This page was not yet optimized for use on mobile devices.

PP-Module for Virtual Private Network (VPN) Gateways, Version 1.1

Web information

Status	archived
Valid from	01.07.2020
Valid until	30.09.2022
Scheme	🇺🇸 US
Category	Network and Network-Related Devices and Systems
Security level	EAL1

Certification report

Certification report PDF TXT

Extracted keywords

Symmetric Algorithms

AES

Protocols

IKE, IPsec, VPN

Vendor

Cisco

Claims

O.ADDRESS_FILTERING, O.AUTHENTICATION, O.CRYPTOGRAPHIC_FUNCTIONS, O.FAIL_SECURE, O.PORT_FILTERING, O.SYSTEM_MONITORING, O.TOE_ADMINISTRATION, T.PASSWORD_CRACKING, T.SECURITY_FUNCTIONALITY_COM, T.SECURITY_FUNCTIONALITY_FAIL, T.UNAUTHORIZED_ADMINISTRATO, T.UNDETECTED_ACTIVITY, T.UNTRUSTED_COMMUNICATION_, T.UPDATE_COMPROMISE, T.WEAK_AUTHENTICATION_ENDPO, T.WEAK_CRYPTOGRAPHY, T.DATA_INTEGRITY, T.NETWORK_ACCESS, T.NETWORK_DISCLOSURE, T.NETWORK_MISUSE, T.REPLAY_ATTACK, A.ADMIN_CREDENTIALS_SECURE, A.COMPONENTS_RUNNING, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.PHYSICAL_PROTECTION, A.REGULAR_UPDATES, A.RESIDUAL_INFORMATION, A.TRUSTED_ADMINISTRATOR, A.VS_TRUSTED_ADMINISTRATOR, A.VS_REGULAR_UPDATES, A.VS_ISOLATION, A.VS_CORRECT_CONFIGURATION, A.CONNECTIONS, OE.ADMIN_CREDENTIALS_SECURE, OE.COMPONENTS_RUNNING, OE.NO_GENERAL_PURPOSE, OE.NO_THRU_TRAFFIC_PROTECTIO, OE.PHYSICAL, OE.RESIDUAL_INFORMATION, OE.TRUSTED_ADMIN, OE.UPDATES, OE.VM_CONFIGURATION, OE.CONNECTIONS, OE.NO_THRU_TRAFFIC_PROTECTION

Security Assurance Requirements (SAR)

ACE_REQ, ACE_INT.1, ACE_CCL.1, ACE_SPD.1, ACE_OBJ.2, ACE_ECD.1, ACE_REQ.2, ACE_MCO.1, ACE_CCO.1

Security Functional Requirements (SFR)

FAU_GEN, FCS_COP, FCS_CKM, FIA_PSK_EXT, FMT_MTD, FMT_SMF, FPT_TST_EXT, FPT_TUD_EXT, FPT_FLS, FTA_SSL, FTA_TSE, FTA_VCM_EXT, FTP_ITC

Evaluation facilities

Gossamer Security

Standards

X.509

File metadata

Creation date	D:20210721131015-04'00'
Modification date	D:20210721131015-04'00'
Pages	21

Protection Profile

Protection profile PDF TXT

Extracted keywords

Symmetric Algorithms

AES, AES-, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512

Asymmetric Algorithms

ECDSA, DH

Hash functions

SHA-256, SHA-512

Schemes

Key Exchange

Protocols

SSH, TLS, DTLS, IKE, IPsec, VPN

Elliptic Curves

P-256, P-384

Block cipher modes

CBC, CTR, GCM

Claims

O.ADDRESS_FILTERING, O.AUTHENTICATION, O.CRYPTOGRAPHIC_FUNCTIONS, O.FAIL_SECURE, O.PORT_FILTERING, O.SYSTEM_MONITORING, O.TOE_ADMINISTRATION, O.CRYPTOGRAPHIC_FUNCTIO, O.ADDRESS_FILTERIN, O.CRYPTOGRAPHIC_F, O.SYSTEM_MONITOR, O.TOE_ADMINISTRAT, T.DATA_INTEGRITY, T.NETWORK_ACCESS, T.NETWORK_DISCLOSURE, T.NETWORK_MISUSE, T.REPLAY_ATTACK, T.SECURITY_FUNCTIONALITY_, T.UNDETECTED_ACTIVITY, T.UNAUTHORIZED_ADMINISTR, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_CHANNELS, T.NETWORK_DISCOSURE, T.WEAK_AUTHENTICATION_ENDPOINTS, A.CONNECTIONS, A.NO_THRU_TRAFFIC_PROTECTION, OE.CONNECTIONS, OE.NO_THRU_TRAFFIC_PROTECTION

