.8", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1069-mk-lotus-govid-imda-in-eac-with-pace-configuration-v4-6-8-8", "category": "Smart Cards and similiar devices", "manufacturer": "MK Smart Joint Stock Company", "certification_date": "2026-01-18", "enhanced": { "description": "The TOE is an electronic travel document representing a contactless smart card programmed according to ICAO Docs 9303 v2021 parts 10, 11 and 12, and additionally providing the Extended Access Control according to the BSI TR-03110 parts 1 and 3. The communication between terminal and chip shall be protected by Password Authenticated Conn Establishment (PACE) according to Electronic Passport using Standard Inspection Procedure with PACE (PACE PP), BSI-CC-PP-0068-V2.", "category": "Smart Cards and similiar devices", "manufacturer": "MK Smart Joint Stock Company", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + (ALC_DVS.2, AVA_VAN.5)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2362", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2363", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2364" } }, { "product": "WSO2 Identity Server v7.0.0, update level 126", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1072-wso2-identity-server-v7-0-0-update-level-126", "category": "Gestión de identidades", "manufacturer": "WSO2 LLC", "certification_date": "2026-01-18", "enhanced": { "description": "The Target of Evaluation (TOE) is WSO2 Identity Server (WSO2 IS), version 7.0.0, update level 126. Referred to as TOE from this point forward. The TOE is a powerful, modern identity and Access management solution for on-premises or cloud environments. It enables organizations to deliver exceptional, trusted digital experiences to all types of users. The TOE can handle authentication requests from integrated service providers and redirect them to the appropriate authentication services remotely or locally. The WSO2 Identity Server ensures easy integration with various applications to facilitate single sign-on (SSO), social login, identity federation, API security, strong authentication, account management, and privacy compliance.", "category": "Gestión de identidades", "manufacturer": "WSO2 LLC", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-18", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL1 + (ASE_SPD.1, ASE_OBJ.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2386", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2387", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2388" } }, { "product": "MultiApp Essential v1.1 Platform with Full, Light, XLight_T1 and XLight_NB configurations", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1071-multiapp-essential-v1-1-platform-with-full-light-xlight-t1-and-xlight-nb-configurations", "category": "Smart Cards and similiar devices", "manufacturer": "THALES DIS FRANCE SA", "certification_date": "2026-01-18", "enhanced": { "description": "The MultiApp Essential V1.1 Platform is a smart card operating system (IC and OS) that complies with two major industry standards: Sun Java Card 3.0.4, which consists of the Java Card 3.0.4 Virtual Machine [JCVM304], the Java Card 3.0.4 Runtime Environment [JCRE304] and the Java Card 3.0.4 Application Programming Interface [JCAPI304]. The Global Platform Card Specification version 2.2.1 [GP221]. It is intended to host a set of Java Card applications and provides cryptographic services for symmetric (3DES, AES), asymmetric (RSA) and hash (SHA) operations, Moreover, it also provides random number generation and integrity check features. The TOE allows the loading of applets before or after the issuance of the card, but the Issuer can forbid this operation to be carried out. The TOE has four possible configurations: Full Configuration. Light Configuration. XLight_T1 Configuration. XLight_NB Configuration.", "category": "Smart Cards and similiar devices", "manufacturer": "THALES DIS FRANCE SA", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2382", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2383", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2384" } }, { "product": "Strong Customer Authentication for Apple Pay on MacBook Air 2024 with M3 running macOS Sequoia 15.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1084-strong-customer-authentication-for-apple-pay-on-macbook-air-2024-with-m3-running-macos-sequoia-15-4", "category": "Otras herramientas", "manufacturer": "Apple Inc.", "certification_date": "2026-01-16", "enhanced": { "description": "The TOE platform includes the components implementing Strong Customer Authentication (SCA) and Dynamic Linking for Apple Pay. User authentication is managed by the Secure Enclave. The Secure Enclave is a dedicated secure subsystem integrated into Apple systems on chip (SoCs). The Secure Enclave is isolated from the main processor to provide an extra layer of security and is designed to keep sensitive user data secure even when the Application Processor kernel becomes compromised. MacOS also allows the Apple Pay services and other security functions of the TOE to operate. The Secure Element (outside of the TOE) is the secure component holding the Apple Pay secrets and processes the Apple Pay transactions.", "category": "Otras herramientas", "manufacturer": "Apple Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-16", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL2 + ADV_FSP.3, ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2446", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2447", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2448" } }, { "product": "SENTRY Secured RX and Secured TX", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1073-sentry-secured-rx-and-secured-tx", "category": "Data diode", "manufacturer": "Sentry", "certification_date": "2026-01-16", "enhanced": { "description": "The TOE is comprised of two hardware devices: The Sentry Secured TX (STX) - a video/audio encoder device, and the Sentry Secured RX (SRX) – a video/audio decoder device. The STX and SRX are configured in sequence between the source device and a secure display output. The SENTRY SRX & STX is a display adapter with an HDMI-in port, HDMI-out loopout port, one-way optical fiber port, and a 12V power connector. The STX device is the main device transforming HDMI digital signals into optical signals transferred via optical fiber. It includes an HDMI loopout port (to provide a local copy of the video source displayed), an EDID emulator that forces signal resolution to avoid communication errors with the final display, and a HDMI to Optical Fiber transceiver. The SENTRY SRX is a display adapter with an optical fiber-in port, an HDMI-out port, and a 12v power connector. The SRX transforms optical signal back into HDMI digital signals. The TOE major security feature is protection of data through enforcement of a one-way data stream at the hardware level, by physically removing all unessential data streams, and emulating a clean signal in order to ensure compatibility. The TOE enforces a one-way video and audio data stream from the source device to a secure output display device, ensuring that only the video and audio channels are passed through, and no data can be passed back to the source device through the TOE, therefore protecting all other connected devices from unwanted communications.", "category": "Data diode", "manufacturer": "Sentry", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2026-01-16", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2390", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2391", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2392" } }, { "product": "Strong Customer Authentication for Apple Pay on iPhone SE (3rd generation) with A15 Bionic running iOS 18.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1083-strong-customer-authentication-for-apple-pay-on-iphone-se-3rd-generation-with-a15-bionic-running-ios-18-4", "category": "", "manufacturer": "Apple Inc.", "certification_date": "2026-01-16", "enhanced": { "description": "The TOE platform includes the components implementing Strong Customer Authentication (SCA) and dynamic linking for Apple Pay. User authentication is managed by the Secure Enclave. The Secure Enclave is a dedicated secure subsystem integrated into Apple systems on chip (SoCs). The Secure Enclave is isolated from the main processor to provide an extra layer of security and is designed to keep sensitive user data secure even if the Applica-tion Processor kernel were to be compromised. iOS allows the Apple Pay services and other security functions of the TOE to operate. The Secure Element (outside of the TOE) is the secure component that holds the Apple Pay secrets and pro-cesses the Apple Pay transactions.", "manufacturer": "Apple Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-16", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL2 + ADV_FSP.3, ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2442", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2443", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2444" } }, { "product": "PSTgateways Framework version 4.16.8-A", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1032-pstgateways-framework-version-4-16-8-a", "category": "Data exchange gateways", "manufacturer": "Autek Ingeniería, S.L.", "certification_date": "2026-01-16", "enhanced": { "description": "‘PSTgateways’ is a family of boundary protection devices. They are application-level gateways, which allow the secure transmission of information between networks located in two different security domains. The PSTgateways systems provide real network separation by using two individual appliances (each one connected to one of the aforementioned networks). Each appliance acts as the communication end-point in its associated security domain. This architecture provides a complete break of the TCP/IP stack protocols. The two appliances constitute the only communication path between the internal (high security domain) and the external network (low security domain). The communication between them is performed through a passive data transfer device which is part of the PSTgateways technology. All PSTgateways systems share a common architecture and a common base software (PSTgateways Framework) but differ in the set of ‘data flow services’ (or simply ‘services’) that they support. Each service supports the transfer of a type of information (e.g.: file transfer, e-mail, etc.), using standard protocols to communicate with both data networks. The services are completely independent from each other, and when possible offer a one way data flow. All services are organised into channels, allowing independent and parallel handling of multiple data flows with individual settings per channel.", "category": "Data exchange gateways", "manufacturer": "Autek Ingeniería, S.L.", "type": "Product", "evaluation_facility": "Layakk Seguridad Informática, S.L.", "status": "Certified", "certification_date": "2026-01-16", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2350", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2351", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2403" } }, { "product": "THC80F480C/384C/340C/280C/256C/228C/176C/150C Secure Microcontroller Version 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1075-thc80f480c-384c-340c-280c-256c-228c-176c-150c-secure-microcontroller-version-1-0", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "certification_date": "2026-01-13", "enhanced": { "description": "The TOE is a secure Microcontroller is dedicated to applications such as for mobile phones (GSM SIM cards) etc. The TOE consists of hardware. The hardware is based on a 32-bit secure CPU with NVM (Non-volatile Programmable Memory) and RAM (Volatile Memory). The hardware of the TOE also incorporates communication peripherals and true random number generator. The TOE supports the following communication interfaces: ISO/IEC 7816 contact interface. I2C interface The TOE has been designed to provide a platform for Security IC Embedded Software which ensures that the critical user data of the Composite TOE are stored and processed in a secure way. To this end the TOE has the following security features: True Random Number Generator Protection against power analysis Protection against physical attacks Protection against perturbation attacks", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2026-01-13", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4+ (ALC-DVS.2 + AVA_VAN.4)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2399", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2400", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2401" } }, { "product": "KAYTUS Server Baseboard Management Controller version 4.04.04", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1066-kaytus-server-baseboard-management-controller-version-4-04-04", "category": "Otras herramientas", "manufacturer": "KAYTUS Systems PTE. LTD.", "certification_date": "2025-12-18", "enhanced": { "description": "The KAYTUS Server Baseboard Management Controller (BMC) is an out-of-band management firmware running on a System-on-Chip (SoC) microprocessor integrated into KAYTUS V3 servers. Its purpose is to provide remote server management capabilities, such as hardware administration, status monitoring, fault analysis, and remote control, operating independently from the main system. The TOE allows: Real-time monitoring of the server hardware status and operation through a graphical interface. Remote management of startup, shutdown, firmware deployment, and updates. Automated large-scale maintenance using the Redfish API. Remote administration communications are cryptographically protected using HTTPS/TLS v1.2 and v1.3 and SSHv2. Access is controlled, and administrator actions are audited. The main security functionalities of the TOE include: Auditing: generation and secure storage of logs with timestamps and review capability. Cryptographic operations: protection of communications and firmware integrity verification using digital signatures. Access control: enforcement of role-based access policies. Identification and authentication: user validation before granting access. Security management: administrative functions available according to the user’s role, through the web interface (HTTPS), CLI (SSHv2), or Redfish API. TSF protection: recovery after failures, firmware integrity verification, and security actions following errors. Session management: establishment, locking, and secure termination of sessions. Trusted path/channel: secure communications ensuring confidentiality, integrity, and authentication. In summary, the TOE provides a secure remote management platform that protects communications, enforces access control, maintains firmware integrity, and ensures full traceability of administrative actions within the KAYTUS V3 server environment.", "category": "Otras herramientas", "manufacturer": "KAYTUS Systems PTE. LTD.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-12-18", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2342", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2343", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2344" } }, { "product": "Microsoft Windows 11 (versions 24H2 and 23H2), Microsoft Windows Server 2025, Microsoft Azure Stack HCI (versions 24H2, 23H2)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1063-microsoft-windows-11-versions-24h2-and-23h2-microsoft-windows-server-2025-microsoft-azure-stack-hci-versions-24h2-23h2", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2025-12-18", "enhanced": { "description": "The TOE includes the Windows 11 operating system; the Windows Server 2025 operating system; Azure Local; and those applications necessary to manage, support and configure the operating system. Windows 11 and Windows Server can be delivered preinstalled on a new computer or downloaded from the Microsoft website.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-12-18", "cc_version": "CC/CEM:2022 Release 1", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2322", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2323", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2324" } }, { "product": "Elastic Platform 8.15.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1067-elastic-platform-8-15-2", "category": "Security event management systems", "manufacturer": "Elasticsearch", "certification_date": "2025-12-17", "enhanced": { "description": "The TOE is a security incident and event management system which detects and alerts about security risk. The TOE collects information about security events generated in a network, for later processing in order to generate alerts that can help the administrators to make security decisions. It can collect data from different sources, as agents or network devices. The TOE is composed of the following components: Elastic Agent: it collects data from the host where it is installed and forwards them to Logstash. Fleet Server: it collects policies from Elasticsearch which will be applied to the Elastic Agents. Logstash: it is a data collection engine which can unify and normalize data from different sources (from both Elastic Agent and network devices). After the data processing, this data is sent to Elasticsearch for its storage. Elasticsearch: it receives and stores the data from Logstash. Kibana: it is a web server where the collected data can be visualized and analyzed. It includes the following modules: Fleet UI: it is a dashboard which acts as central point for managing agents and policies. A policy is a set of configurations that defines the data to be collected by an agent. Elastic Security: it is a security detection engine to identify misuse or malicious activities. It provides an overview of the events and alerts. Alert rules are defined to establish when alerts shall be triggered. Alerts can be grouped in cases, in order to associate the alerts related to a particular security incident.", "category": "Security event management systems", "manufacturer": "Elasticsearch", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-12-17", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2346", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2347", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2348" } }, { "product": "KATIM X3M on KATIM OS 13", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1065-katim-x3m-on-katim-os-13", "category": "Mobile devices", "manufacturer": "KATIM L.L.C.", "certification_date": "2025-11-22", "enhanced": { "description": "The Target of Evaluation (TOE) provides standard telecommunication functionalities, such as initiating and receiving voice calls, and sending and receiving SMS messages, in addition to comprehensive network connectivity capabilities, supporting both 802.11ax Wi-Fi and multigeneration cellular technologies (3G WCDMA, 4G TDD & FDD LTE, 5G NR Sub 6 GHz NSA/SA). Furthermore, the TOE facilitates secure network access by supporting client certificate-based authentication for connecting to WPA2/WPA3 networks via 802.1ax/EAP-TLS protocols, and also establishes connectivity with cellular base stations for mobile data communication. Additionally, the TOE exposes an Application Programming Interface (API) that integrates with the KATIM OS framework, enabling OS services for mobile applications, and also providing mobile device management (MDM) capability for MDM agents to perform device management operations via the KATIM OS MDM API.", "category": "Mobile devices", "manufacturer": "KATIM L.L.C.", "type": "Product", "evaluation_facility": "Layakk Seguridad Informática, S.L.", "status": "Certified", "certification_date": "2025-11-22", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2338", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2339", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2340" } }, { "product": "SIAVAL PKI 2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1021-siaval-pki-version-2", "category": "Otras herramientas", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "certification_date": "2025-11-16", "enhanced": { "description": "The TOE is intended to issue certificates as well as manage their states throughout their life cycle, their publication in different repositories as well as the issuance of CRLs in order to determine the certificates that have been revoked from the CA. A hierarchy of CA's can be established according to the needs of the system, allowing different profiles to be established for each CA so that certificates can be issued for different purposes. Control of their signature keys is established at all times, ensuring the issuance of certificates by the CA as well as from their subordinate CA's. The most common use cases that can be solved by using the TOE are: eIDAS Providers. SIAVAL PKI serves as an essential basis for the provision of qualified and reliable services for the issuance of signature certificates, seals, time stamps and associated profiles, according to the ETSI EN 319 4xx family of standards. ICAO eMRTD/ePassport. Allowing the implementation of the infrastructure for issuing epassport certificates. SSL Certificates for websites and components. Allows the implementation of certification authorities for the issuance of server certificates, including the basis for the establishment of browser trusted web server certificate issuance services according to CA/Browser Forum. IoT-Internet of Things. Authenticated, integrated and reliable communication between devices. Integration with MDM/UEM systems. Integrating with leading manufacturers of mobile device management technology to automate the rolling out of certificates to multi-use devices. Private Networks / VPN. To establish trusted environments for networks, remote Access clients and VPNs by issuing digital certificates. User authentication. Including active directory services or cloudbased applications, from desktops or mobile devices. Secure email. With advanced key management capabilities for email encryption.", "category": "Otras herramientas", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-11-16", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2334", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2335", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2336" } }, { "product": "iMC MagicBox (iMC PLAT, iMC EIA) version 7.3 (PLAT E0708P13, EIA E0629)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1064-imc-magicbox-imc-plat-imc-eia-version-7-3-plat-e0708p13-eia-e0629", "category": "Network management tools", "manufacturer": "NEW H3C TECHNOLOGIES CO., LTD.", "certification_date": "2025-11-04", "enhanced": { "description": "H3C iMC MagicBox consists of one platform (iMC PLAT) and one component (iMC EIA): iMC PLAT consists of a base platform for delivering network resource management capabilities and optional service modules for extending iMC’s functionality. The base platform provides administrators and operators with the basic and advanced functionality needed to manage iMC and the devices, users, and services managed by iMC. The base platform incorporates the essential functional areas of network management – fault, configuration, asset management and auditing, performance, and security. The iMC is a network management system, iMC is located at the management and control layer of the network, it can manage and control various network devices, including switches and routers. It provides open interface to quickly integrate with upper-layer application systems such as OSSs, service orchestrators and service application. For the iMC architecture, in the northbound direction, it provides Web portals and northbound interfaces for O&M personnel, OSS. In the southbound, it provides configuration and management capabilities for H3C network devices and third-party network elements.", "category": "Network management tools", "manufacturer": "NEW H3C TECHNOLOGIES CO., LTD.", "type": "Product", "evaluation_facility": "SGS Brightsight Barcelona S.L. (Unipersonal)", "status": "Certified", "certification_date": "2025-11-04", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL1 + (ASE_SPD.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2330", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2331", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2332" } }, { "product": "Endpoint Security Host Agent vE88.50 (88.50.0220)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1060-endpoint-security-host-agent-ve88-50-88-50-0220", "category": "Anti-virus tools", "manufacturer": "Check Point Software Technologies Ltd.", "certification_date": "2025-08-22", "enhanced": { "description": "The TOE is an antivirus software which is part of a client-server architecture intended to be used on computers deployed in a corporate network. These computers will be connected to each other and will carry out information processing to a central server that manages this information in a servercentric architecture. This central server, called Harmony Endpoint EPMaaS is in the cloud and is accessed from the Check Point Infinity Portal. The TOE is intended to be installed in each computer of the network's organization. Once installed, the TOE carries out the communication to the Harmony Endpoint EPMaaS and monitors the security status of the computer where it has been installed and also synchronises this status with the server. Simultaneously, during this synchronisation process, the TOE applies the Harmony Endpoint EPMaaS's security policies.", "category": "Anti-virus tools", "manufacturer": "Check Point Software Technologies Ltd.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-08-22", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2289", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2290", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2291" } }, { "product": "SIAVAL SafeCert Server Signing System (QSCD), versión 3.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1062-siaval-safecert-server-signing-system-qscd-version-3-1", "category": "Electronic signature devicesQSCD/SSCD", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "certification_date": "2025-08-22", "enhanced": { "description": "SIAVAL SafeCert Manager es un software de firma electrónica en servidor, que asegura el control exclusivo de las claves de firma por parte del firmante utilizando un módulo Thales Luna K7 Cryptographic Module. La composición de estos dos componentes forma el TOE Compuesto objetivo de la evaluación denominando SIAVAL SafeCert Server Signing System (QSCD), versión 3.1. El conjunto de componentes que conforman el TOE Compuesto SIAVAL SafeCert Server Signing System (QSCD), versión 3.1 posibilita la generación de firmas en servidor, de manera que una organización pueda fácilmente establecer un sistema de firma seguro, centralizando los procesos de firma de documentos de sus usuarios. Facilita la gestión del ciclo de vida de las claves, su asociación entre los usuarios, así como el cumplimiento del propósito de uso de dichas claves.", "category": "Electronic signature devices", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-08-22", "cc_version": "CC/CEM:2022 Release 1", "level": "ACO", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2312", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2307", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2308" } }, { "product": "Allied Telesis hardware x930-52GPX Switch and firmware AlliedWare Plus v.5.5.4-1.8", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1061-allied-telesis-hardware-x930-52gpx-switch-and-firmware-alliedware-plus-v-5-5-4-1-8", "category": "Switches", "manufacturer": "Allied Telesys international SLU", "certification_date": "2025-08-22", "enhanced": { "description": "El TOE está compuesto por x930-52GPX Switch, que corresponde con un switch apilable, y AlliedWare Plus v5.5.4-1.8, su firmware, permitiendo funcionalidades de enrutamiento como la segmentación de redes virtuales mediante la creación de VLANs. Adicionalmente, permite la configuración de usuarios, banners, cierre de sesión por tiempo de inactividad o actualizaciones del firmware. El TOE ofrece dos interfaces de gestión para la configuración y el monitoreo: CLI (Command Line Interface): Una interfaz de línea de comandos que permite un control detallado sobre las funcionalidades del switch. Puede accederse de dos vías distintas: Localmente: A través de un puerto serie, proporcionando acceso físico directo al dispositivo. Remotamente: A través de SSHv2, permitiendo una gestión segura y cifrada a través de la red. GUI (Graphical User Interface): Interfaz basada en web que proporciona una plataforma intuitiva y amigable para el usuario final para la gestión del switch. Mientras que ofrece acceso a funcionalidades clave, no cubre todo el rango de funcionalidades disponible a través de la CLI.", "category": "Switches", "manufacturer": "Allied Telesys international SLU", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-08-22", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2297", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2298", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2299" } }, { "product": "Entrust Signature Activation Module, version 1.1.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1059-entrust-signature-activation-module-version-1-1-1", "category": "QSCD/SSCD", "manufacturer": "ENTRUST EU, S.L.", "certification_date": "2025-07-31", "enhanced": { "description": "Entrust Signature Activation Module is a software component that interacts with the Cryptographic Module (CM) to implement a Signature Activation Module (SAM) according to the European Standard [CEN EN 419 241-2]. The main objective of the Entrust Signature Activation Module component is to ensure the signer the sole control of their signing keys, which is carried out authorizing the signature operation. The SAM activates the signing key within a CM, handling a Signature Activation Protocol (SAP) which requires that Signature Activation Data (SAD) be provided at the local environment. The SAD binds together the signer authentication with the signing key and the data to be signed. The SAM component uses the SAD in order to guarantee with a high level of confidence (SCAL 2) that the signing keys are used under sole control of the signer. SCAL 2 also requires the signing keys and the software of the SAM are protected by a tamper protected environment. Entrust Signature ActivationModule component uses a dedicated tamper protected environment according to the requirements of [CEN EN 419 241-2] standard. Entrust Signature Activation Module has been designed and conforms tothe European Standard [CEN EN 419 241-2] which is aimed to meet (together with the CM) the requirements of a QSCD as specified in Regulation (EU) No 910/2014 [eIDAS]. The major security features of the TOE are the following: Identification and authentication of TOE users. Secure creation of TOE users. Signer Key Pair generation and deletion. Supply DTBS/R. Signing/Sealing. Secure Audit. Secure communication between the TOE and the SSA.", "category": "QSCD/SSCD", "manufacturer": "ENTRUST EU, S.L.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-07-31", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL4 + ALC_FLR.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2281", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2282", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2283" } }, { "product": "SENTRY Secured RX and Secured TX Devices 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1057-sentry-secured-rx-and-secured-tx-devices-1-0", "category": "Otras herramientas", "manufacturer": "Sentry", "certification_date": "2025-07-22", "enhanced": { "description": "The TOE is comprised of two hardware devices: The Sentry Secured TX (STX) - a video/audio encoder device, and the Sentry Secured RX (SRX) – a video/audio decoder device. The STX and SRX are configured in sequence between the source device and a secure display output. The SENTRY SRX & STX is a display adapter with an HDMI-in port, HDMI-out loopout port, one-way optical fiber port, and a 12V power connector. The STX device is the main device transforming HDMI digital signals into optical signals transferred via optical fiber. It includes an HDMI loopout port (to provide a local copy of the video source displayed), an EDID emulator that forces signal resolution to avoid communication errors with the final display, and a HDMI to Optical Fiber transceiver. The SENTRY SRX is a display adapter with an optical fiber-in port, an HDMIout port, and a 12v power connector. The SRX transforms optical signal back into HDMI digital signals. The TOE major security feature is protection of data through enforcement of a one-way data stream at the hardware level, by physically removing all unessential data streams, and emulating a clean signal in order to ensure compatibility. The TOE enforces a one-way video and audio data stream from the source device to a secure output display device, ensuring that only the video and audio channels are passed through, and no data can be passed back to the source device through the TOE, therefore protecting all other connected devices from unwanted communications.", "category": "Otras herramientas", "manufacturer": "Sentry", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-07-22", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2269", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2270", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2271" } }, { "product": "FortiSwitch 7.0.10", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1056-fortiswitch-7-0-10", "category": "Switches", "manufacturer": "Fortinet, Inc.", "certification_date": "2025-07-22", "enhanced": { "description": "El TOE (FortiSwitch 7.0.10-build0117) es un switch que permite interconectar los segmentos físicos de red y habilitar la circulación de datos entre dichos segmentos. Trabaja a nivel de Capa 2 del modelo de interconexiones de sistemas abiertos (ISO/IEC 7498-1) y dirige el tráfico según direccionamiento físico (Media Access Control) de ethernet. Puede ampliar o reducir sus necesidades de rendimiento de operaciones con facilidad de uso y bajo costo de propiedad para satisfacer las demandas de las aplicaciones con uso intensivo de ancho de banda, desde pequeñas oficinas hasta grandes centros de datos. Este dispositivo se distribuye en forma de equipo dedicado o appliance que incluye el software y el hardware necesarios para su operación segura. Posee una potente arquitectura hardware que tiene los siguientes puertos físicos: Puertos del 1 al 16 son 802.3af/at 1Gbps Puertos del 7 al 24 son 802.3af/at/bt tipo 3 clase 6 2.5Gbps Puertos del 25 al 26 son 2.5Gbps Puertos del 27 al 30 (SFP+) 10Gbps 1 Puerto USB (A) 2.0 • 1 Puerto de consola RJ45 Las principales funciones de seguridad que implementa el TOE son Canales Seguros, Protección Contra Fallos, Criptografía, Instalación y actualización confiable, y Switch.", "category": "Switches", "manufacturer": "Fortinet, Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2025-07-22", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2265", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2266", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2267" } }, { "product": "FortiAP 7.2.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1055-fortiap-7-2-0", "category": "Wireless Network Devices", "manufacturer": "Fortinet, Inc.", "certification_date": "2025-07-22", "enhanced": { "description": "El FortiAP 7.2.0build4947 es un producto orientado a la protección de comunicaciones, proporcionando conectividad a una red local inalámbrica (WLAN) mediante comunicaciones por radiofrecuencia. Los puntos de acceso inalámbricos delegados a FortiAP 7.2.0build4947 brindan un acceso LAN inalámbrico seguro e integrado para la empresa. Este dispositivo se distribuye en forma de equipo dedicado o appliance que incluye el software y el hardware necesarios para su operación segura. Posee una potente arquitectura hardware que ofrece las siguientes características: Comunicación Inalámbrica IEEE 802.11a/b/g/n/ac Antenas Internas 1 Puerto Ethernet 100/1000/2500 Base-T RJ45 1 Puerto Ethernet 10/100/1000 Base-T RJ45 Espectro de comunicación entre 2.4G y 5G. Las principales funciones de seguridad que implementa el TOE son las siguientes: Canales Seguros: El producto emplea DTLS como canal seguro para el intercambio de información sensible con el FortiGate 6.2.7 y WPA2 para el canal de comunicación con clientes inalámbricos. Estos canales se encuentran protegidos empleando funciones, algoritmos y protocolos que están de acuerdo a lo establecido en la guía [CCN-STIC-807].", "category": "Wireless Network Devices", "manufacturer": "Fortinet, Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2025-07-22", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2261", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2262", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2263" } }, { "product": "Cl@ve versión 5.8.3 (Android)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1052-cl-ve-version-5-8-3-android", "category": "Otras herramientas", "manufacturer": "Secretaria General de Administración Digital. Ministerio de Asuntos Económicos y Transformación Digital", "certification_date": "2025-07-17", "enhanced": { "description": "El producto a evaluar se trata de la aplicación Cl@ve para dispositivos móviles con sistema operativo Android, actualización de la aplicación actual Cl@ve PIN. El objetivo de este producto es ofrecer a los ciudadanos los servicios relacionados con la identificación y autenticación. Este producto cuenta con el Proveedor de Identidad de AEAT. Actualmente, en función de la forma y el nivel de garantía del registro, diferenciamos dos niveles: Nivel Básico: El usuario facilita los datos de forma telemática sin necesidad de una autenticación previa mediante el uso de un certificado electrónico cualificado. De esta forma, la identificación se lleva a cabo mediante el uso de datos conocidos por el usuario y la Administración. Nivel avanzado: Los datos se comunican de dos formas: En una oficina, de forma presencial y ante un empleado de la Administración Pública habilitado para esta tarea. De forma telemática, autenticado previamente con un certificado electrónico cualificado. Se mantienen las gestiones ofrecidas anteriormente por la aplicación “Cl@ve PIN”, por ejemplo, la opción de visualizar el PIN que se ha obtenido mediante una gestión a través de un navegador web, aplicación móvil con “Cl@ve PIN” o aplicaciones de terceros. También se añaden funcionalidades relacionadas a la gestión de contraseña de “Cl@ve Permanente”, por ejemplo, recuperación de código de activación, activación de contraseña, etc. El TOE no incluye el sistema operativo ni el hardware requerido para ejecutarse. De la misma manera, se limita a la aplicación móvil de Cl@ve versión 5.8.3, excluyendo todos los sistemas del lado servidor. La aplicación utiliza los siguientes recursos del sistema operativo Android: Generador de números aleatorios: Creación de la contraseña con la que se activa el dispositivo en el sistema Cl@ve. Almacenamiento seguro: Almacenamiento de las credenciales asociadas al dispositivo. Desbloqueo: Autenticación y autorización del usuario para utilizar la aplicación.", "category": "Otras herramientas", "manufacturer": "Secretaria General de Administración Digital. Ministerio de Asuntos Económicos y Transformación Digital", "type": "Product", "evaluation_facility": "Clover Technologies", "status": "Certified", "certification_date": "2025-07-17", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2241", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2242", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2243" } }, { "product": "Cl@ve versión 5.8.7 (iOS)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1053-cl-ve-version-5-8-7-ios", "category": "Otras herramientas", "manufacturer": "Secretaria General de Administración Digital. Ministerio de Asuntos Económicos y Transformación Digital", "certification_date": "2025-07-17", "enhanced": { "description": "El producto a evaluar se trata de la aplicación Cl@ve para dispositivos móviles con sistema operativo iOS, actualización de la aplicación actual Cl@ve PIN. El objetivo de este producto es ofrecer a los ciudadanos los servicios relacionados con la identificación y autenticación. Este producto cuenta con el Proveedor de Identidad de AEAT. Actualmente, en función de la forma y el nivel de garantía del registro, diferenciamos dos niveles: Nivel Básico: El usuario facilita los datos de forma telemática sin necesidad de una autenticación previa mediante el uso de un certificado electrónico cualificado. De esta forma, la identificación se lleva a cabo mediante el uso de datos conocidos por el usuario y la Administración. Nivel avanzado: Los datos se comunican de dos formas: En una oficina, de forma presencial y ante un empleado de la Administración Pública habilitado para esta tarea. De forma telemática, autenticado previamente con un certificado electrónico cualificado. Se mantienen las gestiones ofrecidas anteriormente por la aplicación “Cl@ve PIN”, por ejemplo, la opción de visualizar el PIN que se ha obtenido mediante una gestión a través de un navegador web, aplicación móvil con “Cl@ve PIN” o aplicaciones de terceros. También se añaden funcionalidades relacionadas a la gestión de contraseña de “Cl@ve Permanente”, por ejemplo, recuperación de código de activación, activación de contraseña, etc. El TOE no incluye el sistema operativo ni el hardware requerido para ejecutarse. De la misma manera, se limita a la aplicación móvil de Cl@ve versión 5.8.7, excluyendo todos los sistemas del lado servidor. La aplicación utiliza los siguientes recursos del sistema operativo iOS: Generador de números aleatorios: Creación de la contraseña con la que se activa el dispositivo en el sistema Cl@ve. Almacenamiento seguro: Almacenamiento de las credenciales asociadas al dispositivo. Desbloqueo: Autenticación y autorización del usuario para utilizar la aplicación.", "category": "Otras herramientas", "manufacturer": "Secretaria General de Administración Digital. Ministerio de Asuntos Económicos y Transformación Digital", "type": "Product", "evaluation_facility": "Clover Technologies", "status": "Certified", "certification_date": "2025-07-17", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2249", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2250", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2251" } }, { "product": "THD89 Secure Microcontroller version 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1051-thd89-secure-microcontroller-version-1-0-with-crypto-library-version-1-01-3", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "certification_date": "2025-07-16", "enhanced": { "description": "The TOE consists of hardware and IC dedicated software. The hardware is based on a 32-bit CPU with ROM (Non-Volatile Read-Only Memory), NVM (Non-volatile Programmable Memory) and RAM (Volatile Memory). The hardware of the TOE also incorporates communication peripherals and cryptographic coprocessors for execution and acceleration of symmetric and asymmetric cryptographic algorithms. The IC dedicated software consists of boot code and a library of cryptographic services.", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2025-07-16", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL6 + (ASE_TSS.2 + ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2229", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2230", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2231" } }, { "product": "SIAVAL SafeCert Manager v3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1049-siaval-safecert-manager-v3", "category": "Electronic signature devices", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "certification_date": "2025-07-15", "enhanced": { "description": "Funcionando en un entorno operacional seguro, con los componentes con un nivel de seguridad adecuado y siendo gestionado por un prestador cualificado, el producto SIAVAL SafeCert está diseñado para funcionar como un dispositivo cualificado de creación de firma (QSCD), según los requisitos especificados en el Reglamento (UE) nº 910/2014 del Parlamento Europeo (eIDAS: Anexo II), haciendo posible la generación de firmas electrónicas avanzadas (AdES) y de firmas electrónicas cualificadas o reconocidas (QES) en un servidor remoto, constituyéndose como un sistema confiable de firma en servidor, Trustworthy Systems Supporting Server Signing (TW4S), según se define en la norma CEN/TS 419 241 que rige este tipo de sistemas.", "category": "Electronic signature devices", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-07-15", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL4+ (ALC_FLR.1, AVA_VAN.5)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2213", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2214", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2215" } }, { "product": "INVISHIELD version HW 3.0 - firmware v01.00.007 - app v1.0.17", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1047-invishield-version-hw-3-0-firmware-v01-00-007-app-v1-0-17", "category": "Otras herramientas", "manufacturer": "AMLO SISTEMAS DE SEGURIDAD S.L.", "certification_date": "2025-05-27", "enhanced": { "description": "", "category": "Otras herramientas", "manufacturer": "AMLO SISTEMAS DE SEGURIDAD S.L.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-05-27", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2187", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2188", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2189" } }, { "product": "Strong Customer Authentication for Apple Pay on MacBook Air 2024 with M3 running macOS Sonoma 14.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1046-strong-customer-authentication-for-apple-pay-on-macbook-air-2024-with-m3-running-macos-sonoma-14-4", "category": "Otras herramientas", "manufacturer": "Apple Inc.", "certification_date": "2025-05-23", "enhanced": { "description": "The TOE platform includes the components implementing Strong Customer Authentication (SCA) and Dynamic Linking for Apple Pay. User authentication is managed by the Secure Enclave. The Secure Enclave is a dedicated secure subsystem integrated into Apple systems on chip (SoCs). The Secure Enclave is isolated from the main processor to provide an extra layer of security and is designed to keep sensitive user data secure even when the Application Processor kernel becomes compromised. The macOS operating system also allows the Apple Pay services and other security functions of the TOE to operate. The Secure Element (outside of the TOE) is the secure component holding the Apple Pay secrets and processes the Apple Pay transactions.", "category": "Otras herramientas", "manufacturer": "Apple Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2025-05-23", "cc_version": "CC/CEM:2022 Release 1", "level": "EAL2 + ADV_FSP.3, ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2183", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2184", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2185" } }, { "product": "UDS Enterprise v3.6", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1045-uds-enterprise-v3-6", "category": "Infraestructura de escritorio virtual (VDI)", "manufacturer": "Virtual Cable, S.R.L.U.", "certification_date": "2025-05-23", "enhanced": { "description": "El TOE (UDS Enterprise) es una Infraestructura de Escritorio Virtual (VDI), una tecnología que permite a los usuarios finales de una organización trabajar con escritorios virtuales y aplicaciones virtuales, que son accesibles desde el dispositivo del usuario final. De esta manera, el usuario final gestiona el escritorio virtual como si se ejecutara en su propia computadora. Para proporcionar y gestionar estos escritorios y aplicaciones, el TOE utiliza máquinas virtuales alojadas en un servidor. Las máquinas virtuales están asociadas con un hipervisor, que es responsable de su creación y gestión. El TOE consta de tres componentes: UDS Tunnel, UDS Actor y UDS Server. Todos ellos se encuentran en las instalaciones de la organización. Cada componente se describe con más detalle a continuación: UDS Server, es el Controlador y la Pasarela, realiza las funciones de ambos. La Pasarela es responsable de autenticar a los usuarios y establecer conexiones seguras entre los usuarios y los recursos. Como Controlador, es responsable de comunicarse con el hipervisor para distribuir y gestionar las máquinas virtuales. Este componente cuenta con una interfaz de administración que ofrece la gestión remota de permisos de usuario, configuración de políticas y definición de tiempo de espera de sesión. UDS Actor, es un componente de software que se instala en plantillas de sistemas operativos Windows o Linux. Estas plantillas se utilizarán para implementar escritorios virtuales en servidores de aplicaciones RDS, con el fin de presentar sesiones de aplicaciones virtuales a los usuarios, y en máquinas estáticas donde es necesario controlar las sesiones de usuario. Además, el UDS Actor comunica y transmite datos y comandos entre el UDS Server y los servicios de escritorio virtual. Corresponde a los Agentes que se encuentran dentro de los recursos de la organización. Se utiliza para que la máquina virtual sirva como plantilla. Una máquina virtual de plantilla es aquella que el usuario final desea clonar para su uso en la organización, por lo que es el escritorio virtual que se pretende implementar para los usuarios de la organización. Puede ser proporcionada por el usuario final o por Virtual Cable, que tiene plantillas básicas disponibles. UDS Tunnel, es el componente de software responsable de proporcionar a los usuarios acceso HTML5 (interfaz web) a escritorios virtuales. El UDS Tunnel se conecta directamente con los escritorios virtuales a través del protocolo RDP para establecer un canal seguro hacia estos recursos. Además, el UDS Tunnel secomunica con el UDS Server para la recuperación de datos de configuración y para obtener autorización para que los usuarios accedan a los escritorios virtuales. El UDS Tunnel aplica las políticas de acceso y compartición de datos entre los usuarios y los escritorios virtuales, según lo definido por los administradores de usuarios a través del UDS Server.", "category": "Infraestructura de escritorio virtual (VDI)", "manufacturer": "Virtual Cable, S.R.L.U.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-05-23", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2179", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2180", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2181" } }, { "product": "ZEN-D v1.2.14.15 + OpenVPN v2.4.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1044-zen-d-v1-2-14-15-openvpn-v2-4-4", "category": "Otras herramientas", "manufacturer": "GRUPO SALLEN TECH SLU", "certification_date": "2025-05-23", "enhanced": { "description": "The TOE is composed of the modular software called ZEN-D and the OS service OpenVPNv2.4.4, which are embedded in the ARM board inside a safe manufactured by Sallén. ZEN-D is composed of a backend-frontend application and a set of drivers in charge of orchestrating the Sallén box peripherals. These drivers are also embedded in the ARM board and are considered part of the ZEN-D application. The OpenVPN service from the Operating System where ZEN-D software runs is considered a TOE component as it is in charge of providing the secure communication functionality. It communicates with CashControl Server and the remote users accessing by Remote Access functionality, in order to remotely manage the safe box by the ZEN-D software.", "category": "Otras herramientas", "manufacturer": "GRUPO SALLEN TECH SLU", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-05-23", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2175", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2176", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2177" } }, { "product": "ENDURANCE version 1.1.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1043-endurance-version-1-1-2", "category": "Otras herramientas", "manufacturer": "COSMIKAL S.L.", "certification_date": "2025-05-23", "enhanced": { "description": "El TOE es una solución de gestión de acceso privilegiado (PAM) diseñada para proteger y gestionar el acceso privilegiado a sistemas de información críticos (assets). El TOE ofrece principalmente las siguientes funcionalidades: Almacenamiento seguro de credenciales. El TOE implementa mecanismos de encriptación para el almacenamiento seguro de credenciales que autorizan el acceso a assets y credenciales de usuarios, garantizando que sólo los usuarios autorizados tengan acceso a ellas. Gestión de acceso basada en publicaciones. El TOE permite la creación y gestión de publicaciones, que son reglas o políticas que vinculan a usuarios con activos específicos, detallando el modo de acceso y las credenciales requeridas para dicho acceso. Gestión de administración. El TOE permite al usuario PAM admin el acceso a las funcionalidades de administración.", "category": "Otras herramientas", "manufacturer": "COSMIKAL S.L.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-05-23", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2171", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2172", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2173" } }, { "product": "Soffid IAM. IAM-console version 3.5, Sync-server versión 3.5, PAM-launcher version 1.4, y PAM-store version 1.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1042-soffid-iam-iam-console-version-3-5-sync-server-version-3-5-pam-launcher-version-1-4-y-pam-store-version-1-4", "category": "Otras herramientas", "manufacturer": "SOFFID IAM, S.L.", "certification_date": "2025-03-20", "enhanced": { "description": "SOFFID IAM constituye un producto destinado al Gobierno y Administración de Identidad (IGA) y la Gestión de Acceso Privilegiado (PAM) que ofrece a las organizaciones centralizar la gestión de identidad y acceso de sus usuarios. Esto les permite alcanzar una mayor eficiencia en la gestión de acceso a sistemas y aplicaciones, mejorar la seguridad de la información yel cumplimiento de los requerimientos impuestos por la normativa. El principal beneficio de uso de SOFFID IAM para las organizaciones recae en su capacidad de protección de datos sensibles frente a amenazas internas y externas, proporcionando una gestión de acceso a los recursos de la organización más segura y efectiva. Adicionalmente, SOFFID IAM ofrece una mejora de la eficiencia y productividad del negocio, reduciendo los tiempos y recursos que es necesario invertir en la gestión de identidades y accesos lo que, en última instancia, permite una reducción de costes de gestión. Dentro de las características y funcionalidades aportadas por SOFFID IAM, se distinguen las siguientes: Gestión centralizada de identidad y acceso. Permite a las organizaciones gestionar de manera centralizada, la identidad y acceso de sus usuarios, proporcionando a los administradores la capacidad de otorgar, revocar y modificar los permisos de accesos en tiempo real. Gestión de autenticación y contraseñas. SOFFID IAM ofrece un producto seguro de gestión de contraseñas que permite a los usuarios configurar contraseñas robustas y proteger las mismas con medidas de seguridad adicionales. Reporte y auditoría. SOFFID IAM proporciona reportes detallados sobre la actividad del usuario y los permisos de acceso, permitiendo a las organizaciones mantener un control completo y detallado de la actividad de sus usuarios. Registro y auditoría de cuentas privilegiadas. SOFFID IAM ofrece la capacidad de inventariar, catalogar y registrar el uso de cuentas privilegiadas. Integración con otros productos. SOFFID IAM permite su integración con productos de otras compañías como, por ejemplo, Active Directory. Respecto a los conceptos y herramientas que aparecen en SOFFID IAM, sedestacan los siguientes: El acceso a SOFFID IAM siempre se realiza desde la consola de gestión, una herramienta web diseñada acorde a la guía de buenas prácticas de OWASP. Además, esta web cuenta con mecanismos reforzados para responder ante ataques de fuerza bruta. Esto permite el uso de la consola de forma remota desde cualquier ordenador usando Internet Explorer, Firefox o Chrome. SOFFID IAM también cuenta con un portal propio usable desde cualquier dispositivo, Android e iOS incluidos, en formato vertical u horizontal totalmente configurable. Los lenguajes disponibles para la consola son: catalán, español o inglés. Seguridad en SOFFID. Los usuarios de SOFFID pueden tener asignados tres roles distintos entre sí. Dichos roles son creados con el objetivo de garantizar una distribución de responsabilidades segura. La creación de estos roles se realiza durante la instalación del TOE y son los siguientes: Usuario Administrador: Este rol permite al usuario gestionar y modificar todas las funcionalidades y atributos de seguridad del sistema. Usuario Básico: Rol asignado a los usuarios que no cuentan con ningún permiso con privilegios, únicamente otorgando acceso a su propia información y a cuentas de otros sistemas vinculadas con su usuario de SOFFID. Acceso PAM: Este rol es otorgado a usuarios básicos, capacitándoles para acceder a un sistema remoto a través del proceso PAM. Gestión de roles. La gestión de roles es una característica importante de SOFFID IAM, ayudando a las organizaciones a simplificar y mejorar su gestión de identidad y acceso, asegurando que los usuarios cuenten con los permisos correctos para llevar a cabo sus tareas y limitando el acceso a recursos innecesarios. Motor de flujo de trabajo. Esta característica es clave en SOFFID IAM dado que permite a las organizaciones automatizar sus procesos de negocio y de gestión de identidad y acceso. Esta automatización cumple con los requisitos de auditoría y conformidad y permite asegurar la transparencia y colaboración en todo el proceso. Suministro de usuarios. Se trata de una pieza esencial en SOFFID IAM, ayudando a las organizaciones a automatizar la creación, modificación y borrado de cuentas de usuario, accesos a recursos de varios sistemas y aplicaciones, mejorar la eficiencia y precisión, reducir errores y costes asociados a la gestión de cuentas de usuarios de forma manual, y mejorar la eficiencia de la seguridad y operaciones. Cuentas privilegiadas. Las cuentas privilegiadas constituyen un aspecto crítico de la seguridad de la información en las organizaciones. SOFFID IAM ofrece un producto que incluye una gestión segura y robusta de este tipo de cuentas. Concretamente, permite la centralización de la gestión de cuentas privilegiadas de varios sistemas y aplicaciones y la monitorización del uso de dichas cuentas.", "category": "Otras herramientas", "manufacturer": "SOFFID IAM, S.L.", "type": "Product", "evaluation_facility": "Clover Technologies", "status": "Certified", "certification_date": "2025-03-20", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2167", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2168", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2169" } }, { "product": "Juniper QFX5700 (Junos EVO 23.4R2-S2.3)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1041-juniper-qfx5700-junos-evo-23-4r2-s2-3", "category": "RoutersSwitches", "manufacturer": "Juniper Networks, Inc.", "certification_date": "2025-05-20", "enhanced": { "description": "El QFX5700 de Juniper Networks es un switch de agregación de alta capacidad que ofrece un rendimiento de 12.8 Tbps en un formato de 5U. Es compatible con diversas interfaces Ethernet de alta velocidad (10/40/100/400GE) y está diseñado para ofrecer alto rendimiento, escalabilidad y flexibilidad, siendo ideal para proveedores de servicios, redes web y empresariales. Este switch utiliza el chipset Broadcom Trident 4 y admite funciones avanzadas de Capa 2, Capa 3 y EVPN VXLAN, además de contar con soporte para MACsec en línea, lo que lo convierte en una opción óptima para redes IP de 400GbE de alta densidad en centros de datos. El QFX5700 ejecuta el sistema operativo Junos OS 23.4R2-S2.3-EVO. La versión Junos OS Evolved 23.4R2-S2.3-EVO introduce varias mejoras y funciones diseñadas para optimizar la funcionalidad y el rendimiento de los dispositivos de red de Juniper. Los usuarios habituales se conectarán al TOE a través de los puertos Ethernet ubicados en el dispositivo. El TOE creará un VXLAN, lo que permitirá una segmentación de red escalable y superposiciones, facilitando una conectividad eficiente y flexible entre diferentes entornos físicos y virtualizados dentro del centro de datos. La administración del TOE puede ser realizada por usuarios administradores a través de los siguientes métodos de acceso local: Puerto de consola: el administrador puede conectarse al TOE a través del puerto de consola ubicado en el dispositivo. Puerto de gestión: el administrador puede conectarse al TOE a través del puerto de consola ubicado en el dispositivo hacia una red de gestión (Management LAN) u otro dispositivo con conexión Ethernet para administración fuera de banda (OOB management).", "category": "Routers", "manufacturer": "Juniper Networks, Inc.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-05-20", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2277", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2278", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2279" } }, { "product": "NetinDS v2.0.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1040-netinds-v2-0-2", "category": "Otras herramientas", "manufacturer": "NETIN SYSTEMS S.L.", "certification_date": "2025-05-20", "enhanced": { "description": "NetinDS is a Network Management Software specially designed for monitoring industrial technology devices. NetinDS is a distributed and agent-based system that monitors large OT infrastructures and modern industrial automation systems. The product doesn't provide a single deployment environment, since it allows a properly configuration accomplished with the specific operational environment and size of the organization. NetinDS, in its Standalone deployment mode, is the one covered from the scope of the Common Criteria Certification. In this version, NetinDS acts like agent and server as a single deployment.", "category": "Otras herramientas", "manufacturer": "NETIN SYSTEMS S.L.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-05-20", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2159", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2160", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2161" } }, { "product": "SpiFlash TrustME Secure Flash Memory W75F40W[W/R][I/J/W][B/C] W75F40W[BY/Q3][I/J/W][C/B]G version AA", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1039-spiflash-trustme-secure-flash-memory-w75f40w-w-r-i-j-w-b-c-w75f40w-by-q3-i-j-w-c-b-g-version-aa", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "certification_date": "2025-05-20", "enhanced": { "description": "The TOE is a memory flash IC designed to be embedded into highly critical hardware devices such as smart card, secure element, USB token, secure micro SD, etc. These devices will embed secure applications such as financial, telecommunication, identity (e-Government), etc and will be working in a hostile environment. In particular, the TOE is dedicated to the secure storage of the code and data of critical applications. The security needs for the TOE consist in: Maintaining the integrity of the content of the memories and the confidentiality of the content of protected memory areas as required by the critical HW products (e.g. Security IC) the Memory Flash is built for. Providing a secure communication with the Host device that will embed the TOE in a secure HW product such as Security IC.", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2025-05-20", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2155", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2156", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2157" } }, { "product": "A400M MDS v6.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1038-a400m-mds-v6-0", "category": "", "manufacturer": "Airbus Defence and Space", "certification_date": "2025-05-20", "enhanced": { "description": "", "manufacturer": "Airbus Defence and Space", "type": "System", "evaluation_facility": "Centro de Evaluación de la Seguridad de las Tecnologías de la Información (CESTI)", "status": "Certified", "certification_date": "2025-05-20", "cc_version": "ITSEC", "level": "E2" } }, { "product": "FortiEDR version 5.0.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1037-fortiedr-version-5-0-3", "category": "Otras herramientas", "manufacturer": "Fortinet, Inc.", "certification_date": "2025-03-26", "enhanced": { "description": "FortiEDR 5.0.3 tiene una arquitectura distribuida que recolecta el flujo de establecimiento de conexión de los dispositivos de comunicación de una organización directamente de las partes internas del sistema operativo de cada dispositivo. Este analiza el flujo de eventos que precedieron al establecimiento de la conexión y determina si la solicitud de establecimiento de la conexión fue maliciosa. El sistema puede hacer cumplir la política de su organización bloqueando la solicitud de establecimiento de conexión para evitar la fuga de datos. El TOE está compuesto por los siguientes elementos que en su conjunto realizan las tareas de EDR: Collector: Se trata del agente instalado en cada uno de los endpoints que se quieren proteger. Se encarga de analizar los procesos, memoria y ficheros en cada sistema final y enviárselos al elementoCore con el objetivo de detectar las amenazas. Agreggator y Central Manager: Consiste en una máquina virtual sobre la que se instala el sistema operativo basado en Centos 7. Este componente se encarga de centralizar la gestión de los demáselementos del TOE proporcionando una interfaz de administración web y permitiendo las distintas opciones de administración de las políticas configuradas en la organización. Core: Se trata de una máquina virtual sobre la que corre el sistema operativo basado en Centos 7, este componente centraliza los datos recibidos por parte de los Collectors y determina si suponeno no una amenaza para el sistema.", "category": "Otras herramientas", "manufacturer": "Fortinet, Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2025-03-26", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2142", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2143", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2144" } }, { "product": "Network Appliance Platform, modelo NS1, software N2OS, version 24.2.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1036-network-appliance-platform-modelo-ns1-software-n2os-version-24-2-0", "category": "Herramientas IDS, IPS Y ANTIDDOS", "manufacturer": "NOZOMI NETWORKS SAGL", "certification_date": "2025-03-26", "enhanced": { "description": "El TOE cuenta con un software propio (N2OS) que permite la gestión y administración del TOE. Su función principal es analizar el tráfico de red en tiempo real e identificar cualquier irregularidad. Para ello, profundiza en los paquetes utilizando su conocimiento de los protocolos. Dicho análisis de red puede realizarse sobre redes que usan protocolos comunes, así como en redes OT que utilicen el protocolo SCADA. Para la instalación, configuración y operación del producto, se dispone de una consola que permite realizar las operaciones necesarias. El usuario podrá interactuar con el TOE de las siguientes formas: De manera local, a través de una conexión mediante cable serie al sensor. De manera remota, a través de los siguientes canales de comunicación: Una terminal de comandos vía SSH. Una interfaz gráfica a través de una consola web vía HTTPS.", "category": "Herramientas IDS, IPS Y ANTIDDOS", "manufacturer": "NOZOMI NETWORKS SAGL", "type": "Product", "evaluation_facility": "Clover Technologies", "status": "Certified", "certification_date": "2025-03-26", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2138", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2139", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2140" } }, { "product": "Huawei EulerOS 2.0 (V200R011C00 patch version SPC501)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1035-huawei-euleros-2-0-v200r011c00-patch-version-spc501", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2025-03-26", "enhanced": { "description": "Huawei EulerOS 2.0 is a general purpose, multi-user, multi-tasking Linux based operating system. It provides a platform for a variety of applications, including services on cloud environment. Huawei EulerOS 2.0 evaluation covers a potentially distributed network of systems running the evaluated version and its configurations as well as other peer systems operating within the same management domain. Thehardware platforms selected for the evaluation consist of machines that are available on market when the evaluation has completed and to remain available for a substantial period of time afterwards. The TOE Security Functions (TSFs) consist of functions of Huawei EulerOS 2.0 that run in kernel mode plus some trusted processes running in user mode. These are the functions that enforce the security policy as defined in the Security Target. Tools and commands executed in user mode that are used by an administrative user need also to be trusted to manage the system in a secure way, but they are not considered to be part of the TSF, just as with other operating system evaluations. The hardware, BIOS firmware and potentially other firmware layers between the hardware and the TOE, are considered to be part of the TOE environment.", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2025-03-26", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2134", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2135", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2136" } }, { "product": "OPNsense Business Edition 23.10.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1034-opnsense-business-edition-23-10-2", "category": "Firewall", "manufacturer": "Deciso B.V.", "certification_date": "2025-03-26", "enhanced": { "description": "OPNsense Business Edition es un cortafuegos de estado basado en software. Se encarga de interconectar dos o más redes, canalizando todas las comunicaciones entre ellas a través de sí mismo para examinar cada mensaje y bloquear aquellos que no cumplan los criterios de seguridad especificados. El TOE incluye tanto la aplicación cortafuegos como la plataforma/sistema operativo sobre el que opera. El sistema operativo subyacente, basado en FreeBSD, es un componente esencial del TOE, ya que proporciona las capacidades necesarias para la ejecución segura del TOE. Así pues, el TOE se considera una solución integrada que comprende: Aplicación cortafuegos: implementa la funcionalidad de filtrado de tráfico y gestión de políticas de seguridad Plataforma/Sistema Operativo: FreeBSD, configurado específicamente para soportar las operaciones de seguridad requeridas por el TOE. Interfaz de gestión: Incluye tanto la interfaz de línea de comandos (CLI) como la interfaz gráfica de usuario (GUI), a través de las cuales se realiza la administración del TOE. Aunque el TOE ofrece una amplia gama de funcionalidades adicionales, como VPN, proxy, detección de intrusos, entre otras, el alcance de la evaluación se centra en la funcionalidad de cortafuegos (filtrado de tráfico y gestión de políticas).", "category": "Firewall", "manufacturer": "Deciso B.V.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-03-26", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2130", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2131", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2132" } }, { "product": "MetaClean for Outlook v5.2.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1033-metaclean-for-outlook-v5-2-1", "category": "Others", "manufacturer": "ADARSUS Technologies", "certification_date": "2025-03-26", "enhanced": { "description": "The TOE is a software solution that addresses file metadata management on mail attachments. It can be used for automatically deleting or modifying metadata with previous defined values, from outgoing documents in Microsoft Outlook. In order to modify metadata instead of deleting it, it is necessary to enter in the general configuration the specific data you want to modify instead of the metadata in question. MetaClean for Outlook is a plugin for the Microsoft Outlook email desktop client that allows to automatically process the metadata of email attachments. The main functionality of the TOE is implemented by the TOE Java program called MetaCleanMail.exe, which deletes or modifies metadata. The metadata processing is implemented following the next steps: Attachment inspection process: the attachment file format is examined and if it matches with the general configuration, the file is selected to be processed by the TOE. Temporary disk copy: attachments that meet the general configuration are copied to a temporary drive disk before metadata erasure/modification processing is performed. Invoke to MetaCleanMail.exe: this TOE program is invoked to remove or modify metadata in the attached files. The process is synchronous and the", "category": "Others", "manufacturer": "ADARSUS Technologies", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-03-26", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2126", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2127", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2128" } }, { "product": "MiDNI iOS versión 1.0.0 (preproducción)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1029-midni-ios-version-1-0-0-preproduccion", "category": "Otras herramientas", "manufacturer": "FNMT-RCM", "certification_date": "2025-01-28", "enhanced": { "description": "El producto es una aplicación diseñada para dispositivos iOS que se define como “un visor de datos de identidad del usuario en dispositivos móviles”. El TOE MiDNI iOS v1.0.0 (preproducción) es desarrollado por la Fábrica Nacional de Moneda y Timbre – Real Casa de la Moneda (desde ahora en adelante las siglas FNMT) para los dispositivos iOS. El TOE proporciona la interfaz para la visualización de sus datos identificativos, que serán descargados de servicios web externos, pero no almacenará en el dispositivo dichos datos, sólo los esenciales para el correcto funcionamiento. La funcionalidad principal del TOE es mostrar parte de la información contenida en el Documento Nacional de Identidad (desde ahora en adelante las siglas DNI) de España en formato virtual (código QR) en vez del formato tradicional físico (tarjeta de policarbonato). Permite seleccionar entre tres únicas vistas virtuales: DNI EDAD: muestra la foto, número de DNI y si se es mayor de edad o no. DNI SIMPLE: muestra la foto, número de DNI, nombre completo, fecha nacimiento, sexo y fecha de validez. DNI COMPLETO: muestra el contenido completo de nuestro DNI virtual (destacar que no se incluye el número de soporte ni el equipo de expedición). Estas vistas no son mostradas directamente en el dispositivo móvil iOS del usuario, sino que el TOE genera un código QR temporal que deber ser escaneado por otro usuario (en adelante el validador) usando la funcionalidad de verificación que también se proporciona en el TOE. NOTA: Al tratarse de una aplicación en estado de preproducción, la aplicación no se encontrará disponible en ningún market de aplicaciones.", "category": "Otras herramientas", "manufacturer": "FNMT-RCM", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-01-28", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2109", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2110", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2111" } }, { "product": "Teldat Router M2 v11.02.02.85.03", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1031-teldat-router-m2-v11-02-02-85-03", "category": "Routers", "manufacturer": "Teldat, S.A.", "certification_date": "2025-01-21", "enhanced": { "description": "El TOE (Teldat Router M2 v11.02.02.85.03) es un dispositivo de red basado en arquitectura ARM que interconecta dos o más redes, enrutando los paquetes entre ellas. Los datos son transmitidos a través de los puertos del TOE, los cuales pueden ser gestionados a través de una consola local y SSHv2 (CLI). A través de dichas interfaces se pueden configurar los usuarios, banners, tiempo de inactividad, habilitar o deshabilitar los diferentes puertos del TOE, asignar diferentes niveles de prioridad a los diferentes puertos del TOE y actualizar el firmware. El TOE también dispone de una interfaz web que permite actualizar el firmware y habilitar la funcionalidad de VLAN. Las credenciales de los usuarios están almacenadas localmente en el TOE usando el algoritmo PBKDF2-SHA256. El TOE proporciona funcionalidad de conmutador, permitiendo la segmentación en redes virtuales (VLANs) y el envío del tráfico de red a través de los puertos del TOE a nivel de capa de enlace (capa 2). El TOE está compuesto de un dispositivo hardware que contiene firmware embebido. El TOE genera registros de auditoría y los transmite a una entidad externa autorizada.", "category": "Routers", "manufacturer": "Teldat, S.A.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2025-01-21", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2121", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2122", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2123" } }, { "product": "GMV GNSS Cryptographic Module v2.1.7", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1028-gmv-gnss-cryptographic-module-v2-1-7", "category": "Otras herramientas", "manufacturer": "GMV AEROSPACE AND DEFENCE, S.A.", "certification_date": "2024-12-21", "enhanced": { "description": "The GMV GNSS Module consists in a software library developed in Linux platform which main purpose is to provide the cryptographic services which could be used in the future for other projects related with GNSS, e.g. the Open Service Navigation Message Authentication (OSNMA) protocol used in Galileo. Maintained versión 2.2.7 According to the CCRA (Common Criteria Recognition Arrangement) requirements regarding the assurance continuity outlined in [AC] and considering the impact analysis report [IAR] provided by GMV Aerospace and Defence, S.A., the changed TOE version GMV GNSS Cryptographic Module v2.2.7 maintains the assurance gained in the original TOE certification GMV GNSS Cryptographic Module v2.1.7. The baseline for this maintenance have been the certification report [INF- 4410], the Security Target [STEOR], the Evaluation Technical Report [EXT- 9230] from the original certified TOE referenced by the file number 2023- 23, and the impact analysis report [IAR] from the changed TOE referenced by the file number 2025-16.", "category": "Otras herramientas", "manufacturer": "GMV AEROSPACE AND DEFENCE, S.A.