Security Functional Requirements (SFR)

FAU_GEN.1, FAU_GEN.1.1, FAU_GEN, FCS_COP, FCS_CKM, FCS_COP.1, FCS_CKM.1, FCS_RBG_EXT.1, FIA_PSK_EXT.1, FIA_AFL.1, FIA_UIA_EXT.1, FIA_PSK_EXT.1.1, FIA_PSK_EXT.1.2, FIA_PSK_EXT.1.3, FIA_PSK_EXT.1.4, FIA_PSK_EXT, FMT_MTD, FMT_SMF.1, FMT_SMF, FMT_MTD.1, FMT_SMF.1.1, FPT_TST_EXT.1, FPT_TUD_EXT.1, FPT_FLS, FPT_TST_EXT.3, FPT_TST_EXT.1.1, FPT_TUD_EXT.1.3, FPT_TUD_EXT.2, FPT_FLS.1, FPT_TST_EXT.3.1, FPT_TST_EXT.3.2, FPT_TST_EXT, FTA_VCM_EXT.1, FTA_SSL, FTA_TSE.1, FTA_SSL.3, FTA_TSE.1.1, FTA_VCM_EXT.1.1, FTA_VCM_EXT, FTP_ITC, FTP_ITC.1, FTP_TRP.1

Standards

FIPS PUB 186-4, RFC4301, RFC 4303, RFC 3602, RFC 4106, RFC 5114, RFC 3526, RFC 5280, RFC 7919, RFC 791, RFC 2460, RFC 793, RFC 768, RFC792, X.509, CCMB-2070-04-001, CCMB-2017-04-002, CCMB-2017-04-003

File metadata

Creation date	D:20200701101729-04'00'
Modification date	D:20200701101729-04'00'
Pages	42

References

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

Junos OS 22.2R1 for MX Series with MX-SPC3 active
Junos OS 22.2R1 for SRX Series active
Junos OS 22.2R1 for SRX380 active

Updates Feed

15.12.2025

The protection profile data changed.
Protection Profile changed

The state of the protection profile object was updated.

The pp property was updated, with the {'json_hash': None} values inserted.

The report property was updated, with the {'json_hash': None} values inserted.
22.04.2025

The protection profile data changed.
Protection Profile changed

The PDF extraction data was updated.

The report_metadata property was set to {'pdf_file_size_bytes': 504083, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 21, '/CreationDate': "D:20210721131015-04'00'", '/ModDate': "D:20210721131015-04'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.

The pp_metadata property was set to {'pdf_file_size_bytes': 1341523, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 42, '/CreationDate': "D:20200701101729-04'00'", '/ModDate': "D:20200701101729-04'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.

The report_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {}, 'cc_sar': {'ACE': {'ACE_REQ': 1, 'ACE_INT.1': 1, 'ACE_CCL.1': 1, 'ACE_SPD.1': 1, 'ACE_OBJ.2': 1, 'ACE_ECD.1': 1, 'ACE_REQ.2': 1, 'ACE_MCO.1': 1, 'ACE_CCO.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN': 1}, 'FCS': {'FCS_COP': 1, 'FCS_CKM': 1}, 'FIA': {'FIA_PSK_EXT': 1}, 'FMT': {'FMT_MTD': 1, 'FMT_SMF': 2}, 'FPT': {'FPT_TST_EXT': 2, 'FPT_TUD_EXT': 1, 'FPT_FLS': 1}, 'FTA': {'FTA_SSL': 1, 'FTA_TSE': 1, 'FTA_VCM_EXT': 1}, 'FTP': {'FTP_ITC': 1}}, 'cc_claims': {'O': {'O.ADDRESS_FILTERING': 1, 'O.AUTHENTICATION': 1, 'O.CRYPTOGRAPHIC_FUNCTIONS': 1, 'O.FAIL_SECURE': 1, 'O.PORT_FILTERING': 1, 'O.SYSTEM_MONITORING': 1, 'O.TOE_ADMINISTRATION': 1}, 'T': {'T.PASSWORD_CRACKING': 1, 'T.SECURITY_FUNCTIONALITY_COM': 1, 'T.SECURITY_FUNCTIONALITY_FAIL': 1, 'T.UNAUTHORIZED_ADMINISTRATO': 1, 'T.UNDETECTED_ACTIVITY': 1, 'T.UNTRUSTED_COMMUNICATION_': 1, 'T.UPDATE_COMPROMISE': 1, 'T.WEAK_AUTHENTICATION_ENDPO': 1, 'T.WEAK_CRYPTOGRAPHY': 1, 'T.DATA_INTEGRITY': 1, 'T.NETWORK_ACCESS': 1, 'T.NETWORK_DISCLOSURE': 1, 'T.NETWORK_MISUSE': 1, 'T.REPLAY_ATTACK': 1}, 'A': {'A.ADMIN_CREDENTIALS_SECURE': 1, 'A.COMPONENTS_RUNNING': 1, 'A.LIMITED_FUNCTIONALITY': 1, 'A.NO_THRU_TRAFFIC_PROTECTION': 2, 'A.PHYSICAL_PROTECTION': 1, 'A.REGULAR_UPDATES': 1, 'A.RESIDUAL_INFORMATION': 1, 'A.TRUSTED_ADMINISTRATOR': 1, 'A.VS_TRUSTED_ADMINISTRATOR': 1, 'A.VS_REGULAR_UPDATES': 1, 'A.VS_ISOLATION': 1, 'A.VS_CORRECT_CONFIGURATION': 1, 'A.CONNECTIONS': 1}, 'OE': {'OE.ADMIN_CREDENTIALS_SECURE': 1, 'OE.COMPONENTS_RUNNING': 1, 'OE.NO_GENERAL_PURPOSE': 1, 'OE.NO_THRU_TRAFFIC_PROTECTIO': 1, 'OE.PHYSICAL': 1, 'OE.RESIDUAL_INFORMATION': 1, 'OE.TRUSTED_ADMIN': 1, 'OE.UPDATES': 1, 'OE.VM_CONFIGURATION': 1, 'OE.CONNECTIONS': 1, 'OE.NO_THRU_TRAFFIC_PROTECTION': 1}}, 'vendor': {'Cisco': {'Cisco': 22}}, 'eval_facility': {'Gossamer': {'Gossamer Security': 5}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 1}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'IKE': {'IKE': 1}, 'IPsec': {'IPsec': 2}, 'VPN': {'VPN': 51}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'X509': {'X.509': 3}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.