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-08-21", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2310", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2102", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2103" } }, { "product": "H3C Switch Series version 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1026-h3c-switch-series-version-1-0", "category": "Switches", "manufacturer": "NEW H3C TECHNOLOGIES CO., LTD.", "certification_date": "2024-11-08", "enhanced": { "description": "The Target of Evaluation (TOE) is the H3C Switch Series running Comware. Each series of this family consists of a set of distinct Switches which vary primarily according to power delivery, performance, and port density. Each TOE Device is running the same Comware software with only the modules applicable for the specific hardware installed. These TOE Devices are composed of hardware and firmware and are used to provide a network infrastructure supporting the switching of network traffic between connected networks.", "category": "Switches", "manufacturer": "NEW H3C TECHNOLOGIES CO., LTD.", "type": "Product", "evaluation_facility": "SGS Brightsight Barcelona S.L. (Unipersonal)", "certification_date": "2024-11-08", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2077", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2078", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2079" } }, { "product": "Kaytus Server Baseboard Management Controller 1.49.07", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1025-kaytus-server-baseboard-management-controller-1-49-07", "category": "Others", "manufacturer": "KAYTUS Systems PTE. LTD.", "certification_date": "2024-11-08", "enhanced": { "description": "The KAYTUS Server Baseboard Management Controller is an out-of-band management firmware running in a System-on-Chip microprocessor located in an KAYTUS V2 Server that provides remote management capabilities, including hardware asset management, health status monitoring, fault analysis and remote control.", "category": "Others", "manufacturer": "KAYTUS Systems PTE. LTD.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2024-11-08", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2073", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2074", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2075" } }, { "product": "V2X subsystem on Transceiver module MEB version 0456", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1023-v2x-subsystem-on-transceiver-module-meb-version-0456", "category": "Otras herramientas", "manufacturer": "LG ELECTRONICS INC.", "certification_date": "2024-11-08", "enhanced": { "description": "The TOE is a part of the software code that runs on a compatible hardware platform such as the transceiver module and handles the V2X communications via CAM and DEMN messages. The TOE has to be deployed in a MEB UNECE configuration pertaining to electric vehicle. MEB stands for “Modularer Elektrifizierungs- Baukasten” in German, which translates to “Modular Electrification Toolkit” in English. Among the various lines of the MEB platform, MEB UNECE can be considered as the superset of the TOE and is applied to some vehicle models such as I.D.BUZZ. Thus, the TOE is a software that acts as a communications system placed in the vehicle in order to provide different ITS services (active road, co-operative traffic efficiency, co-operative local services, Global Internet services, etc.). The TOE is used by integrating it into the application processor (AP) and the microcontroller unit (MCU) elements of the transceiver module. The TOE consists of system interface for communication, C2X stack and service layer. Furthermore, they are packaged in one binary file. Maintained version 0471 (26/03/2025) According to the CCRA (Common Criteria Recognition Arrangement) requirements regarding the assurance continuity outlined in [AC] and considering the impact analysis report [IAR] provided by LG ELECTRONICS INC., the changed TOE version V2X subsystem on Transceiver Module MEB, version 0471 maintains the assurance gained in the original TOE certification V2X subsystem on Transceiver Module MEB, version 0456. The baseline for this maintenance have been the certification report [INF- 4414], the Security Target [STEOR], the Evaluation Technical Report [EXT- 9238] from the original certified TOE referenced by the file number 2024-14, and the impact analysis report [IAR] from the changed TOE referenced by the file number 2024-55. Maintained version 0522 (26/03/2025) According to the CCRA (Common Criteria Recognition Arrangement) requirements regarding the assurance continuity outlined in [AC] and considering the impact analysis report [IAR] provided by LG ELECTRONICS INC., the changed TOE version V2X subsystem on Transceiver Module MEB, version 0522 maintains the assurance gained in the original TOE certification V2X subsystem of Transceiver Module MEB, version 0456. The baseline for this maintenance have been the certification report [INF- 4414], the Security Target [STEOR], the Evaluation Technical Report [EXT- 9238] from the original certified TOE referenced by the file number 2024-14, and the impact analysis report [IAR] from the changed TOE referenced by the file number 2024-56. Maintained version 0559 (26/03/2025) According to the CCRA (Common Criteria Recognition Arrangement) requirements regarding the assurance continuity outlined in [AC] and considering the impact analysis report [IAR] provided by LG ELECTRONICS INC., the changed TOE version V2X subsystem on Transceiver Module MEB, version 0559 maintains the assurance gained in the original TOE certification V2X subsystem on Transceiver Module MEB, version 0456. The baseline for this maintenance have been the certification report [INF- 4414], the Security Target [STEOR], the Evaluation Technical Report [EXT- 9238] from the original certified TOE referenced by the file number 2024-14, and the impact analysis report [IAR] from the changed TOE referenced by the file number 2024-58.", "category": "Otras herramientas", "manufacturer": "LG ELECTRONICS INC.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2025-03-26", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2197", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2056", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2057" } }, { "product": "V2X subsystem on Transceiver module MQBw version 0353 | version 0610", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1018-v2x-subsystem-on-transceiver-module-mqbw-version-0353", "category": "Otras herramientas", "manufacturer": "LG ELECTRONICS INC.", "certification_date": "2024-08-13", "enhanced": { "description": "The TOE is a part of the software code that runs on a compatible hardware platform such as the transceiver module and handles the V2X communications via CAM and DEMN messages. The TOE has to be deployed in a MQBw UNECE configuration pertaining to combustion vehicle. MQB stands for “Modularer Querbaukasten” in German, which translates to “Modular Transverse Matrix” in English. Among the various lines of the MQB platform, MQBw UNECE can be considered as the superset of the TOE and is applied to some vehicle models such as Golf and Passat. Thus, the TOE is a software that acts as a communications system placed in the vehicle in order to provide different ITS services (active road, cooperative traffic efficiency, co-operative local services, Global Internet services, etc.). The TOE is used by integrating it into the application processor (AP) and the microcontroller unit (MCU) elements of the transceiver module. The TOE consists of system interface for communication, C2X stack and service layer. Furthermore, they are packaged in one binary file. Maintained version 601 (21/12/2024) According to the CCRA (Common Criteria Recognition Arrangement) requirements regarding the assurance continuity outlined in [AC] and considering the impact analysis report [IAR] provided by LG ELECTRONICS INC., the changed TOE version V2X subsystem on Transceiver Module MQBw version 0610 maintains the assurance gained in the original TOE certification V2X subsystem on Transceiver Module MQBw, v0353. The baseline for this maintenance have been the certification report [INF-4348], the Security Target V2X subsystem on Transceiver Module MQBw Security Target, v1.5 (2024-05-31), the Evaluation Technical Report [EXT-9086] from the original certified TOE referenced by the file number 2022-45, and the impact analysis report [IAR] from the changed TOE referenced by the file number 2024-46.", "category": "Otras herramientas", "manufacturer": "LG ELECTRONICS INC.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2024-12-21", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2086", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2038", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2039" } }, { "product": "DefensePro and APSolute Vision Attack Mitigation System (APSolute Vision 4.85.00, DefensePro 8.26.1.0)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1017-defensepro-and-apsolute-vision-attack-mitigation-system-apsolute-vision-4-85-00-defensepro-8-26-1-0", "category": "Otras herramientas", "manufacturer": "RADWARE, LTD.", "certification_date": "2024-08-13", "enhanced": { "description": "The TOE is a series of products which themselves are composed of two independent components: the DefensePro 8.26.1.0 and the APSolute Vision 4.85.00. Either of them can be running directly on a hardware appliance, or on a virtualized environment (Virtual Appliance). The TOE is designed to act as a real-time perimeter attack mitigation system, securing organizations against emerging network attacks, Denial of Service (DoS) and Distributed-DoS (DDoS).", "category": "Otras herramientas", "manufacturer": "RADWARE, LTD.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-08-13", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2033", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2034", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2035" } }, { "product": "Huawei CX600 and PTN 6900 Series Routers running VRP software version V800R021C00SPC100", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1015-huawei-cx600-and-ptn-6900-series-routers-running-vrp-software-version-v800r021c00spc100", "category": "Routers", "manufacturer": "Huawei Technologies España, S.L.", "certification_date": "2024-07-31", "enhanced": { "description": "The TOE is CX600&PTN 6900 Series Routers running VRP software comprised of both software and hardware. The software is comprised of Versatile Routing Platform (VRP) software, VRP is a network OS incorporating Huawei's proprietary intellectual properties and capable of supporting various network systems of Huawei. The hardware is comprised of the following: CX600-M2K, CX600-M2K-B, CX600-X8A, CX600-X16A, PTN 6900-M2K, PTN 6900-M2K-B, PTN 6900-2-M8C, PTN 6900-2-M14. The Huawei CX600&PTN 6900 Series Routers running VRP software use the same VRP version. TSF relevant functions depend on software implementation. The physical scope comprises the following hardware appliances and the TOE software: Appliances: CX600-M2K, CX600-M2K-B, CX600-X8A, CX600-X16A, PTN 6900-M2K, PTN 6900-M2K-B, PTN 6900-2-M8C, PTN 6900-2-M14 Software: CX600&PTN 6900 Router V800R021C00SPC100, CX600-M2K-B, CX600-X8A, CX600-X16A, PTN 6900-M2K, PTN 6900-M2K-B, PTN 6900-2-M8C, PTN 6900-2-M14", "category": "Routers", "manufacturer": "Huawei Technologies España, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-07-31", "cc_version": "Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2025", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2026", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2027" } }, { "product": "ONE2501 version OneOS6.12.x5patch01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1014-one2501-version-oneos6-12-x5patch01", "category": "Routers", "manufacturer": "EKINOPS S.A.", "certification_date": "2024-07-31", "enhanced": { "description": "La descripción funcional del TOE, según se recoge en su declaración de seguridad, es la siguiente: The ONE2501 is a multi-service access router (MSAR) for Small and Medium Businesses (SMB) and Branch offices. It is intended for use at the customer premises. Under ONE2501 the OneOS Operating System version OneOS6.12x5patch01 is running. The TOE provides the following security functions: Trusted Administration Identification and Authentication Trusted Channels Cryptography Trusted updates Audit Protection of credentials and sensitive data. Failure protection Router", "category": "Routers", "manufacturer": "EKINOPS S.A.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2024-07-31", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2020", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2021", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2022" } }, { "product": "Permiso de Residencia versión 4.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/426-permiso-de-residencia-version-4-0", "category": "Smart Cards and similiar devicesQSCD/SSCD", "manufacturer": "FNMT-RCM", "certification_date": "2024-05-29", "enhanced": { "description": "El TOE es una tarjeta con funcionalidades de documento de viaje. El TOE está compuesto de un chip previamente certificado (que proporciona la librería criptográfica y el firmware con el loader para la actualización del código), el sistema operativo y las librerías biométricas. Esta tarjeta implementa un sistema de ficheros que incluye las siguientes aplicaciones: eSign (aplicación de firma [TR03110-2]). eID (aplicación de identificación [TR03110-2]). ePass (aplicación de pasaporte [ICAO09303]).", "category": "Smart Cards and similiar devices", "manufacturer": "FNMT-RCM", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-05-29", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_DVS.2 + ATE_DPT.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2016", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2017", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2005" } }, { "product": "Microsoft SQL Server 2022 on Linux Database Engine Enterprise Edition x64 (English) version 16.0.4105.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/898-microsoft-sql-server-2022-on-linux-database-engine-enterprise-edition-x64-english-version-16-0-4105-2", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "certification_date": "2024-05-15", "enhanced": { "description": "The TOE is a database management system (DBMS) with the capability to limit TOE access to authorized users, enforce Discretionary Access Controls on objects under the control of the database management system based on user and/or role authorizations, and to provide user accountability via audit of users’ actions.", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2024-05-15", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.3)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2007", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2008", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2009" } }, { "product": "Microsoft SQL Server 2022 Database Engine Enterprise Edition x64 (English) version 16.0.4105.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/901-microsoft-sql-server-2022-database-engine-enterprise-edition-x64-english-version-16-0-4105-2", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "certification_date": "2024-05-15", "enhanced": { "description": "The TOE is a database management system (DBMS) with the capability to limit TOE access to authorized users, enforce Discretionary Access Controls on objects under the control of the database management system based on user and/or role authorizations, and to provide user accountability via audit of users’ actions.", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2024-05-15", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.3)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2011", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2012", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2013" } }, { "product": "Strong Customer Authentication for Apple Pay, on MacBook Air 2022 with M2 running macOS Ventura 13.3.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1012-strong-customer-authentication-for-apple-pay-on-macbook-air-2022-with-m2-running-macos-ventura-13-3-1", "category": "Others", "manufacturer": "Apple Inc.", "certification_date": "2024-05-15", "enhanced": { "description": "The TOE is a combination of Hardware and Software components that implement Strong Customer Authentication and Dynamic Linking for Apple Pay on the MacBook Air 2022 with M2 running macOS Ventura 13.3.1.", "category": "Others", "manufacturer": "Apple Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-05-15", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + ADV_FSP.3, ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2041", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2043", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2042" } }, { "product": "Pasaporte electrónico versión 4.0 / DNIe versión 4.01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1009-pasaporte-electronico-version-4-0-dnie-version-4-01", "category": "Smart Cards and similiar devicesQSCD/SSCD", "manufacturer": "FNMT-RCM", "certification_date": "2024-04-28", "enhanced": { "description": "El TOE es una libreta con funcionalidades de documento de viaje. El TOE está compuesto de un chip previamente certificado (que proporciona la librería criptográfica y el firmware con el loader para la actualización del código), el sistema operativo y las librerías biométricas. Esta libreta implementa un sistema de ficheros que incluye las siguientes aplicaciones: eSign (aplicación de firma). eID (aplicación de identificación). ePass (aplicación de pasaporte). Mantenimiento DNIe 4.01 (29/07/2024): De acuerdo a los requisitos del CCRA (Common Criteria Recognition Arrangement) para continuidad de las garantías de seguridad y considerando el Informe de Análisis de Impacto proporcionado por la empresa Fábrica Nacional de Moneda y Timbre - Real Casa de Ia Moneda, la versión del TOE DNIe 4.01, considerando la naturaleza de los cambios, la conclusión es clasificar éstos como cambios menores y por tanto se lleva a cabo el mantenimiento del certificado como garantía de continuidad de la seguridad del producto. Los únicos cambios declarados por el solicitante con respecto a la certificación del producto Pasaporte electrónico versión 4 .0 son: Se han modificado los bytes históricos 3, 4, 5 y 6, que identifican el TOE en el ATR y ATS y el identificador WINDOWS SMARTCARD FRAMEWORK CARD IDENTIFIER pasando de denominarse ‘MRTD’ a ‘DNIe’. La versión del sistema operativo sigue siendo la misma 5.52. Se ha modificado la definición de compilación condicional a “DNIe_5_52”. Se han actualizado de los scripts de pre-personalización y personalización reflejando en la nomenclatura de los mismos la nueva versión a DNIe 4.01. Se han modificado las guías para introducir la nueva denominación del TOE. El punto de partida para la valoración del mantenimiento ha sido el Informe de Certificación INF-4292, la Declaración de Seguridad y el Informe Técnico de Evaluación EXT-8912 del producto Pasaporte electrónico versión 4 .0 con certificado referencia CCN-CC-5/2024, con número de expediente 2018-70, así como la Declaración de Seguridad modificada con motivo del mantenimiento realizado con número de expediente 2024-41 y su correspondiente Informe de Análisis de Impacto. El TOE DNIe 4.01 es una tarjeta inteligente que proporciona las funcionalidades de firma, identificación y documento de viaje. Esta tarjeta está compuesta por un chip previamente certificado (que proporciona la librería criptográfica y el firmware con el loader para la actualización del código), el sistema operativo y las librerías biométricas.", "category": "Smart Cards and similiar devices", "manufacturer": "FNMT-RCM", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-07-29", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_DVS.2 + ATE_DPT.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2029", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1971", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1982" } }, { "product": "MetaClean Sync v2.3.0 Professional Version and MetaClean Dashboard v1.3.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1008-metaclean-sync-v2-3-0-professional-version-and-metaclean-dashboard-v1-3-0", "category": "Others", "manufacturer": "ADARSUS Technologies", "certification_date": "2024-04-13", "enhanced": { "description": "El TOE, denominado MetaClean Sync v2.3.0 Professional Version and MetaClean Dashboard v1.3.0, es una solución de software que aborda la gestión de metadatos de archivos. Se puede utilizar para eliminar automáticamente metadatos o sobrescribirlos con valores previamente definidos, de archivos en los directorios que se han seleccionado para ser monitorizados, de forma transparente para el usuario final. El TOE puede gestionar metadatos de Microsoft Office (Word, Excel, PowerPoint y Visio), OpenOffice/LibreOffice (documentos de texto, hojas de cálculo y presentaciones), PDF, archivos de imagen, audio y vídeo.", "category": "Others", "manufacturer": "ADARSUS Technologies", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2024-04-13", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1961", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1962", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1963" } }, { "product": "Microsoft Windows 11 (version 22H2), Microsoft Windows 10 (version 22H2), Microsoft Windows Server 2022, Microsoft Windows Server Datacenter: Azure Edition, Microsoft Azure Stack HCIv2 version 22H2, Microsoft Azure Stack Hub, Microsoft Azure Stack Edge", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1005-microsoft-windows-11-version-22h2-microsoft-windows-10-version-22h2-microsoft-windows-server-2022-microsoft-windows-server-datacenter-azure-edition-microsoft-azure-stack-hciv2-version-22h2-microsoft-azure-stack-hub-microsoft-azure-stack-edge", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2024-01-17", "enhanced": { "description": "The TOE includes the Windows 11 operating system; Windows 10 operating system; the Windows Server operating system; Azure Stack Hub, Edge and HCI; and those applications necessary to manage, support and configure the operating system. Windows 10 and Windows Server can be delivered preinstalled on a new computer or downloaded from the Microsoft website.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2024-01-17", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1932", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1933", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1934" } }, { "product": "THN31 Secure Element version 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1002-thn31-secure-element-version-1-0", "category": "Smart Cards and similiar devices", "manufacturer": "BEIJING TSINGTENG MICROSYSTEM CO.,LTD.", "certification_date": "2024-01-06", "enhanced": { "description": "The TOE consists of hardware and IC dedicated software. The hardware is based on a 32-bit secure CPU with ROM (Non-Volatile Read-Only Memory), NVM (Non-volatile Programmable Memory) and RAM (Volatile Memory). The hardware of the TOE also incorporates communication peripherals and cryptographic coprocessors for execution and acceleration of symmetric and asymmetric cryptographic algorithms. The IC dedicated software consists of boot code and two libraries of cryptographic services.", "category": "Smart Cards and similiar devices", "manufacturer": "BEIJING TSINGTENG MICROSYSTEM CO.,LTD.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-01-06", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1908", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1909", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1935" } }, { "product": "Samsung STRONG_V2P10_LN04LPE of S5E9925 with Specific IC Dedicated Software revision 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1004-samsung-strong-v2p10-ln04lpe-of-s5e9925-with-specific-ic-dedicated-software-revision-1-0", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2024-01-06", "enhanced": { "description": "The Target of Evaluation (TOE), the STRONGV2P10_LN04LPE secure subsystem featuring the TORNADO-H cryptographic coprocessor, is a Hard macro instantiated within an SOC which is composed of a processing unit, security components, hardware circuit for testing purpose during the manufacturing process and volatile and non-volatile memories (hardware). The TOE also includes any IC Designer/Manufacturer proprietary IC Dedicated Software as long as it physically exists in an STRONGV2P10_LN04LPE after being delivered by the IC Manufacturer. Such software (also known as IC bootloader/firmware) is used for providing additional services to facilitate the usage of the hardware and/or to provide additional services, a random number generation library and a random number generator. All other software is called Security IC Embedded Software and is not part of the TOE. The SoC S5E9925 is necessary to operate the STRONGV2P10_LN04LPE but it is not TOE hardware. The Security IC Embedded Software is initially stored in encrypted form in external NVM (Flash). Regarding the public key cryptographic libraries, the user has the possibility to tailor this IC Dedicated Software part of the TOE during the manufacturing process by deselecting the public key cryptographic libraries. Hence the TOE can be delivered with or without the functionality of the public key cryptographic libraries what is resulting in two TOE configurations. This is considered in this Security Target and corresponding notes (indicated by “optional”) are added where required. If the user decides not to use the public key cryptographic libraries, the library is not delivered to the user and the accompanying RSA and Elliptic Curve cryptographic mechanisms are not provided by the TOE.", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-01-06", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + ALC_CMC.5 +ALC_TAT.3 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1924", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1925", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1926" } }, { "product": "Deep Discovery Inspector v6.5.1129", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1003-deep-discovery-inspector-v6-5-1129", "category": "Others", "manufacturer": "Trend Micro EMEA Ltd. Sucursal en España", "certification_date": "2024-01-06", "enhanced": { "description": "El TOE, denominado Deep Discovery Inspector, es una solución appliance que detecta anomalías y ataques dirigidos analizándolos en tiempo real, funcionando como un IDS que proporciona a los administradores de TI información de seguridad crítica. El TOE también ofrece capacidades de detección mediante motores de detección avanzados para presentar información detallada sobre amenazas personalizadas y basadas en firmas en base a más de cien protocolos.", "category": "Others", "manufacturer": "Trend Micro EMEA Ltd. Sucursal en España", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2024-01-06", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1916", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1917", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1918" } }, { "product": "authUsb safeDoor version 2.0.0.11", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1006-authusb-safedoor-version-2-0-0-11", "category": "Others", "manufacturer": "authUSB", "certification_date": "2024-01-06", "enhanced": { "description": "authUsb safeDoor es un dispositivo hardware que actúa como barrera entre las memorias USB y los equipos de una organización, identificando amenazas a tres niveles: Eléctrico: monitoriza continuamente el comportamiento de la memoria USB a nivel eléctrico, identificando y deteniendo ataques destructivos de sobretensión tipo UsbKiller (https://usbkill.com/) Hardware: monitoriza continuamente el comportamiento de la memoria USB a nivel hardware, detectando y desactivando ataques de la familia BadUsb, ataques HID (rubber ducky y similares), falsas tarjetas de red, interfaces compuestas, etc Software: dispone de un antivirus integrado (compatible con varios fabricantes) con el que realiza un análisis previo a la descarga de cualquier contenido. authUsb safeDoor ofrece dos conectores hembra USB tipo A para la introducción de memorias USB a analizar y un puerto ethernet para su conexión a la red o punto a punto directamente a un ordenador. A través de esta conexión de red ofrece una interfaz web para la interacción con el usuario.", "category": "Others", "manufacturer": "authUSB", "type": "Product", "evaluation_facility": "SGS Brightsight Barcelona S.L. (Unipersonal)", "status": "Certified", "certification_date": "2024-01-06", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1941", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1942", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1943" } }, { "product": "TC-FNMT versión 5.6", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1001-tc-fnmt-version-5-6", "category": "Electronic signature devicesSmart Cards and similiar devicesQSCD/SSCD", "manufacturer": "FNMT-RCM", "certification_date": "2024-01-02", "enhanced": { "description": "El TOE es una tarjeta criptográfica con la capacidad de realizar firmas electrónicas. El TOE está compuesto de un chip previamente certificado (que proporciona la librería criptográfica y el firmware con el loader para la actualización del código), el sistema operativo y las librerías biométricas. Esta tarjeta implementa un sistema de ficheros que incluye la siguiente aplicación: eSign (aplicación de firma [TR03110-2] conforme a los perfiles de protección BSI-CC-PP-0059-2009-MA-01, BSI-CC-PP-0075, BSI-CCPP-0071 , BSI-CC-PP-0072 Y BSI-CC-PP-0076.", "category": "Electronic signature devices", "manufacturer": "FNMT-RCM", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-01-02", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_DVS.2 + ATE_DPT.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1900", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1901", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1902" } }, { "product": "Microsoft SQL Server 2022 Database Engine Enterprise Edition x64 (English) version 16.0.4025.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/989-microsoft-sql-server-2022-database-engine-enterprise-edition-x64-english-version-16-0-4025-1", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "certification_date": "2023-09-15", "enhanced": { "description": "The TOE is the database engine of SQL Server 2022. SQL Server is a Database Management System (DBMS).The type of the TOE is a database management system (DBMS) with the capability to limit TOE access to authorized users, enforce Discretionary Access Controls on objects under the control of the database management system based on user and/or role authorizations, and to provide user accountability via audit of users’ actions.", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2023-09-15", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1797", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1798", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1799" } }, { "product": "SOMA-c007 Machine Readable Electronic Document SSCD Application version 4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/991-soma-c007-machine-readable-electronic-document-sscd-application-version-4", "category": "QSCD/SSCD", "manufacturer": "Hid Global", "certification_date": "2023-09-15", "enhanced": { "description": "The TOE is a combination of hardware and software configured to securely create, use, and manage Signature Creation Data (SCD). The SSCD protects the SCD during its whole life cycle as to be used in a signature creation process solely by its Signatory. The TOE comprises all IT security functionality necessary to ensure the secrecy of the SCD and the security of the electronic signature. The TOE provides the following functions: to generate Signature Creation Data (SCD) and the corresponding Signature Verification Data (SVD), to export the SVD for certification to the CGA over a trusted channel, to prove the identity as SSCD to external entities, to, optionally, receive and store certificate info, to switch the SSCD from a non-operational state to an operational state, and if in an operational state, to create digital signatures for data with the following steps: select an SCD if multiple are present in the SSCD, authenticate the Signatory and determine its intent to sign, receive data to be signed or a unique representation thereof (DTBS/R) from the SCA over a trusted channel, apply an appropriate cryptographic signature creation function to the DTBS/R using the selected SCD.", "category": "QSCD/SSCD", "manufacturer": "Hid Global", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-09-15", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1819", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1820", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1821" } }, { "product": "SOMA-c007 Machine Readable Electronic Document Basic Access Control version 4 (SOMA-c007_4)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/990-soma-c007-machine-readable-electronic-document-basic-access-control-version-4-soma-c007-4", "category": "Smart Cards and similiar devices", "manufacturer": "Hid Global", "certification_date": "2023-09-15", "enhanced": { "description": "The TOE is an electronic document representing a contactless/contact smart card programmed according to the Logical Data Structure (LDS) [ICAO-10] and providing the Basic Access Control (BAC) according to ICAO Doc 9303 8th edition Part 11. The TOE is composed of: the circuitry of the dual-interface e-Document’s chip Infineon M7892 G12, the IC Dedicated Software with the parts IC Dedicated Test Software and IC Dedicated Support Software, the smart card operating system SOMA-c007 version 4, an ICAO application LDS1 compliant with ICAO Doc 9303-10 and Doc 9303-11 providing the Basic Access Control (BAC), the associated guidance documentation.", "category": "Smart Cards and similiar devices", "manufacturer": "Hid Global", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-09-15", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_DVS.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1811", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1812", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1813" } }, { "product": "Huawei DOPRA SSP V300R005C00SPC123B200", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/987-huawei-dopra-ssp-v300r005c00spc123b200", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2023-07-05", "enhanced": { "description": "The TOE is a software library widely used in Huawei products. It can be dynamically linked with a designated APP and implements these major security feature: auditing, message protection, memory monitoring, black box protection and resource utilization.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2023-07-05", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.1", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1781", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1782" } }, { "product": "Huawei UNC V001R001C20SPC200 with Patch V100R001C20SPH230", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/995-huawei-unc-v001r001c20spc200-with-patch-v100r001c20sph230", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2023-06-21", "enhanced": { "description": "The TOE is server service software that is deployed on CloudOS, which serves as a united network controller (UNC). UNC authenticates mobile subscribers onto the network system and tracks active and idle subscribers on the network system. UNC pages mobile subscribers when it is triggered by new data arriving for an idle subscriber at the assigned Serving GW (gateway). When a subscriber attaches to an eNodeB, the eNodeB select a UNC. UNC in turn selects the Serving GW and the PDN GW that will handle bearer packets of the subscriber. There are procedures to relocate a subscriber to a new UNC (and potentially a new Serving GW), when an active or idle subscriber moves to a new area outside of the current UNC control.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2023-06-21", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1851", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1852", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1853" } }, { "product": "Huawei CloudEngine S Series Switches running VRP software Version V200R020C00SPC300 Patch V200R020SPH507T", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/983-huawei-cloudengine-s-series-switches-running-vrp-software-version-v200r020c00spc300-patch-v200r020sph507t", "category": "Network management tools", "manufacturer": "Huawei Technologies España, S.L.", "certification_date": "2023-06-16", "enhanced": { "description": "The TOE is CloudEngine S Series Switches comprised of both software and hardware. The software is comprised of Versatile Routing Platform (VRP) software, VRP is a network OS incorporating Huawei's proprietary intellectual properties and capable of supporting various network systems of Huawei. The hardware is comprised of the following: CloudEngine S6730-H, CloudEngine S6730-S, CloudEngine S5731-H, CloudEngine S5732-H, CloudEngine S5731-S, CloudEngine S5735-S, CloudEngine S5735-L, CloudEngine S6330-H, CloudEngine S5331-H, CloudEngine S5335-L, CloudEngine S5332-H, CloudEngine S5335-S, CloudEngine S12700E. The Huawei CloudEngine S Series Switches use the same VRP version. TSF relevant functions depend on software implementation. The physical scope comprises the following hardware appliances and the TOE software: CloudEngine S6730-H, CloudEngine S6730-S, CloudEngine S5731-H, CloudEngine S5732-H, CloudEngine S5731-S, CloudEngine S5735-S, CloudEngine S5735-L, CloudEngine S6330-H, CloudEngine S5331-H, CloudEngine S5335-L, CloudEngine S5332-H, CloudEngine S5335-S, CloudEngine S12700E. There are only hardware differences between different devices. All the switches share the same platform so the SFRs are the same. Network management server, local console and syslog server are supported by all TOE evaluated configurations. The TOE only has one configuration.", "category": "Network management tools", "manufacturer": "Huawei Technologies España, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-06-16", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1748", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1749", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1750" } }, { "product": "Alteon version 32.6.3.50", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/982-alteon-version-32-6-3-50", "category": "Others", "manufacturer": "RADWARE, LTD.", "certification_date": "2023-05-03", "enhanced": { "description": "The TOE is the Alteon version 32.6.3.50 series of products, with the TSF covering the core load balancing capabilities together with the SSL Offloading and part of the management capabilities. The TOE, thus, acts as a load balancer which redirects service request in a balanced way to multiple providing servers. As such, from hence forward the TOE may be referred as an ADC or as a load balancer interchangeably. Additionally, the TOE provides the following major security features: security audit, cryptographic support, user data protection, identification and authentication, security management, protection of the TSF, TOE access and trusted path/channel.", "category": "Others", "manufacturer": "RADWARE, LTD.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-05-03", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1740", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1741", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1742" } }, { "product": "Teldat-M1 Series, Software 11.01.09.90.01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/981-teldat-m1-series-software-11-01-09-90-01", "category": "RoutersSwitches", "manufacturer": "Teldat, S.A.", "certification_date": "2023-04-25", "enhanced": { "description": "El TOE es la plataforma de encaminamiento y conmutación de tráfico (Router y Switch) Router Corporativo Teldat-M1 Series con la versión Software 11.01.09.90.01. El dispositivo se distribuye en forma de equipo dedicado o appliance que incluye el software y el hardware necesarios para su operación segura. El Teldat-M1 Series es un router compacto para oficinas medianas y pequeñas que requieren conexiones de alta velocidad. Las principales funciones de seguridad que implementa Teldat-M1 Series son: auditoría, identificación y autentificación, administración confiable, canales seguros, instalación y actualización confiables, protección contra fallos y criptografía.", "category": "Routers", "manufacturer": "Teldat, S.A.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-04-25", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1735", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1736", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1737" } }, { "product": "MKMFC-SMU-CU-V23.00.00.01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/976-mkmfc-smu-cu-v23-00-00-01", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2023-04-25", "enhanced": { "description": "Referencia del Informe de Certificación: 2022-16-INF-4069-v1. 25/04/2023. Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-SPEC-IND-MKMF-X-00005-x. MKMF SMU-CU CLA Security Target, version 24, 20/02/2023. Copia impresa disponible en el CCN. Fecha de expiración del certificado: 25/04/2028. Este campo se refiere a la fecha de expiración del reconocimiento del certificado en el ámbito de los acuerdos de reconocimiento mutuo firmados por este Organismo de Certificación.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-04-25", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4" } }, { "product": "UMKMF-SMU-uncla-v26.00.00.00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/977-umkmf-smu-uncla-v26-00-00-00", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2023-04-25", "enhanced": { "description": "Referencia del Informe de Certificación: 2022-18-INF-4071-v1. 25/04/2023. Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-PL-IND-MKMF-X-00081-x. MKMF SMU-CU UNCLA Security Target, version 19, 20/02/2023. Copia impresa disponible en el CCN. Fecha de expiración del certificado: 25/04/2028. Este campo se refiere a la fecha de expiración del reconocimiento del certificado en el ámbito de los acuerdos de reconocimiento mutuo firmados por este Organismo de Certificación. Mantenimiento UMKMF-SMU-uncla-v23.05.00.00 (29/07/2024): De acuerdo a los requisitos del CCRA (Common Criteria Recognition Arrangement) para continuidad de las garantías de seguridad y considerando el Informe de Análisis de Impacto proporcionado por la empresa by INDRA SISTEMAS DE COMUNICACIONES SEGURAS, S.L., la versión actualizada del TOE UMKMF-SMU-uncla-v23.01.00.00 / UMKMFSMU-uncla-v23.05.00.00, considerando la naturaleza de los cambios, mantiene las garantías certficadas en el expediente original UMKMF-SMUuncla-v23.01.00.00. Se mantiene la fecha de validez del certificado a 25/04/2028. Mantenimiento UMKMF-SMU-uncla-v26.00.00.00 (08/11/2024): De acuerdo a los requisitos del CCRA (Common Criteria Recognition Arrangement) para continuidad de las garantías de seguridad y considerando el Informe de Análisis de Impacto proporcionado por la empresa by INDRA SISTEMAS DE COMUNICACIONES SEGURAS, S.L., la versión actualizada del TOE UMKMF-SMU-uncla-v26.00.00.00, considerando la naturaleza de los cambios, mantiene las garantías certificadas en el expediente original UMKMF-SMUuncla-v23.01.00.00. Se mantiene la fecha de validez del certificado a 25/04/2028.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-07-29", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4" } }, { "product": "MKMF-UKGU-GMS-KGU-GMS-V09.01.00.00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/978-mkmf-ukgu-gms-kgu-gms-v09-01-00-00", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2023-04-25", "enhanced": { "description": "Referencia del Informe de Certificación: 2022-19-INF-4072-v1. 25/04/2023. Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-PL-IND-MKMF-X-00082-x. MKMF KGU-CU UNCLA Security Target, version 22, 20/02/2023. Copia impresa disponible en el CCN. Fecha de expiración del certificado: 25/04/2028. Este campo se refiere a la fecha de expiración del reconocimiento del certificado en el ámbito de los acuerdos de reconocimiento mutuo firmados por este Organismo de Certificación. Mantenimiento MKMF-UKGU-GMS-KGU-GMS-V09.01.00.00 (08/11/2024): De acuerdo a los requisitos del CCRA (Common Criteria Recognition Arrangement) para continuidad de las garantías de seguridad y considerando el Informe de Análisis de Impacto proporcionado por la empresa by INDRA SISTEMAS DE COMUNICACIONES SEGURAS, S.L., la versión actualizada del TOE MKMF-UKGU-GMS-KGU-GMS-V09.01.00.00, considerando la naturaleza de los cambios, mantiene las garantías certificadas en el expediente original MKMF-UKGU-GMS-KGU-GMSV08.00.00.01. Se mantiene la fecha de validez del certificado a 25/04/2028.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2024-11-08", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2" } }, { "product": "MKMF-CKGU-GMS-KGU-GMS-V08.00.00.01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/979-mkmf-ckgu-gms-kgu-gms-v08-00-00-01", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2023-04-25", "enhanced": { "description": "Referencia del Informe de Certificación: 2022-17-INF-4070-v1. 25/04/2023. Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-SPEC-IND-MKMF-X-00004-x. MKMF KGU-CU CLA Security Target, version 23, 20/02/2023. Copia impresa disponible en el CCN. Fecha de expiración del certificado: 25/04/2028. Este campo se refiere a la fecha de expiración del reconocimiento del certificado en el ámbito de los acuerdos de reconocimiento mutuo firmados por este Organismo de Certificación.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-04-25", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2" } }, { "product": "Samsung SP of S3B512C revision 3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/974-samsung-sp-of-s3b512c-revision-3", "category": "Biometric Devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2023-04-08", "enhanced": { "description": "The SP of S3B512C single-chip CMOS micro-controller is designed and packaged specifically for \"Biometric Smart Card\" applications. The Cortex-M33 CPU architecture of the SP of S3B512C microcontrollerfollows the Harvard style, that is, it has separate program memory and data memory. Both instruction and data can be fetched simultaneously without causing a stall, using separate paths for memory access. The main security features of the SP of S3B512C integrated circuit are: Secure fingerprint image capture and feature extraction provided by TOE SP firmware, integrity protected. Access control of Users to Flash memory positions where SP firmware is executed. TOE Unique Identification Countermeasures to avoid attackers reproduction of fingerprint data. An AES hardware block supporting AES encryption and decryption with 128-bit, 192-bit and 256-bit keys in ECB mode. The AES block supports encryption of fingerprint features to be sent to SE of S3B512C. Note SE (Secure Element) is not TOE.", "category": "Biometric Devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-04-08", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1700", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1701", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1702" } }, { "product": "Huawei iSitePower V100R022C00SPC120", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/938-huawei-isitepower-v100r022c00spc120", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2023-02-21", "enhanced": { "description": "The TOE is a software that monitors and manages Huawei's box-type and cabinet-type power systems. It provides a web interface (WebUI) and a LCD Panel that allow users to operate with the TOE in order to change values and parameters. The TOE provides the following key security features: Authentication Authorization Auditing Security Management TOE Access", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2023-02-21", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1680", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1681", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1682" } }, { "product": "DNIe versión 4.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/931-dnie-version-4-0", "category": "Smart Cards and similiar devicesQSCD/SSCD", "manufacturer": "FNMT-RCM", "certification_date": "2023-01-26", "enhanced": { "description": "El TOE es una tarjeta inteligente formada por una plataforma previamente certificada (incluyendo su firmware y la librería criptográfica), el sistema operativo y las librerías biométricas. Esta tarjeta implementa un sistema de ficheros que incluye tres aplicaciones aisladas entre sí: eID (identificación de acuerdo con lo especificado en [TR03110-2]) ePass (pasaporte [ICAO9303], conforme a BSI-CC-PP-0056-V2-2012, BSI-CC-PP-0086 y BSI-CC-PP-0068-V2-2011-MA-01) eSign (aplicación de firma conforme a CC-PP-0059-2009-MA-01, BSI-CC-PP-0071-2012-MA-01 y BSI-CC-PP-0072-2012-MA-02.", "category": "Smart Cards and similiar devices", "manufacturer": "FNMT-RCM", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-01-26", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_DVS.2 + ATE_DPT.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1631", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1632", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1633" } }, { "product": "GuardedBox versión 8.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/932-guardedbox-version-8-4", "category": "Others", "manufacturer": "DINO SECURITY, S.L.", "certification_date": "2023-01-26", "enhanced": { "description": "GuardedBox es una solución web destinada al almacenamiento y compartición de secretos utilizando cifrado extremo a extremo (E2EE). GuardedBox ofrece las siguientes funcionalidades: Almacenamiento de secretos Compartición de secretos Control de secretos: Capacidades de comprobación de las claves públicas del resto de usuarios con los que se precisa compartir secretos. Notificaciones: Registros de auditoría Gestión de preferencias de la cuenta, que permite al usuario: Añadir dispositivos de confianza como segundo factor de autentificación. Modificar la contraseña. Activar/desactivar la recepción de notificaciones vía e-mail. Eliminar completamente la cuenta. Comprobar su clave pública de cifrado. Gestión de licencias Panel de administración", "category": "Others", "manufacturer": "DINO SECURITY, S.L.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2023-01-26", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 2.0", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1639", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1640", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1641" } }, { "product": "Huawei UDG V100R001C20SPC300 with Patch V100R001C20SPH333", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/935-huawei-udg-v100r001c20spc300-with-patch-v100r001c20sph333", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2023-01-26", "enhanced": { "description": "The TOE is server service software that is deployed on CloudOS (FusionSphere). The TOE supports GPRS, UMTS, LTE and 5G NSA that comply with 3GPP specifications. It also supports WLAN and NB-IoT services. In addition, it provides service functions of the GGSN, S-GW, PGW, centralized gateway (CGW), distributed gateway (DGW), meeting various networking requirements of different carriers in different phases and operating scenarios.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2023-01-26", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1655", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1656", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1657" } }, { "product": "Microsoft Windows 11, Windows Server 2022, and other Windows OSes", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/934-microsoft-windows-11-windows-server-2022-and-other-windows-oses", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2023-01-25", "enhanced": { "description": "The TOE includes the Windows 11 operating system; Windows 10 operating system; the Windows Server operating system; Azure Stack Hub, Edge and HCI; and those applications necessary to manage, support and configure the operating system. Windows 10 and Windows Server can be delivered preinstalled on a new computer or downloaded from the Microsoft website.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2023-01-25", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1647", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1648", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1649" } }, { "product": "Huawei ATN Series Routers running VRP software, version V300R006C10SPC300", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/903-huawei-atn-series-routers-running-vrp-software-version-v300r006c10spc300", "category": "Routers", "manufacturer": "Huawei Technologies España, S.L.", "certification_date": "2022-12-10", "enhanced": { "description": "The TOE is AR6000&NetEngine AR600 Series Routers, which consists of the following products: AR6300, AR6280, AR6140-9G-2AC, AR6140-16G4XG, AR6121, AR6120, AR651C, AR651W, AR651, AR657W, AR611W and AR617VW-LTE4EA. The software running in this device is the Versatile Routing Platform (VRP) software version V300R019C11SPC300 Patch V300R019C11HP0095T, that is a network OS incorporating Huawei's proprietary intellectual properties and capable of supporting various network systems of Huawei.", "category": "Routers", "manufacturer": "Huawei Technologies España, S.L.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-12-10", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1615", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1616", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1617" } }, { "product": "Olvido v1.0.6", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/920-olvido-v1-0-6", "category": "Safe Erase Tools", "manufacturer": "Centro Criptológico Nacional (CCN/CNI)", "certification_date": "2022-11-30", "enhanced": { "description": "La aplicación Olvido permite al usuario borrar de forma segura distintos elementos guardados en dispositivos de almacenamiento: ficheros y carpetas, espacio Libre, fragmentos de clúster no utilizados y discos y volúmenes.", "category": "Safe Erase Tools", "manufacturer": "Centro Criptológico Nacional (CCN/CNI)", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-11-30", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1623", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1624", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1625" } }, { "product": "NetMaster R21B00 - Build 1028", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/967-netmaster-r21b00-build-1028", "category": "Network Access Control Devices", "manufacturer": "CERAGON NETWORKS LTD.", "certification_date": "2022-10-28", "enhanced": { "description": "The Target Of Evaluation (TOE) is a Network Management System developed by Ceragon Networks Ltd, and will hereafter be referred to as the TOE throughout this document. The TOE is a Network Management System offering centralized operation and maintenance capability for a range of network elements. The TOE provides the following functionality: Security Audits. User Data Protection. Identification and Authentication. Security Management. TOE Access. Trusted path/channels.", "category": "Network Access Control Devices", "manufacturer": "CERAGON NETWORKS LTD.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-10-28", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1688", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1689", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1690" } }, { "product": "Stormshield Endpoint Security Evolution Version 2.2.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/975-stormshield-endpoint-security-evolution-version-2-2-2", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Stormshield SAS", "certification_date": "2022-10-28", "enhanced": { "description": "TOE Overview SES Evolution is a global security solution that offers comprehensive workstation protection in organizations of all sizes. The SES Evolution agent runs on workstations and protects them from known attacks and intrusions. The agent is configured in an administration console and is in constant contact with SES Evolution agent handlers that distribute security policies. In the administration console, users can also configure security policies and read event logs generated by workstations, making it possible to monitor their operation.", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Stormshield SAS", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-10-28", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1708", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1709", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1710" } }, { "product": "Huawei SUN2000HA Software V300R001C00SPC608", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/872-huawei-sun2000ha-software-v300r001c00spc608", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2022-09-20", "enhanced": { "description": "The TOE is the software running in the Operating System that is deployed into communication board inside Huawei SUN2000HA inverter, which is the access node of inverter. The TOE is a 'software only'. TOE consists of the software running on the Operating System of the SUN2000HA inverter chassis, but not the hardware. The TOE provides near-end maintenance through: Huawei mobile phone APP connected to the SUN2000HA inverter through the USB-WIFI Adapter stick inserted into the USB terminal. Smartlogger connected to the SUN2000HA inverter through the MBUS or RS485 with Modbus-RTU protocol (in the TOE evaluated configuration is used the RS485 port). The TOE provides the following major security features: Authentication and Authorization: Only authenticated users are allowed to log in to the TOE, query TOE data, and set TOE parameters. Only authorized users are able to execute the previous actions based on their privileges. If a user fails to be authenticated for multiple consecutive times, the user is locked for a period of time to prevent unauthorized access. Auditing: An operation log records the operation that an administrator has performed on the system and the result of the operation and is used for tracing and auditing. Security Management: The TOE provides four different user roles (Common user, Advanced user, Special user and Datalogger user). Also, the TOE provides: user password management, software upgrade, log exports and time settings.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-09-20", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1594", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1595", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1596" } }, { "product": "Cortex XDR Agent. Agente Windows: 7.3.0.16740", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/902-cortex-xdr-agent-agente-windows-7-3-0-16740", "category": "Anti-virus toolsEDR (Endpoint Detection and Response)", "manufacturer": "Palo Alto Networks", "certification_date": "2022-08-23", "enhanced": { "description": "Cortex XDR es un producto que ofrece servicios de Antivirus y Detección de Amenazas (EDR). Para la protección de los equipos finales (endpoints), Cortex XDR hace uso de un agente (Cortex XDR Agent - TOE) y éste se conecta contra el servicio de gestión disponible en la nube (Cortex XDR - Entorno Operacional). El alcance de este certificado incluye solamente al agente (Cortex XDR Agent).", "category": "Anti-virus tools", "manufacturer": "Palo Alto Networks", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-08-23", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1607", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1608", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1609" } }, { "product": "Huawei AR6000 and AR600 Series Routers running VRP software V300R019C11SPC200 Patch V300R019C11HP0095T", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/865-huawei-ar6000-and-ar600-series-routers-running-vrp-software-v300r019c11spc200-patch-v300r019c11hp0095t", "category": "Routers", "manufacturer": "Huawei Technologies España, S.L.", "certification_date": "2022-08-08", "enhanced": { "description": "The TOE is AR6000&NetEngine AR600 Series Routers, which consists of the following products: AR6300, AR6280, AR6140-9G-2AC, AR6140-16G4XG, AR6121, AR6120, AR651C, AR651W, AR651, AR657W, AR611W and AR617VW-LTE4EA. The software running in this device is the Versatile Routing Platform (VRP) software version V300R019C11SPC300 Patch V300R019C11HP0095T, that is a network OS incorporating Huawei's proprietary intellectual properties and capable of supporting various network systems of Huawei.", "category": "Routers", "manufacturer": "Huawei Technologies España, S.L.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-08-08", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1580", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1581", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1582" } }, { "product": "PEXIP Infinity v.25.4 (Build 59565.0.0); Client software v1.6.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/1000-pexip-infinity-v-25-4-build-59565-0-0-client-software-v1-6-2", "category": "Others", "manufacturer": "PEXIP AS", "certification_date": "2022-07-23", "enhanced": { "description": "PEXIP Infinity platform is a self-hosted, virtualized and distributed multipoint conferencing platform deployed in an organization’s own datacenter, or in a private or public cloud, as well as in any hybrid combination. These types of cloud deployment use Microsoft Azure, Amazon Web Services (AWS) or Google Cloud Platform (GCP) to host some or all of the Infinity nodes. The product doesn’t provide for a single deployment environment, since it allows to start with an on-premises deployment and then adds some cloud-hosted nodes later. However, only on-premise deployment is covered under the scope of this LINCE certification. Therefore, cloud deployments (public, private and hybrid) are excluded under the scope of this certification.", "category": "Others", "manufacturer": "PEXIP AS", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-07-23", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1891", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1892", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1893" } }, { "product": "Huawei CE16800&CE12800&CE8800&CE6800 Series Switches running VRP software version V200R019C10SPC800 Patch V200R019SPH008T", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/695-huawei-ce16800-ce12800-ce8800-ce6800-series-switches-running-vrp-software-version-v200r019c10spc800-patch-v200r019sph008t", "category": "Switches", "manufacturer": "Huawei Technologies España, S.L.", "certification_date": "2022-07-16", "enhanced": { "description": "The TOE is a switches product series (network devices) that provide stable, reliable, and high-performance layer 2 and layer 3 switching services", "category": "Switches", "manufacturer": "Huawei Technologies España, S.L.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-07-16", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1555", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1556", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1566" } }, { "product": "Huawei NE40E and NetEngine 8000 Series Routers running VRP software V800R012C00SPC300", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/859-huawei-ne40e-and-netengine-8000-series-routers-running-vrp-software-v800r012c00spc300", "category": "Network Access Control Devices", "manufacturer": "Huawei Technologies España, S.L.", "certification_date": "2022-07-14", "enhanced": { "description": "The Huawei NE40E&NetEngine 8000 series routers running VRP software TOE are used to satisfy the requirements for networks of various scales. They are deployed at the edge of IP backbone networks, IP metropolitan area networks (MANs), and other largescale IP networks,also can be used to access, aggregate, and transmit carrier-class Ethernet services on Fixed-Mobile Convergence (FMC) Metropolitan Area Networks (MANs).", "category": "Network Access Control Devices", "manufacturer": "Huawei Technologies España, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-07-14", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1563", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1564", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1565" } }, { "product": "Entrust SAM, version 1.0.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/304-entrust-sam-version-1-0-3", "category": "QSCD/SSCD", "manufacturer": "ENTRUST EU, S.L.", "certification_date": "2022-07-12", "enhanced": { "description": "Entrust Signature Activation Module (SAM) is part of the architecture of a Trustworthy System Supporting Server Signing (TW4S). It integrates with a Server Signing Application (SSA) product to provide remote signing/sealing functionality to client applications via APIs or services operated by a TSP (Trust Service Provider). Entrust Signature Activation Module is a software component that interacts with the Cryptographic Module (CM) in order to implement a Signature Activation Module (SAM) according to the European Standard [CEN EN 419 241-2].", "category": "QSCD/SSCD", "manufacturer": "ENTRUST EU, S.L.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-07-12", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1538", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1539", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1541" } }, { "product": "HPE SimpliVity v4.1.1.463", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/844-hpe-simplivity-v4-1-1-463", "category": "Hyperconvergence", "manufacturer": "Hewlett-Packard Servicios España, S.L.", "certification_date": "2022-07-07", "enhanced": { "description": "Las soluciones de hiperconvergencia proporcionan recursos de almacenamiento, cómputo y redes de forma independiente del hardware que se utilice, con grandes capacidades de escalado horizontal y gestión desde un único punto centralizado. El TOE es la plataforma software hiperconvergente HPE SimpliVity con versión 4.1.1.463", "category": "Hyperconvergence", "manufacturer": "Hewlett-Packard Servicios España, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-07-07", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1547", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1548", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1549" } }, { "product": "Hikvision Network Camera Series DS-2CD5, DS-2CD7 and PTZ version 1.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/842-hikvision-network-camera-series-ds-2cd5-ds-2cd7-and-ptz-version-1-1", "category": "Others", "manufacturer": "Hangzhou Hikvision Digital Technology Co.", "certification_date": "2022-06-29", "enhanced": { "description": "The Target Of Evaluation (TOE) is a Network Camera developed by Hikvision, and will hereafter be referred to as the TOE throughout this document. The TOE is a Network camera which comprises a hardware board and a specific firmware for the hardware. Hikvision has considered the European data law GDPR and as a result selected a set of SFRs to be included in the ST. The TOE provides the following functionality: Management interface. Video over IP. Security audit", "category": "Others", "manufacturer": "Hangzhou Hikvision Digital Technology Co.", "type": "Product", "evaluation_facility": "SGS Brightsight Barcelona S.L. (Unipersonal)", "status": "Certified", "certification_date": "2022-06-29", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1525", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1526", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1527" } }, { "product": "SMiD cloud versión 2.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/830-smid-cloud-version-2-1", "category": "Others", "manufacturer": "Criptotec, S.L.", "certification_date": "2022-06-17", "enhanced": { "description": "SMiD cloud es un dispositivo de cifrado offline en tanto que permite el cifrado de información en su seno para luego transportarlo y almacenamiento en un recurso externo a él mismo. SMiD cloud se presenta en un único formato: un dispositivo hardware con un firmware embebido que realizará las operaciones de cifrado y descifrado de ficheros de datos en el propio chip del producto. En SMiD cloud los ficheros se reciben en claro desde la red local en la que está instalado y se cifran localmente dentro del dispositivo. Posteriormente, esos ficheros cifrados son enviados a servicios de Almacenamiento externos ubicados en Internet o en la misma red local en la que el dispositivo SMiD cloud opera. Los usuarios siempre recuperan versiones en claro de los ficheros que han depositado en el dispositivo SMiD.", "category": "Others", "manufacturer": "Criptotec, S.L.", "type": "Product", "evaluation_facility": "SGS Española de Control, S.A.", "status": "Certified", "certification_date": "2022-06-17", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1509", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1510", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1511" } }, { "product": "Winbond SpiFlash TrustME Secure Flash Memory W75F40WBYJEG version A", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/826-winbond-spiflash-trustme-secure-flash-memory-w75f40wbyjeg-version-a", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "certification_date": "2022-06-07", "enhanced": { "description": "The TOE is a memory flash IC designed to be embedded into highly critical hardware devices such as smart card, secure element, USB token, secure micro SD, etc. These devices will embed secure applications such as financial, telecommunication, identity (e-Government), etc. and will be working in a hostile environment. In particular, the TOE main function is the secure storage of the code and data of critical applications. The security needs for the TOE consist in: Maintaining the integrity of the content of the memories and the confidentiality of the content of protected memory areas as required by the critical HW products (e.g. Security IC) the Memory Flash is built for. Providing a secure communication with the Host device that will embed the TOE in a secure HW product such as Security IC.", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-06-07", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1477", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1478", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1479" } }, { "product": "SIAVAL PKI VERSION 1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/813-siaval-pki-version-1", "category": "Others", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "certification_date": "2022-04-21", "enhanced": { "description": "SIAVAL PKI comprises all the security functions required by a Certification Authority, allowing the issuance of certificates and CRLs, the management of the life cycle of these certificates and the capacity to provide information about the revocation status so that from a VA its status can be verified. The main functionality offered by the TOE is detailed next: Access Control: Access control is established for the operations performed in the TOE so that only authorized users can perform the operations for which they have been authorized. Only the HealthCheck service does not establish user access control but performs IP access control to validate the origin of the requests. Key Management: The private keys of the CAs will reside in a cryptographic module outside the TOE scope and the TSF will make use of them for the issuance of certificates and CRLs, invoking the signature operation on the device. The public keys are stored in x509 certificates and protected in integrity Management of the issuance of certificates and CRLs: Several CA’s can be managed by establishing a hierarchy among them, so that a Root CA and subordinate CA's can be established to issue for example certificates with different purposes, personal signature certificates, SSL/TLS Web certificates, etcCertificates and signed CRLs are generated, making it possible to request certificates through CSR using a mechanism such as PKCS # 10 or CRMF.Profiles and configurations are established for the issuance of certificates and generation of CRLs, so that it is possible to establish your own characteristics depending on the configuration of the profile.It enables the publication of certificates and CRLs in different repositories as well as the recovery of these certificates and CRLs from the TOE itself. Transmission Data security: The user keys will always be exported in keystores and certificates and CRLs will always be issued in a way that preserves their integrity. Audit Data: Audit trail is recorded for all operations performed by users in the system. A value calculated by the TSF will be added so that the integrity of the contained data can be checked. The analysis and consultation of audit data is not part of the scope of the TOE.", "category": "Others", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-04-21", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1441", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1442", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1443" } }, { "product": "Microsoft SQL Server 2019 Database Engine Enterprise Edition x64 (English), version 15.0.4178.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/814-microsoft-sql-server-2019-database-engine-enterprise-edition-x64-english-version-15-0-4178-1", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "certification_date": "2022-04-19", "enhanced": { "description": "The TOE is the database engine of SQL Server 2019. SQL Server is a Database Management System (DBMS). The type of the TOE is a database management system (DBMS) with the capability to limit TOE access to authorized users, enforce Discretionary Access Controls on objects under the control of the database management system based on user and/or role authorizations, and to provide user accountability via audit of users’ actions.", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-04-19", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1449", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1450", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1451" } }, { "product": "Huawei GaussDB 200 version 6.5.1 build e3690037", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/805-huawei-gaussdb-200-version-6-5-1-build-e3690037", "category": "Database management systems", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2022-03-22", "enhanced": { "description": "The TOE is the Huawei GaussDB 200 Database Management System (DBMS). Huawei GaussDB 200 is an enterprise-level relational database for massively parallel processing (MPP), which adopts the MPP architecture, supports row and column storage, provides the capabilities of processing petabytes of data, and is oriented to massive data online analysis.", "category": "Database management systems", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-03-22", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1425", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1426", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1427" } }, { "product": "OPNsense 21.7.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/822-opnsense-21-7-1", "category": "Firewall", "manufacturer": "Deciso B.V.", "certification_date": "2022-03-19", "enhanced": { "description": "TOE Overview OPNsense is an open-source, easy-to-use, and easy-to-build Hardened BSD based firewall (stateful firewall) and routing platform. A stateful firewall is a firewall that keeps track of the state of network connections (such as TCP streams, UDP communication) traveling across it. The product offers a grouping of Firewall Rules by Category, an excellent feature for more demanding network setups. OPNsense includes most of the features available in commercial firewalls and more in many cases. It brings the rich feature set of commercial offerings with the benefits of open and verifiable sources. The TOE, as any firewall, has the following basic security features: Protection against network traffic outside the network they protect by limiting incoming packets according to the policy applied. Access restriction to the outside network for elements of the internal network. Only those devices or users specified in the applied policy are allowed to leave.", "category": "Firewall", "manufacturer": "Deciso B.V.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-03-19", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1469", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1470", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1471" } }, { "product": "Samsung STRONGV2P0 of S5E9840 with Specific IC Dedicated Software revision 1.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/802-samsung-strongv2p0-of-s5e9840-with-specific-ic-dedicated-software-revision-1-1", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2022-03-19", "enhanced": { "description": "The Target of Evaluation (TOE), the STRONGV2P0 secure subsystem is a Hard macro instantiated within an SOC which is composed of a processing unit, security components, hardware circuit for testing purpose during the manufacturing process and volatile and non-volatile memories (hardware). The TOE also includes any IC Designer/Manufacturer proprietary IC Dedicated Software as long as it physically exists in an STRONGV2P0 after being delivered by the IC Manufacturer. Such software (also known as IC bootloader/firmware) is used for providing additional services to facilitate the usage of the hardware and/or to provide additional services, a random number generation library and a random number generator. All other software is called Security IC Embedded Software and is not part of the TOE. The Security IC Embedded Software is initially stored in encrypted form in external NVM (Flash). The SoC S5E9840 is necessary to operate the STRONGV2P0 but it is not TOE hardware.", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-03-19", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1401", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1402", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1403" } }, { "product": "HP Elitebook 840 G7", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/801-hp-elitebook-840-g7", "category": "Trusted platforms", "manufacturer": "HP Printing and Computing Solutions, S.L.", "certification_date": "2022-03-05", "enhanced": { "description": "El TOE consiste en el equipo portátil HP Elitebook 840 G7 con sistema operativo Windows 10 Enterprise, Versión 20H2, Compilación (19042.1023) securizable mediante la aplicación de las guías STIC para manejo de información clasificada. De acuerdo con sus funcionalidades principales, el TOE es conforme a la familia de productos denominada como Plataformas de Confianza ya que consiste en un producto que sirve como base o soporte para la ejecución de determinados módulos software con los que es compatible. De acuerdo con las garantías que ofrece el TOE, de las condiciones del entorno de uso y de la información que va a manejar, se determina el nivel 3 de plataforma confiable.", "category": "Trusted platforms", "manufacturer": "HP Printing and Computing Solutions, S.L.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-03-05", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1390", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1391", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1392" } }, { "product": "Falcon Sensor v6.27.14102", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/804-falcon-sensor-v6-27-14102", "category": "Anti-virus toolsEDR (Endpoint Detection and Response)", "manufacturer": "Crowdstrike Spain, S.L.", "certification_date": "2022-03-05", "enhanced": { "description": "The TOE is an anti-virus software tool installed as a lightweight sensor deployed to every endpoint. It gathers appropriate system events from each host and takes proactive detection and prevention actions. The TOE detects and defends against attacks occurring on disk and in memory. Due to the security functionality implemented, the TOE is conformant to the Endpoint Protection Platform and the Endpoint Detection and Response taxonomies. The use case of the TOE consists of a centralised management that allows monitoring and control the execution of several instances of the TOE running on a heterogeneous group of systems.", "category": "Anti-virus tools", "manufacturer": "Crowdstrike Spain, S.L.