The pp_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {}, 'cc_sar': {}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 4, 'FAU_GEN.1.1': 1, 'FAU_GEN': 2}, 'FCS': {'FCS_COP': 5, 'FCS_CKM': 4, 'FCS_COP.1': 2, 'FCS_CKM.1': 2, 'FCS_RBG_EXT.1': 3}, 'FIA': {'FIA_PSK_EXT.1': 9, 'FIA_AFL.1': 1, 'FIA_UIA_EXT.1': 1, 'FIA_PSK_EXT.1.1': 2, 'FIA_PSK_EXT.1.2': 2, 'FIA_PSK_EXT.1.3': 2, 'FIA_PSK_EXT.1.4': 2, 'FIA_PSK_EXT': 3}, 'FMT': {'FMT_MTD': 4, 'FMT_SMF.1': 7, 'FMT_SMF': 5, 'FMT_MTD.1': 1, 'FMT_SMF.1.1': 1}, 'FPT': {'FPT_TST_EXT.1': 5, 'FPT_TUD_EXT.1': 4, 'FPT_FLS': 4, 'FPT_TST_EXT.3': 9, 'FPT_TST_EXT.1.1': 1, 'FPT_TUD_EXT.1.3': 1, 'FPT_TUD_EXT.2': 1, 'FPT_FLS.1': 1, 'FPT_TST_EXT.3.1': 2, 'FPT_TST_EXT.3.2': 2, 'FPT_TST_EXT': 2}, 'FTA': {'FTA_VCM_EXT.1': 8, 'FTA_SSL': 4, 'FTA_TSE.1': 4, 'FTA_SSL.3': 1, 'FTA_TSE.1.1': 1, 'FTA_VCM_EXT.1.1': 2, 'FTA_VCM_EXT': 3}, 'FTP': {'FTP_ITC': 4, 'FTP_ITC.1': 5, 'FTP_TRP.1': 1}}, 'cc_claims': {'O': {'O.ADDRESS_FILTERING': 2, 'O.AUTHENTICATION': 3, 'O.CRYPTOGRAPHIC_FUNCTIONS': 1, 'O.FAIL_SECURE': 3, 'O.PORT_FILTERING': 3, 'O.SYSTEM_MONITORING': 2, 'O.TOE_ADMINISTRATION': 2, 'O.CRYPTOGRAPHIC_FUNCTIO': 1, 'O.ADDRESS_FILTERIN': 1, 'O.CRYPTOGRAPHIC_F': 1, 'O.SYSTEM_MONITOR': 1, 'O.TOE_ADMINISTRAT': 1}, 'T': {'T.DATA_INTEGRITY': 6, 'T.NETWORK_ACCESS': 6, 'T.NETWORK_DISCLOSURE': 4, 'T.NETWORK_MISUSE': 6, 'T.REPLAY_ATTACK': 4, 'T.SECURITY_FUNCTIONALITY_': 1, 'T.UNDETECTED_ACTIVITY': 1, 'T.UNAUTHORIZED_ADMINISTR': 1, 'T.WEAK_CRYPTOGRAPHY': 1, 'T.UNTRUSTED_COMMUNICATION_CHANNELS': 4, 'T.NETWORK_DISCOSURE': 1, 'T.WEAK_AUTHENTICATION_ENDPOINTS': 1}, 'A': {'A.CONNECTIONS': 1, 'A.NO_THRU_TRAFFIC_PROTECTION': 1}, 'OE': {'OE.CONNECTIONS': 2, 'OE.NO_THRU_TRAFFIC_PROTECTION': 1}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 4, 'AES-': 1}}, 'constructions': {'MAC': {'HMAC': 5, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 2}}, 'FF': {'DH': {'DH': 3}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-256': 2, 'SHA-512': 2}}}, 'crypto_scheme': {'KEX': {'Key Exchange': 1}}, 'crypto_protocol': {'SSH': {'SSH': 2}, 'TLS': {'TLS': {'TLS': 1}, 'DTLS': {'DTLS': 1}}, 'IKE': {'IKE': 8}, 'IPsec': {'IPsec': 26}, 'VPN': {'VPN': 89}}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 3}, 'CTR': {'CTR': 2}, 'GCM': {'GCM': 3}}, 'ecc_curve': {'NIST': {'P-256': 2, 'P-384': 2}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 186-4': 2}, 'RFC': {'RFC4301': 1, 'RFC 4303': 1, 'RFC 3602': 3, 'RFC 4106': 3, 'RFC 5114': 2, 'RFC 3526': 2, 'RFC 5280': 1, 'RFC 7919': 1, 'RFC 791': 2, 'RFC 2460': 2, 'RFC 793': 2, 'RFC 768': 2, 'RFC792': 1}, 'X509': {'X.509': 15}, 'CC': {'CCMB-2070-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.

The state of the protection profile object was updated.

The pp property was updated, with the {'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '490ae45b6f7ee416ff6b868f99dafb72db5239911214949be36660ccd7cb304f', 'txt_hash': '8b7dccc4729b83675271555811d59ad1021f68a653d6310bf9a0d5709c2608b6'} data.

The report property was updated, with the {'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'fe9ea3025d33279a7f0f3120dc180a75fc2f20a536796d6c8e52fe51b8a3a85d', 'txt_hash': '506d46858906aa3de89ff9bd9ff86d73b38283104092d9c3d7eec6b99ac3598f'} data.
14.04.2025

The protection profile data changed.
Protection Profile changed

The PDF extraction data was updated.

The report_metadata property was set to None.

The pp_metadata property was set to None.

The report_keywords property was set to None.

The pp_keywords property was set to None.

The state of the protection profile object was updated.

The pp property was updated, with the {'convert_garbage': True, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': '6adef86c67e4bbbcbc8872bedf10c93c33839884a5cb1ca1d36f080444041ca7', 'txt_hash': None} data.

The report property was updated, with the {'convert_garbage': True, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': '6adef86c67e4bbbcbc8872bedf10c93c33839884a5cb1ca1d36f080444041ca7', 'txt_hash': None} data.
04.02.2025

The protection profile was first processed.

Raw data

{
  "_id": "27e82aaf21b02155",
  "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
  "dgst": "27e82aaf21b02155",
  "heuristics": {
    "_type": "sec_certs.sample.protection_profile.ProtectionProfile.Heuristics"
  },
  "pdf_data": {
    "_type": "sec_certs.sample.protection_profile.ProtectionProfile.PdfData",
    "pp_filename": "mod_vpngw_v1.1.pdf",
    "pp_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDSA": {
            "ECDSA": 2
          }
        },
        "FF": {
          "DH": {
            "DH": 3
          }
        }
      },
      "cc_cert_id": {},
      "cc_claims": {
        "A": {
          "A.CONNECTIONS": 1,
          "A.NO_THRU_TRAFFIC_PROTECTION": 1
        },
        "O": {
          "O.ADDRESS_FILTERIN": 1,
          "O.ADDRESS_FILTERING": 2,
          "O.AUTHENTICATION": 3,
          "O.CRYPTOGRAPHIC_F": 1,
          "O.CRYPTOGRAPHIC_FUNCTIO": 1,
          "O.CRYPTOGRAPHIC_FUNCTIONS": 1,
          "O.FAIL_SECURE": 3,
          "O.PORT_FILTERING": 3,
          "O.SYSTEM_MONITOR": 1,
          "O.SYSTEM_MONITORING": 2,
          "O.TOE_ADMINISTRAT": 1,
          "O.TOE_ADMINISTRATION": 2
        },
        "OE": {
          "OE.CONNECTIONS": 2,
          "OE.NO_THRU_TRAFFIC_PROTECTION": 1
        },
        "T": {
          "T.DATA_INTEGRITY": 6,
          "T.NETWORK_ACCESS": 6,
          "T.NETWORK_DISCLOSURE": 4,
          "T.NETWORK_DISCOSURE": 1,
          "T.NETWORK_MISUSE": 6,
          "T.REPLAY_ATTACK": 4,
          "T.SECURITY_FUNCTIONALITY_": 1,
          "T.UNAUTHORIZED_ADMINISTR": 1,
          "T.UNDETECTED_ACTIVITY": 1,
          "T.UNTRUSTED_COMMUNICATION_CHANNELS": 4,
          "T.WEAK_AUTHENTICATION_ENDPOINTS": 1,
          "T.WEAK_CRYPTOGRAPHY": 1
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {},
      "cc_security_level": {},
      "cc_sfr": {
        "FAU": {
          "FAU_GEN": 2,
          "FAU_GEN.1": 4,
          "FAU_GEN.1.1": 1
        },
        "FCS": {
          "FCS_CKM": 4,
          "FCS_CKM.1": 2,
          "FCS_COP": 5,
          "FCS_COP.1": 2,
          "FCS_RBG_EXT.1": 3
        },
        "FIA": {
          "FIA_AFL.1": 1,
          "FIA_PSK_EXT": 3,
          "FIA_PSK_EXT.1": 9,
          "FIA_PSK_EXT.1.1": 2,
          "FIA_PSK_EXT.1.2": 2,
          "FIA_PSK_EXT.1.3": 2,
          "FIA_PSK_EXT.1.4": 2,
          "FIA_UIA_EXT.1": 1
        },
        "FMT": {
          "FMT_MTD": 4,
          "FMT_MTD.1": 1,
          "FMT_SMF": 5,
          "FMT_SMF.1": 7,
          "FMT_SMF.1.1": 1
        },
        "FPT": {
          "FPT_FLS": 4,
          "FPT_FLS.1": 1,
          "FPT_TST_EXT": 2,
          "FPT_TST_EXT.1": 5,
          "FPT_TST_EXT.1.1": 1,
          "FPT_TST_EXT.3": 9,
          "FPT_TST_EXT.3.1": 2,
          "FPT_TST_EXT.3.2": 2,
          "FPT_TUD_EXT.1": 4,
          "FPT_TUD_EXT.1.3": 1,
          "FPT_TUD_EXT.2": 1
        },
        "FTA": {
          "FTA_SSL": 4,
          "FTA_SSL.3": 1,
          "FTA_TSE.1": 4,
          "FTA_TSE.1.1": 1,
          "FTA_VCM_EXT": 3,
          "FTA_VCM_EXT.1": 8,
          "FTA_VCM_EXT.1.1": 2
        },
        "FTP": {
          "FTP_ITC": 4,
          "FTP_ITC.1": 5,
          "FTP_TRP.1": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CTR": {
          "CTR": 2
        },
        "GCM": {
          "GCM": 3
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 8
        },
        "IPsec": {
          "IPsec": 26
        },
        "SSH": {
          "SSH": 2