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-03-05", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1417", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1418", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1419" } }, { "product": "Huawei OceanStor 100D Storage System Software v8.0.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/831-huawei-oceanstor-100d-storage-system-software-v8-0-3", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2022-03-05", "enhanced": { "description": "OceanStor 100D is an intelligent distributed storage product that can be scaled horizontally or elastically. Based on the unique elastic erasure coding (EC) technology, as well as the dynamic deduplication and compression technology based on automatic load control, OceanStor 100D provides more available space for customers while ensuring service performance. In addition, it provides the ever new capability to support smooth software upgrade. Hardware can coexist for multiple generations without service interrupting caused by software and hardware updates.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-03-05", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1517", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1518", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1519" } }, { "product": "Personal Code, versión 2020.3.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/799-personal-code-version-2020-3-2", "category": "Others", "manufacturer": "HUBOX", "certification_date": "2022-03-05", "enhanced": { "description": "El producto objeto de la evaluación o TOE (Target Of Evaluation) consiste en un SDK de generación de claves criptográficas para la inclusión de información confidencial que identifique de forma unívoca a un usuario determinado que utilice una aplicación final. Además, el TOE a su vez, está formado de una SDK de validación que permite realizar, en términos generales, el procedimiento inverso, validando la autenticidad de la información confidencial generada por el SDK de generación y extrayendo la información propiamente dicha. La funcionalidad del TOE consiste en la generación de dos códigos QR para la inserción de los datos personales de un usuario determinado y su posterior validación de dicha información confidencial. Estos datos personales son aquellos que le permiten identificarlo de forma unívoca ante cualquier entidad.", "category": "Others", "manufacturer": "HUBOX", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-03-05", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1371", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1372", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1373" } }, { "product": "Huawei Reliable Telecomm Operating System version 207.3.5.SPC100.B004", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/778-huawei-reliable-telecomm-operating-system-version-207-3-5-spc100-b004", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2022-02-01", "enhanced": { "description": "Huawei Reliable Telecomm OS is a highly-configurable Linux-based operating system for embedded devices.", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2022-02-01", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1346", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1347", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1348" } }, { "product": "MKMF-UKGU-GMS-KGU-GMS-V07.00.00.00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/772-mkmf-ukgu-gms-kgu-gms-v07-00-00-00", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2022-02-01", "enhanced": { "description": "Referencia del Informe de Certificación: 2021-35-INF-3699-v1. 17/12/2021 Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-PL-IND-MKMF-X-00082-x. MKMF KGU-CU UNCLA Security Target, Version 14, 25/11/2021. Copia impresa disponible en el CCN. Mantenimiento del Certificado para el TOE MKMF-UKGU-GMS-KGUGMS-V07.01.00.00 Referencia del Informe de Mantenimiento: 2022-08-INF-3753-v1. 22/02/2022 Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad del mantenimiento: GAL-PL-IND-MKMF-X-00082-x. MKMF KGU-CU UNCLA Security Target, Version 15, 20/12/2021 Copia impresa disponible en el CCN. Fecha de expiración del certificado: 01/02/2027 Este campo se refiere a la fecha de expiración del reconocimiento del certificado en el ámbito de los acuerdos de reconocimientomutuo firmados por este Organismo de Certificación.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-03-10", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2" } }, { "product": "MKMFC-SMU-uncla-v22.00.00.00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/773-mkmfc-smu-uncla-v22-00-00-00", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2022-02-01", "enhanced": { "description": "Referencia del Informe de Certificación: 2021-34-INF-3698-v1. 17/12/2021 Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-PL-IND-MKMF-X-00081-x. MKMF SMU-CU UNCLA Security Target, Version 14, 25/11/2021. Copia impresa disponible en el CCN. Fecha de expiración del certificado: 01/02/2027 Este campo se refiere a la fecha de expiración del reconocimiento del certificado en el ámbito de los acuerdos de reconocimientomutuo firmados por este Organismo de Certificación.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-02-01", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4" } }, { "product": "MKMF-CKGU-GMS-KGU-GMS-V07.00.00.00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/774-mkmf-ckgu-gms-kgu-gms-v07-00-00-00", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2022-02-01", "enhanced": { "description": "Referencia del Informe de Certificación: 2021-33-INF-3697-v1. 17/12/2021 Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-SPEC-IND-MKMF-X-00004-x. MKMF KGU-CU CLA Security Target, Version 15, 25/11/2021. Copia impresa disponible en el CCN. Mantenimiento del Certificado para el TOE MKMF-CKGU-GMS-KGUGMS-V07.01.00.00 Referencia del Informe de Mantenimiento: 2022-06-INF-3752-v1. 22/02/2022 Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad del mantenimiento: GAL-SPEC-IND-MKMF-X-00004-x. MKMF KGU-CU CLA Security Target, Version 16, 20/12/2021 Copia impresa disponible en el CCN. Fecha de expiración del certificado: 01/02/2027 Este campo se refiere a la fecha de expiración del reconocimientodel certificado en el ámbito de los acuerdos de reconocimientomutuo firmados por este Organismo de Certificación.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-03-10", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2" } }, { "product": "MKMFC-SMU-v22.00.00.00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/775-mkmfc-smu-v22-00-00-00", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2022-02-01", "enhanced": { "description": "Referencia del Informe de Certificación: 2021-32-INF-3696-v1. 17/12/2021 Copia impresa disponible en el CCN. Referencia de la Declaración de Seguridad: GAL-SPEC-IND-MKMF-X-00005-x. MKMF SMU-CU CLA Security Target, Version 15, 25/11/2021. Copia impresa disponible en el CCN. Fecha de expiración del certificado: 01/02/2027 Este campo se refiere a la fecha de expiración del reconocimientodel certificado en el ámbito de los acuerdos de reconocimientomutuo firmados por este Organismo de Certificación.", "category": "Others", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2022-02-01", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4" } }, { "product": "Ágata, v2.3.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/776-agata-v2-3-3", "category": "Others", "manufacturer": "Ágata Technology", "certification_date": "2022-02-01", "enhanced": { "description": "Ágata es una plataforma de tipo Monitoring Data Collection System, en el ámbito de las tecnologías IoT, que puede ser desplegada en entornos complejos como un puerto marítimo.", "category": "Others", "manufacturer": "Ágata Technology", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-02-01", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1330", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1331", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1332" } }, { "product": "KATUA SDI PLATFORM version 1.0.6", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/777-katua-sdi-platform-version-1-0-6", "category": "Hyperconvergence", "manufacturer": "KRC Española, S.A.", "certification_date": "2022-02-01", "enhanced": { "description": "El TOE consiste en una solución hiperconvergente, donde todos los elementos necesarios para el uso del sistema se encuentran unificado en un solo nodo. La configuración propuesta permite el despliegue de todos los servicios necesarios para la implementación.", "category": "Hyperconvergence", "manufacturer": "KRC Española, S.A.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2022-02-01", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1338", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1339", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1340" } }, { "product": "Microsoft Windows 10 version 2004 (May 2020 Update), Microsoft Windows Server version 2004 (May 2020 Update) and others", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/759-microsoft-windows-10-version-2004-may-2020-update-microsoft-windows-server-version-2004-may-2020-update-and-others", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2021-12-31", "enhanced": { "description": "Descripción del TOE certificado Sistemas Operativos Windows: Microsoft Windows 10 Home edition (May 2020 Update) (64-bit version) Microsoft Windows 10 Pro edition (May 2020 Update) (64-bit version) Microsoft Windows 10 Enterprise edition (May 2020 Update) (64- bit version) Microsoft Windows Server Standard edition (May 2020 Update) Microsoft Windows Server Datacenter edition (May 2020 Update) Microsoft Windows Server Core Datacenter “Azure Fabric Controller” Microsoft Windows Server Core Datacenter ”Azure Stack” Versiones del TOE: Windows 10: build 10.0.19041 (also known as version 2004) Windows Server: build 10.0.19401 (also known as version 2004) Azure Fabric Controller: build 10.0.14393 Azure Stack: build 10.0.17763 Actualizaciones del TOE: Windows 10 and Windows Server version 2004: todas las actualizaciones críticas a partir del 1 de septiembre de 2020.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-12-31", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1305", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1306", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1307" } }, { "product": "Huawei 3900 Series LTE eNodeB Core Software V100R015C10SPC270", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/492-huawei-3900-series-lte-enodeb-core-software-v100r015c10spc270", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2021-11-04", "enhanced": { "description": "The TOE is the core part of the software that is deployed into a LTE eNodeB base station, which is the wireless access node in LTE/SAE system. It provides the communication with the EPC/Backhaul network (through S1 and X2 interfaces), the management interfaces and other security related functionality. The TOE is the core part of the software that is deployed into a Huawei 3900 series LTE eNodeB base station and the major security features implemented and included in the evaluation scope are: Management network. Identification and Authentication. Access control. Communications security. Telecom network: S1 and X2 backhaul interface protection. Resource management: session establishment mechanisms and VLAN separation. Security function management: command groups, trusted channels, users, etc. Digital signature: for the verification of software packages when loaded. Auditing of security events.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-11-04", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1294", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1292", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1293" } }, { "product": "EP880 - SW de Cifrado del CCN V2.08.36", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/725-ep880-sw-de-cifrado-del-ccn-v2-08-36", "category": "Offline encryption devices / tools", "manufacturer": "EPICOM", "certification_date": "2021-08-20", "enhanced": { "description": "El EP880 es una aplicación software que se ejecuta sobre ordenador con sistema operativo Windows y que permite realizar, en origen, el cifrado y firma de ficheros de datos “off-line” almacenados en el disco duro del ordenador o dispositivos de almacenamiento externos conectados al ordenador, para su posterior almacenamiento y/o envío de forma segura desde el correo electrónico u otro medio y, en destino, el descifrado y verificación de la integridad de los datos. El Software EP880 puede ser usado en aquellas situaciones en las que no se disponga una infraestructura que permita el intercambio de información de manera segura o para proteger información almacenada en un entorno de trabajo no seguro.", "category": "Offline encryption devices / tools", "manufacturer": "EPICOM", "type": "Product", "evaluation_facility": "Layakk Seguridad Informática, S.L.", "status": "Certified", "certification_date": "2021-08-20", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1273", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1274", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1275" } }, { "product": "GLORIA 5.6.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/716-gloria-5-6-0", "category": "Others", "manufacturer": "S2 Grupo de Innovación en procesos organizativos", "certification_date": "2021-08-20", "enhanced": { "description": "GLORIA, Gestor de LOgs para Responder ante Incidentes y Amenazas, es una plataforma para la gestión de incidentes y amenazas de seguridad informática a través de técnicas de correlación compleja de eventos. La solución va un paso más allá de las capacidades de SIEM (Security Information and Event Management), proporcionando, además de la monitorización, almacenamiento y procesado de la información, capacidades de gestión de servicios para un centro de operaciones de seguridad.", "category": "Others", "manufacturer": "S2 Grupo de Innovación en procesos organizativos", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-08-20", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1264", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1265", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1266" } }, { "product": "Positive Technologies Application Firewall 3.6.3.758", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/698-positive-technologies-application-firewall-3-6-3-758", "category": "Firewall", "manufacturer": "Positive Technologies", "certification_date": "2021-06-18", "enhanced": { "description": "TOE Overview The PT Application Firewall (TOE) is a self-learning web application firewall designed to reduce the risks of application attacks if they occur. PT AF applies algorithms to analyze the traffic specifics and the activity of the users who use the applications. Information about the standard user activity is applied to detect potential attacks and deviations in typical user behavior.", "category": "Firewall", "manufacturer": "Positive Technologies", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-06-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1221", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1222", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1223" } }, { "product": "MPRS_TOE_Std_D Step 2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/699-mprs-toe-std-d-step-2", "category": "", "manufacturer": "Airbus Defence and Space", "certification_date": "2021-06-17", "enhanced": { "description": "", "manufacturer": "Airbus Defence and Space", "type": "System", "evaluation_facility": "Centro de Evaluación de la Seguridad de las Tecnologías de la Información (CESTI)", "status": "Certified", "certification_date": "2021-06-17", "cc_version": "ITSEC", "level": "E3" } }, { "product": "McAfee Web Gateway version 10.0.4-35792", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/694-mcafee-web-gateway-version-10-0-4-35792", "category": "Proxies", "manufacturer": "McAfee Ireland LTD.", "certification_date": "2021-06-08", "enhanced": { "description": "El TOE es un producto de seguridad Web que protege una red contra las amenazas que surgen de la Web. El TOE se puede instalar como un dispositivo físico o virtual, que sirve como un pasarela que conecta una red a la web. Siguiendo las reglas de seguridad web implementadas, el TOE filtra el tráfico que sale y entra. Se bloquea el contenido malicioso e inapropiado, mientras que se permite el paso de materia útil. Las características clave de Web Gateway contribuyen a este proceso de diferentes maneras. Interceptación del tráfico web. Filtrado web. Monitoreo.", "category": "Proxies", "manufacturer": "McAfee Ireland LTD.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2021-06-08", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1189", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1190", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1191" } }, { "product": "Carmen 7.2.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/696-carmen-7-2-4", "category": "Security event management systems", "manufacturer": "S2 Grupo de Innovación en procesos organizativos", "certification_date": "2021-06-08", "enhanced": { "description": "TOE Overview CARMEN es una herramienta de apoyo a la labor del analista de seguridad que contribuye a la protección de las organizaciones mediante la adquisición, procesamiento y análisis del tráfico que circula por sus redes, permitiendo la detección de anomalías o usos indebidos, así como la identificación de intentos de intrusión. CARMEN se compone de agentes que recopilan los flujos de tráfico (elementos de adquisición), un motor de almacenamiento en el que se inserta la información, un sistema de detección de anomalías que se encarga de procesar la información almacenada para la identificación de posibles amenazas que puedan afectar a la organización y una aplicación web que permite la presentación y consulta tanto de la información obtenida como de la procesada.", "category": "Security event management systems", "manufacturer": "S2 Grupo de Innovación en procesos organizativos", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-06-08", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1201", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1202", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1203" } }, { "product": "Huawei OceanStor Dorado V6 Series Storage System Software v 6.0.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/845-huawei-oceanstor-dorado-v6-series-storage-system-software-v-6-0-1-1", "category": "Data encryption storage devices / tools", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2021-06-07", "enhanced": { "description": "TOE Overview The TOE, Huawei OceanStor Dorado V6 Series Storage System Software v 6.0.1, is a new-generation storage system developed by Huawei Technologies Co., Ltd. It is purpose-built for enterprise-class mission-critical business and equipped with comprehensive SAN features, and is ideal for use with databases, virtual desktop infrastructure (VDI), virtual server infrastructure (VSI), and SAP HANA. OceanStor Dorado V6 facilitates the transition to all-flash storage for customers in the finance, manufacturing, telecom, and other sectors. The TOE type is software only. The major security features implemented by the TOE are: Identification and authentication Authorization Access control Auditing Security management", "category": "Data encryption storage devices / tools", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2021-06-07", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1551", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1552", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1553" } }, { "product": "Android Harmony SandBlast Mobile version 3.8.2.3023", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/693-android-harmony-sandblast-mobile-version-3-8-2-3023", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Check Point Software Technologies Ltd.", "certification_date": "2021-06-04", "enhanced": { "description": "El TOE es un antivirus para dispositivos Android capaz de detectar amenazasbasadas en aplicaciones y de detectar y detener amenazas basadas en la red. El TOE cubre la necesidad actual de protección de la informaciónadministrada en dispositivos móviles en un entorno corporativo mediantelas siguientes funcionalidades: Análisis avanzado de aplicaciones. Evaluación de vulnerabilidades del dispositivo. Detección de ataques basados en la red. Configuración de parámetros. Anti-Virus (AV) Feeds. Reputación de aplicaciones e inteligencia de amenazas. Análisis avanzado de flujo de ejecución de código.", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Check Point Software Technologies Ltd.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2021-06-04", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1185", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1186", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1187" } }, { "product": "iOS Harmony SandBlast Mobile version 3.8.2.5594", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/692-ios-harmony-sandblast-mobile-version-3-8-2-5594", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Check Point Software Technologies Ltd.", "certification_date": "2021-06-01", "enhanced": { "description": "El TOE es un antivirus para dispositivos iOS capaz de detectar amenazas basadas en aplicaciones y de detectar y detener amenazas basadas en la red. El TOE cubre la necesidad actual de protección de la información administrada en dispositivos móviles en un entorno corporativo mediante las siguientes funcionalidades: Análisis avanzado de aplicaciones. Evaluación de vulnerabilidades del dispositivo. Ataques basados en la red. Configuración de parámetros. Anti-Virus (AV) Feeds. Reputación de aplicaciones e inteligencia de amenazas. Análisis avanzado de flujo de ejecución de código.", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Check Point Software Technologies Ltd.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2021-06-01", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1177", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1178", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1179" } }, { "product": "Huawei ECC800 software management component version V100R021C00SPC100", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/514-huawei-ecc800-software-management-component-version-v100r021c00spc100", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2021-05-18", "enhanced": { "description": "The TOE is a software to manage and monitor devices inside the smart module data center. It provides a web interface that allow users to operate with the TOE in order to change values and parameters The TOE provides the following key security features: Authentication and Authorization: Only authenticated users are allowed to log in to the TOE, query TOE data, and set TOE parameters. Only authorized users are able to execute the previous actions based on their privileges. If a user fails to be authenticated for multiple consecutive times, the user is locked to prevent unauthorized access. Auditing: An operation log records the operation that a local administrator has performed on the system and the result of the operation and is used for tracing and auditing. Only authorized local administrators can review and query the records. Management: The TOE provides two different user roles (administrator and operator). Also, the TOE provides the functionality to manage: time settings, user configuration, updates and logs export. TOE Access: The TOE is able to manage the concurrent multiple sessions by limiting the number of active sessions per user. The TOE is also able to terminate an interactive session after an inactivity period of time.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-05-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1150", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1151", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1152" } }, { "product": "Bittium SafeMove VPN v4.11.722", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/688-bittium-safemove-vpn-v4-11-722", "category": "Devices / tools for private virtual networks", "manufacturer": "Bittium SafeMove OY", "certification_date": "2021-05-07", "enhanced": { "description": "Target of Evaluation (TOE) is Virtual Private Network (VPN) client software. It is responsible for establishing a trusted channel for TCP/IP communication between the TOE and another device or server part of the Operational Environment. The established channel is encrypted and mutually authenticated, ensuring that the TOE is communicating with the intended VPN Gateway and that the gateway is communicating with a trusted TOE. The underlying general purpose operating systems supported by the TOE is Windows 10.", "category": "Devices / tools for private virtual networks", "manufacturer": "Bittium SafeMove OY", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-05-07", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1145", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1146", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1147" } }, { "product": "Bittium SafeMove VPN (versions: Android (generic): 1.2.159, Android (Bittium Tough Mobile R): 2020- 04-27 @ granite @ c5e05cb)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/687-bittium-safemove-vpn-versions-android-generic-1-2-159-android-bittium-tough-mobile-r-2020-04-27-granite-c5e05cb", "category": "Devices / tools for private virtual networks", "manufacturer": "Bittium SafeMove OY", "certification_date": "2021-04-24", "enhanced": { "description": "Target of Evaluation (TOE) is Virtual Private Network (VPN) client software. It is responsible for establishing a trusted channel for TCP/IP communication between the TOE and another device or server part of the Operational Environment. The established channel is encrypted and mutually authenticated, ensuring that TOE is communicating with the intended VPN Gateway and that the gateway is communicating with a trusted TOE. The underlying operating system supported by TOE is Android or BTM-R OS depending on the used hardware platform.", "category": "Devices / tools for private virtual networks", "manufacturer": "Bittium SafeMove OY", "type": "Product", "evaluation_facility": "Layakk Seguridad Informática, S.L.", "status": "Certified", "certification_date": "2021-04-24", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE + MEC", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1137", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1138", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1139" } }, { "product": "ESET Endpoint Security 7.2.2055.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/657-eset-endpoint-security-7-2-2055-3", "category": "Anti-virus tools", "manufacturer": "ESET", "certification_date": "2021-03-18", "enhanced": { "description": "TOE Overview ESET Endpoint Security proporciona una protección eficaz para todo tipo de empresas gracias a sus múltiples capas de protección. Algunos componentes de protección incluidos: Antivirus y antiespía: Elimina todo tipo de amenazas tales como virus, rootkits, gusanos y software espía. Sistema avanzado de prevención de intrusiones (HIPS): Permite controlar los procesos, archivos y claves de registro a través de reglas. Te protege frente a modificaciones no autorizadas y detecta las amenazas basándose en su comportamiento en el sistema. Análisis avanzado de memoria: Monitoriza el comportamiento de todos los procesos y los analiza cuando se ejecutan en memoria. Esto permite una prevención más efectiva contra las infecciones, incluso en el caso de que estén especialmente diseñadas para evitar su detección. Protección contra botnets: Evita que los equipos de tu empresa formen parte de una red de equipos controlados por cibercriminales para distribuir correo no deseado o lanzar ataques dirigidos.", "category": "Anti-virus tools", "manufacturer": "ESET", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2021-03-18", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1115", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1116", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1117" } }, { "product": "Samsung SSP01 of S5E9830 with Specific IC Dedicated Software Revision 1.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/655-samsung-ssp01-of-s5e9830-with-specific-ic-dedicated-software-revision-1-1", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2021-03-18", "enhanced": { "description": "The Target of Evaluation (TOE), the SSP01 of S5E9830 with Specific IC Dedicated Software Revision 1.1 secure subsystem, is a Hard macro instantiated within an SOC which is composed of a processing unit, security components, hardware circuit for testing purpose during the manufacturing process and volatile and non-volatile memories (hardware). The main security features of the TOE are: Security sensors or detectors including High and Low Temperature detectors, High and Low Supply Voltage detectors, Supply Voltage Glitch detector and Laser detector Active Shields against physical intrusive attacks Dedicated hardware mechanisms against side-channel attacks Secure TDES and AES Symmetric Cryptography support PARITY/ CRC-32 calculators One Hardware Digital True Random Number Generator (DTRNG) that fulfills Test Procedure A specified by AIS31 standard. The IC Dedicated Software includes: DTRNG library built around Hardware DTRNG together with corresponding DTRNG application notes. This library fulfills the criteria of Test Procedure A specified by AIS31 standard. Secure Boot Loader is a loader for copying the embedded software from an external FLASH storage into the internal SRAM.", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2021-03-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1099", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1100", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1101" } }, { "product": "Safeguard for Privileged Passwords, version 6.7 (6.7.0.14066)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/642-safeguard-for-privileged-passwords-version-6-7-6-7-0-14066", "category": "Access controlPrivileged Access Management (PAM)", "manufacturer": "One Identity", "certification_date": "2021-02-20", "enhanced": { "description": "Safeguard for Privileged Passwords v6.7 es un producto API-REST que proporciona la funcionalidad de gestión de acceso privilegiado y cuyo propósito fundamental es prevenir el mal uso de las cuentas con privilegios existentes en los sistemas TI, dispositivos y aplicaciones de una organización, permitiendo la gestión y monitorización de la utilización de dichas cuentas por parte de los usuarios. Control de Taxonomía según CCN-STIC-140: acceso / Gestión de acceso privilegiado (PAM).", "category": "Access control", "manufacturer": "One Identity", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2021-02-20", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1091", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1092", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1093" } }, { "product": "EP852 versión 3.04.54", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/641-ep852-version-3-04-54", "category": "Offline encryption devices / tools", "manufacturer": "EPICOM", "certification_date": "2021-02-09", "enhanced": { "description": "Referencia del Informe de certificación: 2018-21-INF-3395-v1. 08/02/2021 Copia impresa disponible en el CCN. Referencia de la Declaración de seguridad: EP240E852ZZ01 - EP852 Declaración de seguridad. Edición 19. Revisión 39. 24/08/2020. Copia impresa disponible en el CCN. Fecha de expiración del certificado: 09/02/2026. Este campo se refiere a la fecha de expiración del reconocimiento del certificado en el ámbito de los acuerdos de reconocimiento mutuo firmados por este Organismo de Certificación.", "category": "Offline encryption devices / tools", "manufacturer": "EPICOM", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2021-02-09", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3 + (ALC_FLR.2)" } }, { "product": "Huawei FusionSphere 6.5.RC1.T7", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/399-huawei-fusionsphere-6-5-rc1-t7", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2021-02-04", "enhanced": { "description": "The Target of Evaluation (TOE) Huawei FusionSphere 6.5.RC1.T7 is a cloud operating system (OS) solution. The TOE provides the following key security features: VM Network Separation: The TOE supports virtual switches and virtual networks. VMs can be separated by creating different networks. Administrators can configure network isolation policies. VM isolation: The hypervisor isolates VMs running on the same physical server to prevent data theft and malicious attacks. VM users can only access resources (hardware and software resources and data) that belong to their own VMs. User and Privilege Management: The TOE supports role-based access control, used for the system maintenance personnel to access the virtualization platform and VMs. The table below shows list of roles defined in the TOE and the description of each role. TOE Access: The TOE offers functionality for terminating active sessions automatically after an inactivity period of time. Communications security: The TOE can be remotely accessed using a SSH connection, creating a trusted path between the TOE and the authorized users. Security audit: Operation logs record the security-relevant events performed by users on the system and the result of the operation and is used for tracing and auditing. Access control: Huawei FusionSphere software implements rolebased access control, limiting access to different management functions to different roles as defined in administrator-defined access control associations. Authentication: Operators who access the TOE locally or remotely in order to execute device management functions are identified by individual user names and authenticated by passwords.", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-02-04", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1082", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1083", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1084" } }, { "product": "Huawei GaussDB 100 Version V300R001C00B300 Release 3da6647", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/450-huawei-gaussdb-100-version-v300r001c00b300-release-3da6647", "category": "Database management systems", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2021-01-03", "enhanced": { "description": "The GaussDB 100 is a software-only TOE. GaussDB 100 is a relational database management system (RDBMS) from Huawei Corporation. The system is built around a relational database framework in which data objects may be directly accessed by users, or an application front end, through structured query language (SQL). GaussDB 100 is a database architecture typically used by global enterprises to manage and process data across wide and local area networks.", "category": "Database management systems", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2021-01-03", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1074", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1075", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1076" } }, { "product": "Winbond Data Secure Flash Memory W77F32WWAW\\W77F32WQ3W version B", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/448-winbond-data-secure-flash-memory-w77f32wwaw-w77f32wq3w-version-b", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "certification_date": "2020-12-03", "enhanced": { "description": "The TOE is a Memory Flash IC designed to be embedded into devices that will embed secure applications. The TOE is dedicated to the secure storage of the code and application’s data. The security needs for the TOE consist in: Maintaining the integrity of the content of the memories and the confidentiality of the content of protected memory areas as required by HW the Memory Flash is built for. Providing a secure communication with the Host device that will embed the TOE in a secure HW product such as Security IC.", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-12-03", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1069", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1070", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1071" } }, { "product": "Check Point Endpoint Security E82.40 (82.40.1159)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/623-check-point-endpoint-security-e82-40-82-40-1159", "category": "Anti-virus toolsEDR (Endpoint Detection and Response)", "manufacturer": "Check Point Software Technologies Ltd.", "certification_date": "2020-11-28", "enhanced": { "description": "El TOE es un software antivirus que es parte de una arquitectura cliente-servidordestinada a ser desplegada en los equipos de una redcorporativa. Estos equipos, conectados entre sí, enviarán información hacia un servidor centralizado, localizado en la red corporativa o en lanube, que la gestionará. La localización del servidor será transparente alTOE instalado en los equipos de la red corporativa. Taxonomía de acuerdo aCCN-STIC-140 Exploitation security/Antivirus-EndpointProtection Platform.Exploitation security/Endpoint Detectionand Response.", "category": "Anti-virus tools", "manufacturer": "Check Point Software Technologies Ltd.", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2020-11-28", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1065", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1066", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1067" } }, { "product": "Winbond SpiFlash TrustME Secure Flash Memory W75F32WWJB\\W75F32WWJC version A", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/618-winbond-spiflash-trustme-secure-flash-memory-w75f32wwjb-w75f32wwjc-version-a", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "certification_date": "2020-11-05", "enhanced": { "description": "The TOE is a Memory Flash IC designed to be embedded into highly critical hardware devices such as smart card, secure element, USB token, secure micro SD, etc. These devices will embed secure applications such as financial, telecommunication, identity (e-Government), etc. and they will be working in a hostile environment. In particular, the TOE main function is the secure storage of the code and data of critical applications. The security needs for the TOE consist in: Maintaining the integrity of the content of the memories and the confidentiality of the content of protected memory areas as required by the critical HW products (e.g. Security IC) the Memory Flash is built for. Providing a secure communication with the Host device that will embed the TOE in a secure HW product such as Security IC.", "category": "Smart Cards and similiar devices", "manufacturer": "Winbond Electronics Corporation", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-11-05", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1038", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1039", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1040" } }, { "product": "SOMA-c007 Machine Readable Electronic Document EAC-PACE-AA version 4 (SOMA-c007_4)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/992-soma-c007-machine-readable-electronic-document-eac-pace-aa-version-4-soma-c007-4", "category": "Smart Cards and similiar devices", "manufacturer": "Hid Global", "certification_date": "2023-09-15", "enhanced": { "description": "The TOE is an electronic document representing a contactless/contact smart card programmed according to the “Password Authenticated Connection Establishment” mechanism described in the ICAO Doc 9303 8th edition 2021 Part 11, which means amongst others according to the Logical Data Structure (LDS) defined in, and additionally providing the Extended Access Control according to the ICAO Doc 9303-11 and BSI TR-03110. The communication between terminal and chip shall be protected by PACE using Standard Inspection Procedure with PACE (PACE PP), BSI-CC-PP-0068-V2. The TOE is composed of: the circuitry of the dual interface e-Document’s chip M7892 G12, the IC Dedicated Software with the parts IC Dedicated Test Software and IC Dedicated Support Software, smart card operating system SOMA-c007 version 4, an ICAO application LDS1 compliant with ICAO Doc 9303- and Doc 9303-11 providing the Extended Access Control, the associated guidance documentation.", "category": "Smart Cards and similiar devices", "manufacturer": "Hid Global", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-09-15", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1827", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1828", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1829" } }, { "product": "SOMA-c018 Machine Readable Electronic Document - Basic Access Control version 2 (SOMA-c018_2)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/606-soma-c018-machine-readable-electronic-document-basic-access-control-version-2-soma-c018-2", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "certification_date": "2020-10-13", "enhanced": { "description": "The TOE is the integrated circuit chip of a machine readable e-Document programmed according to the Logical Data Structure (LDS) [ICAO-9303-10] and providing the Basic Access Control (BAC) according to ICAO Doc 9303 7th edition Part 11 [ICAO-9303-11].", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-10-13", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_DVS.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1034", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1035", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1036" } }, { "product": "SOMA-c018 Machine Readable Electronic Document - EAC-PACE-AA version 2 (SOMA-c018_2)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/605-soma-c018-machine-readable-electronic-document-eac-pace-aa-version-2-soma-c018-2", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "certification_date": "2020-10-13", "enhanced": { "description": "The TOE is the integrated circuit chip of a machine readable e-Document programmed according to the Password Authenticated Connection Establishment mechanism described in the ICAO Doc 9303 7th edition 2015 Part 11, which means amongst others according to the Logical Data Structure (LDS), and additionally providing the Extended Access Control according to the ICAO Doc 9303-11 and BSI TR-03110.", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-10-13", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1026", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1027", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1028" } }, { "product": "Microsoft SQL Server 2019 Database Engine Enterprise Edition x64 (English), version 15.0.4033.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/604-microsoft-sql-server-2019-database-engine-enterprise-edition-x64-english-version-15-0-4033-1", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "certification_date": "2020-10-17", "enhanced": { "description": "The TOE is the database engine of SQL Server 2019. SQL Server is a Database Management System (DBMS). The type of the TOE is a database management system (DBMS) with the capability to limit TOE access to authorized users, enforce Discretionary Access Controls on objects under the control of the database management system based on user and/or role authorizations, and to provide user accountability via audit of users’ actions.", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2020-10-17", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1022", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1023", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1024" } }, { "product": "Microsoft SQL Server 2019 on Linux Database Engine Enterprise Edition x64 (English), version 15.0.4033.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/603-microsoft-sql-server-2019-on-linux-database-engine-enterprise-edition-x64-english-version-15-0-4033-1", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "certification_date": "2020-10-12", "enhanced": { "description": "The TOE is the database engine of SQL Server 2019 on Linux. SQL Server is a Database Management System (DBMS). The type of the TOE is a database management system (DBMS) with the capability to limit TOE access to authorized users, enforce Discretionary Access Controls on objects under the control of the database management system based on user and/or role authorizations, and to provide user accountability via audit of users’ actions.", "category": "Database management systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2020-10-12", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1014", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1015", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1016" } }, { "product": "THD89 Secure Microcontroller version 1.0 with Crypto Library version 1.01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/587-thd89-secure-microcontroller-version-1-0-with-crypto-library-version-1-01-2", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "certification_date": "2020-07-18", "enhanced": { "description": "The TOE is a secure microcontroller with crypto library suitable to support ID cards, banking cards, ePassport applications, etc.", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-07-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL6 + ASE_TSS.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1005", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1007", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1004" } }, { "product": "THD89 1.0.3 Secure Element version 1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/998-thd89-1-0-3-secure-element-version-1-0", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "certification_date": "2023-09-26", "enhanced": { "description": "Renovación de certificado (12/08/2025) The TOE consists of hardware and IC dedicated software. The hardware is based on a 32-bit secure CPU with ROM (Non-Volatile Read-Only Memory), NVM (Non-volatile Programmable Memory) and RAM (Volatile Memory). The hardware of the TOE also incorporates communication peripherals and cryptographic coprocessors for execution and acceleration of symmetric and asymmetric cryptographic algorithms. The IC dedicated software consists of boot code and 3 libraries of cryptographic services. Among all the possibilities offered by these software and hardware requirements, the configuration selected for the evaluation is the following: TYPE NAME VERSION PACKAGE Hardware THD89 1.0.3 Module Software Crypto Library 2.1.0 SW library in ROM Crypto SU Library 2.2.0 SW library in NVM CryptoECCSec Library 1.0.0 SW library in NVM Boot code 1.0 Boot code in ROM Header file 0.1 cryptolib.h The TOE TOE THD89 1.0.3 Secure Element version 1.0 has gone through a Certificate Renewal process according to certification procedure PO-005. This process consists in updating the analysis of the certified product’s resistance against updated state of the art attack methods and vulnerabilities. The resistance to attacks has been re-assessed in the course of the Certificate Renewal process, and therefore the date to be considered as an archived certificate is reset in the certificate product list of the certification body considering the date of the renewal of the certificate.", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2023-09-26", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1875", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1876", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=2316" } }, { "product": "CELES-c001 Machine Readable Electronic Document SSCD Application, version 1 (CELES-c001_1)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/584-celes-c001-machine-readable-electronic-document-sscd-application-version-1-celes-c001-1", "category": "Smart Cards and similiar devices", "manufacturer": "HIDGlobal S.p.A.", "certification_date": "2020-07-11", "enhanced": { "description": "The Target Of Evaluation (TOE) is the integrated circuit chip Infineon M7892 G12 equipped with operating system CELES-c001 and with e-Document applications, namely an International Civil Aviation Organization (ICAO) application compliant with ICAO Doc 9303, and a Secure Signature Creation Device (SSCD) application compliant with European Parliament Directive 1999/93/EC. The SSCD application can optionally be configured as a PKCS #15 application.", "category": "Smart Cards and similiar devices", "manufacturer": "HIDGlobal S.p.A.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-07-11", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=997", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=999", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=996" } }, { "product": "CELES-c001 Machine Readable Electronic Document ICAO Application - EAC-PACE-AA, version 1 (CELES-c001_1)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/581-celes-c001-machine-readable-electronic-document-icao-application-eac-pace-aa-version-1-celes-c001-1", "category": "Smart Cards and similiar devices", "manufacturer": "HIDGlobal S.p.A.", "certification_date": "2020-07-11", "enhanced": { "description": "The TOE is the integrated circuit chip of a machine readable e-Document programmed according to the Logical Data Structure (LDS) [ICAO-9303-10] and providing the Basic Access Control (BAC) according to ICAO Doc 9303 7th edition Part 11 [ICAO-9303-11].", "category": "Smart Cards and similiar devices", "manufacturer": "HIDGlobal S.p.A.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-07-11", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=989", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=991", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=988" } }, { "product": "CELES-c001 Machine Readable Electronic Document ICAO Application - Basic Access Control, version 1 (CELES-c001_1)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/577-celes-c001-machine-readable-electronic-document-icao-application-basic-access-control-version-1-celes-c001-1", "category": "Smart Cards and similiar devices", "manufacturer": "HIDGlobal S.p.A.", "certification_date": "2020-07-11", "enhanced": { "description": "The TOE is the integrated circuit chip of a machine readable e-Document programmed according to the Logical Data Structure (LDS) [ICAO-9303-10] and providing the Basic Access Control (BAC) according to ICAO Doc 9303 7th edition Part 11 [ICAO-9303-11].", "category": "Smart Cards and similiar devices", "manufacturer": "HIDGlobal S.p.A.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-07-11", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_DVS.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=981", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=983", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=982" } }, { "product": "NGSIEM LogICA5 versión 7.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/458-ngsiem-logica5-version-7-1", "category": "Security event management systems", "manufacturer": "I.C.A. Informática y Comunicaciones Avanzadas, S.L.", "certification_date": "2020-06-20", "enhanced": { "description": "NGSIEM LogICA5 es una solución NGSIEM (gestión de eventos de seguridad e información de seguridad de nueva generación). Los subsistemas pertenecientes al TOE son proporcionados por los siguientes componentes o plugins base core: Servidores de front end 1.1.12 Bus de streaming y procesado en tiempo real 1.1.12 y su extensión en funcionalidad proporcionada por los componentes o plugins de extensión core: Gestión de usuarios y roles 1.1.12 Gestión de auditoría 1.1.12 Inventario de activos 1.1.12 Gestión de incidentes 1.1.12 Análisis forense 1.1.12 Análisis en tiempo real y correlación de eventos de seguridad 1.1.12 Planificación de tareas 1.1.12", "category": "Security event management systems", "manufacturer": "I.C.A. Informática y Comunicaciones Avanzadas, S.L.", "type": "Product", "evaluation_facility": "Layakk Seguridad Informática, S.L.", "status": "Certified", "certification_date": "2020-06-20", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=967", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=968", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=969" } }, { "product": "TZ v2.4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/566-tz-v2-4", "category": "Secure tactical communications", "manufacturer": "Tecnobit S.L.", "certification_date": "2020-06-12", "enhanced": { "description": "TOE Overview The Target of Evaluation (TOE) is a cryptographic module that secures communications between different deployed units for a mission and it implements endorsed cryptographic security functions to protect the confidentiality of user data according to a security policy of an IT system. The TOE uses, manages and protects the cryptographic keys and missions for these endorsed cryptographic security functions.", "category": "Secure tactical communications", "manufacturer": "Tecnobit S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-06-12", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=963", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=964", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=965" } }, { "product": "Huawei 5900 Series 5G gNodeB Software V100R015C00SPC108", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/380-huawei-5900-series-5g-gnodeb-software-v100r015c00spc108", "category": "Software", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2020-06-05", "enhanced": { "description": "Descripción del TOE certificado The TOE is the core part of the software deployed into the 5900 series 5G gNodeB base station and it provides the communication with the UE/Terminal, the communication with the EPC/Backhaul network, the management interfaces and other security related functionality.", "category": "Software", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "DEKRA Testing and Certification S.A.U.", "status": "Certified", "certification_date": "2020-06-05", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=946", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=961", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=975" } }, { "product": "MultiApp Essential v1.1 Platform", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/559-multiapp-essential-v1-1-platform", "category": "Smart Cards and similiar devices", "manufacturer": "THALES DIS FRANCE SA", "certification_date": "2020-06-05", "enhanced": { "description": "El TOE es un producto que comprende el hardware y software de una Java Card en configuración abierta conforme al perfil de protección ANSSI-PP-2010-03M01, Version 3.0, May 2012. The Target of Evaluation (TOE) is a product comprising hardware and software corresponding to a Java Card platform operating system in Open Configuration conformant to protection profile ANSSI-PP-2010- 03M01, Version 3.0, May 2012.", "category": "Smart Cards and similiar devices", "manufacturer": "THALES DIS FRANCE SA", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-06-05", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=958", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=959", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=960" } }, { "product": "Microsoft Windows 10 version 1909 and Microsoft Windows Server version 1909", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/565-microsoft-windows-10-version-1909-and-microsoft-windows-server-version-1909", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2020-06-05", "enhanced": { "description": "Descripción del TOE certificado Sistemas operativos Windows (OS): Microsoft Windows 10 Home edition (November 2019 Update) (32-bit and 64-bit versions) Microsoft Windows 10 Pro edition (November 2019 Update) (64-bit version) Microsoft Windows 10 Enterprise edition (November 2019 Update) (64-bit version) Microsoft Windows Server Standard edition (November 2019 Update) Microsoft Windows Server Datacenter edition (November 2019 Update) TOE Versions: Windows 10: build 10.0. 18363 (also known as version 1909) Windows Server: build 10.0. 18363 (also known as version 1909) The following security updates must be applied for: Windows 10 and Windows Server: all critical updates as of October 31, 2019", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "status": "Archivied product", "certification_date": "2020-06-05", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=954", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=955", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=956" } }, { "product": "WatchGuard Fireware OS v12.3.1.B585922 (Running on Firebox Security Appliances) with WatchGuard Dimension 2.1.2.B588050 Software", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/373-watchguard-fireware-os-v12-3-1-b585922-running-on-firebox-security-appliances-with-watchguard-dimension-2-1-2-b588050-software", "category": "Traffic Capture, Monitoring and AnalysisFirewall", "manufacturer": "WatchGuard Technologies, Inc.", "certification_date": "2020-05-30", "enhanced": { "description": "Descripción del TOE The TOE is designed to filter network traffic based on a set of rules that are created by a system administrator. It separates the organization’s internal networks from external network connections to decrease the risk of an external attack. It protects the internal, private networks from unauthorized users on the Internet. Traffic that enters and leaves the protected networks is examined by the TOE. Access policies identify and filter different types of information and can also control which policies or ports the protected computers can use on the Internet (outbound access). The TOE has extensive logging capabilities which include the logging of administrative actions and security related network events. The WatchGuard Dimension 2.1.2 software provides for viewing and sorting of audit logs. The TOE is a software only TOE. It is supported by the WatchGuard Firebox appliance hardware, which is in the operational environment.", "category": "Traffic Capture, Monitoring and Analysis", "manufacturer": "WatchGuard Technologies, Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-05-30", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=944", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=942", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=943" } }, { "product": "Fortinet FortiManager 5.6.6 build 7352 190510 (EAL4+)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/368-fortinet-fortimanager-5-6-6-build-7352-190510-eal4", "category": "Others", "manufacturer": "Fortinet, Inc.", "certification_date": "2020-05-29", "enhanced": { "description": "TOE Overview The TOE provides network management to one or more Fortinet network security devices. Authorized administrators are able to configure and manage devices, using functions that include verification and update of firmware and license information. Administrators can create and modify policies and objects and push them to the devices. The TOE is able to retrieve up-to-date antivirus and intrusion prevention signatures from Fortinet’s FortiGuard service to push to the managed devices. The TOE is capable of grouping devices into administrative domains (ADOMs), which simplifies the application of policies, distribution of content security and firmware updates for large implementations. ADOMs are implemented in the evaluated configuration. The TOE has extensive logging capabilities which include the logging of administrative actions and logging of use of the trusted cryptographic channels. The TOE is a software only TOE. It is supported by the FortiManager appliance hardware, which is in the operational environment.", "category": "Others", "manufacturer": "Fortinet, Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-05-29", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=938", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=939", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=940" } }, { "product": "Intercept X Advanced with EDR version 2.5.4 BETA/ 10.8.6.195/2.0.16 BETA", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/560-intercept-x-advanced-with-edr-version-2-5-4-beta-10-8-6-195-2-0-16-beta", "category": "Anti-virus toolsEDR (Endpoint Detection and Response)", "manufacturer": "Sophos LTD", "certification_date": "2020-03-21", "enhanced": { "description": "El TOE se instala en una estación de trabajo de escritorio (Windows 10 o superior) o servidor (Windows 2016 o superior). Capacidades EDR, Detección de AntiExploit. Detección de técnicas de post-explotación. Análisis de Comportamiento. Detección tradicional de antimalware basada en firmas Control de Aplicaciones. Detección de Amenazas Maliciosas. Bloqueo del movimiento lateral. El TOE consiste en los componentes Sophos Intercept X y Endpoint Protection, por lo que, durante el proceso de obtención del ejecutable de instalación, sólo deben elegirse estos componentes, desmarcando la opción de Device Encryption. Las versiones de cada uno de los componentes del TOE son las siguientes: Core Agent, versión 2.5.4 BETA. Endpoint Advanced, versión 10.8.6.195 Sophos Intercept X, 2.0.16 BETA.", "category": "Anti-virus tools", "manufacturer": "Sophos LTD", "type": "Product", "evaluation_facility": "jtsec Beyond IT Security, S.L.", "status": "Certified", "certification_date": "2020-03-21", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=934", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=935", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=936" } }, { "product": "Ancert Server Signing System v1.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/447-ancert-server-signing-system-v1-0", "category": "Electronic signature devices", "manufacturer": "Agencia Notarial de Certificación", "certification_date": "2020-02-19", "enhanced": { "description": "ANCERT Server Signing System is a solution that provides remote signature generation services to a Signer. This solution is based on a software part: Ancert Server Signing Application v1.1.8, and a hardware cryptographic module Thales nCipher HSM, which performs cryptographic services, necessary for the signature generation. The composition of these two components conforms the Composed TOE, which is the target of the evaluation: ANCERT Server Signing System.", "category": "Electronic signature devices", "manufacturer": "Agencia Notarial de Certificación", "type": "System", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-02-19", "cc_version": "Common Criteria 3.1 release 5", "level": "CAP-C", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=912", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=913", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=914" } }, { "product": "Symantec Endpoint Security Mobile - SEP Mobile iOS 5.6.1 Android 3.9.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/535-symantec-endpoint-security-mobile-sep-mobile-ios-5-6-1-android-3-9-3", "category": "Anti-virus tools", "manufacturer": "Symantec Spain", "certification_date": "2020-01-29", "enhanced": { "description": "Las funciones de seguridad que se especifican en la declaración de seguridad [ST] siguen los requisitos establecidos por [CCN-STIC-140-B1] para herramientas Antivirus/Endpoint Protection Platform. Las funciones de seguridad que implementa el TOE son las siguientes: Protección de datos Registros de auditoría Protección antimalware Seguridad en red Detección de compromiso Autoprotección", "category": "Anti-virus tools", "manufacturer": "Symantec Spain", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-01-29", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=908", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=909", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=910" } }, { "product": "MPRS_TOE_Std_D", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/534-mprs-toe-std-d", "category": "", "manufacturer": "Airbus Defence and Space", "certification_date": "2020-02-10", "enhanced": { "description": "", "manufacturer": "Airbus Defence and Space", "type": "System", "evaluation_facility": "Centro de Evaluación de la Seguridad de las Tecnologías de la Información (CESTI)", "status": "Certified", "certification_date": "2020-02-10", "cc_version": "ITSEC v1.2", "level": "E3" } }, { "product": "Samsung S3SSE8A with DTRNG library and optional ECC library Revision 0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/526-samsung-s3sse8a-with-dtrng-library-and-optional-ecc-library-revision-0", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2020-01-04", "enhanced": { "description": "The Target of Evaluation (TOE), the S3SSE8A microcontroller featuring the TORNADO™-A ECC cryptographic coprocessor, is a smartcard integrated circuit which is composed of a central processing unit, security components, contact based I/O ports, hardware circuit for testing purpose during the manufacturing process and volatile and non-volatile memories (hardware). IC embedded software (user software) can be stored in FLASH memory and executed accordingly. The TOE is dedicated to applications such as: Security Element with USB Type C interface Network based transaction processing such a mobile phones (GSM SIM cards)", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2020-01-04", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=889", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=890", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=891" } }, { "product": "GETAC F110G4 + firmware GETAC R1.12.070520, generación 4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/517-getac-f110g4-firmware-getac-r1-12-070520-generacion-4", "category": "Trusted platforms", "manufacturer": "-", "certification_date": "2019-11-27", "enhanced": { "description": "El TOE se corresponde con una tableta robusta de marca y modelo GETAC F110G4 y firmware GETAC R1.12.070520, diseñada para dar soporte a usuarios civiles y militares. El objetivo principal del TOE es su utilización como plataforma confiable para la ejecución de aplicaciones software. El sistema operativo de la tableta es Windows 10 Enterprise 1607 LTSB. Los datos almacenados en el dispositivo están protegidos mediante el cifrado de disco, utilizando la propia herramienta que proporciona el sistema operativo, BitLocker. El dispositivo ofrece un arranque seguro mediante la tecnología Secure Boot del firmware UEFI. El certificado cubre el hardware y sistema operativo configurado siguiendo la guía de uso, instalación y configuración que permiten operar al TOE en su configuración evaluada y certificada: “Guía de configuración y empleo seguro de la tableta GETAC F110G4, versión 1, revisión 2. 18/03/2019”", "category": "Trusted platforms", "manufacturer": "-", "type": "Product", "evaluation_facility": "Clover Technologies", "status": "Certified", "certification_date": "2019-11-27", "cc_version": "Certificación Nacional Esencial de Seguridad, versión 0.1", "level": "LINCE", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=885", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=886", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=887" } }, { "product": "Microsoft Windows 10 and Server version 1903 (May 2019 Update)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/449-microsoft-windows-10-and-server-version-1903-may-2019-update", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2019-10-26", "enhanced": { "description": "Este certificado cubre las siguientes versiones de Microsoft Windows: Sistemas Operativos Windows: Microsoft Windows 10 Home edition (May 2019 Update) (32-bit and 64-bit versions) Microsoft Windows 10 Pro edition (May 2019 Update) (64-bit version) Microsoft Windows 10 Enterprise edition (May 2019 Update) (64-bit version) Microsoft Windows Server Standard edition, version 1903 Microsoft Windows Server Datacenter edition, version 1903 Versiones del TOE: Windows 10: build 10.0.18362 (also known as version 1903) Windows Server: build 10.0 18362 (also known as version 1903) Actualizaciones del TOE: Windows 10 and Windows Server: all critical updates as of May 30, 2019.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-10-26", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=874", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=867", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=868" } }, { "product": "AUTEK PSTdiode ATKDDL versión 1.0.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/398-autek-pstdiode-atkddl-version-1-0-0", "category": "Data diode", "manufacturer": "Autek Ingeniería, S.L.", "certification_date": "2019-10-25", "enhanced": { "description": "El TOE ha sido diseñado para ser instalado en sendos PCs estándar. El uso previsto del TOE es la transmisión unidireccional de datos desde el PC en el que esté instalada la tarjeta TX hasta el PC en el que esté instalada la tarjeta RX. El diseño del TOE garantiza que no existe flujo de información en el otro sentido, por lo que es adecuado para todos los usos en los que haya necesidad de transmisión de información en un único sentido, con garantía física de transmisión unidireccional. El tipo de TOE, es un conjunto de hardware (dos tarjetas PCIExpress) que constituye el núcleo sobre el que construir un sistema de transmisión unidireccional entre dos redes no conectadas por otros medios. El TOE está formado por dos tarjetas PCI-Express. Una de las tarjetas está equipada con un emisor de fibra óptica, en adelante tarjeta TX (ATKDDL_TX). La otra está equipada con un receptor de fibra óptica, en adelante tarjeta RX (ATKDDL_RX). El conjunto permite la transmisión unidireccional de datos a 1 Gbps.", "category": "Data diode", "manufacturer": "Autek Ingeniería, S.L.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-10-25", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=853", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=854", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=855" } }, { "product": "Motion Sensor for Digital (smart) Tachographs Lesikar TACH3 HW version 02, SW version 03 r43", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/317-motion-sensor-for-digital-smart-tachographs-lesikar-tach3-hw-version-02-sw-version-03-r43", "category": "Tachograph", "manufacturer": "LESIKAR, A.S.", "certification_date": "2019-10-25", "enhanced": { "description": "TOE Overview The TOE is a smart digital tachograph as described on the European Commission web site: https://dtc.jrc.ec.europa.eu/dtc_smart_tachograph.php The TOE provides the following security features: Mutual authentication between the MS and the VU during pairing. Authentication failure handling. Unforgeable user identification and authentication before any action. The import of a session key, KS, from the VU during pairing. The export of a pairing key, KP, to the VU during pairing. Destruction of old session key by replacement with new session key. Destruction of old session key by replacement with new session key. Stored data integrity monitoring. Data exchange integrity for MS data import and export. Encryption and decryption of data, with the session key, for the transmission of data between the MS and the VU. Access control to TOE functions. Information flow control for MS data import and export. The TSF provides a protective casing capable of being sealed that together with the security seal provide physical tampering detection. The TSF provides protection against magnetic fields tampering by the use of two sensors and special processing. Security audit data generation. TSF self-testing. Failure with preservation of secure state.", "category": "Tachograph", "manufacturer": "LESIKAR, A.S.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2019-10-25", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + (ATE_DPT.2, AVA_VAN.5)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=849", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=850", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1729" } }, { "product": "A400M MDS TOE V4 B4", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/473-a400m-mds-toe-v4-b4", "category": "", "manufacturer": "Airbus Defence and Space", "certification_date": "2019-10-02", "enhanced": { "description": "", "manufacturer": "Airbus Defence and Space", "type": "System", "evaluation_facility": "Centro de Evaluación de la Seguridad de las Tecnologías de la Información (CESTI)", "status": "Certified", "certification_date": "2019-10-02", "cc_version": "ITSEC v1.2", "level": "E2" } }, { "product": "Windows 10 and Windows Server 2019 version 1809", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/446-windows-10-and-windows-server-2019-version-1809", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2019-09-07", "enhanced": { "description": "Este certificado cubre las siguientes versiones de Microsoft Windows: Sistemas Operativos Windows: Microsoft Windows 10 Home edition (october 2018 Update) (versiones de 32 y 64 bits). Microsoft Windows 10 Pro edition (october 2018 Update) (versión de 64 bits). Microsoft Windows 10 Enterprise edition (october 2018 Update) (versión de 64 bits). Microsoft Windows Server 2019 Standard edition, versión 1809. Microsoft Windows Server 2019 Datacenter edition, versión 1809. Versiones del TOE: Windows 10: build 10.0. 17763 (también conocido como versión 1809). Windows Server 2019: build 10.0 17763 (también conocido como versión 1809). Actualizaciones del TOE: Windows 10 y Windows Server 2019: todas las actualizaciones críticas hasta el 30 de noviembre de 2018.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-09-07", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=828", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=829", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=830" } }, { "product": "SIAVAL SafeCert Server Signing System (QSCD), versión 3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/501-siaval-safecert-server-signing-system-qscd-version-3", "category": "Electronic signature devices", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "certification_date": "2019-08-22", "enhanced": { "description": "Descripción del TOE El TOE Compuesto identificado como SIAVAL SafeCert Server Signing System (QSCD) es parte de una solución global denominada SIAVAL SafeCert. El TOE compuesto identificado como SIAVAL SafeCert Server Signing System (QSCD) está formado por dos componentes, cada uno de ellos certificado Common Criteria con los siguientes niveles de aseguramiento: LUNA PCI-E Cryptographic Module certificado Common Criteria EAL4+ (ALC_FLR.2 y AVA-VAN.5) SIAVAL SafeCert Manager certificado Common Criteria EAL4+ (ALC_FLR.1 y AVAVAN. 5) El componente SIAVAL SafeCert Manager 3 consta de los siguientes módulos: Módulo de firma, que ofrece las operaciones funcionales de firma electrónica y autenticación a través de servicios, Módulo de gestión ofrecido a través de servicios web. Módulo de Segundo Factor de Autenticación interno, que gestiona las OTPs utilizadas en los procesos de firma/autenticación. Módulo de integración con el componente ProxySFDA encargado de enviar las contraseñas de un solo uso a través de los canales seguros de comunicación. Módulo criptográfico que se encargará de invocar las operaciones criptográficas al componente base. El componente LUNA PCI-E Cryptographic Module consta de: Módulo criptográfico (HSM): Hardware criptográfico encargado de las principales operaciones criptográficas llevadas a cabo por el TOE Compuesto. Se encarga de realizar las operaciones necesarias para la protección de las claves privadas y la operación de firma. Software Cliente LUNA PCI-E Cryptographic Module: API para el acceso al módulo Criptográfico.", "category": "Electronic signature devices", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "type": "System", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-08-22", "cc_version": "Common Criteria 3.1 release 5", "level": "CAP-C", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=845", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=846", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=847" } }, { "product": "openNAC Enterprise v1.2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/445-opennac-enterprise-v1-2", "category": "Network Access Control Devices", "manufacturer": "OpenCloud Factory", "certification_date": "2019-06-18", "enhanced": { "description": "TOE Overview openNAC Enterprise is a solution that provides Network Access Control for corporate networks (LAN/WAN) by authenticating, authorizing and auditing accesses to the network. It is developed by opencloud Factory S.L. It is a software solution and its components execute on general purpose computing hardware, always in a virtualized environment, which is provided by the Operational Environment. openNAC Enterprise solution is the next step in the evolution of data Network Access Control Solutions. openNAC is a simple but feature-rich and flexible solution to build and control enterprise Network Access, which combines existing OpenSource technologies with advanced features for multi-tenancy, automatic provision and elasticity. openNAC follows a bottom-up approach driven by sysadmins, developers and user's real needs.", "category": "Network Access Control Devices", "manufacturer": "OpenCloud Factory", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-06-18", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=809", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=810", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=811" } }, { "product": "Bittium Tough Mobile C (BTMC). HW version: 9304809A03. SW version: Android 5.1.1. Kernel version: 3.4.0. Build: S2_BSOS_1.1.5C_MR22_sapphire2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/299-bittium-tough-mobile-c-btmc-hw-version-9304809a03-sw-version-android-5-1-1-kernel-version-3-4-0-build-s2-bsos-1-1-5c-mr22-sapphire2", "category": "Tools for secure mobile communications", "manufacturer": "Bittium Wireless OY", "certification_date": "2019-06-17", "enhanced": { "description": "TOE Overview The TOE is a mobile handset running with Bittium Secure OS Secure operating system which base on Android 5.1.1 operating system with Bittium modifications. Bittium Secure OS mode is focus of this Security Target documentation. Officials who are communicating sensitive information are intended to use device as reliable and secure mobile communication device for governmental.", "category": "Tools for secure mobile communications", "manufacturer": "Bittium Wireless OY", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-06-17", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=821", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=822", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=823" } }, { "product": "Huawei EulerOS v2.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/444-huawei-euleros-v2-0", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2019-06-17", "enhanced": { "description": "Huawei EulerOS is a highly-configurable Linux-based general-purpose operating system, which has been developed to provide a good level of security as required in commercial environments.", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-06-17", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=817", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=818", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=819" } }, { "product": "ANCERT Server Signing Application v1.1.8", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/439-ancert-server-signing-application-v1-1-8", "category": "Electronic signature devices", "manufacturer": "Agencia Notarial de Certificación", "certification_date": "2019-06-17", "enhanced": { "description": "TOE Overview The TOE corresponds to a software component running on an operatingsystem that provides remote signature generation services to Signer.", "category": "Electronic signature devices", "manufacturer": "Agencia Notarial de Certificación", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2019-06-17", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4 + ALC_FLR.