        },
        "TLS": {
          "DTLS": {
            "DTLS": 1
          },
          "TLS": {
            "TLS": 1
          }
        },
        "VPN": {
          "VPN": 89
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key Exchange": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 2,
          "P-384": 2
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 2,
            "SHA-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "CC": {
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1,
          "CCMB-2070-04-001": 1
        },
        "FIPS": {
          "FIPS PUB 186-4": 2
        },
        "RFC": {
          "RFC 2460": 2,
          "RFC 3526": 2,
          "RFC 3602": 3,
          "RFC 4106": 3,
          "RFC 4303": 1,
          "RFC 5114": 2,
          "RFC 5280": 1,
          "RFC 768": 2,
          "RFC 791": 2,
          "RFC 7919": 1,
          "RFC 793": 2,
          "RFC4301": 1,
          "RFC792": 1
        },
        "X509": {
          "X.509": 15
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 4,
            "AES-": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 5,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "pp_metadata": {
      "/CreationDate": "D:20200701101729-04\u002700\u0027",
      "/ModDate": "D:20200701101729-04\u002700\u0027",
      "pdf_file_size_bytes": 1341523,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 42
    },
    "report_filename": "CFG_NDcPP-VPNGW_V1.1_VR.pdf",
    "report_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {},
      "cc_claims": {
        "A": {
          "A.ADMIN_CREDENTIALS_SECURE": 1,
          "A.COMPONENTS_RUNNING": 1,
          "A.CONNECTIONS": 1,
          "A.LIMITED_FUNCTIONALITY": 1,
          "A.NO_THRU_TRAFFIC_PROTECTION": 2,
          "A.PHYSICAL_PROTECTION": 1,
          "A.REGULAR_UPDATES": 1,
          "A.RESIDUAL_INFORMATION": 1,
          "A.TRUSTED_ADMINISTRATOR": 1,
          "A.VS_CORRECT_CONFIGURATION": 1,
          "A.VS_ISOLATION": 1,
          "A.VS_REGULAR_UPDATES": 1,
          "A.VS_TRUSTED_ADMINISTRATOR": 1
        },
        "O": {
          "O.ADDRESS_FILTERING": 1,
          "O.AUTHENTICATION": 1,
          "O.CRYPTOGRAPHIC_FUNCTIONS": 1,
          "O.FAIL_SECURE": 1,
          "O.PORT_FILTERING": 1,
          "O.SYSTEM_MONITORING": 1,
          "O.TOE_ADMINISTRATION": 1
        },
        "OE": {
          "OE.ADMIN_CREDENTIALS_SECURE": 1,
          "OE.COMPONENTS_RUNNING": 1,
          "OE.CONNECTIONS": 1,
          "OE.NO_GENERAL_PURPOSE": 1,
          "OE.NO_THRU_TRAFFIC_PROTECTIO": 1,
          "OE.NO_THRU_TRAFFIC_PROTECTION": 1,
          "OE.PHYSICAL": 1,
          "OE.RESIDUAL_INFORMATION": 1,
          "OE.TRUSTED_ADMIN": 1,
          "OE.UPDATES": 1,
          "OE.VM_CONFIGURATION": 1
        },
        "T": {
          "T.DATA_INTEGRITY": 1,
          "T.NETWORK_ACCESS": 1,
          "T.NETWORK_DISCLOSURE": 1,
          "T.NETWORK_MISUSE": 1,
          "T.PASSWORD_CRACKING": 1,
          "T.REPLAY_ATTACK": 1,
          "T.SECURITY_FUNCTIONALITY_COM": 1,
          "T.SECURITY_FUNCTIONALITY_FAIL": 1,
          "T.UNAUTHORIZED_ADMINISTRATO": 1,
          "T.UNDETECTED_ACTIVITY": 1,
          "T.UNTRUSTED_COMMUNICATION_": 1,
          "T.UPDATE_COMPROMISE": 1,
          "T.WEAK_AUTHENTICATION_ENDPO": 1,
          "T.WEAK_CRYPTOGRAPHY": 1
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ACE": {
          "ACE_CCL.1": 1,
          "ACE_CCO.1": 1,
          "ACE_ECD.1": 1,
          "ACE_INT.1": 1,
          "ACE_MCO.1": 1,
          "ACE_OBJ.2": 1,
          "ACE_REQ": 1,
          "ACE_REQ.2": 1,
          "ACE_SPD.1": 1
        }
      },
      "cc_security_level": {},
      "cc_sfr": {
        "FAU": {
          "FAU_GEN": 1