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=805", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=806", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=807" } }, { "product": "Kaspersky Endpoint Security for Windows (version 11.0.0. 6499 AES256)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/403-kaspersky-endpoint-security-for-windows-version-11-0-0-6499-aes256", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Kaspersky Lab UK Ltd.", "certification_date": "2019-05-01", "enhanced": { "description": "TOE Overview The TOE is the Kaspersky Endpoint Security for Windows. It is a software product, which provides the encryption of device data (user data, operation system data), anti-virus and access control functionality. Together with the Kaspersky Security Center (KSC) which is used for management functions both parts build a security suite for protection of personal computer systems (work stations, laptops and other devices) using Windows as operating system. Kaspersky Endpoint Security (KES) Kaspersky Endpoint Security for Windows combines world-class antimalware with application startup control, device access control, and web access control, plus data encryption in a single application. Full Disk Encryption as part of Kaspersky Endpoint Security for Windows functionality helps to protect valuable business data from accidental loss due to lost or stolen devices. Kaspersky understands that data loss can result in devastating consequences. Kaspersky Endpoint Security for Windows Encryption functionality provides a strong encryption algorithm integrated in the endpoint protection suite that can be easily managed with a centralised management console. Kaspersky Endpoint Security consists of components, each of which is responsible for protection against a particular type of threat. They can be organised into three groups covering main product functionality: Anti-Virus protection: File system protection Network protection and traffic scanning Proactive Defense Control: Application Startup Control Device Access ControlWeb Access Control Encryption: Full Disk Encryption Removable Device Encryption (not a part of evaluation) File Level Encryption (not a part of evaluation) Management of all above.", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Kaspersky Lab UK Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-05-01", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=797", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=798", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=799" } }, { "product": "Samsung S3FW9FJ/FL/FH/FU revision 0 with DTRNG Library v2.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/436-samsung-s3fw9fj-fl-fh-fu-revision-0-with-dtrng-library-v2-0", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2019-04-13", "enhanced": { "description": "The Target of Evaluation (TOE), the S3FW9FJ/FL/FH/FU microcontroller is a smartcard integrated circuit which is composed of a central processing unit, security components, contact based I/O ports, hardware circuit for testing purpose during the manufacturing process and volatile and non-volatile memories (hardware). IC embedded software (user software) can be stored in FLASH memory and executed accordingly. Renovación de certificado / Certificate renewal (26/07/2022): [ES] El TOE Samsung S3FW9FJ/FL/FH/FU revision 0 with DTRNG Library v2.0 se ha sometido a un proceso de renovación de su certificado conforme a lo establecido en el procedimiento de certificación PO-005. Este proceso consiste en la actualización de la verificación de la resistencia del TOE frente al estado del arte de ataques y vulnerabilidades a la fecha de su renovación. Teniendo en cuenta que el proceso de renovación ha sido exitoso, esto implica que la fecha para el archivo del certificado se vuelve a establecer en 5 años desde la fecha de la renovación del certificado. [EN] The TOE Samsung S3FW9FJ/FL/FH/FU revision 0 with DTRNG Library v2.0 has gone through a Certificate Renewal process according to certification procedure PO-005. This process consists in updating the analysis of the certified product’s resistance against updated state of the art attack methods and vulnerabilities. The resistance to attacks has been re-assessed in the course of the Certificate Renewal process, and therefore the date to be considered as an archived certificate is reset in the certificate product list of the certification body considering the date of the renewal of the certificate.", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2019-04-13", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL4+ (ALC-DVS.2 + AVA_VAN.4)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1587", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1583", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=786" } }, { "product": "COMSec Admin+ v3.1.11a_CA+", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/297-comsec-admin-v3-1-11a-ca", "category": "Tools for secure mobile communications", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "certification_date": "2019-04-11", "enhanced": { "description": "The whole system provides the secure communications through a Virtual Operator (IMS – IP Multimedia System) responsible to manage the communications and its security: The TOE is a Secure Communications App for Android devices allowing the user to protect its real time communications (VoIP, Instant Messaging & Data) while using regular public networks (3G, 4G, WIFI, …) provided by commercial wireless services company.", "category": "Tools for secure mobile communications", "manufacturer": "INDRA Sistemas de Comunicaciones Seguras, S.L.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2019-04-11", "cc_version": "Common Criteria 3.1 release 4", "level": "ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_ECD.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1, ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ALC_TSU_EXT.1, ATE_IND.1, AVA_VAN.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=774", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=775", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=776" } }, { "product": "SolarWinds Orion Suite for Federal Government v3.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/315-solarwinds-orion-suite-for-federal-government-v3-0", "category": "Network management tools", "manufacturer": "SolarWinds WorldWide, LLC.", "certification_date": "2019-03-16", "enhanced": { "description": "The Orion software acts as a monitoring and management tool for use by network managers. It maintains a list of the managed elements in the network, monitors their operation, and alerts the network managers to specified conditions. Managed elements are network devices (e.g. routers and switches), servers, storage devices or applications that can be monitored by standard mechanisms such as SNMP, ICMP, Syslog or WMI. NCM functionality may be used to track configuration changes on the network devices for products that are able to download a copy of their current configuration parameters. Users interact with the TOE via multiple mechanisms. The EOC Web Console and Orion Web Console are provided for remote interaction with the EOC and Orion functionality.", "category": "Network management tools", "manufacturer": "SolarWinds WorldWide, LLC.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2019-03-16", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=770", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=771", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=772" } }, { "product": "Big Switch Networks Big Cloud Fabric v4.7.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/300-big-switch-networks-big-cloud-fabric-v4-7-0", "category": "Network management tools", "manufacturer": "Big Switch Networks", "certification_date": "2019-02-06", "enhanced": { "description": "The TOE is software-only and includes the BCF v4.7.0 application software and the BCF proprietary network operating system, Switch Light OS v4.7.0. BCF 4.7.0 runs on BSN’s BCF Controller appliances with Intel Xeon E5-2620 v3 2.40 GHz17 processors. Each BCF Controller runs the Ubuntu OS 16.04, BCF v4.7.0 application, HTTP18 server Nginx v1.11, OpenJDK19 8, OpenSSL v1.0.2g with FIPS Object Module v2.0.10, and Bouncy Castle with FIPS Object Module BC-FJA v1.0.0 cryptographic libraries. BCF leaf and spine switches are brite-box switches with 12 or 24 core Intel Xeon processors. Each switch includes Switch Light OS v4.7.0, ONIE bootloader, and the OpenSSL v1.0.1t cryptographic library with FIPS Object Module v2.0.10 . The leaf and spine switches form a 10Gb20 / 40Gb network fabric providing L2 switching and L3 routing. Load balancing is performed across the fabric. Designed for data centers and multi-tenant environments, the TOE implements several key security features: Role Management Centralized fabric management via the Web GUI, CLI, and REST APIs Tenant Access ControlMultiple authentication High availability and secure failover Auditing Secure Communications", "category": "Network management tools", "manufacturer": "Big Switch Networks", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-02-06", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=755", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=756", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=757" } }, { "product": "Windows 10 and Windows Server: build 10.0.17134 (also known as version 1803)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/363-windows-10-and-windows-server-build-10-0-17134-also-known-as-version-1803", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2019-02-06", "enhanced": { "description": "The TOE includes the Windows 10 operating system, the Windows Server operating system, and those applications necessary to manage, support and configure the operating system. Windows 10 and Windows Server can be delivered preinstalled on a new computer or downloaded from the Microsoft website.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-02-06", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=766", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=767", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=768" } }, { "product": "Imperva SecureSphere v12.1.0.51_0.25311", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/292-imperva-securesphere-v12-1-0-51-0-25311", "category": "Firewall", "manufacturer": "Imperva Inc.", "certification_date": "2018-12-22", "enhanced": { "description": "The TOE provides protection from attacks against database, file, Web, and Web Services assets, both within the organization (insider attacks) and from without. Installed on the network as a reverse HTTP proxy, a transparent inline bridge or as an offline network monitor (sniffer), a SecureSphere Gateway monitors application-level protocols for attacks, and reacts by blocking the attacks and/or reporting them to a centralized management server. The product is deployed as one or more Gateway appliances controlled by a MX Management Server appliance. In multi-tier management configurations, one or more MX Management Servers may in turn be managed by a SecureSphere Operations Manager (SOM) Management Server. In addition the TOE provides local monitoring of file servers and databases through the use of Agents, software installed in the monitored server that connects to the configured gateway through a secure connection.", "category": "Firewall", "manufacturer": "Imperva Inc.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-12-22", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=751", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=752", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=753" } }, { "product": "KONA2 D2320N ePassport [EAC with PACE configuration] version 02 revision 10 update 00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/402-kona2-d2320n-epassport-eac-with-pace-configuration-version-02-revision-10-update-00", "category": "Smart Cards and similiar devices", "manufacturer": "KONA I Co. Ltd.", "certification_date": "2018-12-18", "enhanced": { "description": "The Target of Evaluation (TOE) is the contactless integrated circuit chip of machine readable travel documents (MRTD’s chip) programmed according to the Logical Data Structure (LDS) and providing Extended Access Control with PACE\".", "category": "Smart Cards and similiar devices", "manufacturer": "KONA I Co. Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-12-18", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=747", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=748", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=749" } }, { "product": "KONA2 D2320N ePassport [BAC Configuration] version 02 revision 10 update 00", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/401-kona2-d2320n-epassport-bac-configuration-version-02-revision-10-update-00", "category": "Smart Cards and similiar devices", "manufacturer": "KONA I Co. Ltd.", "certification_date": "2018-12-18", "enhanced": { "description": "The Target of Evaluation (TOE) is the contactless integrated circuit chip of machine readable travel documents (MRTD’s chip) programmed according to the Logical Data Structure (LDS) and providing the Basic Access Control according to ‘ICAO Doc 9303’ [ICAO 9303].", "category": "Smart Cards and similiar devices", "manufacturer": "KONA I Co. Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-12-18", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + ALC_DVS.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=743", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=744", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=745" } }, { "product": "FusionAccess Software version V100R006C20", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/293-fusionaccess-software-version-v100r006c20", "category": "Other devices – Virtualization software", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2018-11-22", "enhanced": { "description": "This is a virtualization product that centralises and delivers virtual desktops and applications to end users. End users can access their virtual desktops and applications wherever connection is available. The TOE provides a web portal graphical user interface (GUI) for administrators to quickly provision, maintain, and reclaim virtual desktops and applications. This helps to elastically manage virtual resources, improve resource utilization, and reduce operational expenditure (OPEX).", "category": "Other devices – Virtualization software", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-11-22", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL3 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=731", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=732", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=733" } }, { "product": "Savvy M2C Communications versión 1.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/313-savvy-m2c-communications-version-1-3", "category": "Traffic Capture, Monitoring and Analysis", "manufacturer": "Savvy Data Systems S.L.", "certification_date": "2018-11-22", "enhanced": { "description": "El TOE es el modelo de comunicación captador‐Cloud / Cloud‐usuario, es decir cómo se conectan de forma segura los dispositivos captadores con el Cloud (servidores DataFrontend, DF), cómo se gestiona esa conexión desde estos servidores y cómo se conecta un cliente de manera segura a través de la interfaz web para visualizar datos, configurar captadores y/o gestionar la plataforma con el servidor web. Mantenimiento del TOE (01/05/2019) El fabricante ha incluido una nueva versión de sistema operativo en el dispositivo captador y en los servidores DataFrontend y Web. En concreto, la versión del sistema operativo que se ha incluido es Ubuntu 18 LTS para estos componentes. El sistema operativo de estos componentes del TOE, como está definido en la declaración de seguridad original [STOR] se considera en el entorno de operación del TOE, por lo que su modificación no implica modificaciones en los objetivos de seguridad ni requisitos funcionales de seguridad del TOE declarados en su declaración de seguridad.", "category": "Traffic Capture, Monitoring and Analysis", "manufacturer": "Savvy Data Systems S.L.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-05-01", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=794", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=750", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=737" } }, { "product": "THD89 Secure Microcontroller version 1.0 with Crypto Library version 1.01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/372-thd89-secure-microcontroller-version-1-0-with-crypto-library-version-1-01", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "certification_date": "2018-10-23", "enhanced": { "description": "El objeto de evaluación (TOE) es un micro‐controlador seguro que incluye una librería criptográfica.", "category": "Smart Cards and similiar devices", "manufacturer": "Tongxin Microelectronics Co., Ltd.", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-10-23", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=727", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=728", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=729" } }, { "product": "DNIe‐DCCF (dispositivo cualificado de creación de firma), versión 3.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/340-dnie-dccf-dispositivo-cualificado-de-creacion-de-firma-version-3-0", "category": "Smart Cards and similiar devicesQSCD/SSCD", "manufacturer": "FNMT-RCM", "certification_date": "2018-07-12", "enhanced": { "description": "El TOE es una tarjeta inteligente con capacidad criptográfica configurada como dispositivo cualificado de creación de firma. Sus especificaciones técnicas están basadas en normas internacionales sobre tarjetas inteligentes, así como en las recomendaciones del grupo trabajo [PC/SC]. Es una tarjeta con interfaz dual, lo que permite su uso tanto en modo con contactos como sin contactos, conforme a [ISO7816‐3] e [ISO14443] respectivamente. La firma digital creada con el TOE es una firma electrónica cualificada tal y como define el Reglamento (UE) Nº 910/2014 del Parlamento Europeo y del Consejo de 23 de julio de 2014 (eIDAS), si el certificado para el SVD es un certificado cualificado.", "category": "Smart Cards and similiar devices", "manufacturer": "FNMT-RCM", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-07-12", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + (AVA_VAN.5)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=721", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=722", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=723" } }, { "product": "IS101 v1.01", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/291-is101-v1-01", "category": "Devices / tools for private virtual networksIP ciphers", "manufacturer": "ISTRIA, Soluciones de Criptografía", "certification_date": "2018-07-02", "enhanced": { "description": "El IS101 es un dispositivo de altas prestaciones que integra una plataforma hardware segura con un FW/SW específico y permite establecer, de forma sencilla y eficiente, redes privadas virtuales (VPN) sobre una red IP no confiable (ya sea pública o privada). Los principales servicios y características de seguridad ofrecidos por el TOE incluyen: Control robusto del procesamiento y manejo del tráfico de datos de usuario, limitando el tráfico que está permitido que atraviese el equipo a aquellos flujos determinados por las políticas de seguridad IPsec configuradas en cada momento. Identificación y Autenticación de usuarios y establecimiento de canales seguros para aquellos usuarios conectados de forma remota. Control de acceso a las operaciones de administración, gestión y configuración mediante perfiles de usuario y esquemas de permisos. Protecciones físicas y lógicas (activas y pasivas). Almacenamiento seguro de ciertos datos sensibles en el supervisor de seguridad (necesarios para el arranque del equipo), permitiendo verificar su integridad en cada arranque, y chequeos periódicos (auto-tests) del estado de los sensores y mecanismos anti-tamper. Trazabilidad de los eventos más relevantes desde el punto de vista de seguridad.", "category": "Devices / tools for private virtual networks", "manufacturer": "ISTRIA, Soluciones de Criptografía", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-07-02", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=706", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=707", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=708" } }, { "product": "Aselsan STC-8250A v1.1", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/341-aselsan-stc-8250a-v1-1", "category": "Tachograph", "manufacturer": "Aselsan A.S.", "certification_date": "2018-06-08", "enhanced": { "description": "The Target of Evaluation (TOE) is a vehicle unit (VU) in the sense of Annex I B of Commission Regulation (EC) No. 1360/2002 ‘Requirements for construction, testing, installation and inspection’ dated 05.08.2002 and amended by Commission Regulation (EC) No 432/2004 of 5 March 2004 Council Regulation (EC) No 1791/2006 of 20 November 2006, Commission Regulation (EC) No 68/2009 of 23 January 2009 and Commission Regulation (EU) No 1266/2009 of 16 December 2009. The TOE is intended to be installed in road transport vehicles. Its purpose is to record, store, display, print and output data related to driver activities. The VU records and stores user activities data in its internal data memory, it also records user activities data in tachograph cards. The VU outputs data to display, printer and external devices. It is connected to a motion sensor with which it exchanges vehicle’s motion data. Users identify themselves to the VU using tachograph cards. The TOE receives motion data from the motion sensor and activity data via the facilities for entry of user’s. It stores all these user data internally and can export them to the tachograph cards inserted, to the display, to the printer, and to electrical interfaces.", "category": "Tachograph", "manufacturer": "Aselsan A.S.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-06-08", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + (ATE_DPT.2, AVA_VAN.5)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=702", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=703", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=704" } }, { "product": "Dell EMC VxRail Appliance with VxRail 4.0.400‐6628128 on 160 and Dell EMC VxRail Appliance with VxRail 4.0.400‐6628128 on 160F", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/290-dell-emc-vxrail-appliance-with-vxrail-4-0-400-6628128-on-160-and-dell-emc-vxrail-appliance-with-vxrail-4-0-400-6628128-on-160f", "category": "Others", "manufacturer": "Dell Technologies, Inc.", "certification_date": "2018-05-26", "enhanced": { "description": "The TOE provides a software defined data center that can support hundreds virtual machines and their associated data. The TOE is a hyper-converged infrastructure hardware appliance that include VMware’s ESXi as a hypervisor and a VxRail Manager virtual machine. The VMware ESXi hypervisor includes VMware’s vSAN, which aggregates the underlying local storage to create a shared storage pool for installed VMs to use. Multiple appliances can be clustered together to extend the storage resource and provide high availability options for the stored data. The appliances included in the TOE boundary for this evaluation includes one of the following appliances: VxRail 160 VxRail 160F 07/02/2019 – Note on Certificate Maintenance Some new hardware models have been included within the scope of the certificate due to the maintenance process, concretely the models: E460, E460F, P470, P470F, V470, V470F and S470. These new hardware models do not affect the certified security properties of the original TOE as the hardware models are security irrelevant considering the declared TSF in the Security Target. The software component within the scope of the certificate remain unchanged.", "category": "Others", "manufacturer": "Dell Technologies, Inc.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-02-07", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=759", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=696", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=697" } }, { "product": "Panda Adaptive Defense Protection Agent v.8.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/294-panda-adaptive-defense-protection-agent-v-8-0", "category": "Safety in the exploitation", "manufacturer": "Panda Security SL", "certification_date": "2018-05-19", "enhanced": { "description": "", "category": "Safety in the exploitation", "manufacturer": "Panda Security SL", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-05-19", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=686", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=687", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=688" } }, { "product": "Microsoft Windows 10 and Microsoft Windows Server (Fall Creators Update)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/309-microsoft-windows-10-and-microsoft-windows-server-fall-creators-update", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2018-05-19", "enhanced": { "description": "This certificate includes the following Windows Operating Systems (OS): Microsoft Windows 10 Home Edition (Fall Creators Update) (32-bit version) Microsoft Windows 10 Pro Edition (Fall Creators Update) (64-bit versions) Microsoft Windows 10 Enterprise Edition (Fall Creators Update) (64-bit versions) Microsoft Windows 10 S Edition (Fall Creators Update) Microsoft Windows Server Standard Core, version 1709 Microsoft Windows Server Datacenter Core, version 1709 TOE Versions: Windows 10: build 10.0.16299 (also known as version 1709) Windows Server: build 10.0.16299 (also known as version 1709) The following security updates must be applied for: Windows 10 and Windows Server: all critical updates as of January 31, 2018 The TOE includes the Windows 10 operating system, the Windows Server operating system, and those applications necessary to manage, support and configure the operating system. Windows 10 and Windows Server can be delivered preinstalled on a new computer or downloaded from the Microsoft website. Windows 10 can run on any physical or virtual computer which is compatible with the x86 or x64 instruction set, such as processors from Intel or AMD. Windows Server can run on any physical or virtual computer which is compatible with the x64 instruction set, such as processors from Intel or AMD.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-05-19", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=724", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=725", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=684" } }, { "product": "vinCERTcore v.4.0.5.5733", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/287-vincertcore-v-4-0-5-5733", "category": "Electronic signature devices", "manufacturer": "VÍNTEGRIS, SL", "certification_date": "2018-04-24", "enhanced": { "description": "", "category": "Electronic signature devices", "manufacturer": "VÍNTEGRIS, SL", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-04-24", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + ALC_FLR.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=678", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=679", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=680" } }, { "product": "Kaspersky Endpoint Security 10 for Windows with Kaspersky Full Disk Encryption 3.0 v.10.3.0.6294 AES256", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/316-kaspersky-endpoint-security-10-for-windows-with-kaspersky-full-disk-encryption-3-0-v-10-3-0-6294-aes256", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Kaspersky Lab AO", "certification_date": "2018-04-24", "enhanced": { "description": "", "category": "EDR (Endpoint Detection and Response)", "manufacturer": "Kaspersky Lab AO", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-04-24", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL2 + (ALC_FLR.1)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=674", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=675", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=676" } }, { "product": "SIAVAL SafeCert Server Signing System 2.4.02", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/843-siaval-safecert-server-signing-system-2-4-02-1", "category": "Electronic signature devicesQSCD/SSCD", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "certification_date": "2018-04-20", "enhanced": { "description": "SIAVAL SafeCert Manager es un software de firma electrónica en servidor, que asegura el control exclusivo de las claves de firma por parte del firmante utilizando un módulo criptográfico LUNA PCI-E Cryptographic Module. La composición de estos dos componentes forman el TOE Compuesto objetivo de la evaluación denominando SIAVAL SafeCert Server Signing System. El conjunto de componentes que conforman el TOE Compuesto SIAVAL SafeCert Server Signing System 2.4.02 posibilita la generación de firmas en servidor, de manera que una organización pueda fácilmente establecer un sistema de firma seguro, centralizando los procesos de firma de documentos de sus usuarios. Facilita la gestión del ciclo de vida de las claves, su asociación entre los usuarios, así como el cumplimiento del propósito de uso de dichas claves.", "category": "Electronic signature devices", "manufacturer": "Sistemas Informáticos Abiertos S.A.", "type": "System", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-04-20", "cc_version": "Common Criteria 3.1 release 4", "level": "CAP-C", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1533", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1534", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1535" } }, { "product": "EulerOS v2.0 build 3.10.0-327.59.59.46.h34.x86_64", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/298-euleros-v2-0-build-3-10-0-327-59-59-46-h34-x86-64", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2018-04-06", "enhanced": { "description": "The TOE, EulerOS v2.0, is a general purpose, multi-user, multi-tasking Linux based operating system. It provides a platform for a variety of applications, including services for cloud environments. The TOE Security Functions (TSF) consist of functions of EulerOS that run in kernel mode plus some trusted processes running in user mode. These are the functions that enforce the security policy as defined in the Security Target. The TOE includes standard networking applications, such as sshd, which allow to Access the TOE via cryptographically protected communication channel.", "category": "Operating systems", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-04-06", "cc_version": "Common Criteria 3.1 release 5", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=660", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=661", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=662" } }, { "product": "Microsoft Windows 10 (Creators Update)", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/302-microsoft-windows-10-creators-update", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "certification_date": "2018-04-05", "enhanced": { "description": "TOE Software Identification: The following Windows Operating Systems (OS): Microsoft Windows 10 Home Edition (Creators Update) (32-bit version) Microsoft Windows 10 Pro Edition (Creators Update) (64-bit versions) Microsoft Windows 10 Enterprise Edition (Creators Update) (64-bit versions) Microsoft Windows 10 S Edition (Creators Update) (64-bit versions) TOE Versions: Windows 10: build 10.0.15063 (also known as version 1703) The following security updates must be applied for: Windows 10, all critical updates as of August 9, 2017 1.3 TOE Overview The TOE includes the Windows 10 operating system, and those applications necessary to manage, support and configure the operating system. Windows 10 can be delivered preinstalled on a new computer or downloaded from the Microsoft website. Windows 10 can run on any physical or virtual computer which is compatible with the x86 or x64 instruction set, such as processors from Intel or AMD.", "category": "Operating systems", "manufacturer": "Microsoft Corp.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-04-05", "level": "PP Compliant", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=699", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=657", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=700" } }, { "product": "ANCERT Server Signing Application v.1.1.7", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/289-ancert-server-signing-application-version-1-1-7", "category": "Electronic signature devices", "manufacturer": "Agencia Notarial de Certificación", "certification_date": "2018-03-28", "enhanced": { "description": "The TOE corresponds to a software component running on an operating system that provides remote signature generation services to Signer.", "category": "Electronic signature devices", "manufacturer": "Agencia Notarial de Certificación", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-03-28", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + ALC_FLR.2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=652", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=653", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=654" } }, { "product": "Huawei OptiX PTN Series Products", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/305-huawei-optix-ptn-series-products", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2019-06-17", "enhanced": { "description": "TOE Overview The TOE is a Network Element composed of a hardware platform and a software running within the platform as a whole system. The underlying operating system contained in the evaluated platforms (RTOS) is not part of the TOE. Based on the powerful versatile routing platform (VRP), the OptiX PTN provides strong switching capabilities, dense ports, and high reliability.", "category": "Others", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2019-06-17", "cc_version": "Common Criteria 3.1 release 5", "level": "EAL3", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=813", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=824", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=815" } }, { "product": "Nimble Storage, Inc. NimbleOS v.4.2.0.1-499435-opt", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/268-nimble-storage-inc-nimbleos-v-4-2-0-1-499435-opt", "category": "Operating systems", "manufacturer": "Nimble Storage, Inc.", "certification_date": "2018-01-30", "enhanced": { "description": "", "category": "Operating systems", "manufacturer": "Nimble Storage, Inc.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-01-30", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL2 + (ALC_FLR.2)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=614", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=615", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=620" } }, { "product": "HPE Operations Bridge Premium v2016.05", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/267-hpe-operations-bridge-premium-v2016-05", "category": "Network Access Control Devices", "manufacturer": "Hewlett-Packard Enterprise Development L.P.", "certification_date": "2018-01-09", "enhanced": { "description": "", "category": "Network Access Control Devices", "manufacturer": "Hewlett-Packard Enterprise Development L.P.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2018-01-09", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL2 + (ALC_FLR.2)", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=616", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=617", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=619" } }, { "product": "Huawei WLAN AP Series Product V200R007C10SPC200", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/251-huawei-wlan-ap-series-product-v200r007c10spc200", "category": "Wireless Network Devices", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2017-12-05", "enhanced": { "description": "The TOE is a WLAN Access Point (AP for networking functionality) software that provides 802.11‐compliant wireless access for STAs to connect wired networks to wireless networks. The major security features implemented by the TOE and subject to evaluation can be summarized as follows: Authentication: Authenticate administrative users by user name and password and AC devices using a pre‐shared key. Communication Security: Establishing a trusted path between itself and RMT and ACs is one of its features. ACL: Access Control Lists (ACLs) to filter traffic destined to the TOE. Security Management: Offers management functionality for its security functions.", "category": "Wireless Network Devices", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2017-12-05", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=642", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=644", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=643" } }, { "product": "Huawei WLAN AC Series Product V200R007C10SPC200", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/250-huawei-wlan-ac-series-product-v200r007c10spc200-error", "category": "Wireless Network Devices", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2017-12-03", "enhanced": { "description": "The TOE is the SW of an access controller (AC) applicable to MANs and enterprise networks for wireless access. It has a large capacity and high performance. It is highly reliable, easy to install and maintain, and features such advantages as flexible networking and energy conservation. The major security features implemented by the TOE and subject to evaluation can be summarized as follows: Authentication: Authenticate administrative users by user name and password. Access control: Access Control Lists has the functionalities of controlling user level and commands level of the logged in users. Communication security: Establishing a trusted path between itself and a RMT (Remote Maintenance Terminal) is one of its features Network Traffic: The TOE forwards network traffic, enforcing decisions about the correct forwarding interface and assembling the outgoing network packets using correct IP addresses ACL: Access Control Lists (ACLs) to filter traffic destined to the TOE. Security management: Offers management functionality for its security functions.", "category": "Wireless Network Devices", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2017-12-03", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL2", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=638", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=639", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=641" } }, { "product": "SOMA-c007 Machine Readable Electronic Document SSCD Application (SOMA-c007_2) version 2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/249-soma-c007-machine-readable-electronic-document-sscd-application-soma-c007-2-version-2", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "certification_date": "2017-11-30", "enhanced": { "description": "The TOE is a combination of hardware and software configured to securely create, use, and manage Signature Creation Data (SCD). The SSCD protects the SCD during its whole life cycle as to be used in a signature creation process solely by its Signatory. The TOE comprises all IT security functionality necessary to ensure the secrecy of the SCD and the security of the electronic signature.", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2019-02-06", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=762", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=516", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=763" } }, { "product": "SOMA-c007 Machine Readable Electronic Document EAC-PACE-AA (SOMA-c007_2) version 2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/248-soma-c007-machine-readable-electronic-document-eac-pace-aa-soma-c007-2-version-2", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "certification_date": "2017-11-29", "enhanced": { "description": "The physical TOE is comprised of the following parts:• the integrated circuit chip (microcontroller) programmed with the operating systemand with the ICAO application (Embedded Software).• the guidance documentation, composed by:o the Initialization Guidance for the Initialization Agent [AGDINI].o the Pre-personalization guidance for the Pre-personalization Agent [AGDPRE],o the Personalization Guidance for the Personalization Agent [AGDPERS], ando The Operational User Guidance for the User (Inspection System) [AGDOPE].The Embedded Software of the TOE comprises the following software componentsstored in the non-volatile memory units of the microcontroller:", "category": "Smart Cards and similiar devices", "manufacturer": "HID Global / Arjo Systems", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2017-11-29", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL5 + ALC_DVS.2 + AVA_VAN.5", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=518", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=519", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=520" } }, { "product": "SOMA-c007 Machine Readable Electronic Document Basic Access Control (SOMA-c007_2) version 2", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/253-soma-c007-machine-readable-electronic-document-basic-access-control-soma-c007-2-version-2", "category": "Network Access Control Devices", "manufacturer": "HID Global / Arjo Systems", "certification_date": "2017-11-28", "enhanced": { "description": "The physical TOE is comprised of the following parts:• the integrated circuit chip (microcontroller) programmed with the operating systemand with the ICAO application (Embedded Software).• the guidance documentation, composed by:o the Initialization Guidance for the Initialization Agent [AGDINI].o the Pre-personalization guidance for the Pre-personalization Agent [AGDPRE],o the Personalization Guidance for the Personalization Agent [AGDPERS], ando The Operational User Guidance for the User (Inspection System) [AGDOPE].The Embedded Software of the TOE comprises the following software componentsstored in the non-volatile memory units of the microcontroller:• operating system• file system• e-Document applications• security data objects", "category": "Network Access Control Devices", "manufacturer": "HID Global / Arjo Systems", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2017-11-28", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + ALC_DVS.2", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=510", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=511", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=512" } }, { "product": "A400M MDS v.4.0 B3.3", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/245-a400m-mds-v-4-0-b3-3", "category": "", "manufacturer": "Airbus Defence and Space", "certification_date": "2017-11-27", "enhanced": { "description": "", "manufacturer": "Airbus Defence and Space", "type": "System", "evaluation_facility": "Centro de Evaluación de la Seguridad de las Tecnologías de la Información (CESTI)", "status": "Certified", "certification_date": "2017-11-27", "cc_version": "ITSEC v1.2", "level": "E2 medium" } }, { "product": "Huawei 3900 Series LTE eNodeB Software (a.k.a. eNodeB) versión V100R011C10SPC112T", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/252-huawei-3900-series-lte-enodeb-software-a-k-a-enodeb-version-v100r011c10spc112t", "category": "Network management tools", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2017-11-10", "enhanced": { "description": "The TOE is the software that is deployed into a LTE eNodeB base station, which is the wireless access node in LTE/SAE system.The TOE can be widely used to support the broadband wireless access of home and enterprise users. Besides, it is used to support mobile broadband access. In Huawei LTE solution, the TOE adopts a star topology, in which the transmission equipment is directly connected to the BS through FE or GE ports. The TOE networking supports various access modes, including the FE, GE, optical fibber, x digital subscriber line (xDSL), passive optical network (PON), microwave access, and satellite.", "category": "Network management tools", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2017-11-10", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + ALC_FLR.1", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=506", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=507", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=508" } }, { "product": "Samsung S3M228A/192A/176A/132A revision 0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/247-samsung-s3m228a-192a-176a-132a-revision-0", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2017-10-23", "enhanced": { "description": "The S3M228A/192A/176A/132A single-chip CMOS micro-controller is designed and packaged specifically for \"Smart Card\" applications.The SC000 CPU architecture of the S3M228A/192A/176A/132A microcontroller follows the Harvard style, that is, it has separate program memory and data memory. Both instruction and data can be fetched simultaneously without causing a stall, using separate paths for memory access. Renovación de certificado / Certificate renewal (26/07/2022): [ES] El TOE Samsung S3M228A/192A/176A/132A revision 0 se ha sometido a un proceso de renovación de su certificado conforme a lo establecido en el procedimiento de certificación PO-005. Este proceso consiste en la actualización de la verificación de la resistencia del TOE frente al estado del arte de ataques y vulnerabilidades a la fecha de su renovación. Teniendo en cuenta que el proceso de renovación ha sido exitoso, esto implica que la fecha para el archivo del certificado se vuelve a establecer en 5 años desde la fecha de la renovación del certificado. [EN] The TOE Samsung S3M228A/192A/176A/132A revision 0 has gone through a Certificate Renewal process according to certification procedure PO-005. This process consists in updating the analysis of the certified product’s resistance against updated state of the art attack methods and vulnerabilities. The resistance to attacks has been re-assessed in the course of the Certificate Renewal process, and therefore the date to be considered as an archived certificate is reset in the certificate product list of the certification body considering the date of the renewal of the certificate.", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2017-10-23", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4+ (ALC-DVS.2 + AVA_VAN.4)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1588", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=500", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1585" } }, { "product": "Huawei Eudemon 8000E-X/USG9500 Series Firewall V300R001C01SPC300", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/56-huawei-eudemon-8000e-x-usg9500-series-firewall-v300r001c01spc300", "category": "Firewall", "manufacturer": "Huawei Technologies Co., Ltd.", "certification_date": "2017-10-02", "enhanced": { "description": "The TOE consists of a hardware platform and software image integrated as a whole system. The TOE is designed to provide firewall, VPN, VLAN, antivirus protection, anti-spam protection and content filtering etc. to provide protection on TCP/IP networks. It can protect computer networks from abuse. The series firewall resides between the network it is protecting and an external network such as the Internet, restricting the information flow between the networks to that permitted by a policy (set of rules) defined by the Security Administrator. They detect and eliminate the most damaging, content-based threats from email and web traffic such as viruses, worms, intrusions, inappropriate Web content and more in real-time; without degrading network performance. In addition to providing stateful application-level protection, the TOE delivers a full range of network-level services including; firewall, Virtual Private Network (VPN), Virtual Local Area Network (VLAN), antivirus protection, anti-spam protection and content filtering etc.; using dedicated, easily managed platforms.", "category": "Firewall", "manufacturer": "Huawei Technologies Co., Ltd.", "type": "Product", "evaluation_facility": "Epoche & Espri", "status": "Certified", "certification_date": "2017-10-02", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + ALC_FLR.1", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=203", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=204", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=205" } }, { "product": "DNIe-DSCF (dispositivo seguro de creación de firma) versión 3.0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/52-dnie-dscf-dispositivo-seguro-de-creacion-de-firma-version-3-0", "category": "Smart Cards and similiar devicesQSCD/SSCD", "manufacturer": "FNMT-RCM", "certification_date": "2017-02-03", "enhanced": { "description": "La tarjeta inteligente DNIe-DSCF (Dispositivo seguro de creación de firma) versión 3.0 es una tarjeta multiaplicación capaz de definir diferentes entornos de operación con su propio servicio de sistema de seguridad. Además de la funcionalidad de firma electrónica, el DNIe-DCSF v3.0 implementa otras funcionalidades que no forman parte del TOE, por ejemplo la función de autenticación del ciudadano. El TOE proporciona las siguientes funcionalidades de seguridad: Generación de datos de creación de firma (SCD) y sus correspondientes datos de validación de firma (SVD). Exportación del SVD para su posterior certificación. Recibir y almacenar información del certificado. Gestionar el ciclo de vida. En caso de estar en fase operacional, crear firmas digitales, siguiendo los siguientes pasos: - Seleccionar un único SCD en caso de tener múltiples instancias. - Recibir los datos a ser firmados (DTBS). - Autenticar al firmante. - Aplicar la función criptográfica adecuada en el proceso de generación de firma digital.", "category": "Smart Cards and similiar devices", "manufacturer": "FNMT-RCM", "type": "Product", "evaluation_facility": "Centro de Evaluación de la Seguridad de las Tecnologías de la Información (CESTI)", "status": "Certified", "certification_date": "2018-07-12", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4 + (AVA_VAN.5)", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=715", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=186", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=714" } }, { "product": "Samsung S3FW9FV/FT/F9/F8 Revision 0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/260-samsung-s3fw9fv-ft-f9-f8-revision-0", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2016-05-28", "enhanced": { "description": "Maintained TOE reference: Samsung S3FW9FV/FT/F9/F8 Revision 2 The TOE Samsung S3FW9FV/FT/F9/F8 Revision 0 has been maintained according to supporting document CCDB Assurance Continuity: CCRA requirements. v2.1, June 2012. The maintained TOE reference is Samsung S3FW9FV/FT/F9/F8 Revision 2. The TOE Samsung S3FW9FV/FT/F9/F8 Revision 0 has gone through a renewal process according to certification procedure PO‐005 and it consists in updating the analysis of the certified or maintained product’s resistance against updated state of the art attack methods and vulnerabilities. The Samsung S3FW9FV/FT/F9/F8 Revision 0 Secure 32-bit RISC Microcontroller single-chip CMOS micro-controller is designed and packaged specifically for \"Smart Card\" applications. The SC000 CPU architecture of the TOE follows the Harvard style, that is, it has separate program memory and data memory. Both instruction and data can be fetched simultaneously without causing a stall, using separate paths for memory access.", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus Laboratories", "status": "Certified", "certification_date": "2018-04-08", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4+ (ALC-DVS.2 + AVA_VAN.4)", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=532", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1311", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1312" } }, { "product": "Samsung S3FW9FG/F6/F5/F2 revision 0", "product_link": "https://oc.ccn.cni.es/en/certified-products/certified-products/311-samsung-s3fw9fg-f6-f5-f2-revision-0", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "certification_date": "2016-05-14", "enhanced": { "description": "The S3FW9FG/F6/F5/F2 revision 0 Secure 32‐bit RISC Microcontroller single‐chip CMOS microcontroller is a smartcard integrated circuit and is designed and packaged specifically for \"Smart Card\" applications. The main security features of the S3FW9FG/F6/F5/F2 integrated circuit are: Security sensors or detectors including High and Low Temperature detectors, High and Low Frequency detectors, High and Low Supply Voltage detectors, Supply Voltage Glitch detector Active Shields against physical intrusive attacks Filters (High Frequency and Reset Noise) for preventing noise, glitches and extremely high frequency in the external reset or clock pad from causing undefined or unpredictable behavior of the chip. Dedicated tamper‐resistant design based on synthesizable glue logic and secure topology Dedicated hardware mechanisms against side‐channel attacks such as Internal Variable Clock and RAM and FLASH encryption mechanisms The TOE is dedicated to applications such as: Network based transaction processing such a mobile phones (GSM SIM cards)", "category": "Smart Cards and similiar devices", "manufacturer": "Samsung Electronics Co., Ltd", "type": "Product", "evaluation_facility": "Applus LGAI Technological Center S.A.", "status": "Certified", "certification_date": "2016-05-14", "cc_version": "Common Criteria 3.1 release 4", "level": "EAL4+ (ALC-DVS.2 + AVA_VAN.4)", "report_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1308", "target_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=1309", "cert_link": "https://oc.ccn.cni.es/en/component/djcatalog2/?format=raw&task=download&fid=650" } } ] } }, "US": { "_type": "sec_certs.sample.cc_scheme.CCScheme", "country": "US", "timestamp": "2026-03-30T12:18:23.867034", "lists": { "INEVALUATION": [ { "product": "Cigent Technology, Inc. Secure SSD U.2 and E3.S Self Encrypting Drives", "id": "CCEVS-VR-VID11669", "url": "https://www.niap-ccevs.org/products/11669", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11669/", "certification_date": null, "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Cigent Technology, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "GovShield Version 1.58.00", "id": "CCEVS-VR-VID11590", "url": "https://www.niap-ccevs.org/products/11590", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11590/", "certification_date": null, "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "General Dynamics Mission Systems", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Extreme Networks Fabric Engine Switches v9.1.100", "id": "CCEVS-VR-VID11656", "url": "https://www.niap-ccevs.org/products/11656", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11656/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Forcepoint Network Security Platform 7.3", "id": "CCEVS-VR-VID11677", "url": "https://www.niap-ccevs.org/products/11677", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11677/", "certification_date": null, "expiration_date": null, "category": "Firewall", "categories": [ "Firewall" ], "vendor": "Forcepoint LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Galleon Embedded Computing XSR and G1 Hardware Encryption Layer", "id": "CCEVS-VR-VID11655", "url": "https://www.niap-ccevs.org/products/11655", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11655/", "certification_date": null, "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Galleon Embedded Computing", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Galleon Embedded Computing Software Encryption Layer", "id": "CCEVS-VR-VID11654", "url": "https://www.niap-ccevs.org/products/11654", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11654/", "certification_date": null, "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Galleon Embedded Computing", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Google Pixel Devices on Android 16", "id": "CCEVS-VR-VID11647", "url": "https://www.niap-ccevs.org/products/11647", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11647/", "certification_date": null, "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Wireless LAN" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Zebra Q-6690 Devices on Android 15", "id": "CCEVS-VR-VID11666", "url": "https://www.niap-ccevs.org/products/11666", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11666/", "certification_date": null, "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Zebra Technologies Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Hewlett Packard Enterprise’s Aruba CX-5420, CX-6200M, CX-6300, CX-6400, CX-8360, and CX-9300s Switch Series MACsec running Aruba OS version 10.16", "id": "CCEVS-VR-VID11671", "url": "https://www.niap-ccevs.org/products/11671", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11671/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Aruba Networking", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Hewlett Packard Enterprise’s CX-4100i, CX-5420, CX-6100, CX-6200, CX-6300, CX-6400, CX-8100, CX-8320, CX-8325, CX-8325H, CX-8360, CX-8400, CX-9300, CX-9300s, and CX-10000 Switch Series running AOS-CX version 10.16", "id": "CCEVS-VR-VID11653", "url": "https://www.niap-ccevs.org/products/11653", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11653/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Aruba Networking", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Shift5, Inc. Software File-Based Encryption", "id": "CCEVS-VR-VID11663", "url": "https://www.niap-ccevs.org/products/11663", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11663/", "certification_date": null, "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Shift5, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Motorola Mobility LLC Mobile Devices on Android 15", "id": "CCEVS-VR-VID11667", "url": "https://www.niap-ccevs.org/products/11667", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11667/", "certification_date": null, "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Motorola Mobility LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Embedded Services 9300 and 3300 Series Switches (ESS9300 & ESS3300) running IOS-XE 17.15", "id": "CCEVS-VR-VID11662", "url": "https://www.niap-ccevs.org/products/11662", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11662/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Remote Access" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Secure Network Analytics (SNA) 7.5", "id": "CCEVS-VR-VID11672", "url": "https://www.niap-ccevs.org/products/11672", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11672/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Jabber 15.2", "id": "CCEVS-VR-VID11635", "url": "https://www.niap-ccevs.org/products/11635", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11635/", "certification_date": null, "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", "VoIP" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "RUCKUS SmartZone Controller and Access Points, R7.1", "id": "CCEVS-VR-VID11652", "url": "https://www.niap-ccevs.org/products/11652", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11652/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Wireless LAN", "Wireless Monitoring" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Extreme Networks Switching Engine running EXOS 33.2", "id": "CCEVS-VR-VID11688", "url": "https://www.niap-ccevs.org/products/11688", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11688/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "QFX5120-48YM switch on JUNOS 23.4R2", "id": "CCEVS-VR-VID11650", "url": "https://www.niap-ccevs.org/products/11650", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11650/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Remote Access" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Varonis Data Security Platform v8.6.60", "id": "CCEVS-VR-VID11682", "url": "https://www.niap-ccevs.org/products/11682", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11682/", "certification_date": null, "expiration_date": null, "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Varonis Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CACI idt GoSilent Server and Cube v26.01", "id": "CCEVS-VR-VID11685", "url": "https://www.niap-ccevs.org/products/11685", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11685/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Firewall", "Virtual Private Network" ], "vendor": "ID Technologies, A CACI Company", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco 8200, 8300, 8400, 8500 Series Secure Routers (C8000) running IOS-XE 17.18", "id": "CCEVS-VR-VID11661", "url": "https://www.niap-ccevs.org/products/11661", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11661/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Remote Access", "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Juniper Networks Junos OS 24.2R2 for EX4400", "id": "CCEVS-VR-VID11622", "url": "https://www.niap-ccevs.org/products/11622", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11622/", "certification_date": null, "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" } ], "CERTIFIED": [ { "product": "NetApp Storage Encryption (NSE) Running ONTAP 9.16.1", "id": "CCEVS-VR-VID11573-2026", "url": "https://www.niap-ccevs.org/products/11573", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11573/", "certification_date": "2026-02-26", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "NetApp, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37658", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37659", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37660" }, { "product": "NetApp Volume Encryption (NVE) Running ONTAP 9.16.1", "id": "CCEVS-VR-VID11574-2026", "url": "https://www.niap-ccevs.org/products/11574", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11574/", "certification_date": "2026-02-26", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "NetApp, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37651", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37652", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37653" }, { "product": "Alcatel-Lucent Enterprise OmniSwitch series 6360, 6465, 6465T, 6560, 6570, 6860N, 6865, 6870, 6900, 9900 with AOS 8.10", "id": "CCEVS-VR-VID11627-2026", "url": "https://www.niap-ccevs.org/products/11627", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11627/", "certification_date": "2026-02-25", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "ALE USA Inc", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37630", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37631", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37632" }, { "product": "Samsung Electronics Co., Ltd. Samsung Galaxy Devices on Android 16 – Fall", "id": "CCEVS-VR-VID11664-2026", "url": "https://www.niap-ccevs.org/products/11664", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11664/", "certification_date": "2026-02-25", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Virtual Private Network", "Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37624", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37625", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37626" }, { "product": "Apple macOS 15 Sequoia", "id": "CCEVS-VR-VID11648-2026", "url": "https://www.niap-ccevs.org/products/11648", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11648/", "certification_date": "2026-02-20", "expiration_date": null, "category": "Network Encryption", "categories": [ "Network Encryption", "Operating System", "Wireless LAN", "Wireless PAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37575", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37576", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37577" }, { "product": "BlackBerry SecuSUITE version 6.0 and BlackBerry Envoy version 6.0 Client", "id": "CCEVS-VR-VID11640-2026", "url": "https://www.niap-ccevs.org/products/11640", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11640/", "certification_date": "2026-02-19", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", "Network Encryption", "VoIP" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37502", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37503", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37504" }, { "product": "Motorola Solutions, Inc. LexL11 on Android 13", "id": "CCEVS-VR-VID11645-2026", "url": "https://www.niap-ccevs.org/products/11645", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11645/", "certification_date": "2026-02-16", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Wireless LAN", "Wireless PAN" ], "vendor": "Motorola Solutions, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37570", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37571", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37572" }, { "product": "HPE Aruba Networking Gateways and Mobility Controllers running software version 8.13.0", "id": "CCEVS-VR-VID11646-2026", "url": "https://www.niap-ccevs.org/products/11646", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11646/", "certification_date": "2026-02-13", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", "Network Device", "Remote Access", "Wireless LAN" ], "vendor": "HPE Aruba Networking", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37445", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37446", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37447" }, { "product": "Cigent Software FDE version 1.2.1", "id": "CCEVS-VR-VID11660-2026", "url": "https://www.niap-ccevs.org/products/11660", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11660/", "certification_date": "2026-02-09", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Cigent Technology, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37451", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37452", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37453" }, { "product": "Cigent Secure SSD Gen 4 M.2 2280, Firmware Version: EIQM50.0", "id": "CCEVS-VR-VID11641-2026", "url": "https://www.niap-ccevs.org/products/11641", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11641/", "certification_date": "2026-01-29", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Cigent Technology, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37240", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37239", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37238" }, { "product": "BlackBerry SecuSUITE Server Version 6.0", "id": "CCEVS-VR-VID11634-2026", "url": "https://www.niap-ccevs.org/products/11634", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11634/", "certification_date": "2026-01-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access", "SIP Server" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37229", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37228", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37227" }, { "product": "Samsung Electronics Co., Ltd. Samsung Knox File Encryption 1.8.0 – Fall", "id": "CCEVS-VR-VID11665-2026", "url": "https://www.niap-ccevs.org/products/11665", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11665/", "certification_date": "2026-01-26", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", "Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37188", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37187", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37186" }, { "product": "EJBCA Enterprise 9.3.3", "id": "CCEVS-VR-VID11530-2026", "url": "https://www.niap-ccevs.org/products/11530", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11530/", "certification_date": "2026-01-23", "expiration_date": null, "category": "Certificate Authority", "categories": [ "Certificate Authority" ], "vendor": "Keyfactor", "evaluation_facility": "DEKRA Cybersecurity Certification Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37197", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37198", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37199" }, { "product": "Juniper Networks® ACX7024 and ACX7024X routers with Junos® OS Evolved Version 24.4R2", "id": "CCEVS-VR-VID11626-2026", "url": "https://www.niap-ccevs.org/products/11626", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11626/", "certification_date": "2026-01-21", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "atsec information security corporation", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37192", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37193", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37191" }, { "product": "Bastille Enterprise Fusion Center Version 3.6", "id": "CCEVS-VR-VID11600-2026", "url": "https://www.niap-ccevs.org/products/11600", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11600/", "certification_date": "2026-01-15", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Bastille Networks", "evaluation_facility": "UL Verification Services", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37007", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37008", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=37009" }, { "product": "TuffServ® Intelligent E-2 Common Data Loader (iECDL) v2.74.1", "id": "CCEVS-VR-VID11592-2026", "url": "https://www.niap-ccevs.org/products/11592", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11592/", "certification_date": "2026-01-08", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Ampex Data Systems Corporation", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36936", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36937", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36940" }, { "product": "Apple macOS 14 Sonoma", "id": "CCEVS-VR-VID11584-2025", "url": "https://www.niap-ccevs.org/products/11584", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11584/", "certification_date": "2025-12-23", "expiration_date": null, "category": "Network Encryption", "categories": [ "Network Encryption", "Operating System", "Wireless LAN", "Wireless PAN" ], "vendor": "Apple Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36842", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36843", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36844" }, { "product": "MAGNUM-SC-CC2", "id": "CCEVS-VR-VID11639-2025", "url": "https://www.niap-ccevs.org/products/11639", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11639/", "certification_date": "2025-12-18", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36817", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36818", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36819" }, { "product": "Apple iOS 18: iPhone", "id": "CCEVS-VR-VID11623-2025", "url": "https://www.niap-ccevs.org/products/11623", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11623/", "certification_date": "2025-12-15", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Virtual Private Network", "Wireless LAN", "Wireless PAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36705", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36706", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36707" }, { "product": "Apple iPadOS 18: iPad", "id": "CCEVS-VR-VID11624-2025", "url": "https://www.niap-ccevs.org/products/11624", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11624/", "certification_date": "2025-12-15", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Virtual Private Network", "Wireless LAN", "Wireless PAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36700", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36701", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36702" }, { "product": "Architecture Technology Corporation Machete Router 2.1", "id": "CCEVS-VR-VID11633-2025", "url": "https://www.niap-ccevs.org/products/11633", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11633/", "certification_date": "2025-12-11", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access", "Virtual Private Network" ], "vendor": "Architecture Technology Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36731", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36732", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36733" }, { "product": "Samsung SDS EMM and EMM Agent for Android 2.2.5", "id": "CCEVS-VR-VID11631-2025", "url": "https://www.niap-ccevs.org/products/11631", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11631/", "certification_date": "2025-12-05", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility", "Network Encryption" ], "vendor": "Samsung SDS Co. Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36655", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36656", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36657" }, { "product": "Pure Storage FlashArray//CR3, //CR4, //E, //XL, //XR3, and //XR4 Appliances Running Purity 6.7", "id": "CCEVS-VR-VID11583-2025", "url": "https://www.niap-ccevs.org/products/11583", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11583/", "certification_date": "2025-12-02", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "Pure Storage, Inc.", "evaluation_facility": "Advanced Data Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36584", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36585", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36586" }, { "product": "Cellcrypt Server v 5.0", "id": "CCEVS-VR-VID11597-2025", "url": "https://www.niap-ccevs.org/products/11597", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11597/", "certification_date": "2025-12-01", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access", "SIP Server" ], "vendor": "Cellcrypt, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36574", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36575", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36576" }, { "product": "Cellcrypt Android Mobile Client v 5.0", "id": "CCEVS-VR-VID11599-2025", "url": "https://www.niap-ccevs.org/products/11599", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11599/", "certification_date": "2025-12-01", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", "Network Encryption", "VoIP" ], "vendor": "Cellcrypt, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36579", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36580", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36581" }, { "product": "Juniper NFX series Network Services Platform with Junos OS 23.4R1", "id": "CCEVS-VR-VID11579-2025", "url": "https://www.niap-ccevs.org/products/11579", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11579/", "certification_date": "2025-12-01", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", "Network Device", "Remote Access", "Virtual Private Network", "Wireless Monitoring" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36569", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36570", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36571" }, { "product": "Cigent PBA Software with Cigent M.2 2230 PCIe Gen 4 Self-Encrypting Drive (SED)", "id": "CCEVS-VR-VID11630-2025", "url": "https://www.niap-ccevs.org/products/11630", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11630/", "certification_date": "2025-11-19", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Cigent Technology, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36458", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36459", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36460", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36461", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36462" }, { "product": "UD Info DB Series SSD Drives, Firmware Version: EIQM50.0", "id": "CCEVS-VR-VID11625-2025", "url": "https://www.niap-ccevs.org/products/11625", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11625/", "certification_date": "2025-11-07", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "UD Info Corporation", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36499", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36500", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36501" }, { "product": "FortiSandbox 4.4", "id": "CCEVS-VR-VID11636-2025", "url": "https://www.niap-ccevs.org/products/11636", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11636/", "certification_date": "2025-10-31", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36441", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36442", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36443", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36444" }, { "product": "Shift5, Inc. Software Full Drive Encryption", "id": "CCEVS-VR-VID11629-2025", "url": "https://www.niap-ccevs.org/products/11629", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11629/", "certification_date": "2025-10-31", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Shift5, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36377", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36378", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36379", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36380", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36381" }, { "product": "Palo Alto Networks WF-500-B Appliances running WildFire 11.1", "id": "CCEVS-VR-VID11479-2025", "url": "https://www.niap-ccevs.org/products/11479", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11479/", "certification_date": "2025-10-29", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36346", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36347", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36348", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36349", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36350" }, { "product": "RedSeal Server v10.5", "id": "CCEVS-VR-VID11595-2025", "url": "https://www.niap-ccevs.org/products/11595", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11595/", "certification_date": "2025-10-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "RedSeal, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36322", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36323", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36324", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36325", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36326" }, { "product": "Ivanti Endpoint Manager Mobile (EPMM) System 12", "id": "CCEVS-VR-VID11566-2025", "url": "https://www.niap-ccevs.org/products/11566", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11566/", "certification_date": "2025-10-15", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility", "Network Encryption" ], "vendor": "Ivanti, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36245", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36246", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36247", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36248", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36249" }, { "product": "Cisco 1000 Series Integrated Services Routers (C1100), Cisco Catalyst IR1800 Rugged Series Routers (IR1800), Cisco Catalyst IR8300 Rugged Series Routers (IR8300) running IOS-XE 17.15", "id": "CCEVS-VR-VID11643-2025", "url": "https://www.niap-ccevs.org/products/11643", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11643/", "certification_date": "2025-10-14", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36194", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36196", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36195" }, { "product": "Zebra Devices on Android 14", "id": "CCEVS-VR-VID11632-2025", "url": "https://www.niap-ccevs.org/products/11632", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11632/", "certification_date": "2025-10-09", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility", "Network Encryption", "Wireless LAN" ], "vendor": "Zebra Technologies Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36199", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36200", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36201" }, { "product": "FortiGate/FortiOS 7.2", "id": "CCEVS-VR-VID11562-2025", "url": "https://www.niap-ccevs.org/products/11562", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11562/", "certification_date": "2025-10-09", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", "Network Device", "Remote Access", "Virtual Private Network" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36212", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36213", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36214" }, { "product": "Cisco Catalyst Industrial Ethernet 9300 Rugged Series Switches running IOS-XE 17.15", "id": "CCEVS-VR-VID11603-2025", "url": "https://www.niap-ccevs.org/products/11603", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11603/", "certification_date": "2025-10-03", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Remote Access" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36155", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36156", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36154" }, { "product": "Forescout eyeSight v9.1", "id": "CCEVS-VR-VID11591-2025", "url": "https://www.niap-ccevs.org/products/11591", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11591/", "certification_date": "2025-10-01", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Forescout Technologies Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36040", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36039", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36038" }, { "product": "ATEN Universal Secure KVM Switch Series (Non-CAC Models)", "id": "CCEVS-VR-VID11618-2025", "url": "https://www.niap-ccevs.org/products/11618", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11618/", "certification_date": "2025-09-30", "expiration_date": null, "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "ATEN International Co., Ltd.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36033", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36032", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36034" }, { "product": "ATEN Universal Secure KVM Switch Series (CAC Models)", "id": "CCEVS-VR-VID11617-2025", "url": "https://www.niap-ccevs.org/products/11617", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11617/", "certification_date": "2025-09-30", "expiration_date": null, "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "ATEN International Co., Ltd.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36021", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36022", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36023" }, { "product": "IOGEAR Universal Secure KVM Switch Series (CAC Models)", "id": "CCEVS-VR-VID11619-2025", "url": "https://www.niap-ccevs.org/products/11619", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11619/", "certification_date": "2025-09-30", "expiration_date": null, "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IOGEAR", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36120", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36119", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36117" }, { "product": "IOGEAR Universal Secure KVM Switch Series (Non-CAC Models)", "id": "CCEVS-VR-VID11620-2025", "url": "https://www.niap-ccevs.org/products/11620", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11620/", "certification_date": "2025-09-30", "expiration_date": null, "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IOGEAR", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36125", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36126", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=36127" }, { "product": "Cisco Aggregation Services Router 1000 Series (ASR1K), Cisco Catalyst 8200, 8300, 8500 Series Edge Routers (Cat8K) running IOS-XE version 17.15", "id": "CCEVS-VR-VID11642-2025", "url": "https://www.niap-ccevs.org/products/11642", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11642/", "certification_date": "2025-09-29", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35936", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35937", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35938" }, { "product": "Nokia 7750 SR & 7250 IXR, SROS 24.10.R3, MACsec platforms", "id": "CCEVS-VR-VID11615-2025", "url": "https://www.niap-ccevs.org/products/11615", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11615/", "certification_date": "2025-09-09", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "Nokia Corporation", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35728", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35729", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35730" }, { "product": "Cigent PBA Software v2.0", "id": "CCEVS-VR-VID11638-2025", "url": "https://www.niap-ccevs.org/products/11638", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11638/", "certification_date": "2025-09-05", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Cigent Technology, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35723", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35724", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35725" }, { "product": "IBM MaaS360 Cloud Extender version 3.000.800", "id": "CCEVS-VR-VID11531-2025", "url": "https://www.niap-ccevs.org/products/11531", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11531/", "certification_date": "2025-09-02", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", "Network Encryption" ], "vendor": "IBM Corporation", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35806", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35807", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35808" }, { "product": "Cisco Catalyst 8500 Series Edge Routers (Cat8500) running IOS-XE 17.15", "id": "CCEVS-VR-VID11637-2025", "url": "https://www.niap-ccevs.org/products/11637", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11637/", "certification_date": "2025-08-29", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Remote Access", "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35570", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35571", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35572" }, { "product": "Fortinet FortiSwitch v7.6", "id": "CCEVS-VR-VID11572-2025", "url": "https://www.niap-ccevs.org/products/11572", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11572/", "certification_date": "2025-08-19", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35634", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35635", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35636" }, { "product": "Ampex Software Full Drive Encryption", "id": "CCEVS-VR-VID11621-2025", "url": "https://www.niap-ccevs.org/products/11621", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11621/", "certification_date": "2025-08-18", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Ampex Data Systems Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35435", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35436", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35438" }, { "product": "Cisco Catalyst 9200/9200L Series Switches 17.15", "id": "CCEVS-VR-VID11580-2025", "url": "https://www.niap-ccevs.org/products/11580", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11580/", "certification_date": "2025-08-07", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Remote Access" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35295", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35296", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35297" }, { "product": "Cisco Catalyst 9300/9300L/9300LM/9400/9500/9600 Series Switches 17.15", "id": "CCEVS-VR-VID11581-2025", "url": "https://www.niap-ccevs.org/products/11581", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11581/", "certification_date": "2025-08-07", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Remote Access" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35299", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35300", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35301" }, { "product": "Cisco Catalyst 9200CX/9500X/9600X Series Switches 17.15", "id": "CCEVS-VR-VID11586-2025", "url": "https://www.niap-ccevs.org/products/11586", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11586/", "certification_date": "2025-08-05", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35242", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35243", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35244", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35245" }, { "product": "Tenable Nessus Agent 11.0", "id": "CCEVS-VR-VID11578-2025", "url": "https://www.niap-ccevs.org/products/11578", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11578/", "certification_date": "2025-08-01", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35287", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35288", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35289" }, { "product": "Cisco Embedded Services Router (ESR) 6300 v17.15", "id": "CCEVS-VR-VID11582-2025", "url": "https://www.niap-ccevs.org/products/11582", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11582/", "certification_date": "2025-07-18", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access", "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35120", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35121", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35122", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35123", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35124" }, { "product": "Samsung Electronics Co., Ltd. Samsung Galaxy Devices on Android 15 – Spring", "id": "CCEVS-VR-VID11593-2025", "url": "https://www.niap-ccevs.org/products/11593", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11593/", "certification_date": "2025-07-09", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35034", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35035", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35036" }, { "product": "Berryville Holdings, LLC Warden v1.2", "id": "CCEVS-VR-VID11522-2025", "url": "https://www.niap-ccevs.org/products/11522", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11522/", "certification_date": "2025-07-07", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", "Network Device", "Virtual Private Network", "Wireless Monitoring" ], "vendor": "Berryville Holdings LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35017", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35018", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=35019" }, { "product": "Ivanti Policy Secure 22.7R1", "id": "CCEVS-VR-VID11565-2025", "url": "https://www.niap-ccevs.org/products/11565", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11565/", "certification_date": "2025-06-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ivanti, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34909", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34910", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34911" }, { "product": "Ivanti Connect Secure 22.7R2", "id": "CCEVS-VR-VID11564-2025", "url": "https://www.niap-ccevs.org/products/11564", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11564/", "certification_date": "2025-06-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ivanti, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34914", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34915", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34916" }, { "product": "MMA10G-IPX Series v3.5", "id": "CCEVS-VR-VID11576-2025", "url": "https://www.niap-ccevs.org/products/11576", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11576/", "certification_date": "2025-06-25", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34900", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34901", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34902" }, { "product": "Illumio Core v24.2.20", "id": "CCEVS-VR-VID11614-2025", "url": "https://www.niap-ccevs.org/products/11614", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11614/", "certification_date": "2025-06-20", "expiration_date": null, "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Illumio", "evaluation_facility": "DEKRA Cybersecurity Certification Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34837", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34838", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34839" }, { "product": "Samsung Electronics Co., Ltd. Samsung Knox File Encryption 1.7.0 – Spring", "id": "CCEVS-VR-VID11594-2025", "url": "https://www.niap-ccevs.org/products/11594", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11594/", "certification_date": "2025-06-19", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", "Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34860", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34861", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34862" }, { "product": "Motorola Mobility LLC Mobile Devices on Android 14", "id": "CCEVS-VR-VID11577-2025", "url": "https://www.niap-ccevs.org/products/11577", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11577/", "certification_date": "2025-06-06", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Wireless LAN" ], "vendor": "Motorola Mobility LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34678", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34679", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34680" }, { "product": "CAE MPIC v3.5", "id": "CCEVS-VR-VID11575-2025", "url": "https://www.niap-ccevs.org/products/11575", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11575/", "certification_date": "2025-06-05", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "CAE Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34684", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34685", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34686" }, { "product": "VMware ESXi 8.0 Update 3e", "id": "CCEVS-VR-VID11533-2025", "url": "https://www.niap-ccevs.org/products/11533", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11533/", "certification_date": "2025-06-03", "expiration_date": null, "category": "Network Encryption", "categories": [ "Network Encryption", "Virtualization" ], "vendor": "Broadcom", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34605", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34606", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34607" }, { "product": "Apple iPadOS 17: iPad", "id": "CCEVS-VR-VID11447-2025", "url": "https://www.niap-ccevs.org/products/11447", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11447/", "certification_date": "2025-06-03", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Virtual Private Network", "Wireless LAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34599", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34600", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34601" }, { "product": "Klas VoyagerVM 4.0 running KlasOS Keel 5.4.3", "id": "CCEVS-VR-VID11556-2025", "url": "https://www.niap-ccevs.org/products/11556", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11556/", "certification_date": "2025-05-30", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Remote Access" ], "vendor": "Anduril", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34625", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34627", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34628" }, { "product": "HCL BigFix Version 11.0.3", "id": "CCEVS-VR-VID11481-2025", "url": "https://www.niap-ccevs.org/products/11481", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11481/", "certification_date": "2025-05-27", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", "Network Encryption" ], "vendor": "HCL Technologies Limited", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34503", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34504", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34505" }, { "product": "QuintessenceLabs Trusted Security Foundation 400, Version 3.2", "id": "CCEVS-VR-VID11518-2025", "url": "https://www.niap-ccevs.org/products/11518", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11518/", "certification_date": "2025-05-22", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "QuintessenceLabs Pty Ltd", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34454", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34455", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34456" }, { "product": "Palo Alto Networks M-200, M-300, M-600, and M-700 Hardware, and Virtual Appliances all running Panorama 11.1", "id": "CCEVS-VR-VID11500-2025", "url": "https://www.niap-ccevs.org/products/11500", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11500/", "certification_date": "2025-05-19", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34467", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34468", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34469" }, { "product": "Archon Linux Unified Key Setup (LUKS) v3.0.0.2", "id": "CCEVS-VR-VID11568-2025", "url": "https://www.niap-ccevs.org/products/11568", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11568/", "certification_date": "2025-05-19", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "CACI", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34447", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34448", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34449" }, { "product": "Scalar and Express P-series SSD, version NV.R1900", "id": "CCEVS-VR-VID11567-2025", "url": "https://www.niap-ccevs.org/products/11567", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11567/", "certification_date": "2025-05-15", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Novachips Co., Ltd.", "evaluation_facility": "UL Verification Services", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34419", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34422", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34423", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34424" }, { "product": "Apple macOS 14 Sonoma: FileVault", "id": "CCEVS-VR-VID11448-2025", "url": "https://www.niap-ccevs.org/products/11448", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11448/", "certification_date": "2025-05-14", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34429", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34430", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34431" }, { "product": "VMware Avi Load Balancer, Version 30.2.3", "id": "CCEVS-VR-VID11491-2025", "url": "https://www.niap-ccevs.org/products/11491", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11491/", "certification_date": "2025-05-08", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Broadcom", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34317", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34319", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34318" }, { "product": "NIKSUN NetOmni, and NetDetector/NetVCR/LogWave running Everest Software v6.0.1.0", "id": "CCEVS-VR-VID11524-2025", "url": "https://www.niap-ccevs.org/products/11524", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11524/", "certification_date": "2025-05-02", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "NIKSUN, Inc.", "evaluation_facility": "Advanced Data Security", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34268", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34267", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34266" }, { "product": "Quantum Force R81.20", "id": "CCEVS-VR-VID11513-2025", "url": "https://www.niap-ccevs.org/products/11513", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11513/", "certification_date": "2025-04-30", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", "Network Device", "Virtual Private Network" ], "vendor": "Check Point Software Technologies Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34231", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34233", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34232" }, { "product": "ClearPass Policy Manager 6.11", "id": "CCEVS-VR-VID11548-2025", "url": "https://www.niap-ccevs.org/products/11548", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11548/", "certification_date": "2025-04-29", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Aruba Networking", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34287", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34288", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34289" }, { "product": "SonicWall SonicOS/X v7.0.1 with VPN and IPS on NSsp 15700", "id": "CCEVS-VR-VID11528-2025", "url": "https://www.niap-ccevs.org/products/11528", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11528/", "certification_date": "2025-04-25", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", "Network Device", "Virtual Private Network" ], "vendor": "SonicWall, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34276", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34275", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34274" }, { "product": "Cisco Identity Services Engine (ISE) V3.3", "id": "CCEVS-VR-VID11517-2025", "url": "https://www.niap-ccevs.org/products/11517", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11517/", "certification_date": "2025-04-22", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34053", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34054", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34055" }, { "product": "Google Pixel Devices on Android 15", "id": "CCEVS-VR-VID11545-2025", "url": "https://www.niap-ccevs.org/products/11545", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11545/", "certification_date": "2025-04-10", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33932", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33933", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33934" }, { "product": "Cisco Catalyst 9800 Series Wireless Controllers and Access Points 17.12", "id": "CCEVS-VR-VID11456-2025", "url": "https://www.niap-ccevs.org/products/11456", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11456/", "certification_date": "2025-04-10", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Wireless LAN" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33938", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33939", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33940" }, { "product": "Honeywell Mobility Edge Mobile Computer SDM660 on Android 13", "id": "CCEVS-VR-VID11552-2025", "url": "https://www.niap-ccevs.org/products/11552", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11552/", "certification_date": "2025-04-08", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Honeywell International Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34005", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34006", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34007" }, { "product": "Honeywell Mobility Edge Mobile Computer CT47 on Android 13", "id": "CCEVS-VR-VID11553-2025", "url": "https://www.niap-ccevs.org/products/11553", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11553/", "certification_date": "2025-04-07", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Honeywell International Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34010", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34011", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=34012" }, { "product": "Persistent Systems LLC, Wave Relay® Devices v1.0", "id": "CCEVS-VR-VID11509-2025", "url": "https://www.niap-ccevs.org/products/11509", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11509/", "certification_date": "2025-03-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption", "Virtual Private Network" ], "vendor": "Persistent Systems LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33816", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33817", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33818" }, { "product": "Pure Storage FlashArray//CR3, //CR4, //XL, //XR3, and //XR4 Appliances Running Purity 6.5", "id": "CCEVS-VR-VID11525-2025", "url": "https://www.niap-ccevs.org/products/11525", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11525/", "certification_date": "2025-03-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pure Storage, Inc.", "evaluation_facility": "Advanced Data Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33799", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33800", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33801" }, { "product": "Cisco Secure Firewall Threat Defense Virtual 7.4 with FMC/FMCv", "id": "CCEVS-VR-VID11510-2025", "url": "https://www.niap-ccevs.org/products/11510", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11510/", "certification_date": "2025-03-18", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33674", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33675", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33676" }, { "product": "Trellix Security Enterprise Security Manager v11.6.12", "id": "CCEVS-VR-VID11470-2025", "url": "https://www.niap-ccevs.org/products/11470", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11470/", "certification_date": "2025-03-18", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Musarubra US LLC (\"Trellix\")", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33701", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33702", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33703" }, { "product": "Cisco MDS 9000 Series Switches Running NX-OS 9.4", "id": "CCEVS-VR-VID11511-2025", "url": "https://www.niap-ccevs.org/products/11511", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11511/", "certification_date": "2025-03-13", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33600", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33601", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33602" }, { "product": "Cisco Embedded Services 9300 and 3300 Series Switches (ESS9300 & ESS3300) running IOS-XE 17.12", "id": "CCEVS-VR-VID11521-2025", "url": "https://www.niap-ccevs.org/products/11521", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11521/", "certification_date": "2025-03-13", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33594", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33595", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33596" }, { "product": "Cisco Network Convergence System 1004 (NCS1004) Running IOS-XR 24.1", "id": "CCEVS-VR-VID11508-2025", "url": "https://www.niap-ccevs.org/products/11508", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11508/", "certification_date": "2025-03-04", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33498", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33499", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33500", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33501" }, { "product": "Zebra 4490 Devices on Android 13", "id": "CCEVS-VR-VID11544-2025", "url": "https://www.niap-ccevs.org/products/11544", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11544/", "certification_date": "2025-03-03", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Zebra Technologies Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33522", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33523", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33524", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33525", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33526" }, { "product": "Cisco FTD 7.4 on Firepower 2100 Series with FMC/FMCv", "id": "CCEVS-VR-VID11497-2025", "url": "https://www.niap-ccevs.org/products/11497", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11497/", "certification_date": "2025-02-28", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33456", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33457", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33458" }, { "product": "Cisco FTD 7.4 on Firepower 4100 and 9300 Series with FMC/FMCv", "id": "CCEVS-VR-VID11516-2025", "url": "https://www.niap-ccevs.org/products/11516", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11516/", "certification_date": "2025-02-27", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", "Network Device", "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33462", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33463", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33464", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33465" }, { "product": "Ciena SAOS R10.9.1 on the 3926 with Large NFV Compute Server Service Aggregation Platform", "id": "CCEVS-VR-VID11467-2025", "url": "https://www.niap-ccevs.org/products/11467", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11467/", "certification_date": "2025-02-25", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", "Network Encryption" ], "vendor": "Ciena Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33479", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33480", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33481", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33482", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33483" }, { "product": "Red Hat Enterprise Linux 9.4", "id": "CCEVS-VR-VID11526-2025", "url": "https://www.niap-ccevs.org/products/11526", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11526/", "certification_date": "2025-02-25", "expiration_date": null, "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33416", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33417", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33418" }, { "product": "Cisco FTD 7.4 on Cisco Secure Firewall 4200 Series with FMC/FMCv", "id": "CCEVS-VR-VID11460-2025", "url": "https://www.niap-ccevs.org/products/11460", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11460/", "certification_date": "2025-02-19", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33345", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33346", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33347", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33348" }, { "product": "Cisco FTD 7.4 on Firepower 1000 Series with FMC/FMCv", "id": "CCEVS-VR-VID11496-2025", "url": "https://www.niap-ccevs.org/products/11496", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11496/", "certification_date": "2025-02-19", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33337", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33338", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33339", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33340" }, { "product": "SailPoint IdentityIQ v8.3p5", "id": "CCEVS-VR-VID11520-2025", "url": "https://www.niap-ccevs.org/products/11520", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11520/", "certification_date": "2025-02-12", "expiration_date": null, "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "SailPoint Technologies, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33296", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33297", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33298" }, { "product": "SSD Drives, Firmware Versions: SCPU13.0/ECPU13.0/SCQU15.0/ECQU15.0", "id": "CCEVS-VR-VID11469-2025", "url": "https://www.niap-ccevs.org/products/11469", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11469/", "certification_date": "2025-02-10", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "UD Info Corporation", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33280", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33281", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33282", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33283", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33284" }, { "product": "Gigamon GigaVUE Fabric Manager v6.6", "id": "CCEVS-VR-VID11504-2025", "url": "https://www.niap-ccevs.org/products/11504", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11504/", "certification_date": "2025-01-31", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Gigamon Inc", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33094", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33095", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33096", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33097", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33098" }, { "product": "Cisco FTD 7.4 on Cisco Secure Firewall 3100 Series with FMC/FMCv", "id": "CCEVS-VR-VID11458-2025", "url": "https://www.niap-ccevs.org/products/11458", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11458/", "certification_date": "2025-01-31", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33204", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33205", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33206" }, { "product": "Appgate SDP Client 6.4", "id": "CCEVS-VR-VID11493-2025", "url": "https://www.niap-ccevs.org/products/11493", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11493/", "certification_date": "2025-01-30", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "Appgate Cybersecurity, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33197", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33198", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33199" }, { "product": "Cisco Nexus 9000 Series Switches Running NX-OS 10.4", "id": "CCEVS-VR-VID11514-2025", "url": "https://www.niap-ccevs.org/products/11514", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11514/", "certification_date": "2025-01-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33024", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33025", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33026", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33027", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33028" }, { "product": "Cisco Aggregation Services Router 9000 (ASR9K) running IOS-XR 7.11", "id": "CCEVS-VR-VID11484-2025", "url": "https://www.niap-ccevs.org/products/11484", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11484/", "certification_date": "2025-01-23", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33041", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33042", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=33043" }, { "product": "Infinera GX G42 Optical Network Platform running Converged OS (COS) 6.2.10", "id": "CCEVS-VR-VID11502-2025", "url": "https://www.niap-ccevs.org/products/11502", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11502/", "certification_date": "2025-01-16", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Infinera Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32914", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32915", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32916", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32917", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32918" }, { "product": "Corelight Sensors with BroLin v28", "id": "CCEVS-VR-VID11489-2025", "url": "https://www.niap-ccevs.org/products/11489", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11489/", "certification_date": "2025-01-16", "expiration_date": null, "category": "Network Switch", "categories": [ "Network Switch" ], "vendor": "Corelight, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32904", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32905", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32906", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32907", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32913" }, { "product": "Cisco ASA 9.20 on Cisco Secure Firewall 4200 Series", "id": "CCEVS-VR-VID11461-2025", "url": "https://www.niap-ccevs.org/products/11461", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11461/", "certification_date": "2025-01-13", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32908", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32909", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32910", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32911", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32912" }, { "product": "Cisco ASA 9.20 on Firepower 4100 and 9300 Security Appliances", "id": "CCEVS-VR-VID11512-2025", "url": "https://www.niap-ccevs.org/products/11512", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11512/", "certification_date": "2025-01-10", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32842", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32843", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32844", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32845", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32846" }, { "product": "Sonicwall SonicOS/X v7.0.1 with VPN and IPS on TZ, NSa, NSsp, and NSv Appliances", "id": "CCEVS-VR-VID11473-2025", "url": "https://www.niap-ccevs.org/products/11473", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11473/", "certification_date": "2025-01-08", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Network Encryption", " Virtual Private Network" ], "vendor": "SonicWall, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32775", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32776", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32777", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32778", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32779" }, { "product": "Cisco ASA 9.20 on Cisco Secure Firewall 3100 Series", "id": "CCEVS-VR-VID11459-2025", "url": "https://www.niap-ccevs.org/products/11459", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11459/", "certification_date": "2025-01-06", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32740", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32741", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32742", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32743", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32744" }, { "product": "Cisco Secure Firewall ASA Virtual 9.20", "id": "CCEVS-VR-VID11507-2025", "url": "https://www.niap-ccevs.org/products/11507", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11507/", "certification_date": "2025-01-06", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32745", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32746", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32747", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32748", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32749" }, { "product": "Ciena 6500 Packet Optical Platform", "id": "CCEVS-VR-VID11430-2025", "url": "https://www.niap-ccevs.org/products/11430", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11430/", "certification_date": "2025-01-02", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Acumen Security", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32765", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32766", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32767", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32768", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32770" }, { "product": "Microsoft Intune", "id": "CCEVS-VR-VID11298-2024", "url": "https://www.niap-ccevs.org/products/11298", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11298/", "certification_date": "2024-12-31", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32636", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32637", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32638" }, { "product": "Senetas Distributed by Thales CN Series Encryptors 5.5.0", "id": "CCEVS-VR-VID11485-2024", "url": "https://www.niap-ccevs.org/products/11485", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11485/", "certification_date": "2024-12-31", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Senetas Corporation Ltd, Distributed by Thales SA (SafeNet)", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32853", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32854", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32855", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32856", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32857" }, { "product": "Forescout eyeInspect v5.2", "id": "CCEVS-VR-VID11499-2024", "url": "https://www.niap-ccevs.org/products/11499", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11499/", "certification_date": "2024-12-27", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Forescout Technologies Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32652", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32653", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32654" }, { "product": "L3Harris Common Data Loader Version 02.01", "id": "CCEVS-VR-VID11503-2025", "url": "https://www.niap-ccevs.org/products/11503", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11503/", "certification_date": "2024-12-23", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "L3Harris", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32734", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32735", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32736" }, { "product": "Samsung Galaxy Devices on Android 14 - Fall", "id": "CCEVS-VR-VID11539-2024", "url": "https://www.niap-ccevs.org/products/11539", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11539/", "certification_date": "2024-12-23", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Virtual Private Network", "Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32595", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32596", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32597", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32598", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32599" }, { "product": "Trend Micro TippingPoint Threat Protection System (TPS) v6.3", "id": "CCEVS-VR-VID11488-2024", "url": "https://www.niap-ccevs.org/products/11488", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11488/", "certification_date": "2024-12-09", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Trend Micro", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32465", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32467", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32468", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32469", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32466" }, { "product": "Samsung Knox File Encryption 1.6.0 - Fall", "id": "CCEVS-VR-VID11540-2024", "url": "https://www.niap-ccevs.org/products/11540", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11540/", "certification_date": "2024-11-27", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32365", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32366", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32367", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32368", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32369" }, { "product": "Gigamon GigaVUE Version 6.5", "id": "CCEVS-VR-VID11487-2024", "url": "https://www.niap-ccevs.org/products/11487", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11487/", "certification_date": "2024-11-22", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Gigamon Inc", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32213", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32214", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32215", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32216", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32217" }, { "product": "NetApp Storage Encryption (NSE) Running ONTAP 9.14.1", "id": "CCEVS-VR-VID11477-2024", "url": "https://www.niap-ccevs.org/products/11477", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11477/", "certification_date": "2024-11-18", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "NetApp, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32196", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32197", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32198", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32199", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32200" }, { "product": "NetApp Volume Encryption (NVE) Appliances running ONTAP 9.14.1", "id": "CCEVS-VR-VID11475-2024", "url": "https://www.niap-ccevs.org/products/11475", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11475/", "certification_date": "2024-11-18", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "NetApp, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32191", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32192", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32193", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32194", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32195" }, { "product": "Cisco ASA 9.20 on Firepower 2100 Series", "id": "CCEVS-VR-VID11494-2024", "url": "https://www.niap-ccevs.org/products/11494", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11494/", "certification_date": "2024-11-14", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32223", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32224", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32225", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32226", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32227" }, { "product": "Cisco ASA 9.20 on Firepower 1000 Series", "id": "CCEVS-VR-VID11495-2024", "url": "https://www.niap-ccevs.org/products/11495", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11495/", "certification_date": "2024-11-14", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32233", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32234", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32235", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32236", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32237" }, { "product": "Curtiss-Wright Defense Solutions XMC NVMe Encryptor version 1.0.0", "id": "CCEVS-VR-VID11505-2024", "url": "https://www.niap-ccevs.org/products/11505", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11505/", "certification_date": "2024-11-05", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32080", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32081", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32082" }, { "product": "Curtiss-Wright Defense Solutions HSR10 CSfC Software Encryption Layer v1.1.0", "id": "CCEVS-VR-VID11506-2024", "url": "https://www.niap-ccevs.org/products/11506", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11506/", "certification_date": "2024-11-01", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32085", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32086", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=32087" }, { "product": "FireEye AX, CM, EX, FX, HX, NX, and VX Series Appliances running TRFEOS version 10.0.4", "id": "CCEVS-VR-VID11413-2024", "url": "https://www.niap-ccevs.org/products/11413", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11413/", "certification_date": "2024-10-18", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Musarubra US LLC (\"Trellix\")", "evaluation_facility": "Acumen Security", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31838", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31839", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31840", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31841", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31842" }, { "product": "Crestron DigitalMedia NVX®AV-over-IP v7.1", "id": "CCEVS-VR-VID11471-2024", "url": "https://www.niap-ccevs.org/products/11471", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11471/", "certification_date": "2024-10-09", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Crestron Electronics, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31777", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31778", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31779", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31780", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31781" }, { "product": "Palo Alto Networks PA-400 Series, PA-800 Series, PA-1400 Series, PA-3200 Series, PA-3400 Series, PA-5200 Series, PA-5400 Series, PA-5450, PA-7000 Series, and VM Series Next-Generation Firewall with PAN-OS 11.1", "id": "CCEVS-VR-VID11482-2024", "url": "https://www.niap-ccevs.org/products/11482", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11482/", "certification_date": "2024-09-19", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Remote Access", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31534", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31535", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31536", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31537", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31538" }, { "product": "Cisco Catalyst 9200CX/9300X/9300LM/9500X Series Switches 17.12", "id": "CCEVS-VR-VID11464-2024", "url": "https://www.niap-ccevs.org/products/11464", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11464/", "certification_date": "2024-09-17", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31507", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31508", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31509", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31510", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31511" }, { "product": "Cisco Catalyst 9400X/9600X Series Switches 17.12", "id": "CCEVS-VR-VID11465-2024", "url": "https://www.niap-ccevs.org/products/11465", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11465/", "certification_date": "2024-09-17", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31497", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31498", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31499", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31500", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31503" }, { "product": "Binary Armor SCADA Network Guard v2.4", "id": "CCEVS-VR-VID11455-2024", "url": "https://www.niap-ccevs.org/products/11455", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11455/", "certification_date": "2024-09-16", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Sierra Nevada Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31545", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31546", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31547", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31548", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31549" }, { "product": "Cisco Email Security Appliance with AsyncOS 15.5", "id": "CCEVS-VR-VID11420-2024", "url": "https://www.niap-ccevs.org/products/11420", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11420/", "certification_date": "2024-09-13", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31429", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31430", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31431", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31432", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31433" }, { "product": "Cisco Catalyst Industrial Ethernet 3100 (IE3100) Rugged Series Switches running IOS-XE 17.12", "id": "CCEVS-VR-VID11490-2024", "url": "https://www.niap-ccevs.org/products/11490", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11490/", "certification_date": "2024-09-12", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31523", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31524", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31525", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31526", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31527" }, { "product": "Information Security Corporation CertAgent/Dhuma v8.0 patch level 0.2", "id": "CCEVS-VR-VID11457-2024", "url": "https://www.niap-ccevs.org/products/11457", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11457/", "certification_date": "2024-09-03", "expiration_date": null, "category": "Certificate Authority", "categories": [ "Certificate Authority" ], "vendor": "Information Security Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31370", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31371", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31372", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31373" }, { "product": "Red Hat Certificate System 10.4", "id": "CCEVS-VR-VID11468-2024", "url": "https://www.niap-ccevs.org/products/11468", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11468/", "certification_date": "2024-08-23", "expiration_date": null, "category": "Certificate Authority", "categories": [ "Certificate Authority" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31288", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31289", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31290" }, { "product": "Cisco Catalyst 9300/9300L/9400/9500/9600 Series Switches 17.12", "id": "CCEVS-VR-VID11463-2024", "url": "https://www.niap-ccevs.org/products/11463", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11463/", "certification_date": "2024-08-20", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31178", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31179", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31181" }, { "product": "MMA10G-EXE Series II", "id": "CCEVS-VR-VID11474-2024", "url": "https://www.niap-ccevs.org/products/11474", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11474/", "certification_date": "2024-08-20", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31381", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31382", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31383", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31384", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31385" }, { "product": "SonicWall Secure Mobile Access (SMA) v12.4", "id": "CCEVS-VR-VID11527-2024", "url": "https://www.niap-ccevs.org/products/11527", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11527/", "certification_date": "2024-08-14", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "SonicWall, Inc.", "evaluation_facility": "DEKRA Cybersecurity Certification Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31324", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31325", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31327" }, { "product": "Cisco Catalyst Industrial Ethernet 9300 Rugged Series Switches running IOS-XE 17.12", "id": "CCEVS-VR-VID11466-2024", "url": "https://www.niap-ccevs.org/products/11466", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11466/", "certification_date": "2024-08-12", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31059", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31060", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31061", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31062", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31063" }, { "product": "Zebra Devices on Android 13", "id": "CCEVS-VR-VID11486-2024", "url": "https://www.niap-ccevs.org/products/11486", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11486/", "certification_date": "2024-08-08", "expiration_date": null, "category": "Mobility", "categories": [ "Mobility", " Network Encryption", " Wireless LAN" ], "vendor": "Zebra Technologies Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31018", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31019", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31020", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=31021" }, { "product": "Venafi Trust Protection Platform v23.1", "id": "CCEVS-VR-VID11434-2024", "url": "https://www.niap-ccevs.org/products/11434", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11434/", "certification_date": "2024-07-29", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", " Remote Access" ], "vendor": "Venafi, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30879", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30880", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30881", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30882", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30883" }, { "product": "FortiMail 7.4", "id": "CCEVS-VR-VID11454-2024", "url": "https://www.niap-ccevs.org/products/11454", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11454/", "certification_date": "2024-07-26", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30750", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30751", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30753", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30930" }, { "product": "Cisco Catalyst 9200/9200L Series Switches 17.12", "id": "CCEVS-VR-VID11462-2024", "url": "https://www.niap-ccevs.org/products/11462", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11462/", "certification_date": "2024-07-26", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30831", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30832", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30833", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30835", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30842" }, { "product": "CommScope Technologies LLC, Ruckus FastIron ICX Series Switch/Router 10.0.10 with MACsec", "id": "CCEVS-VR-VID11492-2024", "url": "https://www.niap-ccevs.org/products/11492", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11492/", "certification_date": "2024-07-23", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30925", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30926", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30927" }, { "product": "Fortinet FortiGate/FortiOS 7.0", "id": "CCEVS-VR-VID11421-2024", "url": "https://www.niap-ccevs.org/products/11421", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11421/", "certification_date": "2024-07-18", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30694", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30695", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30696" }, { "product": "KlasOS Keel 5.4.0", "id": "CCEVS-VR-VID11436-2024", "url": "https://www.niap-ccevs.org/products/11436", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11436/", "certification_date": "2024-07-16", "expiration_date": null, "category": "Firewall", "categories": [ "Firewall", " Network Device" ], "vendor": "Anduril", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30377", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30378", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30379", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30376", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30375" }, { "product": "Axway Desktop Validator, version 5.2", "id": "CCEVS-VR-VID11451-2024", "url": "https://www.niap-ccevs.org/products/11451", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11451/", "certification_date": "2024-07-15", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Axway, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30665", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30666", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30667" }, { "product": "Axway Validation Authority Server, version 5.2", "id": "CCEVS-VR-VID11452-2024", "url": "https://www.niap-ccevs.org/products/11452", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11452/", "certification_date": "2024-07-15", "expiration_date": null, "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "Axway, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30661", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30662", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30660" }, { "product": "Archon OS v3.0.0.2", "id": "CCEVS-VR-VID11429-2024", "url": "https://www.niap-ccevs.org/products/11429", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11429/", "certification_date": "2024-07-12", "expiration_date": null, "category": "Network Encryption", "categories": [ "Network Encryption", " Operating System" ], "vendor": "CACI", "evaluation_facility": "Acumen Security", "scheme": "US", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30354", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30355", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30357", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30358", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30362" }, { "product": "CommScope Technologies LLC, Ruckus FastIron ICX Series Switch/Router 10.0.10", "id": "CCEVS-VR-VID11478-2024", "url": "https://www.niap-ccevs.org/products/11478", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11478/", "certification_date": "2024-07-09", "expiration_date": null, "category": "Network Device", "categories": [ "Network Device" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30679", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30680", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30681" }, { "product": "Cisco Secure Client - AnyConnect 5.1 for Red Hat Enterprise Linux 8.2", "id": "CCEVS-VR-VID11439-2024", "url": "https://www.niap-ccevs.org/products/11439", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11439/", "certification_date": "2024-06-25", "expiration_date": "2026-06-25", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30123", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30124", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30125" }, { "product": "KLC Advantech Drives, Firmware Version: SCPB13.0/ECPB13.0", "id": "CCEVS-VR-VID11453-2024", "url": "https://www.niap-ccevs.org/products/11453", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11453/", "certification_date": "2024-06-25", "expiration_date": null, "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "KLC Group LLC", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "aar_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30149", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30151", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30152", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30150", "agd_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30148" }, { "product": "Cisco Embedded Services Router (ESR) 6300 v17.12", "id": "CCEVS-VR-VID11483-2024", "url": "https://www.niap-ccevs.org/products/11483", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11483/", "certification_date": "2024-06-14", "expiration_date": "2026-06-14", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30070", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30068", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30069" }, { "product": "BlackBerry UEM Server and Android Client v12", "id": "CCEVS-VR-VID11427-2024", "url": "https://www.niap-ccevs.org/products/11427", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11427/", "certification_date": "2024-05-30", "expiration_date": "2026-05-30", "category": "Mobility", "categories": [ "Mobility", " Network Encryption" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29887", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29888", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29889" }, { "product": "Trellix Endpoint Security (HX) Agent v35.31.31", "id": "CCEVS-VR-VID11415-2024", "url": "https://www.niap-ccevs.org/products/11415", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11415/", "certification_date": "2024-05-29", "expiration_date": "2026-05-29", "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "Musarubra US LLC (\"Trellix\")", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30007", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30008", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=30009" }, { "product": "Enveil ZeroReveal® Compute Fabric Server v4.6.3", "id": "CCEVS-VR-VID11432-2024", "url": "https://www.niap-ccevs.org/products/11432", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11432/", "certification_date": "2024-05-24", "expiration_date": "2026-05-24", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Enveil", "evaluation_facility": "Acumen Security", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29907", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29908", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29909" }, { "product": "Trellix Intrusion Prevention System Sensor and Manager Appliances version 11.1", "id": "CCEVS-VR-VID11417-2024", "url": "https://www.niap-ccevs.org/products/11417", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11417/", "certification_date": "2024-05-20", "expiration_date": "2026-05-20", "category": "Network Device", "categories": [ "Network Device", " Wireless Monitoring" ], "vendor": "Musarubra US LLC (\"Trellix\")", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29818", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29819", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29820" }, { "product": "Cisco Catalyst Industrial Ethernet 3200, 3300, 3400, 3400H (IE3x00) Rugged Series Switches running IOS-XE 17.12", "id": "CCEVS-VR-VID11443-2024", "url": "https://www.niap-ccevs.org/products/11443", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11443/", "certification_date": "2024-05-15", "expiration_date": "2026-05-15", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29827", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29828", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29829" }, { "product": "VMware Workspace ONE Boxer Email Client Version 23.11", "id": "CCEVS-VR-VID11441-2024", "url": "https://www.niap-ccevs.org/products/11441", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11441/", "certification_date": "2024-05-06", "expiration_date": "2026-05-06", "category": "Application Software", "categories": [ "Application Software", " Email Client" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29648", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29649", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29650" }, { "product": "Samsung Electronics Co., Ltd. Samsung Galaxy Devices on Android 14 - Spring", "id": "CCEVS-VR-VID11444-2024", "url": "https://www.niap-ccevs.org/products/11444", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11444/", "certification_date": "2024-05-06", "expiration_date": "2026-05-06", "category": "Biometrics", "categories": [ "Biometrics", " Mobility", " Network Encryption", " Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29674", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29675", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29676" }, { "product": "Curtiss-Wright Defense Solutions Data Transport System 1-Slot Plus Software Encryption Layer v1.01.00", "id": "CCEVS-VR-VID11438-2024", "url": "https://www.niap-ccevs.org/products/11438", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11438/", "certification_date": "2024-04-29", "expiration_date": "2026-04-29", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29612", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29613", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29614" }, { "product": "KLC Group LLC CipherDriveOne Kryptr 1.1.0", "id": "CCEVS-VR-VID11399-2024", "url": "https://www.niap-ccevs.org/products/11399", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11399/", "certification_date": "2024-04-29", "expiration_date": "2026-04-29", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "KLC Group LLC", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29586", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29587", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29588" }, { "product": "Seagate® Secure NVMe Self-Encrypting Drives", "id": "CCEVS-VR-VID11416-2024", "url": "https://www.niap-ccevs.org/products/11416", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11416/", "certification_date": "2024-04-25", "expiration_date": "2026-04-25", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Seagate Technology LLC.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29555", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29556", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29566" }, { "product": "Curtiss-Wright Defense Solutions Data Transport System 1-Slot Plus Hardware Encryption Layer version 1.1.0", "id": "CCEVS-VR-VID11437-2024", "url": "https://www.niap-ccevs.org/products/11437", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11437/", "certification_date": "2024-04-24", "expiration_date": "2026-04-24", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29595", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29593", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29594" }, { "product": "Aruba, a Hewlett Packard Enterprise Company 6300M and 8360v2 Switch Series MACsec", "id": "CCEVS-VR-VID11422-2024", "url": "https://www.niap-ccevs.org/products/11422", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11422/", "certification_date": "2024-04-22", "expiration_date": "2026-04-22", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29488", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29489", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29490" }, { "product": "Enveil ZeroReveal® Compute Fabric Client v4.6.3", "id": "CCEVS-VR-VID11424-2024", "url": "https://www.niap-ccevs.org/products/11424", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11424/", "certification_date": "2024-04-11", "expiration_date": "2026-04-11", "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "Enveil", "evaluation_facility": "Acumen Security", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29352", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29353", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29910" }, { "product": "Versa Networks Versa Secure SD-WAN Versa Operating System (VOS) 22.1 running on CSG1500, CSG2500, CSG3500, CSG5000, Dell PowerEdge R7515, and Dell VEP4600, Versa Director 22.1, and Versa Analytics 22.1", "id": "CCEVS-VR-VID11431-2024", "url": "https://www.niap-ccevs.org/products/11431", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11431/", "certification_date": "2024-04-10", "expiration_date": "2026-04-10", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Versa Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29366", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29367", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29368" }, { "product": "MMA10G-EXE Series", "id": "CCEVS-VR-VID11428-2024", "url": "https://www.niap-ccevs.org/products/11428", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11428/", "certification_date": "2024-04-05", "expiration_date": "2026-04-05", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29459", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29460", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29461" }, { "product": "Hypori Halo Client (iOS) 4.3", "id": "CCEVS-VR-VID11425-2024", "url": "https://www.niap-ccevs.org/products/11425", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11425/", "certification_date": "2024-03-04", "expiration_date": "2026-03-04", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Hypori, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29097", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29098", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=29099" }, { "product": "Hypori Halo Client (Android) 4.3", "id": "CCEVS-VR-VID11423-2024", "url": "https://www.niap-ccevs.org/products/11423", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11423/", "certification_date": "2024-02-20", "expiration_date": "2026-02-20", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Hypori, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28985", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28986", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28987" }, { "product": "Nubo Client Version 3.2", "id": "CCEVS-VR-VID11380-2023", "url": "https://www.niap-ccevs.org/products/11380", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11380/", "certification_date": "2023-12-20", "expiration_date": "2025-12-20", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Nubo Software LTD", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28594", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28595", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28596" }, { "product": "Palo Alto Networks GlobalProtect App 6", "id": "CCEVS-VR-VID11402-2023", "url": "https://www.niap-ccevs.org/products/11402", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11402/", "certification_date": "2023-10-20", "expiration_date": "2025-10-20", "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28102", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28106", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28131" }, { "product": "Tenable Security Center 6.2.0", "id": "CCEVS-VR-VID11374-2023", "url": "https://www.niap-ccevs.org/products/11374", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11374/", "certification_date": "2023-10-12", "expiration_date": "2025-10-12", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28009", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28010", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=28011" }, { "product": "Veeam ONE v12", "id": "CCEVS-VR-VID11371-2023", "url": "https://www.niap-ccevs.org/products/11371", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11371/", "certification_date": "2023-08-18", "expiration_date": "2025-08-18", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Veeam Software Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27458", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27459", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27461" }, { "product": "Veeam Backup & Replication v12", "id": "CCEVS-VR-VID11370-2023", "url": "https://www.niap-ccevs.org/products/11370", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11370/", "certification_date": "2023-08-18", "expiration_date": "2025-08-18", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Veeam Software Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27452", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27453", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27454" }, { "product": "Nessus 10.5.3", "id": "CCEVS-VR-VID11368-2023", "url": "https://www.niap-ccevs.org/products/11368", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11368/", "certification_date": "2023-07-07", "expiration_date": "2025-07-07", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27015", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27016", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27019" }, { "product": "Nessus Network Monitor 6.2.2", "id": "CCEVS-VR-VID11369-2023", "url": "https://www.niap-ccevs.org/products/11369", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11369/", "certification_date": "2023-07-07", "expiration_date": "2025-07-07", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27021", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27022", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=27025" }, { "product": "Raritan Secure KVM Switch Series with CAC", "id": "CCEVS-VR-VID11323-2023", "url": "https://www.niap-ccevs.org/products/11323", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11323/", "certification_date": "2023-04-20", "expiration_date": "2028-04-20", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Legrand DPC LLC d.b.a Raritan", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=26228", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=26229", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=26230" }, { "product": "BAE Systems Secure KVM Gen2 8560943-2", "id": "CCEVS-VR-VID11304-2023", "url": "https://www.niap-ccevs.org/products/11304", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11304/", "certification_date": "2023-01-12", "expiration_date": "2028-01-12", "category": "Peripheral Switch", "categories": [ "Peripheral Switch", " Sharing Switch" ], "vendor": "BAE Systems Information and Electronic Systems, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=25243", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=25244", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=25245" }, { "product": "Vertiv CYBEX™ SC845DPH, SC945DPH, SC845DPHC, SC945DPHC, SCM145DPH, SCM185DPH, SC985DPH, SCMV245DPH, SCMV285DPH Firmware Version 44444-E7E7 Peripheral Sharing Devices", "id": "CCEVS-VR-VID11288-2022", "url": "https://www.niap-ccevs.org/products/11288", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11288/", "certification_date": "2022-06-03", "expiration_date": "2027-06-03", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=23553", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=23554", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=23555" }, { "product": "ATEN Secure KVM Switch Series (CAC Models)", "id": "CCEVS-VR-VID11221-2022", "url": "https://www.niap-ccevs.org/products/11221", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11221/", "certification_date": "2022-03-10", "expiration_date": "2027-03-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "ATEN International Co., Ltd.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22846", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22847", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22848" }, { "product": "IOGEAR Secure KVM Switch Series (Non-CAC Models)", "id": "CCEVS-VR-VID11224-2022", "url": "https://www.niap-ccevs.org/products/11224", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11224/", "certification_date": "2022-03-10", "expiration_date": "2027-03-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IOGEAR", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22870", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22871", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22872" }, { "product": "IOGEAR Secure KVM Switch Series (CAC Models)", "id": "CCEVS-VR-VID11223-2022", "url": "https://www.niap-ccevs.org/products/11223", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11223/", "certification_date": "2022-03-10", "expiration_date": "2027-03-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IOGEAR", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22861", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22863", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22864" }, { "product": "ATEN Secure KVM Switch Series (Non-CAC Models)", "id": "CCEVS-VR-VID11222-2022", "url": "https://www.niap-ccevs.org/products/11222", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11222/", "certification_date": "2022-03-10", "expiration_date": "2027-03-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "ATEN International Co., Ltd.