        },
        "FCS": {
          "FCS_CKM": 1,
          "FCS_COP": 1
        },
        "FIA": {
          "FIA_PSK_EXT": 1
        },
        "FMT": {
          "FMT_MTD": 1,
          "FMT_SMF": 2
        },
        "FPT": {
          "FPT_FLS": 1,
          "FPT_TST_EXT": 2,
          "FPT_TUD_EXT": 1
        },
        "FTA": {
          "FTA_SSL": 1,
          "FTA_TSE": 1,
          "FTA_VCM_EXT": 1
        },
        "FTP": {
          "FTP_ITC": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 1
        },
        "IPsec": {
          "IPsec": 2
        },
        "VPN": {
          "VPN": 51
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "Gossamer": {
          "Gossamer Security": 5
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "X509": {
          "X.509": 3
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Cisco": {
          "Cisco": 22
        }
      },
      "vulnerability": {}
    },
    "report_metadata": {
      "/CreationDate": "D:20210721131015-04\u002700\u0027",
      "/ModDate": "D:20210721131015-04\u002700\u0027",
      "pdf_file_size_bytes": 504083,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 21
    }
  },
  "state": {
    "_type": "sec_certs.sample.protection_profile.ProtectionProfile.InternalState",
    "pp": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "490ae45b6f7ee416ff6b868f99dafb72db5239911214949be36660ccd7cb304f",
      "txt_hash": "8b7dccc4729b83675271555811d59ad1021f68a653d6310bf9a0d5709c2608b6"
    },
    "report": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "fe9ea3025d33279a7f0f3120dc180a75fc2f20a536796d6c8e52fe51b8a3a85d",
      "txt_hash": "506d46858906aa3de89ff9bd9ff86d73b38283104092d9c3d7eec6b99ac3598f"
    }
  },
  "web_data": {
    "_type": "sec_certs.sample.protection_profile.ProtectionProfile.WebData",
    "category": "Network and Network-Related Devices and Systems",
    "is_collaborative": false,
    "maintenances": [],
    "name": "PP-Module for Virtual Private Network (VPN) Gateways, Version 1.1",
    "not_valid_after": "2022-09-30",
    "not_valid_before": "2020-07-01",
    "pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/mod_vpngw_v1.1.pdf",
    "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CFG_NDcPP-VPNGW_V1.1_VR.pdf",
    "scheme": "US",
    "security_level": {
      "_type": "Set",
      "elements": [
        "EAL1"
      ]
    },
    "status": "archived",
    "version": "1.1"
  }
}

Sections

PP-Module for Virtual Private Network (VPN) Gateways, Version 1.1

Web information

Certification report

Extracted keywords

Symmetric Algorithms

Protocols

Vendor

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Evaluation facilities

Standards

File metadata

Protection Profile

Extracted keywords

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Elliptic Curves

Block cipher modes

Claims

Security Functional Requirements (SFR)

Standards

File metadata

References

Automated inference - use with caution

Updates Feed

Protection Profile changed

Protection Profile changed

Protection Profile changed

New Protection Profile

Raw data

Sections

PP-Module for Virtual Private Network (VPN) Gateways, Version 1.1

Web information

Certification report

Extracted keywords

Cryptography

Symmetric Algorithms

Protocols

Device

Vendor

Common Criteria

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Evaluation facilities

Other

Standards

File metadata

Protection Profile

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Elliptic Curves

Block cipher modes

Common Criteria

Claims

Security Functional Requirements (SFR)

Other

Standards

File metadata

References

Automated inference - use with caution

Updates Feed

Raw data

Toggle raw data