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22854", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22855", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22856" }, { "product": "Vertiv CYBEX™ SCUSBHIDFILTER Firmware Version 40404-0E7 and Vertiv CYBEX™ SCKM140PP4 KM Switch Firmware Version 40404-0E7", "id": "CCEVS-VR-VID11254-2022", "url": "https://www.niap-ccevs.org/products/11254", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11254/", "certification_date": "2022-01-31", "expiration_date": "2027-01-31", "category": "Sharing Switch", "categories": [ "Sharing Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22465", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22467", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22468" }, { "product": "Black Box Secure KM Switch (CAC Models)", "id": "CCEVS-VR-VID11242-2021", "url": "https://www.niap-ccevs.org/products/11242", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11242/", "certification_date": "2021-12-10", "expiration_date": "2026-12-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Black Box, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22138", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22139", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22140" }, { "product": "Black Box Secure KVM Switch (Non-CAC Models)", "id": "CCEVS-VR-VID11241-2021", "url": "https://www.niap-ccevs.org/products/11241", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11241/", "certification_date": "2021-12-10", "expiration_date": "2026-12-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Black Box, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22132", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22133", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22134" }, { "product": "Black Box Secure KVM Switch/Isolator (CAC Models)", "id": "CCEVS-VR-VID11240-2021", "url": "https://www.niap-ccevs.org/products/11240", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11240/", "certification_date": "2021-12-10", "expiration_date": "2026-12-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Black Box, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22122", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22124", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22125" }, { "product": "Vertiv CYBEX™ SC820DPH, SC840DPH, SC920DPH, SC940DPH, SC840DPHC, SC940DPHC, SC840DVI, SC940DVI Firmware Version 44404-E7E7 Peripheral Sharing Devices", "id": "CCEVS-VR-VID11252-2021", "url": "https://www.niap-ccevs.org/products/11252", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11252/", "certification_date": "2021-11-19", "expiration_date": "2026-11-19", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22001", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22002", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22003" }, { "product": "Vertiv CYBEX™ SCMDR0001 Multi-Domain Smart Card Reader Firmware Version 40040-0E7", "id": "CCEVS-VR-VID11145-2022", "url": "https://www.niap-ccevs.org/products/11145", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11145/", "certification_date": "2021-10-22", "expiration_date": "2026-10-22", "category": "Sharing Switch", "categories": [ "Sharing Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21750", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21751", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22308" }, { "product": "SK41D-4TR KVM, Firmware Version 44404-E7E7", "id": "CCEVS-VR-VID11193-2022", "url": "https://www.niap-ccevs.org/products/11193", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11193/", "certification_date": "2021-09-15", "expiration_date": "2026-09-15", "category": "Peripheral Switch", "categories": [ "Peripheral Switch", " Sharing Switch" ], "vendor": "High Sec Labs, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21439", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21440", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=22315" }, { "product": "Sekuryx Secure KVM Switch (CAC Models)", "id": "CCEVS-VR-VID11168-2021", "url": "https://www.niap-ccevs.org/products/11168", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11168/", "certification_date": "2021-09-03", "expiration_date": "2026-09-03", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "StarTech.com Ltd", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21275", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21276", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21277" }, { "product": "Sekuryx Secure KVM Switch (Non-CAC Models)", "id": "CCEVS-VR-VID11169-2021", "url": "https://www.niap-ccevs.org/products/11169", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11169/", "certification_date": "2021-09-03", "expiration_date": "2026-09-03", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "StarTech.com Ltd", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21281", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21282", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21283" }, { "product": "Tripp Lite Secure KVM Switch (Non-CAC Models)", "id": "CCEVS-VR-VID11167-2021", "url": "https://www.niap-ccevs.org/products/11167", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11167/", "certification_date": "2021-09-01", "expiration_date": "2026-09-01", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Trippe Manufacturing Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21264", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21265", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21266" }, { "product": "Tripp Lite Secure KVM Switch (CAC Models)", "id": "CCEVS-VR-VID11166-2021", "url": "https://www.niap-ccevs.org/products/11166", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11166/", "certification_date": "2021-09-01", "expiration_date": "2026-09-01", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Trippe Manufacturing Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21257", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21258", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21259" }, { "product": "Vertiv CYBEX™ SCMV2160DPH, SC840DVIE, SC940DVIE, SC840HE, SC940HE, SC840DPE, SC940DPE Firmware Version 44404-E7E7 Peripheral Sharing Devices", "id": "CCEVS-VR-VID11122-2021", "url": "https://www.niap-ccevs.org/products/11122", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11122/", "certification_date": "2021-08-27", "expiration_date": "2026-08-27", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "Acumen Security", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21288", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21289", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=21290" }, { "product": "IPGARD Secure KVM Switch (Non-CAC Models)", "id": "CCEVS-VR-VID11134-2021", "url": "https://www.niap-ccevs.org/products/11134", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11134/", "certification_date": "2021-07-09", "expiration_date": "2026-07-09", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IPGARD, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20594", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20595", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20596" }, { "product": "IPGARD Secure KVM Switch/Isolator (CAC Models)", "id": "CCEVS-VR-VID11133-2021", "url": "https://www.niap-ccevs.org/products/11133", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11133/", "certification_date": "2021-07-09", "expiration_date": "2026-07-09", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IPGARD, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20585", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20587", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20588" }, { "product": "IPGARD Secure KM Switches (CAC Models)", "id": "CCEVS-VR-VID11135-2021", "url": "https://www.niap-ccevs.org/products/11135", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11135/", "certification_date": "2021-07-09", "expiration_date": "2026-07-09", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IPGARD, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US", "target_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20600", "report_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20601", "cert_link": "https://www.niap-ccevs.org/api/file/get_public_file/?file_id=20602" } ], "ARCHIVED": [ { "product": "Apple iOS 17: iPhone", "id": "CCEVS-VR-VID11446", "url": "https://www.niap-ccevs.org/products/11446", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11446/", "certification_date": "2025-06-03", "expiration_date": null, "category": "Biometrics", "categories": [ "Biometrics", "Mobility", "Network Encryption", "Virtual Private Network", "Wireless LAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Adtran’s FSP 3000R7 Network Element r22.2.2", "id": "CCEVS-VR-VID11418", "url": "https://www.niap-ccevs.org/products/11418", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11418/", "certification_date": "2024-03-28", "expiration_date": "2026-03-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Adtran Networks North America, Inc", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Google Pixel Devices on Android 14", "id": "CCEVS-VR-VID11419", "url": "https://www.niap-ccevs.org/products/11419", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11419/", "certification_date": "2024-03-27", "expiration_date": "2026-03-27", "category": "Biometrics", "categories": [ "Biometrics", " Mobility", " Network Encryption", " Wireless LAN" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Electronics Co., Ltd. Samsung Knox File Encryption 1.6.0 – Spring", "id": "CCEVS-VR-VID11445", "url": "https://www.niap-ccevs.org/products/11445", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11445/", "certification_date": "2024-03-27", "expiration_date": "2026-03-27", "category": "Application Software", "categories": [ "Application Software", " Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Hypori Halo Client (Windows) 4.3", "id": "CCEVS-VR-VID11426", "url": "https://www.niap-ccevs.org/products/11426", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11426/", "certification_date": "2024-03-21", "expiration_date": "2026-03-21", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Hypori, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Ciena SAOS 10.7.1 on 3926, 3928, 3948, 5144, 5162, 5164, 5170, 5171, Large NFV Compute Server, and 8180 Service Aggregation Platforms", "id": "CCEVS-VR-VID11400", "url": "https://www.niap-ccevs.org/products/11400", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11400/", "certification_date": "2024-03-12", "expiration_date": "2026-03-12", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Architecture Technology Corporation Machete Router", "id": "CCEVS-VR-VID11414", "url": "https://www.niap-ccevs.org/products/11414", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11414/", "certification_date": "2024-02-15", "expiration_date": "2026-02-15", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network", " Wireless LAN" ], "vendor": "Architecture Technology Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "TheJoin, Inc., Join-Virtual Mobile Platform 6.1.0", "id": "CCEVS-VR-VID11450", "url": "https://www.niap-ccevs.org/products/11450", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11450/", "certification_date": "2024-02-08", "expiration_date": "2026-02-08", "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "TheJoin, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple macOS 13 Ventura", "id": "CCEVS-VR-VID11347", "url": "https://www.niap-ccevs.org/products/11347", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11347/", "certification_date": "2024-02-06", "expiration_date": "2026-02-06", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Juniper vSRX3.0 with Junos OS 22.2R2", "id": "CCEVS-VR-VID11397", "url": "https://www.niap-ccevs.org/products/11397", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11397/", "certification_date": "2024-01-22", "expiration_date": "2026-01-22", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "HYCU for Enterprise Clouds", "id": "CCEVS-VR-VID11409", "url": "https://www.niap-ccevs.org/products/11409", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11409/", "certification_date": "2024-01-17", "expiration_date": "2026-01-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HYCU Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Red Hat Enterprise Linux 8.6", "id": "CCEVS-VR-VID11309", "url": "https://www.niap-ccevs.org/products/11309", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11309/", "certification_date": "2024-01-15", "expiration_date": "2026-01-15", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Red Hat Enterprise Linux 9.0 EUS", "id": "CCEVS-VR-VID11379", "url": "https://www.niap-ccevs.org/products/11379", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11379/", "certification_date": "2024-01-09", "expiration_date": "2026-01-09", "category": "Network Encryption", "categories": [ "Network Encryption", " Operating System", " Remote Access" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Motorola Mobility LLC Mobile Devices on Android 13", "id": "CCEVS-VR-VID11412", "url": "https://www.niap-ccevs.org/products/11412", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11412/", "certification_date": "2023-12-22", "expiration_date": "2025-02-22", "category": "Biometrics", "categories": [ "Biometrics", " Mobility", " Network Encryption", " Virtual Private Network" ], "vendor": "Motorola Mobility LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Viasat Secure VPN v1.1.7", "id": "CCEVS-VR-VID11405", "url": "https://www.niap-ccevs.org/products/11405", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11405/", "certification_date": "2023-12-21", "expiration_date": "2025-12-21", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Viasat, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Cisco Secure Client - AnyConnect 5.0 for Windows 10", "id": "CCEVS-VR-VID11433", "url": "https://www.niap-ccevs.org/products/11433", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11433/", "certification_date": "2023-12-19", "expiration_date": "2025-12-19", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Ciena Waveserver 5 OS R2.3.12", "id": "CCEVS-VR-VID11390", "url": "https://www.niap-ccevs.org/products/11390", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11390/", "certification_date": "2023-12-06", "expiration_date": "2025-12-06", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Aruba, a Hewlett Packard Enterprise Company 4100i, 6200, 6300, 6400, 8320, 8325, 8360, 8400, 9300, and 10000 Switch Series Version 10.11", "id": "CCEVS-VR-VID11391", "url": "https://www.niap-ccevs.org/products/11391", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11391/", "certification_date": "2023-12-05", "expiration_date": "2025-12-05", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple macOS 13 Ventura: FileVault", "id": "CCEVS-VR-VID11348", "url": "https://www.niap-ccevs.org/products/11348", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11348/", "certification_date": "2023-12-04", "expiration_date": "2025-12-04", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Cisco Catalyst 9200CX/9300X/9300LM/9500X Series Switches running IOS-XE 17.9", "id": "CCEVS-VR-VID11393", "url": "https://www.niap-ccevs.org/products/11393", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11393/", "certification_date": "2023-12-01", "expiration_date": "2025-12-01", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba Remote Access Points and Aruba Mobility Controllers with ArubaOS 8.10", "id": "CCEVS-VR-VID11403", "url": "https://www.niap-ccevs.org/products/11403", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11403/", "certification_date": "2023-11-20", "expiration_date": "2025-11-20", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Cisco Catalyst 9400X/9600X Series Switches Running IOS-XE 17.9", "id": "CCEVS-VR-VID11392", "url": "https://www.niap-ccevs.org/products/11392", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11392/", "certification_date": "2023-11-13", "expiration_date": "2025-11-13", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst Industrial Ethernet 9300 Rugged Series Switches running IOS-XE 17.9", "id": "CCEVS-VR-VID11395", "url": "https://www.niap-ccevs.org/products/11395", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11395/", "certification_date": "2023-11-08", "expiration_date": "2025-11-08", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Electronics Co., Ltd. Samsung Knox File Encryption 1.5 - Fall", "id": "CCEVS-VR-VID11411", "url": "https://www.niap-ccevs.org/products/11411", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11411/", "certification_date": "2023-11-07", "expiration_date": "2025-11-07", "category": "Application Software", "categories": [ "Application Software", " Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cigent PBA Software v1.0.6", "id": "CCEVS-VR-VID11378", "url": "https://www.niap-ccevs.org/products/11378", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11378/", "certification_date": "2023-10-24", "expiration_date": "2025-10-24", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Cigent Technology, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Samsung Electronics Co., Ltd. Samsung Galaxy Devices on Android 13 – Fall", "id": "CCEVS-VR-VID11410", "url": "https://www.niap-ccevs.org/products/11410", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11410/", "certification_date": "2023-10-23", "expiration_date": "2025-10-23", "category": "Biometrics", "categories": [ "Biometrics", " Mobility", " Network Encryption", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Alcatel-Lucent Enterprise OmniSwitch series 6360, 6465, 6560, 6860, 6865, 6900, 9900 with AOS 8.9.R11", "id": "CCEVS-VR-VID11404", "url": "https://www.niap-ccevs.org/products/11404", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11404/", "certification_date": "2023-10-21", "expiration_date": "2025-10-21", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "ALE USA Inc", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple iPadOS 16: iPads", "id": "CCEVS-VR-VID11350", "url": "https://www.niap-ccevs.org/products/11350", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11350/", "certification_date": "2023-10-10", "expiration_date": "2025-10-10", "category": "Biometrics", "categories": [ "Biometrics", " Mobility", " Virtual Private Network" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Apple iOS 16: iPhones", "id": "CCEVS-VR-VID11349", "url": "https://www.niap-ccevs.org/products/11349", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11349/", "certification_date": "2023-10-10", "expiration_date": "2025-10-10", "category": "Biometrics", "categories": [ "Biometrics", " Mobility", " Virtual Private Network" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Imprivata OneSign Version 7.9", "id": "CCEVS-VR-VID11178", "url": "https://www.niap-ccevs.org/products/11178", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11178/", "certification_date": "2023-10-09", "expiration_date": "2025-10-09", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Imprivata, Inc", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Cisco Secure Client - AnyConnect 5.0 for iOS 16", "id": "CCEVS-VR-VID11406", "url": "https://www.niap-ccevs.org/products/11406", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11406/", "certification_date": "2023-10-06", "expiration_date": "2025-10-06", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Embedded Services 9300 & 3300 Series Switches (ESS9300 & ESS3300)", "id": "CCEVS-VR-VID11394", "url": "https://www.niap-ccevs.org/products/11394", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11394/", "certification_date": "2023-10-04", "expiration_date": "2025-10-04", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Nokia 7705 SAR Series with SAR OS 21.10R5", "id": "CCEVS-VR-VID11353", "url": "https://www.niap-ccevs.org/products/11353", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11353/", "certification_date": "2023-09-29", "expiration_date": "2025-09-29", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Nokia Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Identity Services Engine (ISE) Version 3.1", "id": "CCEVS-VR-VID11407", "url": "https://www.niap-ccevs.org/products/11407", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11407/", "certification_date": "2023-09-27", "expiration_date": "2025-09-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Trustwave AppDetectivePRO version 10.2", "id": "CCEVS-VR-VID11306", "url": "https://www.niap-ccevs.org/products/11306", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11306/", "certification_date": "2023-09-20", "expiration_date": "2025-09-20", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Trustwave Holdings Inc", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Ruckus SmartZone WLAN Controllers & Access Points with WIDS, R5.2.1.3", "id": "CCEVS-VR-VID11382", "url": "https://www.niap-ccevs.org/products/11382", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11382/", "certification_date": "2023-09-19", "expiration_date": "2025-09-19", "category": "Network Device", "categories": [ "Network Device", " Wireless LAN", " Wireless Monitoring" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Dell EMC Networking SmartFabric OS10.5.4", "id": "CCEVS-VR-VID11338", "url": "https://www.niap-ccevs.org/products/11338", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11338/", "certification_date": "2023-09-06", "expiration_date": "2025-09-06", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Dell Technologies Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "SailPoint File Access Manager v8.3 SP5", "id": "CCEVS-VR-VID11352", "url": "https://www.niap-ccevs.org/products/11352", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11352/", "certification_date": "2023-08-31", "expiration_date": "2025-08-31", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "SailPoint Technologies, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "DataSoft Secure Tactical VPN Client for Android", "id": "CCEVS-VR-VID11396", "url": "https://www.niap-ccevs.org/products/11396", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11396/", "certification_date": "2023-08-14", "expiration_date": "2025-08-14", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "DataSoft Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "SpaceX Regulus", "id": "CCEVS-VR-VID11327", "url": "https://www.niap-ccevs.org/products/11327", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11327/", "certification_date": "2023-08-07", "expiration_date": "2025-08-07", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Space Exploration Technologies Corp", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apriva MESA VPN v3.0", "id": "CCEVS-VR-VID11363", "url": "https://www.niap-ccevs.org/products/11363", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11363/", "certification_date": "2023-07-31", "expiration_date": "2025-07-31", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Apriva ISS, LLC.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Arista Networks 7280 Series Switches Running EOS 4.28", "id": "CCEVS-VR-VID11356", "url": "https://www.niap-ccevs.org/products/11356", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11356/", "certification_date": "2023-07-27", "expiration_date": "2025-07-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Arista Networks, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "DataSoft RAP-117", "id": "CCEVS-VR-VID11377", "url": "https://www.niap-ccevs.org/products/11377", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11377/", "certification_date": "2023-07-26", "expiration_date": "2025-07-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "DataSoft Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Secure Client - AnyConnect 5.0 for Android 12", "id": "CCEVS-VR-VID11398", "url": "https://www.niap-ccevs.org/products/11398", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11398/", "certification_date": "2023-07-26", "expiration_date": "2025-07-26", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 9200/9200L Series Switches running IOS-XE 17.9", "id": "CCEVS-VR-VID11364", "url": "https://www.niap-ccevs.org/products/11364", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11364/", "certification_date": "2023-07-25", "expiration_date": "2025-07-25", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 9300/9300L/9400/9500/9600 Series Switches running IOS-XE 17.9", "id": "CCEVS-VR-VID11365", "url": "https://www.niap-ccevs.org/products/11365", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11365/", "certification_date": "2023-07-18", "expiration_date": "2025-07-18", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Nessus Agent 10.4.1", "id": "CCEVS-VR-VID11367", "url": "https://www.niap-ccevs.org/products/11367", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11367/", "certification_date": "2023-07-07", "expiration_date": "2025-07-07", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "VMware Unified Access Gateway (UAG) 2209", "id": "CCEVS-VR-VID11360", "url": "https://www.niap-ccevs.org/products/11360", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11360/", "certification_date": "2023-07-06", "expiration_date": "2025-07-06", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "VMware, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "IBM QRadar Security Intelligence Platform version 7.5", "id": "CCEVS-VR-VID11376", "url": "https://www.niap-ccevs.org/products/11376", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11376/", "certification_date": "2023-07-05", "expiration_date": "2025-07-05", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "IBM Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "VMware Horizon Connection Server 8 2209 (Horizon 8.7)", "id": "CCEVS-VR-VID11359", "url": "https://www.niap-ccevs.org/products/11359", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11359/", "certification_date": "2023-07-03", "expiration_date": "2025-07-03", "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "VMware, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "VMware Horizon Agent 8 2209 (Horizon 8.7)", "id": "CCEVS-VR-VID11358", "url": "https://www.niap-ccevs.org/products/11358", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11358/", "certification_date": "2023-06-23", "expiration_date": "2025-06-23", "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "VMware, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Aruba Mobility Conductor with ArubaOS 8.10", "id": "CCEVS-VR-VID11345", "url": "https://www.niap-ccevs.org/products/11345", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11345/", "certification_date": "2023-06-23", "expiration_date": "2025-06-23", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "VMware Horizon Client 8 2209 (Horizon 8.7)", "id": "CCEVS-VR-VID11357", "url": "https://www.niap-ccevs.org/products/11357", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11357/", "certification_date": "2023-06-16", "expiration_date": "2025-06-16", "category": "Application Software", "categories": [ "Application Software", " Network Encryption" ], "vendor": "VMware, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung SDS EMM and EMM Agent for Android v2.2.5", "id": "CCEVS-VR-VID11362", "url": "https://www.niap-ccevs.org/products/11362", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11362/", "certification_date": "2023-06-16", "expiration_date": "2025-06-16", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung SDS Co., Ltd", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Motorola Mobility LLC Mobile Devices on Android 12", "id": "CCEVS-VR-VID11341", "url": "https://www.niap-ccevs.org/products/11341", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11341/", "certification_date": "2023-06-16", "expiration_date": "2025-03-30", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Motorola Mobility LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Wickr Enterprise Server 1.30.0", "id": "CCEVS-VR-VID11321", "url": "https://www.niap-ccevs.org/products/11321", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11321/", "certification_date": "2023-06-12", "expiration_date": "2025-06-12", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Wickr LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Aruba Mobility Controller with ArubaOS 8.10", "id": "CCEVS-VR-VID11333", "url": "https://www.niap-ccevs.org/products/11333", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11333/", "certification_date": "2023-05-19", "expiration_date": "2025-05-19", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless LAN" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco NGIPSv 7.0 with FMC/FMCv 7.0", "id": "CCEVS-VR-VID11339", "url": "https://www.niap-ccevs.org/products/11339", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11339/", "certification_date": "2023-05-18", "expiration_date": "2025-05-18", "category": "Network Device", "categories": [ "Network Device", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 8000V Edge (C8000V), Cisco 1000 Series Integrated Services Routers (ISR1000), Cisco Catalyst 1800 Rugged Series Routers (IR1800), Cisco Catalyst 8300 Rugged Series Routers (IR8300)", "id": "CCEVS-VR-VID11332", "url": "https://www.niap-ccevs.org/products/11332", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11332/", "certification_date": "2023-05-04", "expiration_date": "2025-05-04", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Zebra SM6375 Devices on Android 11", "id": "CCEVS-VR-VID11337", "url": "https://www.niap-ccevs.org/products/11337", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11337/", "certification_date": "2023-04-27", "expiration_date": "2025-03-20", "category": "Mobility", "categories": [ "Mobility", " Network Encryption", " Wireless LAN", " Wireless PAN" ], "vendor": "Zebra Technologies Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Electronics Co., Ltd. Samsung Galaxy Devices on Android 13- Spring", "id": "CCEVS-VR-VID11342", "url": "https://www.niap-ccevs.org/products/11342", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11342/", "certification_date": "2023-04-26", "expiration_date": "2025-04-26", "category": "Mobility", "categories": [ "Mobility", " Network Encryption", " Virtual Private Network", " Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Forcepoint NGFW 6.10.9", "id": "CCEVS-VR-VID11343", "url": "https://www.niap-ccevs.org/products/11343", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11343/", "certification_date": "2023-04-24", "expiration_date": "2025-04-24", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Forcepoint LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Wickr Enterprise Client 6.10", "id": "CCEVS-VR-VID11320", "url": "https://www.niap-ccevs.org/products/11320", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11320/", "certification_date": "2023-04-07", "expiration_date": "2025-04-07", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Wickr LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Brocade Communications Systems LLC Directors and Switches using Fabric OS v9.1.1", "id": "CCEVS-VR-VID11340", "url": "https://www.niap-ccevs.org/products/11340", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11340/", "certification_date": "2023-04-07", "expiration_date": "2025-04-07", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Brocade Communications Systems LLC A Broadcom Inc. Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Fortra’s GoAnywhere Managed File Transfer v6.8", "id": "CCEVS-VR-VID11216", "url": "https://www.niap-ccevs.org/products/11216", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11216/", "certification_date": "2023-04-07", "expiration_date": "2024-05-13", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Fortra, LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Curtiss-Wright Defense Solutions Data Transport System 1-Slot Hardware Encryption Layer version 5.4", "id": "CCEVS-VR-VID11354", "url": "https://www.niap-ccevs.org/products/11354", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11354/", "certification_date": "2023-04-04", "expiration_date": "2025-04-04", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Curtiss-Wright Defense Solutions Data Transport System 1-Slot Software Encryption Layer v3.01.00", "id": "CCEVS-VR-VID11355", "url": "https://www.niap-ccevs.org/products/11355", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11355/", "certification_date": "2023-04-04", "expiration_date": "2025-04-04", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 8200 and 8500 Series Edge Routers (Cat8200, Cat8500)", "id": "CCEVS-VR-VID11331", "url": "https://www.niap-ccevs.org/products/11331", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11331/", "certification_date": "2023-03-29", "expiration_date": "2025-03-29", "category": "Network Device", "categories": [ "Network Device", " Network Encryption", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Aruba ClearPass Policy Manager 6.11", "id": "CCEVS-VR-VID11324", "url": "https://www.niap-ccevs.org/products/11324", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11324/", "certification_date": "2023-03-27", "expiration_date": "2025-03-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Splunk Enterprise 9.0.4", "id": "CCEVS-VR-VID11330", "url": "https://www.niap-ccevs.org/products/11330", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11330/", "certification_date": "2023-03-23", "expiration_date": "2025-03-23", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Splunk LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung Electronics Co., Ltd. Samsung Knox File Encryption 1.5 – Spring", "id": "CCEVS-VR-VID11344", "url": "https://www.niap-ccevs.org/products/11344", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11344/", "certification_date": "2023-03-23", "expiration_date": "2025-03-23", "category": "Application Software", "categories": [ "Application Software", " Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cyber Reliant Mobile Data Defender for Android SDK version 4.0", "id": "CCEVS-VR-VID11283", "url": "https://www.niap-ccevs.org/products/11283", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11283/", "certification_date": "2023-03-21", "expiration_date": "2025-03-21", "category": "Application Software", "categories": [ "Application Software", " Encrypted Storage" ], "vendor": "Cyber Reliant Corp.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Seagate® BarraCuda™ 515 SSD, Firmware version ECPM13.1", "id": "CCEVS-VR-VID11322", "url": "https://www.niap-ccevs.org/products/11322", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11322/", "certification_date": "2023-03-14", "expiration_date": "2025-03-14", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "DigiStor", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "DIGISTOR TCG OPAL SSC FIPS SSD Series, firmware version SCPG13.0/ECPG13.0/ECPM13.1", "id": "CCEVS-VR-VID11297", "url": "https://www.niap-ccevs.org/products/11297", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11297/", "certification_date": "2023-03-14", "expiration_date": "2025-03-14", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "DigiStor", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "FortiGate/FortiOS 6.4", "id": "CCEVS-VR-VID11296", "url": "https://www.niap-ccevs.org/products/11296", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11296/", "certification_date": "2023-03-09", "expiration_date": "2025-03-09", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "VMware Workspace ONE Unified Endpoint Management Version 2209", "id": "CCEVS-VR-VID11326", "url": "https://www.niap-ccevs.org/products/11326", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11326/", "certification_date": "2023-03-07", "expiration_date": "2025-03-07", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Illumio Core v22.2.30", "id": "CCEVS-VR-VID11335", "url": "https://www.niap-ccevs.org/products/11335", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11335/", "certification_date": "2023-03-03", "expiration_date": "2025-03-03", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Illumio", "evaluation_facility": "DEKRA Cybersecurity Certification Laboratory", "scheme": "US" }, { "product": "Varonis Data Security Platform v8.6", "id": "CCEVS-VR-VID11336", "url": "https://www.niap-ccevs.org/products/11336", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11336/", "certification_date": "2023-03-02", "expiration_date": "2025-03-02", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Varonis Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Secure Network Analytics (SNA) 7.4", "id": "CCEVS-VR-VID11313", "url": "https://www.niap-ccevs.org/products/11313", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11313/", "certification_date": "2023-02-22", "expiration_date": "2025-02-22", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Gigamon GigaVUE Version 6.0", "id": "CCEVS-VR-VID11314", "url": "https://www.niap-ccevs.org/products/11314", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11314/", "certification_date": "2023-02-14", "expiration_date": "2025-02-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Gigamon Inc", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 7.0 on ASA 5500 and ISA 3000 and FTDv with FMC/FMCv", "id": "CCEVS-VR-VID11300", "url": "https://www.niap-ccevs.org/products/11300", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11300/", "certification_date": "2023-02-13", "expiration_date": "2025-02-13", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv", "id": "CCEVS-VR-VID11292", "url": "https://www.niap-ccevs.org/products/11292", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11292/", "certification_date": "2023-02-13", "expiration_date": "2025-02-13", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "MAGNUM-HW-CC", "id": "CCEVS-VR-VID11276", "url": "https://www.niap-ccevs.org/products/11276", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11276/", "certification_date": "2023-02-13", "expiration_date": "2025-02-13", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "MMA10G-IPX Series v3.3", "id": "CCEVS-VR-VID11277", "url": "https://www.niap-ccevs.org/products/11277", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11277/", "certification_date": "2023-02-10", "expiration_date": "2025-02-10", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Aruba, a Hewlett Packard Enterprise Company 2930F, 2930M, 3810M, and 5400R Switch Series running ArubaOS version 16.11", "id": "CCEVS-VR-VID11334", "url": "https://www.niap-ccevs.org/products/11334", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11334/", "certification_date": "2023-02-01", "expiration_date": "2025-02-01", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 7.0 on Firepower 1000 and 2100 Series with FMC/FMCv", "id": "CCEVS-VR-VID11290", "url": "https://www.niap-ccevs.org/products/11290", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11290/", "certification_date": "2023-01-31", "expiration_date": "2025-01-31", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Kemp LoadMaster", "id": "CCEVS-VR-VID11280", "url": "https://www.niap-ccevs.org/products/11280", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11280/", "certification_date": "2023-01-27", "expiration_date": "2025-01-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Progress Software Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "A10 Networks Thunder Series Appliances TH-4435, TH-5840-11, TH-7445, TH-7650-11, TH-7655 with ACOS 5.2.1-P3", "id": "CCEVS-VR-VID11316", "url": "https://www.niap-ccevs.org/products/11316", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11316/", "certification_date": "2023-01-27", "expiration_date": "2025-01-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "A10 Networks, Inc.", "evaluation_facility": "Advanced Data Security", "scheme": "US" }, { "product": "Google Pixel Devices on Android 13", "id": "CCEVS-VR-VID11317", "url": "https://www.niap-ccevs.org/products/11317", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11317/", "certification_date": "2023-01-24", "expiration_date": "2025-01-24", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "ID Technologies GoSilent Cube + GoSilent Server v25.01", "id": "CCEVS-VR-VID11310", "url": "https://www.niap-ccevs.org/products/11310", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11310/", "certification_date": "2022-12-22", "expiration_date": "2024-12-22", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "ID Technologies, A CACI Company", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Extreme Networks Virtual Services Platform (VSP) Series Switches v8.3.100", "id": "CCEVS-VR-VID11312", "url": "https://www.niap-ccevs.org/products/11312", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11312/", "certification_date": "2022-12-19", "expiration_date": "2024-12-19", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Panasonic Connect TOUGHBOOK Devices on Android 11", "id": "CCEVS-VR-VID11315", "url": "https://www.niap-ccevs.org/products/11315", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11315/", "certification_date": "2022-12-16", "expiration_date": "2024-12-16", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Panasonic Connect of North America", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Infinera Corporation Transcend Network Management System Server 18.10.3", "id": "CCEVS-VR-VID11319", "url": "https://www.niap-ccevs.org/products/11319", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11319/", "certification_date": "2022-12-12", "expiration_date": "2024-12-12", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Infinera Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "SecuSUITE v5.0 and SteelBox v5.0", "id": "CCEVS-VR-VID11282", "url": "https://www.niap-ccevs.org/products/11282", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11282/", "certification_date": "2022-12-09", "expiration_date": "2024-12-09", "category": "Application Software", "categories": [ "Application Software", " Network Encryption", " VoIP" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Infinera Corporation Transcend Network Management System Client 18.10.3", "id": "CCEVS-VR-VID11318", "url": "https://www.niap-ccevs.org/products/11318", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11318/", "certification_date": "2022-12-08", "expiration_date": "2024-12-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Infinera Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "CAE MPIC 3.0.66", "id": "CCEVS-VR-VID11299", "url": "https://www.niap-ccevs.org/products/11299", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11299/", "certification_date": "2022-11-23", "expiration_date": "2024-11-23", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "CAE Inc.", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Cisco 8000 Series Routers running on IOS-XR 7.3", "id": "CCEVS-VR-VID11274", "url": "https://www.niap-ccevs.org/products/11274", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11274/", "certification_date": "2022-11-10", "expiration_date": "2024-11-10", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iPadOS 15", "id": "CCEVS-VR-VID11238", "url": "https://www.niap-ccevs.org/products/11238", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11238/", "certification_date": "2022-11-04", "expiration_date": "2024-11-04", "category": "Mobility", "categories": [ "Mobility", " Network Encryption", " Virtual Private Network", " Wireless LAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Apple iOS 15", "id": "CCEVS-VR-VID11237", "url": "https://www.niap-ccevs.org/products/11237", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11237/", "certification_date": "2022-11-04", "expiration_date": "2024-11-04", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network", " Wireless LAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Extreme Networks ExtremeSwitching Series (x440-G2, x460-G2, x465, x435, x695) and 5520 Series Switches running EXOS 31.3.100", "id": "CCEVS-VR-VID11301", "url": "https://www.niap-ccevs.org/products/11301", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11301/", "certification_date": "2022-10-28", "expiration_date": "2024-10-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Electronics Co., Ltd. Samsung Galaxy Devices on Android 12 – Fall", "id": "CCEVS-VR-VID11307", "url": "https://www.niap-ccevs.org/products/11307", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11307/", "certification_date": "2022-10-28", "expiration_date": "2024-10-28", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Electronics Co., Ltd. Samsung Knox File Encryption 1.4 – Fall", "id": "CCEVS-VR-VID11308", "url": "https://www.niap-ccevs.org/products/11308", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11308/", "certification_date": "2022-10-07", "expiration_date": "2024-10-07", "category": "Application Software", "categories": [ "Application Software", " Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Palo Alto Networks Cortex XSOAR Engine 6.6", "id": "CCEVS-VR-VID11325", "url": "https://www.niap-ccevs.org/products/11325", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11325/", "certification_date": "2022-10-05", "expiration_date": "2024-10-05", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Palo Alto Networks Cortex XSOAR Server 6.6", "id": "CCEVS-VR-VID11291", "url": "https://www.niap-ccevs.org/products/11291", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11291/", "certification_date": "2022-09-21", "expiration_date": "2024-09-21", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cellcrypt Android Mobile Client version 4.40", "id": "CCEVS-VR-VID11278", "url": "https://www.niap-ccevs.org/products/11278", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11278/", "certification_date": "2022-09-19", "expiration_date": "2024-09-19", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Cellcrypt, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CommScope Technologies LLC, Ruckus FastIron ICX Series Switch/Router 9.0.10 with MACsec", "id": "CCEVS-VR-VID11295", "url": "https://www.niap-ccevs.org/products/11295", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11295/", "certification_date": "2022-09-14", "expiration_date": "2024-09-14", "category": "Network Device", "categories": [ "Network Device", " Network Encryption" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "IBM MaaS360 2.106.500.016 Cloud Extender", "id": "CCEVS-VR-VID11113", "url": "https://www.niap-ccevs.org/products/11113", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11113/", "certification_date": "2022-09-12", "expiration_date": "2024-09-12", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "IBM Corporation", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Guardtime Federal Black Lantern® BL300 Series and BL400 with BLKSI.2.2.1-FIPS", "id": "CCEVS-VR-VID11287", "url": "https://www.niap-ccevs.org/products/11287", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11287/", "certification_date": "2022-09-09", "expiration_date": "2025-06-25", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Guardtime Federal", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Jabber 14.0 for Windows 10", "id": "CCEVS-VR-VID11251", "url": "https://www.niap-ccevs.org/products/11251", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11251/", "certification_date": "2022-09-09", "expiration_date": "2024-09-09", "category": "Application Software", "categories": [ "Application Software", " VoIP" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "VMware ESXi 7.0 Update 3d", "id": "CCEVS-VR-VID11249", "url": "https://www.niap-ccevs.org/products/11249", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11249/", "certification_date": "2022-09-06", "expiration_date": "2024-09-06", "category": "Virtualization", "categories": [ "Virtualization" ], "vendor": "VMware, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Bastille Enterprise Fusion Center Version 3.2.0", "id": "CCEVS-VR-VID11311", "url": "https://www.niap-ccevs.org/products/11311", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11311/", "certification_date": "2022-09-06", "expiration_date": "2024-09-06", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Bastille Networks", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Aruba Virtual Intranet Access (VIA) Client v4.3", "id": "CCEVS-VR-VID11303", "url": "https://www.niap-ccevs.org/products/11303", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11303/", "certification_date": "2022-08-31", "expiration_date": "2024-08-31", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Palo Alto Networks PA-220 Series, PA-400 Series, PA-800 Series, PA-3200 Series, PA-5200 Series, PA-5450, PA-7000 Series, and VM Series Next-Generation Firewall with PAN-OS 10.1", "id": "CCEVS-VR-VID11284", "url": "https://www.niap-ccevs.org/products/11284", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11284/", "certification_date": "2022-08-31", "expiration_date": "2024-09-13", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Traffic Monitoring", " Virtual Private Network" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "SecuGATE SIP Server v5.0", "id": "CCEVS-VR-VID11281", "url": "https://www.niap-ccevs.org/products/11281", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11281/", "certification_date": "2022-08-26", "expiration_date": "2024-08-26", "category": "Network Device", "categories": [ "Network Device", " SIP Server" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco ASA 9.16 on Firepower 4100 and 9300 Security Appliances", "id": "CCEVS-VR-VID11256", "url": "https://www.niap-ccevs.org/products/11256", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11256/", "certification_date": "2022-08-12", "expiration_date": "2024-08-12", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Forescout v8.3", "id": "CCEVS-VR-VID11279", "url": "https://www.niap-ccevs.org/products/11279", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11279/", "certification_date": "2022-08-05", "expiration_date": "2025-06-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Forescout Technologies Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Embedded Services Router 5921 (ESR5921) running IOS version 15.9M", "id": "CCEVS-VR-VID11275", "url": "https://www.niap-ccevs.org/products/11275", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11275/", "certification_date": "2022-08-05", "expiration_date": "2024-08-05", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Palo Alto Networks WF-500 WildFire 10.1", "id": "CCEVS-VR-VID11286", "url": "https://www.niap-ccevs.org/products/11286", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11286/", "certification_date": "2022-08-04", "expiration_date": "2025-05-16", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Palo Alto Networks Panorama 10.1", "id": "CCEVS-VR-VID11285", "url": "https://www.niap-ccevs.org/products/11285", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11285/", "certification_date": "2022-08-04", "expiration_date": "2025-05-16", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Galleon Embedded Computing XSR and G1 Software Encryption Layer", "id": "CCEVS-VR-VID11273", "url": "https://www.niap-ccevs.org/products/11273", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11273/", "certification_date": "2022-07-28", "expiration_date": "2024-07-28", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Galleon Embedded Computing", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Galleon Embedded Computing XSR and G1 Hardware Encryption Layer", "id": "CCEVS-VR-VID11272", "url": "https://www.niap-ccevs.org/products/11272", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11272/", "certification_date": "2022-07-28", "expiration_date": "2024-07-28", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Galleon Embedded Computing", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "VMware NSX-T Data Center 3.1", "id": "CCEVS-VR-VID11217", "url": "https://www.niap-ccevs.org/products/11217", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11217/", "certification_date": "2022-07-22", "expiration_date": "2024-07-22", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "VMware, LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.10 for Red Hat Enterprise Linux 8.1", "id": "CCEVS-VR-VID11289", "url": "https://www.niap-ccevs.org/products/11289", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11289/", "certification_date": "2022-07-18", "expiration_date": "2024-07-18", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Adaptive Security Appliances (ASA) 9.16 on Firepower 1000 and 2100 Series", "id": "CCEVS-VR-VID11255", "url": "https://www.niap-ccevs.org/products/11255", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11255/", "certification_date": "2022-07-15", "expiration_date": "2024-07-15", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Adaptive Security Appliances (ASA) 5500-X, Industrial Security Appliances (ISA) 3000 and Adaptive Security Appliances Virtual (ASAv) Version 9.16", "id": "CCEVS-VR-VID11257", "url": "https://www.niap-ccevs.org/products/11257", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11257/", "certification_date": "2022-07-14", "expiration_date": "2024-07-14", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "CommScope Technologies LLC, Ruckus FastIron ICX Series Switch/Router 9.0.10", "id": "CCEVS-VR-VID11294", "url": "https://www.niap-ccevs.org/products/11294", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11294/", "certification_date": "2022-07-05", "expiration_date": "2024-07-05", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 9400/9600 Series Switches running IOS-XE 17.6", "id": "CCEVS-VR-VID11246", "url": "https://www.niap-ccevs.org/products/11246", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11246/", "certification_date": "2022-06-30", "expiration_date": "2024-06-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 9200/9200L Series Switches running IOS-XE 17.6", "id": "CCEVS-VR-VID11245", "url": "https://www.niap-ccevs.org/products/11245", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11245/", "certification_date": "2022-06-30", "expiration_date": "2024-06-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Junos OS 20.3R3 for NFX350", "id": "CCEVS-VR-VID11236", "url": "https://www.niap-ccevs.org/products/11236", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11236/", "certification_date": "2022-06-20", "expiration_date": "2024-06-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 9300/9300L/9500 Series Switches running IOS-XE 17.6", "id": "CCEVS-VR-VID11247", "url": "https://www.niap-ccevs.org/products/11247", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11247/", "certification_date": "2022-06-15", "expiration_date": "2024-06-15", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Xerox® AltaLink™ EC8036 & EC8056", "id": "CCEVS-VR-VID11270", "url": "https://www.niap-ccevs.org/products/11270", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11270/", "certification_date": "2022-06-14", "expiration_date": "2024-06-14", "category": "Multi Function Device", "categories": [ "Multi Function Device" ], "vendor": "Xerox Corporation", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Scalar and Express P-series SSD, version NV.R1900", "id": "CCEVS-VR-VID11262", "url": "https://www.niap-ccevs.org/products/11262", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11262/", "certification_date": "2022-06-10", "expiration_date": "2025-04-16", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Novachips Co., Ltd.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Samsung Knox File Encryption 1.4", "id": "CCEVS-VR-VID11263", "url": "https://www.niap-ccevs.org/products/11263", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11263/", "certification_date": "2022-06-09", "expiration_date": "2024-06-09", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 12 - Spring", "id": "CCEVS-VR-VID11228", "url": "https://www.niap-ccevs.org/products/11228", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11228/", "certification_date": "2022-05-25", "expiration_date": "2024-05-25", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "INTEGRITY Enterprise OS - Archon Edition", "id": "CCEVS-VR-VID11258", "url": "https://www.niap-ccevs.org/products/11258", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11258/", "certification_date": "2022-05-03", "expiration_date": "2024-05-03", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Archon Secure LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Corelight Sensor AP 200, AP 1001, AP 3000 and AP 5000 BroLin v22.1", "id": "CCEVS-VR-VID11253", "url": "https://www.niap-ccevs.org/products/11253", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11253/", "certification_date": "2022-05-02", "expiration_date": "2024-05-02", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Corelight, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Microsoft Corporation Surface Duo 2 on Android 11", "id": "CCEVS-VR-VID11259", "url": "https://www.niap-ccevs.org/products/11259", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11259/", "certification_date": "2022-04-28", "expiration_date": "2024-04-15", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cellcrypt Server", "id": "CCEVS-VR-VID11207", "url": "https://www.niap-ccevs.org/products/11207", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11207/", "certification_date": "2022-04-25", "expiration_date": "2024-04-25", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cellcrypt, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Aggregation Services Router 9000 (ASR9K) running on IOS-XR 7.1", "id": "CCEVS-VR-VID11197", "url": "https://www.niap-ccevs.org/products/11197", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11197/", "certification_date": "2022-04-18", "expiration_date": "2024-04-18", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Seagate Secure® TCG Opal and Enterprise SSC Self-Encrypting Drives", "id": "CCEVS-VR-VID11248", "url": "https://www.niap-ccevs.org/products/11248", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11248/", "certification_date": "2022-04-07", "expiration_date": "2025-02-15", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Seagate Technology LLC.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Check Point Software Technologies Ltd. Security Gateway and Maestro Hyperscale Appliances R81.00", "id": "CCEVS-VR-VID11235", "url": "https://www.niap-ccevs.org/products/11235", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11235/", "certification_date": "2022-03-21", "expiration_date": "2024-03-21", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Check Point Software Technologies Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Red Hat Enterprise Linux 8.2", "id": "CCEVS-VR-VID11202", "url": "https://www.niap-ccevs.org/products/11202", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11202/", "certification_date": "2022-03-09", "expiration_date": "2024-03-09", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Axonius Cybersecurity Asset Management Platform v4.0-f", "id": "CCEVS-VR-VID11201", "url": "https://www.niap-ccevs.org/products/11201", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11201/", "certification_date": "2022-03-04", "expiration_date": "2024-03-04", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Axonius Federal Systems LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "One Identity Safeguard for Privileged Sessions 6.9", "id": "CCEVS-VR-VID11214", "url": "https://www.niap-ccevs.org/products/11214", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11214/", "certification_date": "2022-03-04", "expiration_date": "2024-03-04", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "One Identity, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "VMware Carbon Black App Control v8.8.2", "id": "CCEVS-VR-VID11158", "url": "https://www.niap-ccevs.org/products/11158", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11158/", "certification_date": "2022-03-03", "expiration_date": "2025-03-01", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Google Pixel Phones on Android 12.0", "id": "CCEVS-VR-VID11239", "url": "https://www.niap-ccevs.org/products/11239", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11239/", "certification_date": "2022-02-28", "expiration_date": "2024-02-28", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple macOS 11 Big Sur: Contacts", "id": "CCEVS-VR-VID11243", "url": "https://www.niap-ccevs.org/products/11243", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11243/", "certification_date": "2022-02-28", "expiration_date": "2024-02-28", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco CUBE on Cloud Services Router 1000v (CSR1000v) running IOS-XE 17.3", "id": "CCEVS-VR-VID11212", "url": "https://www.niap-ccevs.org/products/11212", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11212/", "certification_date": "2022-02-18", "expiration_date": "2024-02-18", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Aggregation Services Router 1000 Series (ASR1K), Cisco Integrated Services Router 4000 Series (ISR4K), Cisco Catalyst 8300 and 8500 Series Edge Routers (Cat8300, Cat8500) running IOS-XE version 17.3", "id": "CCEVS-VR-VID11208", "url": "https://www.niap-ccevs.org/products/11208", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11208/", "certification_date": "2022-02-18", "expiration_date": "2024-02-18", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Crestron DigitalMedia NVX® AV-over-IP v5.2", "id": "CCEVS-VR-VID11215", "url": "https://www.niap-ccevs.org/products/11215", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11215/", "certification_date": "2022-02-16", "expiration_date": "2024-02-16", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Crestron Electronics, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Trend Micro TippingPoint Threat Protection System (TPS) v5.3", "id": "CCEVS-VR-VID11206", "url": "https://www.niap-ccevs.org/products/11206", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11206/", "certification_date": "2022-02-02", "expiration_date": "2024-09-01", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Trend Micro", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Citrix ADC (MPX FIPS and VPX FIPS) Version 12.1", "id": "CCEVS-VR-VID11225", "url": "https://www.niap-ccevs.org/products/11225", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11225/", "certification_date": "2022-01-26", "expiration_date": "2024-01-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Citrix Systems Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Zebra Devices on Android 11", "id": "CCEVS-VR-VID11232", "url": "https://www.niap-ccevs.org/products/11232", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11232/", "certification_date": "2022-01-25", "expiration_date": "2024-01-25", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Zebra Technologies Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Motorola Lex L11 on Android 11", "id": "CCEVS-VR-VID11229", "url": "https://www.niap-ccevs.org/products/11229", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11229/", "certification_date": "2022-01-25", "expiration_date": "2024-01-25", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Motorola Mobility LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "NIKSUN NetOmni, and NetDetector/NetVCR/LogWave running Everest Software v5.1.6.3", "id": "CCEVS-VR-VID11204", "url": "https://www.niap-ccevs.org/products/11204", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11204/", "certification_date": "2022-01-19", "expiration_date": "2024-01-19", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "NIKSUN, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.10 for Windows 10", "id": "CCEVS-VR-VID11226", "url": "https://www.niap-ccevs.org/products/11226", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11226/", "certification_date": "2021-12-29", "expiration_date": "2023-12-29", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.10 for Android 11", "id": "CCEVS-VR-VID11227", "url": "https://www.niap-ccevs.org/products/11227", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11227/", "certification_date": "2021-12-29", "expiration_date": "2023-12-29", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Aggregation Services Router 1000 Series (ASR1K), Cisco Cloud Services Router 1000V (CSR1000V), Cisco Integrated Services Router 1100 Series (ISR1100), Cisco Integrated Services Router 4200 Series (ISR4K) running IOS-XE 17.3", "id": "CCEVS-VR-VID11186", "url": "https://www.niap-ccevs.org/products/11186", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11186/", "certification_date": "2021-12-28", "expiration_date": "2023-12-28", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Forcepoint NGFW 6.10", "id": "CCEVS-VR-VID11234", "url": "https://www.niap-ccevs.org/products/11234", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11234/", "certification_date": "2021-12-16", "expiration_date": "2023-12-16", "category": "Firewall", "categories": [ "Firewall" ], "vendor": "Forcepoint LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "McAfee Advanced Threat Defense 4.12", "id": "CCEVS-VR-VID11219", "url": "https://www.niap-ccevs.org/products/11219", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11219/", "certification_date": "2021-12-14", "expiration_date": "2023-12-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Musarubra US LLC (\"Trellix\")", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Seagate Secure® TCG SSC Self-Encrypting Drives", "id": "CCEVS-VR-VID11209", "url": "https://www.niap-ccevs.org/products/11209", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11209/", "certification_date": "2021-12-02", "expiration_date": "2024-12-02", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Seagate Technology LLC.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "FortiWLM Wireless Manager 8.5", "id": "CCEVS-VR-VID11179", "url": "https://www.niap-ccevs.org/products/11179", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11179/", "certification_date": "2021-11-22", "expiration_date": "2023-11-22", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Nexus 3000 and 9000 Series Switches running NX-OS 9.3", "id": "CCEVS-VR-VID11173", "url": "https://www.niap-ccevs.org/products/11173", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11173/", "certification_date": "2021-11-12", "expiration_date": "2023-11-12", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Nokia 7x50 SR OS 20.10.R4 for 7750 SR-7, 7750 SR-12, 7750 SR-12e, 7750 SR-1e, 7750 SR-2e, 7750 SR-3e, 7750 SR-a4, and 7750 SR-a8 with maxp10-10/1Gb-msec-sfp+ and me12-10/1gb-sfp+ MDAs", "id": "CCEVS-VR-VID11182", "url": "https://www.niap-ccevs.org/products/11182", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11182/", "certification_date": "2021-10-22", "expiration_date": "2024-09-02", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Nokia Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Nokia 7x50 SR OS 20.10.R4 for 7750 SR-1, 7750 SR-1s, 7750 SR- 2s, 7750 SR-7s, 7750 SR-14s, 7950 XRS-20, 7950 XRS-16c, 7450 ESS, and 7750 SR-1e", "id": "CCEVS-VR-VID11183", "url": "https://www.niap-ccevs.org/products/11183", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11183/", "certification_date": "2021-10-21", "expiration_date": "2024-10-19", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Nokia Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "VMware Workspace ONE Boxer Email Client Version 21.05", "id": "CCEVS-VR-VID11157", "url": "https://www.niap-ccevs.org/products/11157", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11157/", "certification_date": "2021-10-05", "expiration_date": "2023-10-05", "category": "Application Software", "categories": [ "Application Software", " Email Client" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "SonicWall Secure Mobile Access (SMA) v12.4", "id": "CCEVS-VR-VID11218", "url": "https://www.niap-ccevs.org/products/11218", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11218/", "certification_date": "2021-09-28", "expiration_date": "2023-09-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "SonicWall, Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.9 for iOS 13", "id": "CCEVS-VR-VID11205", "url": "https://www.niap-ccevs.org/products/11205", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11205/", "certification_date": "2021-09-16", "expiration_date": "2023-09-16", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "NetApp Volume Encryption (NVE) Appliances running ONTAP 9.7P13", "id": "CCEVS-VR-VID11175", "url": "https://www.niap-ccevs.org/products/11175", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11175/", "certification_date": "2021-09-08", "expiration_date": "2024-09-08", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "NetApp, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 11 - Fall", "id": "CCEVS-VR-VID11211", "url": "https://www.niap-ccevs.org/products/11211", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11211/", "certification_date": "2021-09-08", "expiration_date": "2023-09-08", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "NetApp Storage Encryption (NSE) running ONTAP 9.7P13", "id": "CCEVS-VR-VID11174", "url": "https://www.niap-ccevs.org/products/11174", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11174/", "certification_date": "2021-09-07", "expiration_date": "2024-09-07", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "NetApp, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Junos OS 20.1R2 for NFX250", "id": "CCEVS-VR-VID11152", "url": "https://www.niap-ccevs.org/products/11152", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11152/", "certification_date": "2021-09-07", "expiration_date": "2023-09-07", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Firepower NGIPS/NGIPSv 6.4 with FMC/FMCv 6.4", "id": "CCEVS-VR-VID11144", "url": "https://www.niap-ccevs.org/products/11144", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11144/", "certification_date": "2021-09-03", "expiration_date": "2023-09-03", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple iOS 14: iPhones", "id": "CCEVS-VR-VID11146", "url": "https://www.niap-ccevs.org/products/11146", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11146/", "certification_date": "2021-09-01", "expiration_date": "2023-09-01", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Apple iPadOS 14: iPads", "id": "CCEVS-VR-VID11147", "url": "https://www.niap-ccevs.org/products/11147", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11147/", "certification_date": "2021-09-01", "expiration_date": "2023-09-01", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "MobileIron Platform 11", "id": "CCEVS-VR-VID11196", "url": "https://www.niap-ccevs.org/products/11196", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11196/", "certification_date": "2021-09-01", "expiration_date": "2024-07-13", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "MobileIron, an Ivanti Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "mTera Universal Transport Platform version MT5.1.2", "id": "CCEVS-VR-VID11153", "url": "https://www.niap-ccevs.org/products/11153", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11153/", "certification_date": "2021-08-31", "expiration_date": "2023-08-31", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Infinera Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst Industrial Ethernet 3x00 Rugged Series (IE3200, IE3300, IE3400, IE3400H) Switches running IOS-XE 17.3", "id": "CCEVS-VR-VID11177", "url": "https://www.niap-ccevs.org/products/11177", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11177/", "certification_date": "2021-08-29", "expiration_date": "2023-08-29", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple iOS 14 and iPadOS 14: Contacts", "id": "CCEVS-VR-VID11191", "url": "https://www.niap-ccevs.org/products/11191", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11191/", "certification_date": "2021-08-20", "expiration_date": "2023-08-20", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 14 and iPadOS 14: Safari", "id": "CCEVS-VR-VID11192", "url": "https://www.niap-ccevs.org/products/11192", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11192/", "certification_date": "2021-08-20", "expiration_date": "2023-08-20", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Xerox® AltaLink™ C8130, C8135, C8145, C8155, C8170 & B8145, B8155, B8170 with SSD", "id": "CCEVS-VR-VID11149", "url": "https://www.niap-ccevs.org/products/11149", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11149/", "certification_date": "2021-08-20", "expiration_date": "2024-08-03", "category": "Multi Function Device", "categories": [ "Multi Function Device" ], "vendor": "Xerox Corporation", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Xerox® AltaLink™ C8130, C8135, C8145, C8155, C8170 & B8145, B8155, B8170 with HDD", "id": "CCEVS-VR-VID11150", "url": "https://www.niap-ccevs.org/products/11150", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11150/", "certification_date": "2021-08-20", "expiration_date": "2024-08-03", "category": "Multi Function Device", "categories": [ "Multi Function Device" ], "vendor": "Xerox Corporation", "evaluation_facility": "Lightship Security USA, Inc.", "scheme": "US" }, { "product": "Klas Fastnet Series Switches KlasOS 5.3", "id": "CCEVS-VR-VID11188", "url": "https://www.niap-ccevs.org/products/11188", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11188/", "certification_date": "2021-08-18", "expiration_date": "2024-07-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Anduril", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CertAgent v7.0 Patch Level 9", "id": "CCEVS-VR-VID11180", "url": "https://www.niap-ccevs.org/products/11180", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11180/", "certification_date": "2021-08-06", "expiration_date": "2024-08-02", "category": "Certificate Authority", "categories": [ "Certificate Authority" ], "vendor": "Information Security Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "VMware Carbon Black Endpoint Detection and Response (EDR) Server 7.5", "id": "CCEVS-VR-VID11156", "url": "https://www.niap-ccevs.org/products/11156", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11156/", "certification_date": "2021-08-02", "expiration_date": "2023-08-02", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "VMware Carbon Black Endpoint Detection and Response (EDR) Windows Sensor 7.2", "id": "CCEVS-VR-VID11155", "url": "https://www.niap-ccevs.org/products/11155", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11155/", "certification_date": "2021-07-28", "expiration_date": "2023-07-28", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Extreme Networks, Inc. SLX Product Series operating with Version 20.2.1aa", "id": "CCEVS-VR-VID11198", "url": "https://www.niap-ccevs.org/products/11198", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11198/", "certification_date": "2021-07-22", "expiration_date": "2023-07-22", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Sierra Nevada Corporation Binary Armor SCADA Network Guard, with firmware version 2.1", "id": "CCEVS-VR-VID11176", "url": "https://www.niap-ccevs.org/products/11176", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11176/", "certification_date": "2021-07-15", "expiration_date": "2023-07-15", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Sierra Nevada Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Perspecta Labs SecureIO v2.0.4", "id": "CCEVS-VR-VID11170", "url": "https://www.niap-ccevs.org/products/11170", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11170/", "certification_date": "2021-07-12", "expiration_date": "2023-07-12", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Perspecta Labs", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Aruba, a Hewlett Packard Enterprise Company, 6200, 6300, 6400, 8320, 8325, 8360 and 8400 Switch Series", "id": "CCEVS-VR-VID11195", "url": "https://www.niap-ccevs.org/products/11195", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11195/", "certification_date": "2021-07-06", "expiration_date": "2023-07-06", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "RedSeal Server v9.4", "id": "CCEVS-VR-VID11104", "url": "https://www.niap-ccevs.org/products/11104", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11104/", "certification_date": "2021-06-18", "expiration_date": "2023-06-18", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "RedSeal, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco FTD 6.4 on Firepower 1000 and 2100 Series with FMC/FMCv", "id": "CCEVS-VR-VID11138", "url": "https://www.niap-ccevs.org/products/11138", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11138/", "certification_date": "2021-06-16", "expiration_date": "2023-06-16", "category": "Network Device", "categories": [ "Network Device", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco FTD 6.4 on ASA 5500 and ISA 3000 and FTDv with FMC/FMCv", "id": "CCEVS-VR-VID11141", "url": "https://www.niap-ccevs.org/products/11141", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11141/", "certification_date": "2021-06-16", "expiration_date": "2023-06-16", "category": "Network Device", "categories": [ "Network Device", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Ruckus SmartZone WLAN Controllers & Access Points, R5.2.1.3", "id": "CCEVS-VR-VID11154", "url": "https://www.niap-ccevs.org/products/11154", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11154/", "certification_date": "2021-06-11", "expiration_date": "2023-06-11", "category": "Network Device", "categories": [ "Network Device", " Wireless LAN" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "TOUGHBOOK N1 on Android 9", "id": "CCEVS-VR-VID11172", "url": "https://www.niap-ccevs.org/products/11172", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11172/", "certification_date": "2021-06-11", "expiration_date": "2023-06-11", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Panasonic Connect of North America", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 6.4 on ASA 5500 and ISA 3000 and FTDv with FMC/FMCv", "id": "CCEVS-VR-VID11142", "url": "https://www.niap-ccevs.org/products/11142", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11142/", "certification_date": "2021-06-09", "expiration_date": "2023-06-09", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 6.4 on Firepower 1000 and 2100 Series with FMC/FMCv", "id": "CCEVS-VR-VID11139", "url": "https://www.niap-ccevs.org/products/11139", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11139/", "certification_date": "2021-06-09", "expiration_date": "2023-06-09", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "One Identity Safeguard for Privileged Passwords v6.7", "id": "CCEVS-VR-VID11137", "url": "https://www.niap-ccevs.org/products/11137", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11137/", "certification_date": "2021-06-08", "expiration_date": "2023-06-08", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "One Identity, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Hypori Virtual Mobile Infrastructure Platform 4.2.0 Client (Windows)", "id": "CCEVS-VR-VID11159", "url": "https://www.niap-ccevs.org/products/11159", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11159/", "certification_date": "2021-06-07", "expiration_date": "2023-06-07", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Hypori, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Enveil ZeroReveal™ Compute Fabric Client v2.5.4", "id": "CCEVS-VR-VID11136", "url": "https://www.niap-ccevs.org/products/11136", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11136/", "certification_date": "2021-06-02", "expiration_date": "2023-06-02", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Enveil", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FireEye HX Series Appliances v5.0.1", "id": "CCEVS-VR-VID11143", "url": "https://www.niap-ccevs.org/products/11143", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11143/", "certification_date": "2021-06-02", "expiration_date": "2023-06-02", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Samsung Knox File Encryption 1.3", "id": "CCEVS-VR-VID11161", "url": "https://www.niap-ccevs.org/products/11161", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11161/", "certification_date": "2021-06-01", "expiration_date": "2023-06-01", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "FireEye CM Series Appliances v9.0", "id": "CCEVS-VR-VID11125", "url": "https://www.niap-ccevs.org/products/11125", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11125/", "certification_date": "2021-05-28", "expiration_date": "2023-05-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FireEye EX Series Appliances v9.0", "id": "CCEVS-VR-VID11126", "url": "https://www.niap-ccevs.org/products/11126", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11126/", "certification_date": "2021-05-28", "expiration_date": "2023-05-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Enveil ZeroReveal™ Compute Fabric Server v2.5.4", "id": "CCEVS-VR-VID11151", "url": "https://www.niap-ccevs.org/products/11151", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11151/", "certification_date": "2021-05-28", "expiration_date": "2023-05-28", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Enveil", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 6.4 on Firepower 4100 and 9300 Series with FMC/FMCv", "id": "CCEVS-VR-VID11132", "url": "https://www.niap-ccevs.org/products/11132", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11132/", "certification_date": "2021-05-27", "expiration_date": "2023-05-27", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "FireEye NX Series Appliances v9.0", "id": "CCEVS-VR-VID11130", "url": "https://www.niap-ccevs.org/products/11130", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11130/", "certification_date": "2021-05-27", "expiration_date": "2023-05-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FireEye VX Series Appliances v9.0", "id": "CCEVS-VR-VID11131", "url": "https://www.niap-ccevs.org/products/11131", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11131/", "certification_date": "2021-05-27", "expiration_date": "2023-05-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Embedded Services Router (ESR) 6300", "id": "CCEVS-VR-VID11162", "url": "https://www.niap-ccevs.org/products/11162", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11162/", "certification_date": "2021-05-21", "expiration_date": "2023-05-21", "category": "Network Device", "categories": [ "Network Device", " Router" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco FTD 6.4 on Firepower 4100 and 9300 Series with FMC/FMCv", "id": "CCEVS-VR-VID11101", "url": "https://www.niap-ccevs.org/products/11101", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11101/", "certification_date": "2021-05-04", "expiration_date": "2023-05-04", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Alcatel-Lucent Enterprise OmniSwitch series 6465, 6560, 6860, 6865, 6900, 9900 with AOS 8.6.R11", "id": "CCEVS-VR-VID11069", "url": "https://www.niap-ccevs.org/products/11069", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11069/", "certification_date": "2021-04-30", "expiration_date": "2023-04-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "ALE USA Inc", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Apple FileVault 2 on T2 systems running macOS Catalina 10.15", "id": "CCEVS-VR-VID11078", "url": "https://www.niap-ccevs.org/products/11078", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11078/", "certification_date": "2021-04-29", "expiration_date": "2023-04-29", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Fidelis Network and Fidelis Deception v9.3.3", "id": "CCEVS-VR-VID11128", "url": "https://www.niap-ccevs.org/products/11128", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11128/", "certification_date": "2021-04-15", "expiration_date": "2023-04-15", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fidelis Cybersecurity Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "PacStar 451/453/455 Series with Cisco ASAv 9.12", "id": "CCEVS-VR-VID11123", "url": "https://www.niap-ccevs.org/products/11123", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11123/", "certification_date": "2021-04-09", "expiration_date": "2023-04-09", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Pacific Star Communications, Inc. (dba PacStar)", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Hypori Virtual Mobile Infrastructure Platform 4.2.0 Client (iOS)", "id": "CCEVS-VR-VID11140", "url": "https://www.niap-ccevs.org/products/11140", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11140/", "certification_date": "2021-03-25", "expiration_date": "2023-03-25", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Hypori, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 11 - Spring", "id": "CCEVS-VR-VID11160", "url": "https://www.niap-ccevs.org/products/11160", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11160/", "certification_date": "2021-03-15", "expiration_date": "2023-03-15", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Honeywell Mobility Edge Mobile Computer on Android 9", "id": "CCEVS-VR-VID11120", "url": "https://www.niap-ccevs.org/products/11120", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11120/", "certification_date": "2021-03-03", "expiration_date": "2023-03-03", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Honeywell International Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Adaptive Security Appliances (ASA) 5500, Industrial Security Appliances (ISA) 3000 and Adaptive Security Appliances Virtual (ASAv) Version 9.12", "id": "CCEVS-VR-VID11102", "url": "https://www.niap-ccevs.org/products/11102", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11102/", "certification_date": "2021-03-03", "expiration_date": "2023-03-03", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Zebra Devices on Android 10", "id": "CCEVS-VR-VID11114", "url": "https://www.niap-ccevs.org/products/11114", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11114/", "certification_date": "2021-03-02", "expiration_date": "2023-03-02", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Zebra Technologies Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Gigamon GigaVUE Version 5.9.00", "id": "CCEVS-VR-VID11129", "url": "https://www.niap-ccevs.org/products/11129", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11129/", "certification_date": "2021-02-25", "expiration_date": "2023-02-25", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Gigamon Inc", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Microsoft Windows Server, Microsoft Windows 10 version 1909 (November 2019 Update), Microsoft Windows Server 2019 (version 1809) Hyper-V", "id": "CCEVS-VR-VID11087", "url": "https://www.niap-ccevs.org/products/11087", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11087/", "certification_date": "2021-02-11", "expiration_date": "2023-02-11", "category": "Virtualization", "categories": [ "Virtualization" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Hypori Virtual Mobile Infrastructure Platform 4.2.0 Client (Android)", "id": "CCEVS-VR-VID11115", "url": "https://www.niap-ccevs.org/products/11115", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11115/", "certification_date": "2021-02-11", "expiration_date": "2023-02-11", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Hypori, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Google Pixel Phones on Android 11.0", "id": "CCEVS-VR-VID11124", "url": "https://www.niap-ccevs.org/products/11124", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11124/", "certification_date": "2021-02-08", "expiration_date": "2023-02-08", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba Mobility Controller with ArubaOS 8.6", "id": "CCEVS-VR-VID11110", "url": "https://www.niap-ccevs.org/products/11110", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11110/", "certification_date": "2021-02-05", "expiration_date": "2023-02-05", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba Mobility Controller with ArubaOS 8.6 - WLAN", "id": "CCEVS-VR-VID11111", "url": "https://www.niap-ccevs.org/products/11111", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11111/", "certification_date": "2021-02-05", "expiration_date": "2023-02-05", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Splunk Enterprise 8.1", "id": "CCEVS-VR-VID11108", "url": "https://www.niap-ccevs.org/products/11108", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11108/", "certification_date": "2021-01-26", "expiration_date": "2023-01-26", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Splunk LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FlashArray//X running Purity//FA 5.3", "id": "CCEVS-VR-VID11076", "url": "https://www.niap-ccevs.org/products/11076", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11076/", "certification_date": "2021-01-13", "expiration_date": "2023-01-13", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pure Storage, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Cisco Unified Communications Manager and the IM and Presence Service v12.5", "id": "CCEVS-VR-VID11094", "url": "https://www.niap-ccevs.org/products/11094", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11094/", "certification_date": "2021-01-11", "expiration_date": "2023-02-23", "category": "Network Device", "categories": [ "Network Device", " SIP Server" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Aruba, a Hewlett Packard Enterprise Company 2930F, 2930M, 3810M, and 5400R Switch Series running ArubaOS version 16.08", "id": "CCEVS-VR-VID11099", "url": "https://www.niap-ccevs.org/products/11099", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11099/", "certification_date": "2021-01-08", "expiration_date": "2023-01-08", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco ASA 9.12 running on Firepower 4100 and 9300 Security Appliances", "id": "CCEVS-VR-VID11091", "url": "https://www.niap-ccevs.org/products/11091", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11091/", "certification_date": "2021-01-04", "expiration_date": "2023-01-04", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Red Hat Enterprise Linux 8.1", "id": "CCEVS-VR-VID11107", "url": "https://www.niap-ccevs.org/products/11107", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11107/", "certification_date": "2021-01-04", "expiration_date": "2023-01-04", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Ultra 3eTI WiFiProtect 3e-525/523 Series Wireless Access Points", "id": "CCEVS-VR-VID11103", "url": "https://www.niap-ccevs.org/products/11103", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11103/", "certification_date": "2020-12-21", "expiration_date": "2022-12-21", "category": "Network Device", "categories": [ "Network Device", " Wireless LAN" ], "vendor": "Ultra-3eTI", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Unified Communications Manager (CUCM) 12.5", "id": "CCEVS-VR-VID11092", "url": "https://www.niap-ccevs.org/products/11092", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11092/", "certification_date": "2020-12-16", "expiration_date": "2023-02-23", "category": "Network Device", "categories": [ "Network Device", " SIP Server" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Adaptive Security Appliances (ASA) 9.12 running on Firepower 2100 Series Appliances", "id": "CCEVS-VR-VID11090", "url": "https://www.niap-ccevs.org/products/11090", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11090/", "certification_date": "2020-12-09", "expiration_date": "2022-12-09", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Varonis Data Security Platform 8.6", "id": "CCEVS-VR-VID11100", "url": "https://www.niap-ccevs.org/products/11100", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11100/", "certification_date": "2020-12-09", "expiration_date": "2022-12-09", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Varonis Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Nessus Agent 8.0.0", "id": "CCEVS-VR-VID11066", "url": "https://www.niap-ccevs.org/products/11066", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11066/", "certification_date": "2020-12-08", "expiration_date": "2022-12-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Nessus Network Monitor 5.12.0", "id": "CCEVS-VR-VID11068", "url": "https://www.niap-ccevs.org/products/11068", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11068/", "certification_date": "2020-12-08", "expiration_date": "2022-12-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Nessus Manager 8.11.1", "id": "CCEVS-VR-VID11067", "url": "https://www.niap-ccevs.org/products/11067", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11067/", "certification_date": "2020-12-08", "expiration_date": "2022-12-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Log Correlation Engine 6.0.6", "id": "CCEVS-VR-VID11065", "url": "https://www.niap-ccevs.org/products/11065", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11065/", "certification_date": "2020-12-08", "expiration_date": "2022-12-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "SailPoint IdentityIQ File Access Manager Version 8.1", "id": "CCEVS-VR-VID11116", "url": "https://www.niap-ccevs.org/products/11116", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11116/", "certification_date": "2020-12-08", "expiration_date": "2022-12-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "SailPoint Technologies, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Tenable.sc 5.15.0", "id": "CCEVS-VR-VID11054", "url": "https://www.niap-ccevs.org/products/11054", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11054/", "certification_date": "2020-12-07", "expiration_date": "2022-12-07", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Tenable, Inc", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Bivio 6310-NC", "id": "CCEVS-VR-VID11106", "url": "https://www.niap-ccevs.org/products/11106", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11106/", "certification_date": "2020-12-07", "expiration_date": "2022-12-07", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Bivio Networks, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Extreme Networks, Inc. SLX Product Series operating with Version 20.1.1aa", "id": "CCEVS-VR-VID11118", "url": "https://www.niap-ccevs.org/products/11118", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11118/", "certification_date": "2020-11-30", "expiration_date": "2022-11-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "McAfee Network Security Platform (NSM Linux Appliance v10.1.19.17 and NS Sensor Appliances v10.1.17.15)", "id": "CCEVS-VR-VID11079", "url": "https://www.niap-ccevs.org/products/11079", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11079/", "certification_date": "2020-11-09", "expiration_date": "2023-07-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Musarubra US LLC (\"Trellix\")", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 13 on iPhone and Apple iPadOS 13 on iPad Mobile Devices", "id": "CCEVS-VR-VID11036", "url": "https://www.niap-ccevs.org/products/11036", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11036/", "certification_date": "2020-11-06", "expiration_date": "2022-11-06", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 10 - Fall", "id": "CCEVS-VR-VID11109", "url": "https://www.niap-ccevs.org/products/11109", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11109/", "certification_date": "2020-10-15", "expiration_date": "2022-10-15", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Palo Alto Networks PA-220 Series, PA-800 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, PA-7000 Series, and VM Series Next-Generation Firewall with PAN-OS 9.0", "id": "CCEVS-VR-VID11063", "url": "https://www.niap-ccevs.org/products/11063", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11063/", "certification_date": "2020-10-14", "expiration_date": "2022-10-14", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "WatchGuard Fireware OS v12.6.2 on Firebox NGFWs", "id": "CCEVS-VR-VID11051", "url": "https://www.niap-ccevs.org/products/11051", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11051/", "certification_date": "2020-10-01", "expiration_date": "2022-10-01", "category": "Firewall", "categories": [ "Firewall" ], "vendor": "WatchGuard Technologies, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "macOS Catalina 10.15", "id": "CCEVS-VR-VID11077", "url": "https://www.niap-ccevs.org/products/11077", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11077/", "certification_date": "2020-09-23", "expiration_date": "2022-09-23", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CommScope Technologies LLC, Ruckus FastIron ICX 7450 Series Router 8.0.70 with IPsec VPN", "id": "CCEVS-VR-VID11088", "url": "https://www.niap-ccevs.org/products/11088", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11088/", "certification_date": "2020-09-08", "expiration_date": "2022-09-08", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Curtiss-Wright Defense Solutions Data Transport System 1-Slot Hardware Encryption Layer version 5.1", "id": "CCEVS-VR-VID11096", "url": "https://www.niap-ccevs.org/products/11096", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11096/", "certification_date": "2020-09-02", "expiration_date": "2023-03-29", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Curtiss-Wright Defense Solutions Data Transport System 1-Slot Software Encryption Layer v3.0.1", "id": "CCEVS-VR-VID11097", "url": "https://www.niap-ccevs.org/products/11097", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11097/", "certification_date": "2020-09-02", "expiration_date": "2023-03-29", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba ClearPass Policy Manager 6.9", "id": "CCEVS-VR-VID11074", "url": "https://www.niap-ccevs.org/products/11074", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11074/", "certification_date": "2020-08-31", "expiration_date": "2022-08-31", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Acronis Cyber Backup 12.5 SCS Hardened Edition Server v12.5", "id": "CCEVS-VR-VID11071", "url": "https://www.niap-ccevs.org/products/11071", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11071/", "certification_date": "2020-08-27", "expiration_date": "2022-08-27", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Acronis SCS", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Acronis Cyber Backup 12.5 SCS Hardened Edition Agent v12.5", "id": "CCEVS-VR-VID11072", "url": "https://www.niap-ccevs.org/products/11072", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11072/", "certification_date": "2020-08-27", "expiration_date": "2022-08-27", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Acronis SCS", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "CommScope Technologies LLC, Ruckus FastIron ICX Series Switch/Router 8.0.70", "id": "CCEVS-VR-VID11089", "url": "https://www.niap-ccevs.org/products/11089", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11089/", "certification_date": "2020-08-26", "expiration_date": "2022-08-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "RUCKUS Wireless LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Wireless LAN IOS-XE 16.12", "id": "CCEVS-VR-VID11044", "url": "https://www.niap-ccevs.org/products/11044", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11044/", "certification_date": "2020-08-24", "expiration_date": "2022-08-24", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 9.0", "id": "CCEVS-VR-VID11070", "url": "https://www.niap-ccevs.org/products/11070", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11070/", "certification_date": "2020-08-17", "expiration_date": "2022-08-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Palo Alto Networks GlobalProtect App Version 5.1.5", "id": "CCEVS-VR-VID11085", "url": "https://www.niap-ccevs.org/products/11085", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11085/", "certification_date": "2020-08-17", "expiration_date": "2022-08-17", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Wireless LAN 8.10", "id": "CCEVS-VR-VID11045", "url": "https://www.niap-ccevs.org/products/11045", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11045/", "certification_date": "2020-07-29", "expiration_date": "2022-07-29", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "IPGARD Secure KVM Switch (DPMST models)", "id": "CCEVS-VR-VID11064", "url": "https://www.niap-ccevs.org/products/11064", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11064/", "certification_date": "2020-07-21", "expiration_date": "2022-07-21", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IPGARD, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Stealthwatch Enterprise 7.1", "id": "CCEVS-VR-VID11059", "url": "https://www.niap-ccevs.org/products/11059", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11059/", "certification_date": "2020-07-21", "expiration_date": "2022-07-21", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Palo Alto Networks WF-500 with WildFire 9.0", "id": "CCEVS-VR-VID11081", "url": "https://www.niap-ccevs.org/products/11081", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11081/", "certification_date": "2020-07-20", "expiration_date": "2022-07-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Red Hat Enterprise Linux 7.6", "id": "CCEVS-VR-VID11039", "url": "https://www.niap-ccevs.org/products/11039", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11039/", "certification_date": "2020-07-17", "expiration_date": "2022-07-17", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "3eTI CyberFence 3e-636 Series Network Security Devices", "id": "CCEVS-VR-VID11080", "url": "https://www.niap-ccevs.org/products/11080", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11080/", "certification_date": "2020-07-14", "expiration_date": "2022-07-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ultra-3eTI", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "SonicWall Secure Mobile Access (SMA) v12.1", "id": "CCEVS-VR-VID11023", "url": "https://www.niap-ccevs.org/products/11023", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11023/", "certification_date": "2020-07-13", "expiration_date": "2022-07-13", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "SonicWall, Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Tripp Lite B002a Secure KVM Switch Series", "id": "CCEVS-VR-VID11062", "url": "https://www.niap-ccevs.org/products/11062", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11062/", "certification_date": "2020-07-09", "expiration_date": "2022-07-09", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Trippe Manufacturing Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Network Convergence System (NCS) 1000 Series", "id": "CCEVS-VR-VID11093", "url": "https://www.niap-ccevs.org/products/11093", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11093/", "certification_date": "2020-07-07", "expiration_date": "2022-07-07", "category": "Network Device", "categories": [ "Network Device", " Router" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Trend Micro Virtual Mobile Infrastructure (TMVMI), Version 6", "id": "CCEVS-VR-VID11083", "url": "https://www.niap-ccevs.org/products/11083", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11083/", "certification_date": "2020-07-06", "expiration_date": "2022-07-06", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Trend Micro", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Extreme Networks, Inc. NetIron Family Devices with Multi-Service IronWare R06.3.0aa", "id": "CCEVS-VR-VID11073", "url": "https://www.niap-ccevs.org/products/11073", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11073/", "certification_date": "2020-06-24", "expiration_date": "2022-06-24", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 9300/9400 Series Switches running IOS-XE 16.12", "id": "CCEVS-VR-VID11058", "url": "https://www.niap-ccevs.org/products/11058", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11058/", "certification_date": "2020-06-10", "expiration_date": "2022-06-10", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "KeyW Protect for Samsung, Version 1.2.1.0", "id": "CCEVS-VR-VID11061", "url": "https://www.niap-ccevs.org/products/11061", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11061/", "certification_date": "2020-06-09", "expiration_date": "2022-06-09", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Jacobs", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple iOS 13 and iPadOS 13: Safari", "id": "CCEVS-VR-VID11060", "url": "https://www.niap-ccevs.org/products/11060", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11060/", "certification_date": "2020-06-05", "expiration_date": "2022-06-05", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 13 and iPadOS 13: Contacts", "id": "CCEVS-VR-VID11050", "url": "https://www.niap-ccevs.org/products/11050", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11050/", "certification_date": "2020-06-05", "expiration_date": "2022-06-05", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Samsung Knox File Encryption 1.2", "id": "CCEVS-VR-VID11053", "url": "https://www.niap-ccevs.org/products/11053", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11053/", "certification_date": "2020-06-03", "expiration_date": "2022-06-03", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "MMA10G EXE Series", "id": "CCEVS-VR-VID11055", "url": "https://www.niap-ccevs.org/products/11055", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11055/", "certification_date": "2020-06-02", "expiration_date": "2022-06-02", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Micro Focus Data Protector Premium Edition, 2020.05 (A.10.70)", "id": "CCEVS-VR-VID11048", "url": "https://www.niap-ccevs.org/products/11048", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11048/", "certification_date": "2020-05-26", "expiration_date": "2022-05-26", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Micro Focus, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "SailPoint IdentityIQ v8.0", "id": "CCEVS-VR-VID11043", "url": "https://www.niap-ccevs.org/products/11043", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11043/", "certification_date": "2020-05-08", "expiration_date": "2023-05-08", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "SailPoint Technologies, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "ATEN Secure KVM Switch Series (models CS118xxx, CS114xxx)", "id": "CCEVS-VR-VID11046", "url": "https://www.niap-ccevs.org/products/11046", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11046/", "certification_date": "2020-05-01", "expiration_date": "2022-05-01", "category": "Peripheral Switch", "categories": [ "Peripheral Switch", " Sharing Switch" ], "vendor": "ATEN International Co., Ltd.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)", "id": "CCEVS-VR-VID11047", "url": "https://www.niap-ccevs.org/products/11047", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11047/", "certification_date": "2020-05-01", "expiration_date": "2022-05-01", "category": "Peripheral Switch", "categories": [ "Peripheral Switch", " Sharing Switch" ], "vendor": "IOGEAR", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 10 - Spring", "id": "CCEVS-VR-VID11042", "url": "https://www.niap-ccevs.org/products/11042", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11042/", "certification_date": "2020-04-30", "expiration_date": "2022-04-30", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Embedded Services 3300 Series Switches (ESS3300)", "id": "CCEVS-VR-VID11031", "url": "https://www.niap-ccevs.org/products/11031", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11031/", "certification_date": "2020-04-30", "expiration_date": "2022-04-30", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "BlackBerry Unified Endpoint Management (UEM) Server and Android Client, version 12", "id": "CCEVS-VR-VID11040", "url": "https://www.niap-ccevs.org/products/11040", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11040/", "certification_date": "2020-04-28", "expiration_date": "2023-04-27", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Junos OS 19.1R2 for EX2300, EX2300-C and EX3400", "id": "CCEVS-VR-VID11025", "url": "https://www.niap-ccevs.org/products/11025", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11025/", "certification_date": "2020-04-27", "expiration_date": "2022-04-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Ruckus SmartZone WLAN Controllers and Access Points, R5.1.1.3", "id": "CCEVS-VR-VID11038", "url": "https://www.niap-ccevs.org/products/11038", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11038/", "certification_date": "2020-04-25", "expiration_date": "2022-04-25", "category": "Wireless LAN", "categories": [ "Wireless LAN" ], "vendor": "Ruckus Wireless, Inc", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "SonicWall SonicOS Enhanced V6.5.4 with VPN and IPS on TZ and SOHO Appliances", "id": "CCEVS-VR-VID11028", "url": "https://www.niap-ccevs.org/products/11028", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11028/", "certification_date": "2020-04-16", "expiration_date": "2022-04-16", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "SonicWall, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 9200 Series Switches running IOS-XE 16.12", "id": "CCEVS-VR-VID11030", "url": "https://www.niap-ccevs.org/products/11030", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11030/", "certification_date": "2020-03-31", "expiration_date": "2022-03-31", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Pulse Policy Secure v.9.1", "id": "CCEVS-VR-VID11020", "url": "https://www.niap-ccevs.org/products/11020", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11020/", "certification_date": "2020-03-30", "expiration_date": "2022-03-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pulse Secure LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Pulse Connect Secure v9.1", "id": "CCEVS-VR-VID11021", "url": "https://www.niap-ccevs.org/products/11021", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11021/", "certification_date": "2020-03-30", "expiration_date": "2022-03-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pulse Secure LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "VMware Workspace ONE Unified Endpoint Management Version 1907", "id": "CCEVS-VR-VID11026", "url": "https://www.niap-ccevs.org/products/11026", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11026/", "certification_date": "2020-03-25", "expiration_date": "2022-03-25", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Junos OS 19.1R2 for MX104 with Multiservices MIC MS-MIC-16G", "id": "CCEVS-VR-VID11037", "url": "https://www.niap-ccevs.org/products/11037", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11037/", "certification_date": "2020-03-25", "expiration_date": "2022-03-25", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Forescout v8.1", "id": "CCEVS-VR-VID11008", "url": "https://www.niap-ccevs.org/products/11008", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11008/", "certification_date": "2020-03-16", "expiration_date": "2022-03-16", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Forescout Technologies Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Aruba Remote Access Point Series with Aruba Mobility Controllers, running AOS 8.2", "id": "CCEVS-VR-VID11052", "url": "https://www.niap-ccevs.org/products/11052", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11052/", "certification_date": "2020-03-12", "expiration_date": "2022-03-12", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Catalyst 9600 Series Switches running IOS-XE 16.12", "id": "CCEVS-VR-VID11029", "url": "https://www.niap-ccevs.org/products/11029", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11029/", "certification_date": "2020-03-09", "expiration_date": "2022-03-09", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "ASURRE-Stor(TM) Solid State Self-Encrypting Drive Hardware revision 3.0, Firmware revision 1.5.1", "id": "CCEVS-VR-VID11041", "url": "https://www.niap-ccevs.org/products/11041", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11041/", "certification_date": "2020-03-06", "expiration_date": "2023-02-28", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Mercury Systems, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Junos OS 19.2R1-S3 for vSRX", "id": "CCEVS-VR-VID11035", "url": "https://www.niap-ccevs.org/products/11035", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11035/", "certification_date": "2020-03-01", "expiration_date": "2022-03-01", "category": "Firewall", "categories": [ "Firewall", " Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco IR1101 Integrated Services Router", "id": "CCEVS-VR-VID11033", "url": "https://www.niap-ccevs.org/products/11033", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11033/", "certification_date": "2020-02-24", "expiration_date": "2022-02-24", "category": "Network Device", "categories": [ "Network Device", " Router", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Expressway X12.5", "id": "CCEVS-VR-VID11015", "url": "https://www.niap-ccevs.org/products/11015", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11015/", "certification_date": "2020-02-24", "expiration_date": "2022-02-24", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Junos OS 19.2R1 for NFX150", "id": "CCEVS-VR-VID11010", "url": "https://www.niap-ccevs.org/products/11010", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11010/", "certification_date": "2020-02-24", "expiration_date": "2022-02-24", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Google Pixel Phones on Android 10", "id": "CCEVS-VR-VID11019", "url": "https://www.niap-ccevs.org/products/11019", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11019/", "certification_date": "2020-02-21", "expiration_date": "2022-02-21", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Venafi Trust Protection Platform v19.2", "id": "CCEVS-VR-VID11024", "url": "https://www.niap-ccevs.org/products/11024", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11024/", "certification_date": "2020-02-21", "expiration_date": "2023-01-31", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Venafi, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Rugged Crystal Firewall RCS5516FW 9.8", "id": "CCEVS-VR-VID11017", "url": "https://www.niap-ccevs.org/products/11017", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11017/", "certification_date": "2020-02-20", "expiration_date": "2022-02-20", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Crystal Group Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Junos OS 19.1R2 for MX series with MultiServices MPC", "id": "CCEVS-VR-VID11012", "url": "https://www.niap-ccevs.org/products/11012", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11012/", "certification_date": "2020-02-19", "expiration_date": "2022-02-19", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "One Identity Manager v8.1", "id": "CCEVS-VR-VID11003", "url": "https://www.niap-ccevs.org/products/11003", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11003/", "certification_date": "2020-02-04", "expiration_date": "2023-01-27", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "One Identity, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "BlackBerry SecuSUITE 4.0", "id": "CCEVS-VR-VID10993", "url": "https://www.niap-ccevs.org/products/10993", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10993/", "certification_date": "2020-02-03", "expiration_date": "2022-02-03", "category": "Application Software", "categories": [ "Application Software", " VoIP" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Palo Alto Networks WF-500 with WildFire 8.1.11", "id": "CCEVS-VR-VID11032", "url": "https://www.niap-ccevs.org/products/11032", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11032/", "certification_date": "2020-01-30", "expiration_date": "2022-01-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Splunk Enterprise Version 7.3", "id": "CCEVS-VR-VID11016", "url": "https://www.niap-ccevs.org/products/11016", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11016/", "certification_date": "2020-01-27", "expiration_date": "2022-01-27", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Splunk LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung SDS EMM v2.2.5", "id": "CCEVS-VR-VID11013", "url": "https://www.niap-ccevs.org/products/11013", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11013/", "certification_date": "2020-01-27", "expiration_date": "2023-01-27", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Motorola Lex L11", "id": "CCEVS-VR-VID11002", "url": "https://www.niap-ccevs.org/products/11002", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11002/", "certification_date": "2020-01-23", "expiration_date": "2022-01-23", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Motorola Mobility LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "IBM QRadar Security Intelligence Platform, version 7.3.2", "id": "CCEVS-VR-VID11027", "url": "https://www.niap-ccevs.org/products/11027", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11027/", "certification_date": "2020-01-21", "expiration_date": "2022-01-21", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "IBM Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apriva MESA VPN", "id": "CCEVS-VR-VID10996", "url": "https://www.niap-ccevs.org/products/10996", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10996/", "certification_date": "2020-01-14", "expiration_date": "2022-01-14", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Apriva ISS, LLC.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "MAGNUM-HW-C-CC", "id": "CCEVS-VR-VID11022", "url": "https://www.niap-ccevs.org/products/11022", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11022/", "certification_date": "2020-01-10", "expiration_date": "2022-01-10", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "NETSCOUT Arbor Edge Defense and APS Systems (AED/APS)", "id": "CCEVS-VR-VID10925", "url": "https://www.niap-ccevs.org/products/10925", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10925/", "certification_date": "2019-12-30", "expiration_date": "2021-12-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "NetScout Systems, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "BlackBerry SecuGATE version 4.0", "id": "CCEVS-VR-VID10977", "url": "https://www.niap-ccevs.org/products/10977", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10977/", "certification_date": "2019-12-19", "expiration_date": "2021-12-19", "category": "Network Device", "categories": [ "Network Device", " SIP Server" ], "vendor": "BlackBerry Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "MMA10G-IPX Series v3.2", "id": "CCEVS-VR-VID11009", "url": "https://www.niap-ccevs.org/products/11009", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11009/", "certification_date": "2019-12-17", "expiration_date": "2021-12-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Identity Services Engine (ISE) V2.6", "id": "CCEVS-VR-VID10978", "url": "https://www.niap-ccevs.org/products/10978", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10978/", "certification_date": "2019-12-17", "expiration_date": "2021-12-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Junos OS 18.3R1-S2 for MX80, MX104, MX240, MX480, and MX960 with MICMACSEC-20G", "id": "CCEVS-VR-VID10999", "url": "https://www.niap-ccevs.org/products/10999", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10999/", "certification_date": "2019-12-16", "expiration_date": "2021-12-16", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "NSM Linux Appliance 9.1.21.20 and NS Sensor appliances 9.1.17.100", "id": "CCEVS-VR-VID10991", "url": "https://www.niap-ccevs.org/products/10991", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10991/", "certification_date": "2019-12-16", "expiration_date": "2021-12-16", "category": "Network Device", "categories": [ "Network Device", " Wireless Monitoring" ], "vendor": "McAfee, LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Unisys Stealth Solution Release v4.0 Windows and Linux Endpoint", "id": "CCEVS-VR-VID10989", "url": "https://www.niap-ccevs.org/products/10989", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10989/", "certification_date": "2019-12-11", "expiration_date": "2021-12-11", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Unisys", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Dell EMC Networking Platforms running Dell EMC Networking OS 9.14", "id": "CCEVS-VR-VID11049", "url": "https://www.niap-ccevs.org/products/11049", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11049/", "certification_date": "2019-12-10", "expiration_date": "2021-12-10", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Dell Technologies Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Samsung Knox File Encryption 1.0", "id": "CCEVS-VR-VID10994", "url": "https://www.niap-ccevs.org/products/10994", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10994/", "certification_date": "2019-12-09", "expiration_date": "2021-12-09", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "PrinterLogic Web Stack Client", "id": "CCEVS-VR-VID11057", "url": "https://www.niap-ccevs.org/products/11057", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11057/", "certification_date": "2019-11-27", "expiration_date": "2021-11-27", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "PrinterLogic", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Printer Logic Web Stack Server", "id": "CCEVS-VR-VID11000", "url": "https://www.niap-ccevs.org/products/11000", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11000/", "certification_date": "2019-11-27", "expiration_date": "2021-11-27", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "PrinterLogic", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Check Point Software Technologies Ltd. Security Gateway Appliances R80.30", "id": "CCEVS-VR-VID10990", "url": "https://www.niap-ccevs.org/products/10990", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10990/", "certification_date": "2019-11-25", "expiration_date": "2021-11-25", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Check Point Software Technologies Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Palo Alto Networks M-100, M-200, M-500, and M-600 Hardware, and Virtual Appliances all running Panorama 8.1.10", "id": "CCEVS-VR-VID10980", "url": "https://www.niap-ccevs.org/products/10980", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10980/", "certification_date": "2019-11-12", "expiration_date": "2021-11-12", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "VMware ESXi 6.7U2", "id": "CCEVS-VR-VID10964", "url": "https://www.niap-ccevs.org/products/10964", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10964/", "certification_date": "2019-11-11", "expiration_date": "2021-11-11", "category": "Remote Access", "categories": [ "Remote Access", " Virtualization" ], "vendor": "VMware, LLC", "evaluation_facility": "CGI IT Security Labs", "scheme": "US" }, { "product": "Samsung Galaxy Devices with Android 9 - Fall", "id": "CCEVS-VR-VID11018", "url": "https://www.niap-ccevs.org/products/11018", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11018/", "certification_date": "2019-11-04", "expiration_date": "2021-11-04", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network", " Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Forcepoint NGFW 6.5", "id": "CCEVS-VR-VID10995", "url": "https://www.niap-ccevs.org/products/10995", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10995/", "certification_date": "2019-10-28", "expiration_date": "2021-10-28", "category": "Firewall", "categories": [ "Firewall" ], "vendor": "Forcepoint LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "SilentEdge Enterprise Server and GoSilent Client", "id": "CCEVS-VR-VID10971", "url": "https://www.niap-ccevs.org/products/10971", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10971/", "certification_date": "2019-10-28", "expiration_date": "2021-10-28", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Attila Security", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "IPGARD Secure KVM/KM Switch (SDVN, SDPN, SDHN, SKMN models)", "id": "CCEVS-VR-VID10997", "url": "https://www.niap-ccevs.org/products/10997", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10997/", "certification_date": "2019-10-18", "expiration_date": "2021-10-18", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IPGARD, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Citrix ADC (formerly NetScaler) Platinum Edition Version 11.1", "id": "CCEVS-VR-VID10974", "url": "https://www.niap-ccevs.org/products/10974", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10974/", "certification_date": "2019-10-18", "expiration_date": "2021-10-18", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Citrix Systems Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Firepower NGIPS/NGIPSv 6.2 with FireSIGHT (FMC) and FMCv 6.2", "id": "CCEVS-VR-VID10918", "url": "https://www.niap-ccevs.org/products/10918", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10918/", "certification_date": "2019-10-10", "expiration_date": "2021-10-10", "category": "Firewall", "categories": [ "Firewall", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Junos OS 18.3R1-S1 for MX240, MX480, MX960, MX2010, MX2020, EX9204, EX9208 and EX9214 with MPC7E-10G/Ex9200-40XS", "id": "CCEVS-VR-VID10988", "url": "https://www.niap-ccevs.org/products/10988", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10988/", "certification_date": "2019-10-01", "expiration_date": "2021-10-01", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Privileged Access Security - Windows Components including PSM v10.4, CPM v10.4 and PVWA v10.4", "id": "CCEVS-VR-VID11005", "url": "https://www.niap-ccevs.org/products/11005", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11005/", "certification_date": "2019-09-30", "expiration_date": "2021-09-30", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "CyberArk Software Ltd.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Privileged Access Security - Linux Components Including PSMP v10.4 and OPMv10.4", "id": "CCEVS-VR-VID11006", "url": "https://www.niap-ccevs.org/products/11006", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11006/", "certification_date": "2019-09-30", "expiration_date": "2021-09-30", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "CyberArk Software Ltd.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Privileged Access Security-Digital Vault Server (EPV) version 10.4", "id": "CCEVS-VR-VID11004", "url": "https://www.niap-ccevs.org/products/11004", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11004/", "certification_date": "2019-09-30", "expiration_date": "2021-09-30", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "CyberArk Software Ltd.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Samsung Galaxy Tab Active2 on Android 8.1", "id": "CCEVS-VR-VID11001", "url": "https://www.niap-ccevs.org/products/11001", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11001/", "certification_date": "2019-09-26", "expiration_date": "2021-09-26", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "NetIron Family MLXE and CER devices with Multi-Service Iron Ware R06.3.00aa", "id": "CCEVS-VR-VID10998", "url": "https://www.niap-ccevs.org/products/10998", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10998/", "certification_date": "2019-09-24", "expiration_date": "2021-09-24", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Jabber 12.6 for Windows 10", "id": "CCEVS-VR-VID11011", "url": "https://www.niap-ccevs.org/products/11011", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11011/", "certification_date": "2019-09-16", "expiration_date": "2021-09-16", "category": "Application Software", "categories": [ "Application Software", " VoIP" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Jabber 12.6 for Android 8 and iOS 12", "id": "CCEVS-VR-VID11007", "url": "https://www.niap-ccevs.org/products/11007", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/11007/", "certification_date": "2019-09-16", "expiration_date": "2021-09-16", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco ASA with FirePOWER Services, ASA 9.8 and ASDM 7.8 with FirePOWER Services 6.2", "id": "CCEVS-VR-VID10917", "url": "https://www.niap-ccevs.org/products/10917", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10917/", "certification_date": "2019-09-08", "expiration_date": "2021-09-08", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Exabeam Security Management Platform", "id": "CCEVS-VR-VID10923", "url": "https://www.niap-ccevs.org/products/10923", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10923/", "certification_date": "2019-09-04", "expiration_date": "2021-09-04", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Exabeam, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.7 for Android", "id": "CCEVS-VR-VID10976", "url": "https://www.niap-ccevs.org/products/10976", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10976/", "certification_date": "2019-08-27", "expiration_date": "2021-08-27", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba Mobility Controller Series with ArubaOS 8.2", "id": "CCEVS-VR-VID10975", "url": "https://www.niap-ccevs.org/products/10975", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10975/", "certification_date": "2019-08-27", "expiration_date": "2021-08-27", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network", " Wireless LAN" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Expressway X12.5", "id": "CCEVS-VR-VID10938", "url": "https://www.niap-ccevs.org/products/10938", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10938/", "certification_date": "2019-08-19", "expiration_date": "2021-08-19", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 9", "id": "CCEVS-VR-VID10979", "url": "https://www.niap-ccevs.org/products/10979", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10979/", "certification_date": "2019-08-02", "expiration_date": "2021-08-02", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Axway Validation Authority Suite 5.0", "id": "CCEVS-VR-VID10959", "url": "https://www.niap-ccevs.org/products/10959", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10959/", "certification_date": "2019-08-02", "expiration_date": "2021-08-02", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Axway, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Vertiv Secure KVM and Matrix models SC820, SC820D, SC820H, SCM120, SCM120H, SC920H, SC920D, SC920, SC920XD, SC840, SC845, SC945, SC940, SC840D, SC845D, SC940D, SC945D, SC840H, SC845H, SC940H, SC945H, SC945XD, SCM145, SCM145H, SC1045XD, SC885, SC985, and SC8165", "id": "CCEVS-VR-VID10987", "url": "https://www.niap-ccevs.org/products/10987", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10987/", "certification_date": "2019-08-01", "expiration_date": "2021-08-01", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Vertiv Secure KM Models SCKM120, SCKM140, SCKM145, SCKM180 and SCKM185", "id": "CCEVS-VR-VID10986", "url": "https://www.niap-ccevs.org/products/10986", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10986/", "certification_date": "2019-08-01", "expiration_date": "2021-08-01", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "HSL Secure KVM Models SK21D-3, SK21P-3, SK21H-3, SX22D-3, SX22H-3, DK22H-3, DK22P-3, DK22D-3, DK22PD-3, SK41D-3, SK41DU-3, SK41P-3, SK41PU-3, SK41H-3, SK41HU-3, DK42D-3, DK42DU-3, DK42P-3, DK42PU-3, DK42H-3, DK42HU-3, SX42DU-3, SX42PU-3, SX42HU-3, SK81DU-3, DK82DU-3, and SK161DU-3", "id": "CCEVS-VR-VID10983", "url": "https://www.niap-ccevs.org/products/10983", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10983/", "certification_date": "2019-07-31", "expiration_date": "2021-07-31", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "High Sec Labs, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Belkin Secure KVM models F1DN102F-3, F1DN102N-3, F1DN102V-3, F1DN102H-3, F1DN104P-3, F1DN104W-3, F1DN104B-3, F1DN104C-3, F1DN104E-3, F1DN104F-3, F1DN104Q-3, F1DN108C-3, F1DN116C-3, and F1DN108F-3", "id": "CCEVS-VR-VID10985", "url": "https://www.niap-ccevs.org/products/10985", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10985/", "certification_date": "2019-07-31", "expiration_date": "2021-07-31", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Belkin International, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "HSL Secure KM Models SM20N-3, SM40N-3, SM40NU-3, SM80N-3, SM80NU-3", "id": "CCEVS-VR-VID10982", "url": "https://www.niap-ccevs.org/products/10982", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10982/", "certification_date": "2019-07-31", "expiration_date": "2021-07-31", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "High Sec Labs, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Belkin Secure KM models F1DN102K-3, F1DN104K-3, and F1DN108K-3", "id": "CCEVS-VR-VID10984", "url": "https://www.niap-ccevs.org/products/10984", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10984/", "certification_date": "2019-07-31", "expiration_date": "2021-07-31", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Belkin International, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "FireEye X-Agent 28", "id": "CCEVS-VR-VID10957", "url": "https://www.niap-ccevs.org/products/10957", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10957/", "certification_date": "2019-07-29", "expiration_date": "2021-07-29", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 9200L and 9400 Series Switches running IOS-XE 16.9", "id": "CCEVS-VR-VID10972", "url": "https://www.niap-ccevs.org/products/10972", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10972/", "certification_date": "2019-07-24", "expiration_date": "2021-07-24", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Xerox® AltaLink™ C8030 / C8035 / C8045 / C8055 / C8070", "id": "CCEVS-VR-VID10955", "url": "https://www.niap-ccevs.org/products/10955", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10955/", "certification_date": "2019-07-22", "expiration_date": "2022-06-04", "category": "Multi Function Device", "categories": [ "Multi Function Device" ], "vendor": "Xerox Corporation", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Xerox® AltaLink™ B8045 / B8055 / B8065 / B8075 / B8090", "id": "CCEVS-VR-VID10956", "url": "https://www.niap-ccevs.org/products/10956", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10956/", "certification_date": "2019-07-22", "expiration_date": "2022-06-04", "category": "Multi Function Device", "categories": [ "Multi Function Device" ], "vendor": "Xerox Corporation", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Pixel 3/3XL", "id": "CCEVS-VR-VID10941", "url": "https://www.niap-ccevs.org/products/10941", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10941/", "certification_date": "2019-07-19", "expiration_date": "2021-07-19", "category": "Mobility", "categories": [ "Mobility", " Wireless LAN" ], "vendor": "Google LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Cloud Services Router 1000V (CSR1000V), Aggregation Services Router 1000 Series (ASR1K), Integrated Services Router 1100 Series (ISR1100), and Integrated Services Router 4000 Series (ISR4K) running on IOS-XE 16.9", "id": "CCEVS-VR-VID10952", "url": "https://www.niap-ccevs.org/products/10952", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10952/", "certification_date": "2019-07-16", "expiration_date": "2021-07-16", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.7 for Windows 10", "id": "CCEVS-VR-VID10970", "url": "https://www.niap-ccevs.org/products/10970", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10970/", "certification_date": "2019-07-15", "expiration_date": "2021-07-15", "category": "Application Software", "categories": [ "Application Software", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Aggregation Services Router 1000 Series (ASR1K) and Integrated Services Router 4000 Series (ISR4K) running IOS-XE 16.9", "id": "CCEVS-VR-VID10951", "url": "https://www.niap-ccevs.org/products/10951", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10951/", "certification_date": "2019-07-01", "expiration_date": "2021-07-01", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "VMware Workspace ONE Boxer Email Client 5.4", "id": "CCEVS-VR-VID10840", "url": "https://www.niap-ccevs.org/products/10840", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10840/", "certification_date": "2019-06-27", "expiration_date": "2021-06-27", "category": "Application Software", "categories": [ "Application Software", " Email Client" ], "vendor": "VMware, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Ciena Waveserver Ai Rel 1.3", "id": "CCEVS-VR-VID10967", "url": "https://www.niap-ccevs.org/products/10967", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10967/", "certification_date": "2019-06-26", "expiration_date": "2021-06-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco CUBE on Cloud Services Router 1000V running IOS-XE 16.9", "id": "CCEVS-VR-VID10947", "url": "https://www.niap-ccevs.org/products/10947", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10947/", "certification_date": "2019-06-14", "expiration_date": "2021-06-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 12 Safari", "id": "CCEVS-VR-VID10960", "url": "https://www.niap-ccevs.org/products/10960", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10960/", "certification_date": "2019-06-12", "expiration_date": "2021-06-12", "category": "Application Software", "categories": [ "Application Software", " Web Browser" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Aggregation Services Router 1004 (ASR1K) running IOS-XE 16.9", "id": "CCEVS-VR-VID10950", "url": "https://www.niap-ccevs.org/products/10950", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10950/", "certification_date": "2019-05-20", "expiration_date": "2021-05-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CellCrypt Classified 2.0 (also known as Cellcrypt Federal)", "id": "CCEVS-VR-VID10929", "url": "https://www.niap-ccevs.org/products/10929", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10929/", "certification_date": "2019-04-22", "expiration_date": "2021-04-22", "category": "Application Software", "categories": [ "Application Software", " Mobility", " VoIP" ], "vendor": "Cellcrypt, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CNS4 Software Encryption Layer vA1", "id": "CCEVS-VR-VID10968", "url": "https://www.niap-ccevs.org/products/10968", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10968/", "certification_date": "2019-04-15", "expiration_date": "2022-01-26", "category": "Network Encryption", "categories": [ "Network Encryption" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Red Hat Certificate System 9.4", "id": "CCEVS-VR-VID10831", "url": "https://www.niap-ccevs.org/products/10831", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10831/", "certification_date": "2019-04-09", "expiration_date": "2022-03-31", "category": "Certificate Authority", "categories": [ "Certificate Authority" ], "vendor": "Red Hat, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Network Convergence System 5500 Series (NCS5500)", "id": "CCEVS-VR-VID10948", "url": "https://www.niap-ccevs.org/products/10948", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10948/", "certification_date": "2019-04-05", "expiration_date": "2021-04-05", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CNS4 Hardware Encryption Layer vA1", "id": "CCEVS-VR-VID10954", "url": "https://www.niap-ccevs.org/products/10954", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10954/", "certification_date": "2019-03-28", "expiration_date": "2022-01-26", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Ciena Carrier Ethernet Solutions (CES) 3900 series and 5100 series", "id": "CCEVS-VR-VID10921", "url": "https://www.niap-ccevs.org/products/10921", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10921/", "certification_date": "2019-03-26", "expiration_date": "2021-03-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Wireless LAN Version 8.5", "id": "CCEVS-VR-VID10931", "url": "https://www.niap-ccevs.org/products/10931", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10931/", "certification_date": "2019-03-15", "expiration_date": "2021-03-15", "category": "Network Device", "categories": [ "Network Device", " Wireless LAN" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 12", "id": "CCEVS-VR-VID10937", "url": "https://www.niap-ccevs.org/products/10937", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10937/", "certification_date": "2019-03-14", "expiration_date": "2021-03-14", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network", " Wireless LAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Cisco Catalyst 9300 and 9500 Series Switches", "id": "CCEVS-VR-VID10945", "url": "https://www.niap-ccevs.org/products/10945", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10945/", "certification_date": "2019-03-14", "expiration_date": "2021-03-14", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 3650 and 3850 Series Switches running IOS-XE 16.9", "id": "CCEVS-VR-VID10940", "url": "https://www.niap-ccevs.org/products/10940", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10940/", "certification_date": "2019-03-14", "expiration_date": "2021-03-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "SonicWall SonicOS Enhanced V6.5.2 with VPN and IPS on TZ, SOHOW, NSA, and SM Appliances", "id": "CCEVS-VR-VID10914", "url": "https://www.niap-ccevs.org/products/10914", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10914/", "certification_date": "2019-03-11", "expiration_date": "2021-03-11", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "SonicWall, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 12 Contacts", "id": "CCEVS-VR-VID10961", "url": "https://www.niap-ccevs.org/products/10961", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10961/", "certification_date": "2019-02-28", "expiration_date": "2021-02-28", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "MobileIron Platform version 10", "id": "CCEVS-VR-VID10934", "url": "https://www.niap-ccevs.org/products/10934", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10934/", "certification_date": "2019-02-22", "expiration_date": "2021-02-22", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "MobileIron, an Ivanti Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Junos OS 18.1R3 for MX series and EX9200 series", "id": "CCEVS-VR-VID10939", "url": "https://www.niap-ccevs.org/products/10939", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10939/", "certification_date": "2019-02-21", "expiration_date": "2021-02-21", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Trend Micro TippingPoint Threat Protection System version 5.1.0", "id": "CCEVS-VR-VID10949", "url": "https://www.niap-ccevs.org/products/10949", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10949/", "certification_date": "2019-01-30", "expiration_date": "2021-01-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Trend Micro", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 6.2 on ASA 5500-X and FTDv with FireSIGHT (FMC) and FMCv", "id": "CCEVS-VR-VID10890", "url": "https://www.niap-ccevs.org/products/10890", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10890/", "certification_date": "2019-01-30", "expiration_date": "2021-01-30", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Juniper Junos OS 18.1R2 for QFX10002, QFX10008 and QFX10016", "id": "CCEVS-VR-VID10930", "url": "https://www.niap-ccevs.org/products/10930", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10930/", "certification_date": "2019-01-28", "expiration_date": "2021-01-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Fortinet FortiMail 6.0", "id": "CCEVS-VR-VID10899", "url": "https://www.niap-ccevs.org/products/10899", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10899/", "certification_date": "2019-01-17", "expiration_date": "2021-01-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Junos OS 17.4R2 for vSRX", "id": "CCEVS-VR-VID10887", "url": "https://www.niap-ccevs.org/products/10887", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10887/", "certification_date": "2019-01-15", "expiration_date": "2021-01-15", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Extreme Networks, Inc. VDX Product Series operating with NOS version 7.3.0aa", "id": "CCEVS-VR-VID10928", "url": "https://www.niap-ccevs.org/products/10928", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10928/", "certification_date": "2019-01-11", "expiration_date": "2021-01-11", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Thycotic Secret Server Government Edition v10.1", "id": "CCEVS-VR-VID10953", "url": "https://www.niap-ccevs.org/products/10953", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10953/", "certification_date": "2018-12-21", "expiration_date": "2020-12-21", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Thycotic", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Samsung Galaxy Devices with Android 8 & 8.1", "id": "CCEVS-VR-VID10927", "url": "https://www.niap-ccevs.org/products/10927", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10927/", "certification_date": "2018-12-20", "expiration_date": "2020-12-20", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network", " Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "LG Electronics Inc. LG Android 8 devices (G7 ThinQ, V35 ThinQ, V30, G6)", "id": "CCEVS-VR-VID10912", "url": "https://www.niap-ccevs.org/products/10912", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10912/", "certification_date": "2018-12-14", "expiration_date": "2020-12-14", "category": "Mobility", "categories": [ "Mobility", " Wireless LAN" ], "vendor": "LG Electronics, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Symantec Endpoint Protection", "id": "CCEVS-VR-VID10926", "url": "https://www.niap-ccevs.org/products/10926", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10926/", "certification_date": "2018-12-10", "expiration_date": "2020-12-10", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Symantec Corporation", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Embedded Services Router (ESR) 5900 Series", "id": "CCEVS-VR-VID10909", "url": "https://www.niap-ccevs.org/products/10909", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10909/", "certification_date": "2018-12-04", "expiration_date": "2020-12-04", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 6.2 on Firepower 2100 Series with FireSIGHT (FMC) and FMCv", "id": "CCEVS-VR-VID10891", "url": "https://www.niap-ccevs.org/products/10891", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10891/", "certification_date": "2018-11-30", "expiration_date": "2020-11-30", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco FTD (NGFW) 6.2 on Firepower 4100 and 9300 Series with FireSIGHT (FMC) and FMCv", "id": "CCEVS-VR-VID10889", "url": "https://www.niap-ccevs.org/products/10889", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10889/", "certification_date": "2018-11-30", "expiration_date": "2020-11-30", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco IoT Industrial Ethernet and Connected Grid Switches running IOS 15.2", "id": "CCEVS-VR-VID10907", "url": "https://www.niap-ccevs.org/products/10907", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10907/", "certification_date": "2018-11-29", "expiration_date": "2020-11-29", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 2960 and 3560 Wired Access Switches running IOS 15.2", "id": "CCEVS-VR-VID10905", "url": "https://www.niap-ccevs.org/products/10905", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10905/", "certification_date": "2018-11-29", "expiration_date": "2020-11-29", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 4500 Series Wired Access Switches running IOS-XE 3.10", "id": "CCEVS-VR-VID10906", "url": "https://www.niap-ccevs.org/products/10906", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10906/", "certification_date": "2018-11-29", "expiration_date": "2020-11-29", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "PacStar 351, 451, 455 or 551 with Cisco ASAv Version 9.6", "id": "CCEVS-VR-VID10897", "url": "https://www.niap-ccevs.org/products/10897", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10897/", "certification_date": "2018-11-27", "expiration_date": "2020-11-27", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "PacStar", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Compact Rugged Router, Series 1000 (CRR-1000), v1.0", "id": "CCEVS-VR-VID10910", "url": "https://www.niap-ccevs.org/products/10910", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10910/", "certification_date": "2018-11-23", "expiration_date": "2020-11-23", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Architecture Technology Corporation", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Voyager TDC 10G Switch - V2.0", "id": "CCEVS-VR-VID10911", "url": "https://www.niap-ccevs.org/products/10911", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10911/", "certification_date": "2018-11-19", "expiration_date": "2020-11-19", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Anduril", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Cisco Unified Communications Manager (CUCM) 11.5", "id": "CCEVS-VR-VID10900", "url": "https://www.niap-ccevs.org/products/10900", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10900/", "certification_date": "2018-11-14", "expiration_date": "2020-11-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 11 Safari", "id": "CCEVS-VR-VID10916", "url": "https://www.niap-ccevs.org/products/10916", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10916/", "certification_date": "2018-11-09", "expiration_date": "2020-11-08", "category": "Application Software", "categories": [ "Application Software", " Web Browser" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Aruba, a Hewlett Packard Enterprise Company 8320 and 8400 Switch Series", "id": "CCEVS-VR-VID10919", "url": "https://www.niap-ccevs.org/products/10919", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10919/", "certification_date": "2018-10-30", "expiration_date": "2020-10-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "DTS1 Hardware Encryption Layer v1.0", "id": "CCEVS-VR-VID10861", "url": "https://www.niap-ccevs.org/products/10861", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10861/", "certification_date": "2018-10-19", "expiration_date": "2020-10-19", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Next-Generation Firewalls (NGFW) running ASA version 9.8 and FX-OS version 2.2 on the 4k and 9k families", "id": "CCEVS-VR-VID10882", "url": "https://www.niap-ccevs.org/products/10882", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10882/", "certification_date": "2018-10-15", "expiration_date": "2020-10-15", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Tripp Lite B002 Secure KVM Switches Series", "id": "CCEVS-VR-VID10908", "url": "https://www.niap-ccevs.org/products/10908", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10908/", "certification_date": "2018-10-03", "expiration_date": "2021-01-09", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Trippe Manufacturing Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "GigaVUE Visibility Appliances with GigaVUE-OS Version 5.1.01 Models: GigaVUE-HD8, GigaVUE-HD4, GigaVUE-HC3, GigaVUE-HC2, GigaVUE-HC1, GigaVUE-TA100, GigaVUE-TA40, GigaVUE-TA10", "id": "CCEVS-VR-VID10902", "url": "https://www.niap-ccevs.org/products/10902", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10902/", "certification_date": "2018-10-01", "expiration_date": "2020-10-01", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Gigamon Inc", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Ciena 6500 Packet-Optical Platform", "id": "CCEVS-VR-VID10922", "url": "https://www.niap-ccevs.org/products/10922", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10922/", "certification_date": "2018-09-30", "expiration_date": "2020-09-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Apple iOS 11 Contacts", "id": "CCEVS-VR-VID10915", "url": "https://www.niap-ccevs.org/products/10915", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10915/", "certification_date": "2018-09-13", "expiration_date": "2020-08-13", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Enveil ZeroReveal™ Compute Fabric v1.1.1", "id": "CCEVS-VR-VID10904", "url": "https://www.niap-ccevs.org/products/10904", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10904/", "certification_date": "2018-08-28", "expiration_date": "2020-08-28", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Enveil", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Fidelis Network v9.0.3", "id": "CCEVS-VR-VID10884", "url": "https://www.niap-ccevs.org/products/10884", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10884/", "certification_date": "2018-08-27", "expiration_date": "2020-08-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fidelis Cybersecurity Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Hypori Client (iOS) v4.1", "id": "CCEVS-VR-VID10875", "url": "https://www.niap-ccevs.org/products/10875", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10875/", "certification_date": "2018-08-27", "expiration_date": "2020-08-27", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Intelligent Waves, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Hypori Client (Android) v4.1", "id": "CCEVS-VR-VID10874", "url": "https://www.niap-ccevs.org/products/10874", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10874/", "certification_date": "2018-08-24", "expiration_date": "2020-08-24", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Intelligent Waves, LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Adaptive Security Appliances and ASA Virtual Version 9.8", "id": "CCEVS-VR-VID10881", "url": "https://www.niap-ccevs.org/products/10881", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10881/", "certification_date": "2018-08-22", "expiration_date": "2020-08-22", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Siemens RUGGEDCOM ROS v4.2.2.F running on the M969F, RS900F, RS900GF, RS900GPF, RS940GF, M2100F, RSG2100F, RSG2100PF, M2200F, RSG2200F, RSG2300F, RSG2300PF, RS400F, RS416F, RS416PF, RSG2488F switches", "id": "CCEVS-VR-VID10877", "url": "https://www.niap-ccevs.org/products/10877", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10877/", "certification_date": "2018-08-21", "expiration_date": "2020-08-21", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Siemens Canada Ltd.", "evaluation_facility": "COACT, Inc. Labs", "scheme": "US" }, { "product": "DTS1 Software Encryption Layer v1.0", "id": "CCEVS-VR-VID10862", "url": "https://www.niap-ccevs.org/products/10862", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10862/", "certification_date": "2018-08-21", "expiration_date": "2020-08-21", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Curtiss-Wright Defense Solutions", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "IPGARD Secure KVM/Matrix Switch (SDVN, SUHN, SDMN, SDPN models)", "id": "CCEVS-VR-VID10894", "url": "https://www.niap-ccevs.org/products/10894", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10894/", "certification_date": "2018-08-14", "expiration_date": "2021-01-08", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IPGARD, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "NIKSUN NetDetector/NetVCR 10440", "id": "CCEVS-VR-VID10869", "url": "https://www.niap-ccevs.org/products/10869", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10869/", "certification_date": "2018-08-14", "expiration_date": "2020-08-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "NIKSUN, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Binary Armor SCADA Network Guard", "id": "CCEVS-VR-VID10879", "url": "https://www.niap-ccevs.org/products/10879", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10879/", "certification_date": "2018-08-07", "expiration_date": "2020-08-07", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Sierra Nevada Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Black Box SSXP Secure KVM Switches Series", "id": "CCEVS-VR-VID10893", "url": "https://www.niap-ccevs.org/products/10893", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10893/", "certification_date": "2018-08-03", "expiration_date": "2021-01-06", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Black Box, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "FireEye HX Appliances, Version 4.0", "id": "CCEVS-VR-VID10892", "url": "https://www.niap-ccevs.org/products/10892", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10892/", "certification_date": "2018-07-31", "expiration_date": "2020-07-31", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Nubo Software Thin Client v2.0", "id": "CCEVS-VR-VID10886", "url": "https://www.niap-ccevs.org/products/10886", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10886/", "certification_date": "2018-07-23", "expiration_date": "2020-07-23", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Nubo Software LTD", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Next-Generation Firewalls (NGFW) running ASA version 9.8 and FX-OS version 2.2 on the 2k family", "id": "CCEVS-VR-VID10883", "url": "https://www.niap-ccevs.org/products/10883", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10883/", "certification_date": "2018-07-20", "expiration_date": "2020-07-20", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "BeyondTrust Password Safe 6.2 (a BeyondInsight component)", "id": "CCEVS-VR-VID10913", "url": "https://www.niap-ccevs.org/products/10913", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10913/", "certification_date": "2018-06-26", "expiration_date": "2020-06-26", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "BeyondTrust Software, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "IBM MaaS360 v2.9 Cloud Extender", "id": "CCEVS-VR-VID10896", "url": "https://www.niap-ccevs.org/products/10896", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10896/", "certification_date": "2018-06-14", "expiration_date": "2020-06-14", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "IBM Corporation", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Trivalent Protect (for Android) Version 2.6", "id": "CCEVS-VR-VID10856", "url": "https://www.niap-ccevs.org/products/10856", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10856/", "certification_date": "2018-06-13", "expiration_date": "2020-06-13", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Trivalent", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.6 for Apple iOS", "id": "CCEVS-VR-VID10880", "url": "https://www.niap-ccevs.org/products/10880", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10880/", "certification_date": "2018-06-08", "expiration_date": "2021-03-08", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba, a Hewlett Packard Enterprise Company 2930F, 2930M, 3810M, and 5400R Switch Series running ArubaOS version 16.04", "id": "CCEVS-VR-VID10872", "url": "https://www.niap-ccevs.org/products/10872", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10872/", "certification_date": "2018-06-01", "expiration_date": "2020-08-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "CertAgent v7.0", "id": "CCEVS-VR-VID10815", "url": "https://www.niap-ccevs.org/products/10815", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10815/", "certification_date": "2018-06-01", "expiration_date": "2021-06-01", "category": "Certificate Authority", "categories": [ "Certificate Authority" ], "vendor": "Information Security Corporation", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 8", "id": "CCEVS-VR-VID10898", "url": "https://www.niap-ccevs.org/products/10898", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10898/", "certification_date": "2018-05-29", "expiration_date": "2020-05-29", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network", " Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Integrated Services Router (ISR) 1100 Series, IOS-XE 16.6", "id": "CCEVS-VR-VID10867", "url": "https://www.niap-ccevs.org/products/10867", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10867/", "certification_date": "2018-05-23", "expiration_date": "2020-05-23", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "I/O Interconnect Secure KVM v1.0", "id": "CCEVS-VR-VID10878", "url": "https://www.niap-ccevs.org/products/10878", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10878/", "certification_date": "2018-05-11", "expiration_date": "2020-05-11", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "I O Interconnect, LTD", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Airguard 3e-525/523 Series Wireless Access Points", "id": "CCEVS-VR-VID10859", "url": "https://www.niap-ccevs.org/products/10859", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10859/", "certification_date": "2018-05-10", "expiration_date": "2020-05-10", "category": "Network Device", "categories": [ "Network Device", " Wireless LAN" ], "vendor": "Ultra-3eTI", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple iOS 11 VPN Client on iPhone and iPad", "id": "CCEVS-VR-VID10876", "url": "https://www.niap-ccevs.org/products/10876", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10876/", "certification_date": "2018-05-10", "expiration_date": "2020-05-10", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Aruba, a Hewlett Packard Enterprise company Virtual Intranet Access (VIA) Client Version 3.0", "id": "CCEVS-VR-VID10871", "url": "https://www.niap-ccevs.org/products/10871", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10871/", "certification_date": "2018-05-08", "expiration_date": "2021-02-08", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Allied Telesis x930 Series Switches v5.4.6-1", "id": "CCEVS-VR-VID10784", "url": "https://www.niap-ccevs.org/products/10784", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10784/", "certification_date": "2018-05-01", "expiration_date": "2020-05-01", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Allied Telesis", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Palo Alto Networks PA-200 Series, PA-500, PA-800 Series, PA-3000 Series, PA-5000 Series, PA-5200 Series, PA-7000 Series, and VM Series Next-Generation Firewall with PAN-OS v8.0.6", "id": "CCEVS-VR-VID10839", "url": "https://www.niap-ccevs.org/products/10839", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10839/", "certification_date": "2018-04-30", "expiration_date": "2020-04-30", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Prime Infrastructure 3.2", "id": "CCEVS-VR-VID10860", "url": "https://www.niap-ccevs.org/products/10860", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10860/", "certification_date": "2018-04-30", "expiration_date": "2020-04-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "CGI IT Security Labs", "scheme": "US" }, { "product": "Bivio 6310-NC", "id": "CCEVS-VR-VID10873", "url": "https://www.niap-ccevs.org/products/10873", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10873/", "certification_date": "2018-04-25", "expiration_date": "2020-04-25", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Bivio Networks, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "MMA10G-EXE", "id": "CCEVS-VR-VID10866", "url": "https://www.niap-ccevs.org/products/10866", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10866/", "certification_date": "2018-04-25", "expiration_date": "2020-04-25", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Aggregation Services Router 9000", "id": "CCEVS-VR-VID10844", "url": "https://www.niap-ccevs.org/products/10844", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10844/", "certification_date": "2018-04-17", "expiration_date": "2020-08-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 9300 Series and 9500 Series Switches running IOS-XE 16.6", "id": "CCEVS-VR-VID10864", "url": "https://www.niap-ccevs.org/products/10864", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10864/", "certification_date": "2018-04-16", "expiration_date": "2020-04-16", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 9400 Series Switches running IOS-XE 16.6", "id": "CCEVS-VR-VID10863", "url": "https://www.niap-ccevs.org/products/10863", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10863/", "certification_date": "2018-04-16", "expiration_date": "2020-04-16", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Identity Services Engine (ISE) V2.2 on the 3415, 3515, 3495 and 3595 Appliances", "id": "CCEVS-VR-VID10858", "url": "https://www.niap-ccevs.org/products/10858", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10858/", "certification_date": "2018-04-13", "expiration_date": "2020-04-13", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Seagate Secure TCG SSC Self-Encrypting Drives", "id": "CCEVS-VR-VID10857", "url": "https://www.niap-ccevs.org/products/10857", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10857/", "certification_date": "2018-04-11", "expiration_date": "2021-04-11", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Seagate Technology LLC.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Pulse Connect Secure 8.2 on Virtual Appliance and Pulse Policy Secure 5.3 on Virtual Appliance", "id": "CCEVS-VR-VID10829", "url": "https://www.niap-ccevs.org/products/10829", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10829/", "certification_date": "2018-04-05", "expiration_date": "2019-12-01", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pulse Secure LLC", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CounterACT version 7.0", "id": "CCEVS-VR-VID10728", "url": "https://www.niap-ccevs.org/products/10728", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10728/", "certification_date": "2018-04-02", "expiration_date": "2020-04-02", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Forescout Technologies Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Apple iOS 11", "id": "CCEVS-VR-VID10851", "url": "https://www.niap-ccevs.org/products/10851", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10851/", "certification_date": "2018-03-30", "expiration_date": "2020-03-30", "category": "Mobility", "categories": [ "Mobility", " Wireless LAN" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "SecureIO", "id": "CCEVS-VR-VID10852", "url": "https://www.niap-ccevs.org/products/10852", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10852/", "certification_date": "2018-03-14", "expiration_date": "2020-03-14", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Perspecta Labs", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Forcepoint NGFW 6.3.1", "id": "CCEVS-VR-VID10854", "url": "https://www.niap-ccevs.org/products/10854", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10854/", "certification_date": "2018-03-12", "expiration_date": "2020-03-12", "category": "Firewall", "categories": [ "Firewall" ], "vendor": "Forcepoint LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "McAfee ATD v4.0", "id": "CCEVS-VR-VID10888", "url": "https://www.niap-ccevs.org/products/10888", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10888/", "certification_date": "2018-03-06", "expiration_date": "2020-03-06", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "McAfee, LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Raritan Secure KVM Switch Series (model RSS-102, RSS-102C, RSS-104, RSS-104C)", "id": "CCEVS-VR-VID10865", "url": "https://www.niap-ccevs.org/products/10865", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10865/", "certification_date": "2018-02-13", "expiration_date": "2020-02-13", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Raritan, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Brocade FastIron Switch/Router 8.0.70", "id": "CCEVS-VR-VID10846", "url": "https://www.niap-ccevs.org/products/10846", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10846/", "certification_date": "2018-02-13", "expiration_date": "2020-02-13", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ruckus Wireless, Inc", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Brocade FastIron ICX Series Switch/Router 08.0.70 with IPsec VPN Module", "id": "CCEVS-VR-VID10845", "url": "https://www.niap-ccevs.org/products/10845", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10845/", "certification_date": "2018-02-13", "expiration_date": "2020-02-13", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Ruckus Wireless, Inc", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Aggregation Services Router (ASR) 1000 Series, Integrated Services Router (ISR) 4000 Series", "id": "CCEVS-VR-VID10805", "url": "https://www.niap-ccevs.org/products/10805", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10805/", "certification_date": "2018-02-06", "expiration_date": "2020-02-06", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Cloud Services Router 1000V and Cisco Aggregation Services Router (ASR) 1000 Series", "id": "CCEVS-VR-VID10806", "url": "https://www.niap-ccevs.org/products/10806", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10806/", "certification_date": "2018-02-06", "expiration_date": "2020-02-06", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FireEye EX Series Hardware and Virtual Appliances: EX3500, EX5500, EX8500", "id": "CCEVS-VR-VID10834", "url": "https://www.niap-ccevs.org/products/10834", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10834/", "certification_date": "2018-01-30", "expiration_date": "2020-01-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FireEye NX Series Hardware and Virtual Appliances: NX1500, NX1500V, NX2500, NX2500V, NX2550, NX2550V, NX3500, NX4500, NX4500V, NX5500, NX6500V, NX10450", "id": "CCEVS-VR-VID10836", "url": "https://www.niap-ccevs.org/products/10836", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10836/", "certification_date": "2018-01-30", "expiration_date": "2020-01-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FireEye CMS Series Hardware and Virtual Appliances: CM2500V, CM4500, CM7500, CM7500V, CM9500", "id": "CCEVS-VR-VID10837", "url": "https://www.niap-ccevs.org/products/10837", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10837/", "certification_date": "2018-01-30", "expiration_date": "2020-01-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "ATEN Secure KVM Switch Series (models CS118xxx, CS114xxx)", "id": "CCEVS-VR-VID10830", "url": "https://www.niap-ccevs.org/products/10830", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10830/", "certification_date": "2018-01-29", "expiration_date": "2020-01-29", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "ATEN International Co., Ltd.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)", "id": "CCEVS-VR-VID10822", "url": "https://www.niap-ccevs.org/products/10822", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10822/", "certification_date": "2018-01-29", "expiration_date": "2020-01-29", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IOGEAR", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Catalyst 6500 and 6807-XL Series Switches with Sup2T and Sup6T running IOS 15.5SY", "id": "CCEVS-VR-VID10853", "url": "https://www.niap-ccevs.org/products/10853", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10853/", "certification_date": "2018-01-24", "expiration_date": "2020-01-24", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FireEye VX Series Hardware Appliances: VX12500, VX5500", "id": "CCEVS-VR-VID10835", "url": "https://www.niap-ccevs.org/products/10835", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10835/", "certification_date": "2018-01-19", "expiration_date": "2020-01-19", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco FirePOWER Version 6.1", "id": "CCEVS-VR-VID10768", "url": "https://www.niap-ccevs.org/products/10768", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10768/", "certification_date": "2018-01-17", "expiration_date": "2020-01-17", "category": "Network Device", "categories": [ "Network Device", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba Networks ClearPass Policy Manager", "id": "CCEVS-VR-VID10814", "url": "https://www.niap-ccevs.org/products/10814", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10814/", "certification_date": "2018-01-17", "expiration_date": "2020-01-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco ASA 9.6 with FirePOWER Service v6.1", "id": "CCEVS-VR-VID10793", "url": "https://www.niap-ccevs.org/products/10793", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10793/", "certification_date": "2018-01-09", "expiration_date": "2020-01-09", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network", " Wireless Monitoring" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Extreme Networks Summit Series Switches EXOS v22.3", "id": "CCEVS-VR-VID10827", "url": "https://www.niap-ccevs.org/products/10827", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10827/", "certification_date": "2017-12-20", "expiration_date": "2019-12-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Extreme Networks, Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Magnum-SC-CC", "id": "CCEVS-VR-VID10828", "url": "https://www.niap-ccevs.org/products/10828", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10828/", "certification_date": "2017-12-08", "expiration_date": "2019-12-08", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Black Lantern BL300-B2 and BL300-C2 (software version 1.5.2)", "id": "CCEVS-VR-VID10838", "url": "https://www.niap-ccevs.org/products/10838", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10838/", "certification_date": "2017-12-07", "expiration_date": "2019-12-07", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Guardtime Federal", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "NIKSUN NetOmni, software version 5.0.1.2", "id": "CCEVS-VR-VID10868", "url": "https://www.niap-ccevs.org/products/10868", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10868/", "certification_date": "2017-12-07", "expiration_date": "2019-12-07", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "NIKSUN, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Monkton IA Docs Reinforced by Rebar for iOS v1.0.0", "id": "CCEVS-VR-VID10825", "url": "https://www.niap-ccevs.org/products/10825", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10825/", "certification_date": "2017-12-07", "expiration_date": "2019-12-07", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Monkton, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Catalyst 3650 and 3850 Series Switches", "id": "CCEVS-VR-VID10819", "url": "https://www.niap-ccevs.org/products/10819", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10819/", "certification_date": "2017-11-27", "expiration_date": "2019-11-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco IM&P 11.5 SU3", "id": "CCEVS-VR-VID10760", "url": "https://www.niap-ccevs.org/products/10760", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10760/", "certification_date": "2017-11-21", "expiration_date": "2019-11-21", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Hyper-V for Windows Server 2016, Windows Server 2012 R2, and Windows 10", "id": "CCEVS-VR-VID10823", "url": "https://www.niap-ccevs.org/products/10823", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10823/", "certification_date": "2017-11-20", "expiration_date": "2019-11-20", "category": "Virtualization", "categories": [ "Virtualization" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Xerox® AltaLink™ C8030, C8035, C8045, C8055, C8070", "id": "CCEVS-VR-VID10788", "url": "https://www.niap-ccevs.org/products/10788", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10788/", "certification_date": "2017-11-20", "expiration_date": "2019-11-20", "category": "Multi Function Device", "categories": [ "Multi Function Device" ], "vendor": "Xerox Corporation", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Xerox® AltaLink™ B8045, B8055, B8065, B8075, B8090", "id": "CCEVS-VR-VID10789", "url": "https://www.niap-ccevs.org/products/10789", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10789/", "certification_date": "2017-11-20", "expiration_date": "2019-11-20", "category": "Multi Function Device", "categories": [ "Multi Function Device" ], "vendor": "Xerox Corporation", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Cisco Aggregation Services Router (ASR) 1000 Series (ASR1K)", "id": "CCEVS-VR-VID10816", "url": "https://www.niap-ccevs.org/products/10816", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10816/", "certification_date": "2017-11-17", "expiration_date": "2019-11-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "D4 Secure VPN Client for the HTC A9 Secured by Cog Systems", "id": "CCEVS-VR-VID10855", "url": "https://www.niap-ccevs.org/products/10855", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10855/", "certification_date": "2017-11-16", "expiration_date": "2019-11-16", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Cog Systems D4 Secure Mobile", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Devices on Android 7.1", "id": "CCEVS-VR-VID10849", "url": "https://www.niap-ccevs.org/products/10849", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10849/", "certification_date": "2017-11-15", "expiration_date": "2019-11-15", "category": "Mobility", "categories": [ "Mobility", " Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy VPN Client on Android 7.1", "id": "CCEVS-VR-VID10850", "url": "https://www.niap-ccevs.org/products/10850", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10850/", "certification_date": "2017-11-15", "expiration_date": "2019-11-15", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "LG Electronics Inc. V30 Smartphone", "id": "CCEVS-VR-VID10843", "url": "https://www.niap-ccevs.org/products/10843", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10843/", "certification_date": "2017-11-03", "expiration_date": "2019-11-03", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "LG Electronics, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Evertz MMA10G-IPX", "id": "CCEVS-VR-VID10817", "url": "https://www.niap-ccevs.org/products/10817", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10817/", "certification_date": "2017-10-17", "expiration_date": "2019-10-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Evertz Microsystems", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "CA Top Secret r16", "id": "CCEVS-VR-VID10810", "url": "https://www.niap-ccevs.org/products/10810", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10810/", "certification_date": "2017-10-04", "expiration_date": "2019-10-04", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "CA Technologies", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "IBM QRadar Security Intelligence Platform 7.2.7", "id": "CCEVS-VR-VID10804", "url": "https://www.niap-ccevs.org/products/10804", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10804/", "certification_date": "2017-09-29", "expiration_date": "2019-09-29", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "IBM Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Pulse Connect Secure v8.2", "id": "CCEVS-VR-VID10821", "url": "https://www.niap-ccevs.org/products/10821", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10821/", "certification_date": "2017-09-20", "expiration_date": "2019-09-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pulse Secure LLC", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Pulse Policy Secure v5.3", "id": "CCEVS-VR-VID10785", "url": "https://www.niap-ccevs.org/products/10785", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10785/", "certification_date": "2017-09-20", "expiration_date": "2019-09-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pulse Secure LLC", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "3eTI CyberFence 3e-636 Series", "id": "CCEVS-VR-VID10820", "url": "https://www.niap-ccevs.org/products/10820", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10820/", "certification_date": "2017-09-20", "expiration_date": "2019-09-20", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ultra-3eTI", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Klas Voyager 1.0", "id": "CCEVS-VR-VID10767", "url": "https://www.niap-ccevs.org/products/10767", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10767/", "certification_date": "2017-09-19", "expiration_date": "2019-09-19", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Anduril", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Venafi Trust Protection Platform v17.1", "id": "CCEVS-VR-VID10800", "url": "https://www.niap-ccevs.org/products/10800", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10800/", "certification_date": "2017-09-15", "expiration_date": "2019-09-15", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Venafi, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco ASA and FXOS on Firepower 4100/9300", "id": "CCEVS-VR-VID10775", "url": "https://www.niap-ccevs.org/products/10775", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10775/", "certification_date": "2017-09-11", "expiration_date": "2019-09-11", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Oracle Access Manager Suite 11g Release 2", "id": "CCEVS-VR-VID10812", "url": "https://www.niap-ccevs.org/products/10812", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10812/", "certification_date": "2017-08-31", "expiration_date": "2019-08-31", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Oracle Corporation", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "MicroCloud X4", "id": "CCEVS-VR-VID10740", "url": "https://www.niap-ccevs.org/products/10740", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10740/", "certification_date": "2017-08-29", "expiration_date": "2019-08-29", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Bluechip Systems LLC", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Bivio 6110-NC and 6120-NC", "id": "CCEVS-VR-VID10847", "url": "https://www.niap-ccevs.org/products/10847", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10847/", "certification_date": "2017-08-28", "expiration_date": "2019-08-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Bivio Networks, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "ASURRE-Stor™ Solid State Self-Encrypting Drive, Hardware revision 3.0, Firmware revision 1.5.0", "id": "CCEVS-VR-VID10783", "url": "https://www.niap-ccevs.org/products/10783", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10783/", "certification_date": "2017-08-25", "expiration_date": "2019-08-25", "category": "Encrypted Storage", "categories": [ "Encrypted Storage" ], "vendor": "Mercury Systems, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "CA ACF2 r16", "id": "CCEVS-VR-VID10811", "url": "https://www.niap-ccevs.org/products/10811", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10811/", "certification_date": "2017-08-18", "expiration_date": "2019-08-18", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "CA Technologies", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "KeyW BlackBerry Suite B Data at Rest, Version 1.2.2.1", "id": "CCEVS-VR-VID10801", "url": "https://www.niap-ccevs.org/products/10801", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10801/", "certification_date": "2017-08-08", "expiration_date": "2019-08-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "KeyW Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Web Security Appliance 10.5", "id": "CCEVS-VR-VID10799", "url": "https://www.niap-ccevs.org/products/10799", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10799/", "certification_date": "2017-08-08", "expiration_date": "2019-08-08", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Email Security Appliance 9.8", "id": "CCEVS-VR-VID10798", "url": "https://www.niap-ccevs.org/products/10798", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10798/", "certification_date": "2017-08-08", "expiration_date": "2019-08-08", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Apple iOS 10.2 on iPhone & iPad Devices", "id": "CCEVS-VR-VID10782", "url": "https://www.niap-ccevs.org/products/10782", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10782/", "certification_date": "2017-07-27", "expiration_date": "2019-07-27", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Apple IOS 10.2 VPN Client on iPhone and iPad", "id": "CCEVS-VR-VID10792", "url": "https://www.niap-ccevs.org/products/10792", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10792/", "certification_date": "2017-07-27", "expiration_date": "2019-07-27", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Ciena 8700 Packetwave Platform", "id": "CCEVS-VR-VID10729", "url": "https://www.niap-ccevs.org/products/10729", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10729/", "certification_date": "2017-07-14", "expiration_date": "2019-07-14", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Brocade Communication Systems, Inc. Directors and Switches operating with Fabric OS version 8.1.0", "id": "CCEVS-VR-VID10797", "url": "https://www.niap-ccevs.org/products/10797", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10797/", "certification_date": "2017-06-30", "expiration_date": "2019-06-30", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Brocade Communications Systems LLC A Broadcom Inc. Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Dell EMC Networking Switches running Dell EMC Networking OS v9.11", "id": "CCEVS-VR-VID10790", "url": "https://www.niap-ccevs.org/products/10790", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10790/", "certification_date": "2017-06-22", "expiration_date": "2019-06-22", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Dell Technologies Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Samsung Galaxy VPN Client on Android 7", "id": "CCEVS-VR-VID10813", "url": "https://www.niap-ccevs.org/products/10813", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10813/", "certification_date": "2017-06-21", "expiration_date": "2019-06-21", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Devices with Android 7", "id": "CCEVS-VR-VID10809", "url": "https://www.niap-ccevs.org/products/10809", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10809/", "certification_date": "2017-06-15", "expiration_date": "2019-06-15", "category": "Mobility", "categories": [ "Mobility", " Wireless LAN" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Jabber 11.8 for Windows 10", "id": "CCEVS-VR-VID10802", "url": "https://www.niap-ccevs.org/products/10802", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10802/", "certification_date": "2017-06-13", "expiration_date": "2019-06-13", "category": "VoIP", "categories": [ "VoIP" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Avast Workspace v3.4", "id": "CCEVS-VR-VID10779", "url": "https://www.niap-ccevs.org/products/10779", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10779/", "certification_date": "2017-06-01", "expiration_date": "2019-06-01", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Avast Software, Inc", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Forcepoint Trusted Access Mobile Client v1.1", "id": "CCEVS-VR-VID10780", "url": "https://www.niap-ccevs.org/products/10780", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10780/", "certification_date": "2017-06-01", "expiration_date": "2019-06-01", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Forcepoint LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "RSA Identity Governance and Lifecycle v7.0", "id": "CCEVS-VR-VID10769", "url": "https://www.niap-ccevs.org/products/10769", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10769/", "certification_date": "2017-05-31", "expiration_date": "2019-05-31", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "RSA Security LLC", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "HTC A9, Secured by D4", "id": "CCEVS-VR-VID10776", "url": "https://www.niap-ccevs.org/products/10776", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10776/", "certification_date": "2017-05-25", "expiration_date": "2019-05-25", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Cog Systems D4 Secure Mobile", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "AhnLab MDS, MDS with MTA, and MDS Manager v2.1", "id": "CCEVS-VR-VID10818", "url": "https://www.niap-ccevs.org/products/10818", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10818/", "certification_date": "2017-05-08", "expiration_date": "2019-05-08", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "AhnLab", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "LG Electronics, Inc. G6 Smartphone", "id": "CCEVS-VR-VID10791", "url": "https://www.niap-ccevs.org/products/10791", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10791/", "certification_date": "2017-05-02", "expiration_date": "2019-05-02", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "LG Electronics, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco ISE v2.0", "id": "CCEVS-VR-VID10795", "url": "https://www.niap-ccevs.org/products/10795", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10795/", "certification_date": "2017-04-13", "expiration_date": "2019-04-13", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Trivalent Android Data Protection SDK v2.0", "id": "CCEVS-VR-VID10786", "url": "https://www.niap-ccevs.org/products/10786", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10786/", "certification_date": "2017-04-13", "expiration_date": "2019-04-13", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Trivalent", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Microsoft Windows 10 and Windows 10 Mobile (Anniversary Update) with Microsoft Surface Book, Surface Pro 4, Lumia 950, 950 XL, 650, HP Elite x3, and Dell Latitude 5580", "id": "CCEVS-VR-VID10752", "url": "https://www.niap-ccevs.org/products/10752", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10752/", "certification_date": "2017-04-12", "expiration_date": "2019-04-12", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Getac, Inc. MX50", "id": "CCEVS-VR-VID10756", "url": "https://www.niap-ccevs.org/products/10756", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10756/", "certification_date": "2017-04-06", "expiration_date": "2019-04-06", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Getac Technology Corp.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Adaptive Security Appliances and ASA Virtual Version 9.6", "id": "CCEVS-VR-VID10759", "url": "https://www.niap-ccevs.org/products/10759", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10759/", "certification_date": "2017-04-04", "expiration_date": "2019-04-04", "category": "Firewall", "categories": [ "Firewall", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Motorola Network Router, S6000 and GGM 8000 with EOS version 16.9", "id": "CCEVS-VR-VID10738", "url": "https://www.niap-ccevs.org/products/10738", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10738/", "certification_date": "2017-03-23", "expiration_date": "2019-03-23", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Motorola Mobility LLC", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Splunk Enterprise 6.4.5", "id": "CCEVS-VR-VID10807", "url": "https://www.niap-ccevs.org/products/10807", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10807/", "certification_date": "2017-03-22", "expiration_date": "2019-03-22", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Splunk LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Jabber 11.7 for Android & iPhone/iPad", "id": "CCEVS-VR-VID10761", "url": "https://www.niap-ccevs.org/products/10761", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10761/", "certification_date": "2017-03-14", "expiration_date": "2019-03-14", "category": "VoIP", "categories": [ "VoIP" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "IPGARD Secure KVM/KM Switch (SDVN, SDPN, SDHN, SKMN models)", "id": "CCEVS-VR-VID10772", "url": "https://www.niap-ccevs.org/products/10772", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10772/", "certification_date": "2017-03-10", "expiration_date": "2019-03-10", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "IPGARD, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Avaya VSP 4000, VSP 7000 and VSP 8000", "id": "CCEVS-VR-VID10755", "url": "https://www.niap-ccevs.org/products/10755", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10755/", "certification_date": "2017-03-10", "expiration_date": "2019-03-10", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Avaya, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco AnyConnect Secure Mobility Client v4.0 for Android", "id": "CCEVS-VR-VID10770", "url": "https://www.niap-ccevs.org/products/10770", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10770/", "certification_date": "2017-03-01", "expiration_date": "2019-03-01", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba Remote Access Point Version 6.5.0-FIPS", "id": "CCEVS-VR-VID10766", "url": "https://www.niap-ccevs.org/products/10766", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10766/", "certification_date": "2017-02-26", "expiration_date": "2019-02-26", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "VMware AirWatch Mobile Device Management v9.1", "id": "CCEVS-VR-VID10733", "url": "https://www.niap-ccevs.org/products/10733", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10733/", "certification_date": "2017-02-24", "expiration_date": "2019-02-24", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "AirWatch, LLC", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Oceus Networks® VPN Client v2", "id": "CCEVS-VR-VID10754", "url": "https://www.niap-ccevs.org/products/10754", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10754/", "certification_date": "2017-02-03", "expiration_date": "2019-02-03", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Oceus Networks, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Axway API Gateway version 7.4.1 with SP2", "id": "CCEVS-VR-VID10778", "url": "https://www.niap-ccevs.org/products/10778", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10778/", "certification_date": "2017-01-13", "expiration_date": "2019-01-13", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Axway, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Kyocera DuraForce PRO", "id": "CCEVS-VR-VID10742", "url": "https://www.niap-ccevs.org/products/10742", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10742/", "certification_date": "2017-01-05", "expiration_date": "2019-01-05", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Kyocera Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "AnyConnect Secure Mobility Client v4.3 for Windows 10", "id": "CCEVS-VR-VID10771", "url": "https://www.niap-ccevs.org/products/10771", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10771/", "certification_date": "2017-01-03", "expiration_date": "2019-01-03", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Microsoft Windows 10 (Anniversary Update) and Windows Server 2016 IPsec VPN Client", "id": "CCEVS-VR-VID10753", "url": "https://www.niap-ccevs.org/products/10753", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10753/", "certification_date": "2016-12-29", "expiration_date": "2018-12-29", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung SDS EMM v1.5.1", "id": "CCEVS-VR-VID10751", "url": "https://www.niap-ccevs.org/products/10751", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10751/", "certification_date": "2016-12-29", "expiration_date": "2018-12-29", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco 1000V Cloud Services Router v3.16", "id": "CCEVS-VR-VID10719", "url": "https://www.niap-ccevs.org/products/10719", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10719/", "certification_date": "2016-11-23", "expiration_date": "2018-11-23", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "CGI IT Security Labs", "scheme": "US" }, { "product": "Windows 10 IPsec VPN Client", "id": "CCEVS-VR-VID10746", "url": "https://www.niap-ccevs.org/products/10746", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10746/", "certification_date": "2016-11-10", "expiration_date": "2018-11-10", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "LG Electronics, Inc. V20 and G5 Smartphones", "id": "CCEVS-VR-VID10758", "url": "https://www.niap-ccevs.org/products/10758", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10758/", "certification_date": "2016-11-10", "expiration_date": "2018-11-10", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "LG Electronics, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Note 7 VPNCPP", "id": "CCEVS-VR-VID10765", "url": "https://www.niap-ccevs.org/products/10765", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10765/", "certification_date": "2016-10-17", "expiration_date": "2018-10-17", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Note 7 MDFPP", "id": "CCEVS-VR-VID10764", "url": "https://www.niap-ccevs.org/products/10764", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10764/", "certification_date": "2016-10-14", "expiration_date": "2018-10-14", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "BeyondTrust PowerBroker ® UNIX® + Linux® Edition V9.1", "id": "CCEVS-VR-VID10691", "url": "https://www.niap-ccevs.org/products/10691", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10691/", "certification_date": "2016-08-30", "expiration_date": "2019-07-27", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management", " Network Access Control", " Network Management" ], "vendor": "BeyondTrust Software, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Apple iOS 9.3.2 with MDM Agent", "id": "CCEVS-VR-VID10725", "url": "https://www.niap-ccevs.org/products/10725", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10725/", "certification_date": "2016-07-18", "expiration_date": "2018-07-18", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "FireEye xAgent", "id": "CCEVS-VR-VID10697", "url": "https://www.niap-ccevs.org/products/10697", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10697/", "certification_date": "2016-07-08", "expiration_date": "2018-07-08", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Unisys Stealth Solution Release v3.0 Windows Endpoint", "id": "CCEVS-VR-VID10716", "url": "https://www.niap-ccevs.org/products/10716", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10716/", "certification_date": "2016-07-07", "expiration_date": "2018-11-21", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Unisys", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Microsoft Windows 10 with Surface Book", "id": "CCEVS-VR-VID10715", "url": "https://www.niap-ccevs.org/products/10715", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10715/", "certification_date": "2016-06-23", "expiration_date": "2018-06-23", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "MobileIron Core / Mobile@Work for Android", "id": "CCEVS-VR-VID10584", "url": "https://www.niap-ccevs.org/products/10584", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10584/", "certification_date": "2016-06-14", "expiration_date": "2018-06-14", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "MobileIron, an Ivanti Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy VPN Client on Android 6", "id": "CCEVS-VR-VID10727", "url": "https://www.niap-ccevs.org/products/10727", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10727/", "certification_date": "2016-06-13", "expiration_date": "2018-06-13", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Devices with Android 6", "id": "CCEVS-VR-VID10726", "url": "https://www.niap-ccevs.org/products/10726", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10726/", "certification_date": "2016-06-09", "expiration_date": "2018-06-09", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "CA Top Secret r15", "id": "CCEVS-VR-VID10735", "url": "https://www.niap-ccevs.org/products/10735", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10735/", "certification_date": "2016-06-02", "expiration_date": "2018-06-02", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "CA Technologies", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Fortress Mesh Point ES210, ES520, ES820, ES2440 version 5.4.5", "id": "CCEVS-VR-VID10711", "url": "https://www.niap-ccevs.org/products/10711", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10711/", "certification_date": "2016-05-31", "expiration_date": "2018-05-31", "category": "Wireless LAN", "categories": [ "Wireless LAN" ], "vendor": "General Dynamics C4 Systems", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Samsung Galaxy S7 Devices on Android 6", "id": "CCEVS-VR-VID10739", "url": "https://www.niap-ccevs.org/products/10739", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10739/", "certification_date": "2016-05-25", "expiration_date": "2018-05-25", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Microsoft Windows 10 Mobile with Lumia 950, 950 XL, 550, 635, and Windows 10 with Surface Pro 4", "id": "CCEVS-VR-VID10694", "url": "https://www.niap-ccevs.org/products/10694", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10694/", "certification_date": "2016-05-12", "expiration_date": "2018-05-12", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "CA ACF2 r15", "id": "CCEVS-VR-VID10736", "url": "https://www.niap-ccevs.org/products/10736", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10736/", "certification_date": "2016-05-10", "expiration_date": "2018-05-10", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "CA Technologies", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "FireSphere 14600_FIPS and FireSphere 7960_FIPS", "id": "CCEVS-VR-VID10663", "url": "https://www.niap-ccevs.org/products/10663", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10663/", "certification_date": "2016-04-15", "expiration_date": "2018-02-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "iboss Cybersecurity", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "LG Electronics, Inc. G5, V10, and G4 Smartphones", "id": "CCEVS-VR-VID10710", "url": "https://www.niap-ccevs.org/products/10710", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10710/", "certification_date": "2016-04-14", "expiration_date": "2018-04-14", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "LG Electronics, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Vormetric Data Security Manager V6000, Version 5.3", "id": "CCEVS-VR-VID10737", "url": "https://www.niap-ccevs.org/products/10737", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10737/", "certification_date": "2016-04-05", "expiration_date": "2018-04-05", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Vormetric Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "HSL Secure KM Models SM20N-3, SM40N-3, SM40NU-3, SM80N-3, SM80NU-3", "id": "CCEVS-VR-VID10700", "url": "https://www.niap-ccevs.org/products/10700", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10700/", "certification_date": "2016-03-24", "expiration_date": "2019-03-24", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "High Sec Labs, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "HSL Secure KVM Models SK21D-3, SK21P-3, SK21H-3, SX22D-3, SX22H-3, DK22H-3, DK22P-3, DK22D-3, DK22PD-3, SK41D-3, SK41DU-3, SK41P-3, SK41PU-3, SK41H-3, SK41HU-3, DK42D-3, DK42DU-3, DK42P-3, DK42PU-3, DK42H-3, DK42HU-3, SX42DU-3, SX42PU-3, SX42HU-3, SK81DU-3, DK82DU-3, and SK161DU-3", "id": "CCEVS-VR-VID10701", "url": "https://www.niap-ccevs.org/products/10701", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10701/", "certification_date": "2016-03-24", "expiration_date": "2019-03-24", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "High Sec Labs, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Belkin Secure KVM models F1DN102F-3, F1DN102N-3, F1DN102V-3, F1DN102H-3, F1DN104P-3, F1DN104W-3, F1DN104B-3, F1DN104C-3, F1DN104E-3, F1DN104F-3, F1DN104Q-3, F1DN108C-3, F1DN116C-3, and F1DN108F-3", "id": "CCEVS-VR-VID10708", "url": "https://www.niap-ccevs.org/products/10708", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10708/", "certification_date": "2016-03-24", "expiration_date": "2019-03-24", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Belkin International, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Belkin Secure KM models F1DN102K-3, F1DN104K-3, and F1DN108K-3", "id": "CCEVS-VR-VID10638", "url": "https://www.niap-ccevs.org/products/10638", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10638/", "certification_date": "2016-03-24", "expiration_date": "2019-03-24", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Belkin International, Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Vertiv Secure KM (formerly known as Emerson Secure KM Models SCKM120, SCKM140, SCKM145, SCKM180 and SCKM185)", "id": "CCEVS-VR-VID10704", "url": "https://www.niap-ccevs.org/products/10704", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10704/", "certification_date": "2016-03-24", "expiration_date": "2019-03-24", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Vertiv Secure KVM and Matrix (formerly Emerson Secure KVM models SC820, SC820D, SC820H, SCM120, SCM120H, SC920H, SC920D, SC920, SC920XD, SC840, SC845, SC945, SC940, SC840D, SC845D, SC940D, SC945D, SC840H, SC845H, SC940H, SC945H, SC945XD, SCM145, SCM145H, SC1045XD, SC885, SC985, and SC8165)", "id": "CCEVS-VR-VID10705", "url": "https://www.niap-ccevs.org/products/10705", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10705/", "certification_date": "2016-03-24", "expiration_date": "2019-03-24", "category": "Peripheral Switch", "categories": [ "Peripheral Switch" ], "vendor": "Vertiv IT Systems", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Fortress Mesh Point ES210, ES520, ES820, ES2440", "id": "CCEVS-VR-VID10667", "url": "https://www.niap-ccevs.org/products/10667", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10667/", "certification_date": "2016-03-11", "expiration_date": "2018-02-28", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "General Dynamics C4 Systems", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Cisco Catalyst 2K/3K Wired Access Switches running IOS 15.2(4)E", "id": "CCEVS-VR-VID10687", "url": "https://www.niap-ccevs.org/products/10687", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10687/", "certification_date": "2016-03-11", "expiration_date": "2018-03-11", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco IoT Industrial Ethernet and Connected Grid Switches running IOS 15.2(4)E", "id": "CCEVS-VR-VID10692", "url": "https://www.niap-ccevs.org/products/10692", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10692/", "certification_date": "2016-03-11", "expiration_date": "2018-03-11", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Apple IOS VPN Client on iPhone & iPad", "id": "CCEVS-VR-VID10714", "url": "https://www.niap-ccevs.org/products/10714", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10714/", "certification_date": "2016-03-10", "expiration_date": "2018-03-10", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Apple Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Hypori ACE Client v3.1.0", "id": "CCEVS-VR-VID10643", "url": "https://www.niap-ccevs.org/products/10643", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10643/", "certification_date": "2016-03-09", "expiration_date": "2018-03-09", "category": "Application Software", "categories": [ "Application Software" ], "vendor": "Hypori, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Catalyst 3K/4K Wired Access Switches running IOS-XE 3.8.0E", "id": "CCEVS-VR-VID10688", "url": "https://www.niap-ccevs.org/products/10688", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10688/", "certification_date": "2016-03-09", "expiration_date": "2018-03-09", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Pure Storage FA-400 Series and FlashArray //m Appliances version 4.7", "id": "CCEVS-VR-VID10664", "url": "https://www.niap-ccevs.org/products/10664", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10664/", "certification_date": "2016-03-07", "expiration_date": "2018-02-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Pure Storage, Inc.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Hewlett Packard Enterprise 5900 Series, 5920 Series, 5930 Series, 10500 Series, 12500 Series, and 12900 Series with Comware 7", "id": "CCEVS-VR-VID10672", "url": "https://www.niap-ccevs.org/products/10672", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10672/", "certification_date": "2016-03-04", "expiration_date": "2018-02-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Hewlett Packard Enterprise MSR 1000 Series, 2000 Series, 3000 Series, and 4000 Series Routers with Comware V7.1", "id": "CCEVS-VR-VID10670", "url": "https://www.niap-ccevs.org/products/10670", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10670/", "certification_date": "2016-03-04", "expiration_date": "2018-02-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Hewlett Packard Enterprise 7900 Series, 7500 Series, 5700 Series, 5130 EI Series, 5130 HI Series and 5510 HI Series Switches with Comware 7", "id": "CCEVS-VR-VID10671", "url": "https://www.niap-ccevs.org/products/10671", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10671/", "certification_date": "2016-03-04", "expiration_date": "2018-02-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "GigaVUE version 4.4", "id": "CCEVS-VR-VID10648", "url": "https://www.niap-ccevs.org/products/10648", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10648/", "certification_date": "2016-03-04", "expiration_date": "2018-02-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Gigamon Inc", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Stonesoft Next Generation Firewall (NGFW)", "id": "CCEVS-VR-VID10669", "url": "https://www.niap-ccevs.org/products/10669", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10669/", "certification_date": "2016-03-03", "expiration_date": "2018-02-28", "category": "Firewall", "categories": [ "Firewall", " Network Device" ], "vendor": "Forcepoint LLC", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "IBM BigFix Endpoint Manager Version 9.2", "id": "CCEVS-VR-VID10682", "url": "https://www.niap-ccevs.org/products/10682", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10682/", "certification_date": "2016-02-26", "expiration_date": "2018-02-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "IBM Corporation", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "HPE 5400R zl2 Switch Series Version 5.011, KB_15_18_0008p01", "id": "CCEVS-VR-VID10587", "url": "https://www.niap-ccevs.org/products/10587", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10587/", "certification_date": "2016-02-19", "expiration_date": "2018-02-19", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "HPE Moonshot-180XGc, 45XGc, 45Gc switch", "id": "CCEVS-VR-VID10660", "url": "https://www.niap-ccevs.org/products/10660", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10660/", "certification_date": "2016-02-17", "expiration_date": "2018-02-17", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Ciena 5400 Series Packet Optical Platform", "id": "CCEVS-VR-VID10678", "url": "https://www.niap-ccevs.org/products/10678", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10678/", "certification_date": "2016-02-02", "expiration_date": "2018-02-02", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "FireEye HX Series Appliances", "id": "CCEVS-VR-VID10675", "url": "https://www.niap-ccevs.org/products/10675", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10675/", "certification_date": "2016-02-01", "expiration_date": "2018-02-01", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Microsoft Windows 10", "id": "CCEVS-VR-VID10677", "url": "https://www.niap-ccevs.org/products/10677", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10677/", "certification_date": "2016-01-29", "expiration_date": "2018-01-29", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Apple iOS 9", "id": "CCEVS-VR-VID10695", "url": "https://www.niap-ccevs.org/products/10695", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10695/", "certification_date": "2016-01-28", "expiration_date": "2018-01-28", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Apple Inc.", "evaluation_facility": "atsec information security corporation", "scheme": "US" }, { "product": "Cisco Optical Networking Solution (ONS) and Network Convergence System (NCS) 2000 Series", "id": "CCEVS-VR-VID10680", "url": "https://www.niap-ccevs.org/products/10680", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10680/", "certification_date": "2016-01-28", "expiration_date": "2018-01-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Brocade MLXe and NetIron Family Devices with Multi-Service IronWare R05.9", "id": "CCEVS-VR-VID10657", "url": "https://www.niap-ccevs.org/products/10657", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10657/", "certification_date": "2016-01-27", "expiration_date": "2018-01-27", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Brocade Communications Systems LLC A Broadcom Inc. Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Ciena Carrier Ethernet Solutions (CES) 3900 series and 5100 series with SAOS", "id": "CCEVS-VR-VID10679", "url": "https://www.niap-ccevs.org/products/10679", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10679/", "certification_date": "2016-01-26", "expiration_date": "2018-01-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ciena Corporation", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "FireEye MX Series Appliances", "id": "CCEVS-VR-VID10674", "url": "https://www.niap-ccevs.org/products/10674", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10674/", "certification_date": "2016-01-21", "expiration_date": "2018-01-21", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "FortiGate™ UTM appliances running FortiOS™ 5.0 Patch Release 10", "id": "CCEVS-VR-VID10642", "url": "https://www.niap-ccevs.org/products/10642", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10642/", "certification_date": "2016-01-13", "expiration_date": "2018-01-13", "category": "Firewall", "categories": [ "Firewall", " Network Device" ], "vendor": "Fortinet, Inc.", "evaluation_facility": "CGI IT Security Labs", "scheme": "US" }, { "product": "Check Point Software Technologies Ltd. Security Appliances R77.30", "id": "CCEVS-VR-VID10652", "url": "https://www.niap-ccevs.org/products/10652", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10652/", "certification_date": "2015-12-31", "expiration_date": "2017-12-31", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Check Point Software Technologies Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Juniper MX240 MX480, MX960, MX2010, MX2020, EX9204, EX9208, EX9214, PTX3000, PTX5000 with JUNOS 14.2R3", "id": "CCEVS-VR-VID10661", "url": "https://www.niap-ccevs.org/products/10661", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10661/", "certification_date": "2015-12-28", "expiration_date": "2017-12-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Juniper EX4600 and QFX5100 with JUNOS 14.1X53d30", "id": "CCEVS-VR-VID10681", "url": "https://www.niap-ccevs.org/products/10681", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10681/", "certification_date": "2015-12-28", "expiration_date": "2017-12-28", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Imperva SecureSphere v11.5", "id": "CCEVS-VR-VID10653", "url": "https://www.niap-ccevs.org/products/10653", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10653/", "certification_date": "2015-12-23", "expiration_date": "2017-12-23", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Imperva Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Trivalent Data at Rest Service (Inside) Version 1.0.0 (Version Code 2)", "id": "CCEVS-VR-VID10656", "url": "https://www.niap-ccevs.org/products/10656", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10656/", "certification_date": "2015-12-23", "expiration_date": "2017-12-23", "category": "Application Software", "categories": [ "Application Software", " Encrypted Storage" ], "vendor": "Trivalent", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "LogRhythm Integrated Solution 6.3.4", "id": "CCEVS-VR-VID10645", "url": "https://www.niap-ccevs.org/products/10645", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10645/", "certification_date": "2015-12-22", "expiration_date": "2017-12-22", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "LogRhythm Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Integrated Services Router Generation 2 (ISR G2), Integrated Services Router 800 Series (ISR-800) and Connected Grid Router 2010", "id": "CCEVS-VR-VID10665", "url": "https://www.niap-ccevs.org/products/10665", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10665/", "certification_date": "2015-12-22", "expiration_date": "2017-12-22", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Embedded Services Router 5900 Series (ESR 5900), Integrated Services Router 800 Series (ISR-800), Integrated Services Router 800M Series (ISR-800M) & Industrial Router 800 Series (IR-800)", "id": "CCEVS-VR-VID10666", "url": "https://www.niap-ccevs.org/products/10666", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10666/", "certification_date": "2015-12-22", "expiration_date": "2017-12-22", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "IAS Router Series: IAS STEW, IAS KG-RU, IAS Router MICRO", "id": "CCEVS-VR-VID10625", "url": "https://www.niap-ccevs.org/products/10625", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10625/", "certification_date": "2015-12-21", "expiration_date": "2017-12-21", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Information Assurance Specialists, Inc", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Infoblox Trinzic Appliances with NIOS v7.1", "id": "CCEVS-VR-VID10624", "url": "https://www.niap-ccevs.org/products/10624", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10624/", "certification_date": "2015-12-21", "expiration_date": "2017-12-21", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Infoblox Inc.", "evaluation_facility": "DXC.technology", "scheme": "US" }, { "product": "Cisco Catalyst 6K Series Switches", "id": "CCEVS-VR-VID10668", "url": "https://www.niap-ccevs.org/products/10668", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10668/", "certification_date": "2015-12-18", "expiration_date": "2017-12-18", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Juniper EX4300 with JUNOS 14.1X53d30", "id": "CCEVS-VR-VID10662", "url": "https://www.niap-ccevs.org/products/10662", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10662/", "certification_date": "2015-12-10", "expiration_date": "2017-12-10", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "HPE Juniper Networking", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Palo Alto Networks PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, PA-5000 Series, PA-7000 Series, VM Series, Next-Generation Firewall with PAN-OS 7.0.1-h4", "id": "CCEVS-VR-VID10640", "url": "https://www.niap-ccevs.org/products/10640", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10640/", "certification_date": "2015-11-25", "expiration_date": "2017-11-25", "category": "Firewall", "categories": [ "Firewall", " Network Device", " Virtual Private Network" ], "vendor": "Palo Alto Networks, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Jabber 11.0 for Windows", "id": "CCEVS-VR-VID10659", "url": "https://www.niap-ccevs.org/products/10659", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10659/", "certification_date": "2015-11-13", "expiration_date": "2017-11-13", "category": "VoIP", "categories": [ "VoIP" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "AlienVault USM for Government v4.12 and RT Logic CyberC4: Alert v4.12", "id": "CCEVS-VR-VID10548", "url": "https://www.niap-ccevs.org/products/10548", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10548/", "certification_date": "2015-10-29", "expiration_date": "2017-10-29", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "AlienVault, Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "CRC Data At Rest Service (256-bit)", "id": "CCEVS-VR-VID10651", "url": "https://www.niap-ccevs.org/products/10651", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10651/", "certification_date": "2015-10-29", "expiration_date": "2017-10-29", "category": "Application Software", "categories": [ "Application Software", " Encrypted Storage" ], "vendor": "Cyber Reliant Corp.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "3e-525N, 3e-523N, 3e-525N MP, 3e-525NV and 3-e523NR Wireless Access Points Hardware Version 1.0, Software Version 5.1", "id": "CCEVS-VR-VID10689", "url": "https://www.niap-ccevs.org/products/10689", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10689/", "certification_date": "2015-10-13", "expiration_date": "2017-10-13", "category": "Wireless LAN", "categories": [ "Wireless LAN" ], "vendor": "Ultra-3eTI", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Samsung Galaxy Note 5 & Tab S2", "id": "CCEVS-VR-VID10684", "url": "https://www.niap-ccevs.org/products/10684", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10684/", "certification_date": "2015-10-13", "expiration_date": "2017-10-13", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Note 5 and Tab S2", "id": "CCEVS-VR-VID10683", "url": "https://www.niap-ccevs.org/products/10683", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10683/", "certification_date": "2015-10-13", "expiration_date": "2017-10-13", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "SailPoint IdentityIQ version 6.4", "id": "CCEVS-VR-VID10611", "url": "https://www.niap-ccevs.org/products/10611", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10611/", "certification_date": "2015-10-02", "expiration_date": "2019-10-02", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "SailPoint Technologies, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Email Security Appliance v9.1", "id": "CCEVS-VR-VID10631", "url": "https://www.niap-ccevs.org/products/10631", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10631/", "certification_date": "2015-09-18", "expiration_date": "2017-09-18", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Oracle Identity Manager 11g Release 2", "id": "CCEVS-VR-VID10589", "url": "https://www.niap-ccevs.org/products/10589", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10589/", "certification_date": "2015-08-28", "expiration_date": "2017-08-28", "category": "Enterprise Security Management", "categories": [ "Enterprise Security Management" ], "vendor": "Oracle Corporation", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Windows 8.1 with Surface 3 and Windows Phone 8.1 with Lumia 635 and Lumia 830", "id": "CCEVS-VR-VID10635", "url": "https://www.niap-ccevs.org/products/10635", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10635/", "certification_date": "2015-08-27", "expiration_date": "2017-08-27", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "FireEye CM, FX, EX, and NX Series Appliances", "id": "CCEVS-VR-VID10641", "url": "https://www.niap-ccevs.org/products/10641", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10641/", "certification_date": "2015-08-26", "expiration_date": "2017-08-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "FireEye, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Unified Communications Manager 11.0", "id": "CCEVS-VR-VID10646", "url": "https://www.niap-ccevs.org/products/10646", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10646/", "certification_date": "2015-08-25", "expiration_date": "2017-08-25", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Samsung Z VPN on Tizen Version 2.3", "id": "CCEVS-VR-VID10613", "url": "https://www.niap-ccevs.org/products/10613", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10613/", "certification_date": "2015-08-21", "expiration_date": "2017-08-21", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung Z with Tizen Version 2.3", "id": "CCEVS-VR-VID10612", "url": "https://www.niap-ccevs.org/products/10612", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10612/", "certification_date": "2015-08-21", "expiration_date": "2017-08-21", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Apriva MESA VPN, v1.0", "id": "CCEVS-VR-VID10602", "url": "https://www.niap-ccevs.org/products/10602", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10602/", "certification_date": "2015-08-07", "expiration_date": "2017-08-07", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Apriva ISS, LLC.", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "LG Electronics Inc. G4 Smartphone", "id": "CCEVS-VR-VID10626", "url": "https://www.niap-ccevs.org/products/10626", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10626/", "certification_date": "2015-07-01", "expiration_date": "2017-07-01", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "LG Electronics, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 2960CX and 3560CX Series Compact Switches running IOS 15.2(3)E1", "id": "CCEVS-VR-VID10647", "url": "https://www.niap-ccevs.org/products/10647", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10647/", "certification_date": "2015-06-26", "expiration_date": "2017-06-26", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco 5921 Embedded Services Router Running IOS 15.5(2)T", "id": "CCEVS-VR-VID10586", "url": "https://www.niap-ccevs.org/products/10586", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10586/", "certification_date": "2015-06-22", "expiration_date": "2017-06-22", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Aggregation Services Router (ASR) 1000 Series, IOS XE 3.13", "id": "CCEVS-VR-VID10609", "url": "https://www.niap-ccevs.org/products/10609", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10609/", "certification_date": "2015-06-11", "expiration_date": "2017-06-11", "category": "Network Device", "categories": [ "Network Device", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Booz Allen Hamilton Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "McAfee Advanced Threat Defense", "id": "CCEVS-VR-VID10622", "url": "https://www.niap-ccevs.org/products/10622", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10622/", "certification_date": "2015-05-27", "expiration_date": "2017-05-27", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Intel Corporation", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Aruba VIA Client 2.3", "id": "CCEVS-VR-VID10616", "url": "https://www.niap-ccevs.org/products/10616", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10616/", "certification_date": "2015-05-27", "expiration_date": "2017-05-27", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Aruba, a Hewlett Packard Enterprise Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Fidelis XPS version 8.0", "id": "CCEVS-VR-VID10610", "url": "https://www.niap-ccevs.org/products/10610", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10610/", "certification_date": "2015-05-15", "expiration_date": "2017-05-15", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Fidelis Cybersecurity Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung SDS EMM (formerly Samsung SDS CellWe EMM)", "id": "CCEVS-VR-VID10618", "url": "https://www.niap-ccevs.org/products/10618", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10618/", "certification_date": "2015-05-08", "expiration_date": "2017-05-08", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Brocade VDX 6700 and 8700 Series products with NOS v5.0", "id": "CCEVS-VR-VID10577", "url": "https://www.niap-ccevs.org/products/10577", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10577/", "certification_date": "2015-05-08", "expiration_date": "2017-05-08", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Brocade Communications Systems LLC A Broadcom Inc. Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Microsoft Surface Pro 3, Windows 8.1", "id": "CCEVS-VR-VID10632", "url": "https://www.niap-ccevs.org/products/10632", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10632/", "certification_date": "2015-04-21", "expiration_date": "2017-04-21", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung Galaxy S6 & S6 Edge VPN Client", "id": "CCEVS-VR-VID10634", "url": "https://www.niap-ccevs.org/products/10634", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10634/", "certification_date": "2015-04-09", "expiration_date": "2017-04-09", "category": "Virtual Private Network", "categories": [ "Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Note 4 with Android 5 VPN Client", "id": "CCEVS-VR-VID10630", "url": "https://www.niap-ccevs.org/products/10630", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10630/", "certification_date": "2015-04-08", "expiration_date": "2017-04-08", "category": "Mobility", "categories": [ "Mobility", " Virtual Private Network" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy S6 & S6 Edge", "id": "CCEVS-VR-VID10633", "url": "https://www.niap-ccevs.org/products/10633", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10633/", "certification_date": "2015-04-08", "expiration_date": "2017-04-08", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Samsung Galaxy Note 4 Android 5", "id": "CCEVS-VR-VID10628", "url": "https://www.niap-ccevs.org/products/10628", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10628/", "certification_date": "2015-04-03", "expiration_date": "2017-04-03", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Aggregation Service Router (ASR) 901 Series running IOS 15.5(1)S1", "id": "CCEVS-VR-VID10605", "url": "https://www.niap-ccevs.org/products/10605", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10605/", "certification_date": "2015-04-03", "expiration_date": "2017-04-03", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Cisco Aggregation Service Router (ASR) 900 Series (902, 903, and 920) running IOS-XE 3.13.(1)S", "id": "CCEVS-VR-VID10599", "url": "https://www.niap-ccevs.org/products/10599", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10599/", "certification_date": "2015-04-03", "expiration_date": "2017-04-03", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Acumen Security", "scheme": "US" }, { "product": "Brocade Communications Systems, Inc. Brocade MLXe and NetIron Family Devices with Multi-Service IronWare R05.8.00", "id": "CCEVS-VR-VID10603", "url": "https://www.niap-ccevs.org/products/10603", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10603/", "certification_date": "2015-03-31", "expiration_date": "2017-03-31", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Brocade Communications Systems LLC A Broadcom Inc. Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "LG Electronics, Inc. G3 Smartphone Lollipop OS", "id": "CCEVS-VR-VID10621", "url": "https://www.niap-ccevs.org/products/10621", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10621/", "certification_date": "2015-03-30", "expiration_date": "2017-06-30", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "LG Electronics, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "3e-636 Series Network Security Devices, hardware version 1.0, firmware version 5.1", "id": "CCEVS-VR-VID10580", "url": "https://www.niap-ccevs.org/products/10580", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10580/", "certification_date": "2015-03-26", "expiration_date": "2017-03-26", "category": "Network Device", "categories": [ "Network Device" ], "vendor": "Ultra-3eTI", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Brocade Communications Systems, Inc. Brocade Directors and Switches operating with Fabric OS version 7.3.0", "id": "CCEVS-VR-VID10585", "url": "https://www.niap-ccevs.org/products/10585", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10585/", "certification_date": "2015-03-25", "expiration_date": "2017-03-24", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Brocade Communications Systems LLC A Broadcom Inc. Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Dell Networking Switches: S4810, S4820T, S5000, S6000, Z9000, Z9500 running Dell Networking OS v9.6.0.0 P6", "id": "CCEVS-VR-VID10588", "url": "https://www.niap-ccevs.org/products/10588", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10588/", "certification_date": "2015-03-19", "expiration_date": "2017-03-19", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Dell Technologies Inc.", "evaluation_facility": "CygnaCom Solutions, Inc", "scheme": "US" }, { "product": "Microsoft Windows 8.1, Phone 8.1", "id": "CCEVS-VR-VID10592", "url": "https://www.niap-ccevs.org/products/10592", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10592/", "certification_date": "2015-03-16", "expiration_date": "2017-02-11", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Hewlett Packard Enterprise 6125XLG Ethernet Blade Switch", "id": "CCEVS-VR-VID10601", "url": "https://www.niap-ccevs.org/products/10601", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10601/", "certification_date": "2015-02-24", "expiration_date": "2017-02-24", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Boeing Black", "id": "CCEVS-VR-VID10615", "url": "https://www.niap-ccevs.org/products/10615", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10615/", "certification_date": "2015-02-24", "expiration_date": "2017-02-24", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "The Boeing Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Integrated Services Router 4400 Series (ISR-4400), IOS XE 3.13.0", "id": "CCEVS-VR-VID10600", "url": "https://www.niap-ccevs.org/products/10600", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10600/", "certification_date": "2015-02-12", "expiration_date": "2017-02-12", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Virtual Private Network" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Microsoft Windows 8 and Windows Server 2012", "id": "CCEVS-VR-VID10520", "url": "https://www.niap-ccevs.org/products/10520", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10520/", "certification_date": "2015-01-09", "expiration_date": "2017-01-09", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Microsoft Windows 8 and Windows RT", "id": "CCEVS-VR-VID10620", "url": "https://www.niap-ccevs.org/products/10620", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10620/", "certification_date": "2015-01-09", "expiration_date": "2017-01-09", "category": "Operating System", "categories": [ "Operating System" ], "vendor": "Microsoft Corporation", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Cisco Catalyst 3650, 3850, 4500E (Sup7E, Sup7LE, Sup8E), 4500X, 4500XF running IOS-XE 3.6.1S", "id": "CCEVS-VR-VID10607", "url": "https://www.niap-ccevs.org/products/10607", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10607/", "certification_date": "2014-12-30", "expiration_date": "2016-12-30", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Cisco Catalyst 2960C, 2960S, 2960SF, 2960X, 2960XR running IOS 15.2(2a)E1 and 3560C, 3560X, 3750X running IOS 15.2(2)E1", "id": "CCEVS-VR-VID10606", "url": "https://www.niap-ccevs.org/products/10606", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10606/", "certification_date": "2014-12-23", "expiration_date": "2016-12-23", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Cisco Systems, Inc.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Brocade Communications Systems, Inc. Brocade FastIron SX, ICX, and FCX Series Switch/Router 8.0.20", "id": "CCEVS-VR-VID10604", "url": "https://www.niap-ccevs.org/products/10604", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10604/", "certification_date": "2014-12-16", "expiration_date": "2016-12-16", "category": "Network Device", "categories": [ "Network Device", " Network Switch", " Router" ], "vendor": "Brocade Communications Systems LLC A Broadcom Inc. Company", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Hewlett Packard Enterprise Wireless LAN Access Controllers and Access Points with Comware Version 5.2.109", "id": "CCEVS-VR-VID10554", "url": "https://www.niap-ccevs.org/products/10554", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10554/", "certification_date": "2014-12-15", "expiration_date": "2016-12-15", "category": "Wireless LAN", "categories": [ "Wireless LAN" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Samsung Galaxy Note Edge & Galaxy Tab Active", "id": "CCEVS-VR-VID10617", "url": "https://www.niap-ccevs.org/products/10617", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10617/", "certification_date": "2014-12-12", "expiration_date": "2016-12-12", "category": "Mobility", "categories": [ "Mobility" ], "vendor": "Samsung Electronics Co., Ltd.", "evaluation_facility": "Gossamer Security Solutions", "scheme": "US" }, { "product": "Hewlett Packard Enterprise 5900 Series, 5920 Series, 10500 Series and 12500 Series Switches with Comware Version 7.1.045", "id": "CCEVS-VR-VID10567", "url": "https://www.niap-ccevs.org/products/10567", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10567/", "certification_date": "2014-12-05", "expiration_date": "2016-12-05", "category": "Network Device", "categories": [ "Network Device", " Network Switch" ], "vendor": "Hewlett Packard Enterprise Company", "evaluation_facility": "Leidos Common Criteria Testing Laboratory", "scheme": "US" }, { "product": "Fortress Mesh Point ES520, ES820", "id": "CCEVS-VR-VID10572", "url": "https://www.niap-ccevs.org/products/10572", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10572/", "certification_date": "2014-12-04", "expiration_date": "2016-12-04", "category": "Wireless LAN", "categories": [ "Wireless LAN" ], "vendor": "General Dynamics C4 Systems", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Fortress Mesh Point ES210", "id": "CCEVS-VR-VID10571", "url": "https://www.niap-ccevs.org/products/10571", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10571/", "certification_date": "2014-12-04", "expiration_date": "2016-12-04", "category": "Wireless LAN", "categories": [ "Wireless LAN" ], "vendor": "General Dynamics C4 Systems", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Fortress Mesh Point ES2440", "id": "CCEVS-VR-VID10573", "url": "https://www.niap-ccevs.org/products/10573", "api_url": "https://www.niap-ccevs.org/api/project/product/pcl_products/10573/", "certification_date": "2014-12-04", "expiration_date": "2016-12-04", "category": "Wireless LAN", "categories": [ "Wireless LAN" ], "vendor": "General Dynamics C4 Systems", "evaluation_facility": "UL Verification Services", "scheme": "US" }, { "product": "Cisco Integrated Services Router (ISR) 800 Series", "id": "CCEVS-VR-VID10578", "url": "https://www.niap-ccevs.org/products/10578",