This page was not yet optimized for use on mobile devices.
Protection Profile
Web information ?
Status: archivedCertification date: 2018-03-14
Archived date: 2022-01-11
Scheme: ❌
Category: Network and Network-Related Devices and Systems
Security level: None
Certification report ?
Extracted keywords
Symmetric Algorithms
AESProtocols
SSH, TLS, DTLS, IPsecVendor
CiscoClaims
T.UNAUTHORIZED_ADMINISTRATOR, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_, T.WEAK_AUTHENTICATION_, T.UPDATE_COMPROMISE, T.UNDETECTED_ACTI, T.SECURITY_FUNCTIONALITY_, T.PASSWORD_CRACKING, A.PHYSICAL_PROTECTION, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.TRUSTED_ADMINISTRATOR, A.REGULAR_UPDATES, A.ADMIN_CREDENTIALS_SECURE, A.COMPONENTS_RUNNING, A.RESIDUAL_INFORMATION, OE.PHYSICAL, OE.NO_GENERAL_PURPOSE, OE.NO_THRU_TRAFFIC_PROTECTION, OE.TRUSTED_ADMIN, OE.UPDATES, OE.ADMIN_CREDENTIALS_SECURE, OE.COMPONENTS_RUNNING, OE.RESIDUAL_INFORMATIONSecurity Assurance Requirements (SAR)
ADV_FSP.1, AGD_OPE, AGD_PRE, ALC_CMC, ALC_CMS, ATE_IND, AVA_VAN, APE_REQ, APE_CCL.1, APE_ECD.1, APE_INT.1, APE_OBJ.1, APE_REQ.1, APE_SPD.1, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_REQ, ASE_SPD, ASE_TSSSecurity Functional Requirements (SFR)
FAU_GEN, FAU_STG_EXT, FAU_STG, FCO_CPC_EXT, FCS_CKM, FCS_COP, FCS_RBG_EXT, FCS_SSHC_EXT, FCS_SSHS_EXT, FCS_TLSC_EXT, FCS_TLSS_EXT, FIA_AFL, FIA_PMG_EXT, FIA_UIA_EXT, FIA_UAU_EXT, FIA_UAU, FMT_MOF, FMT_MTD, FMT_SMF, FMT_SMR, FPT_SKP_EXT, FPT_APW_EXT, FPT_TST_EXT, FPT_TUD_EXT, FPT_STM_EXT, FPT_ITT, FTA_SSL_EXT, FTA_SSL, FTA_TAB, FTP_ITC, FTP_TRPEvaluation facilities
Acumen Security, Gossamer SecurityStandards
X.509File metadata
| Creation date | D:20180420133139-04'00' |
|---|---|
| Modification date | D:20180420133139-04'00' |
| Pages | 18 |
Profile ?
Extracted keywords
Symmetric Algorithms
AES, AES-, HMAC, HMAC-SHA-384, HMAC-SHA-512, HMAC-SHA-256Asymmetric Algorithms
ECDHE, ECDH, ECDSA, ECC, Diffie-Hellman, DHE, DH, DSAHash functions
SHA-1, SHA-256, SHA-384, SHA-512, SHA256, SHA-2Schemes
MAC, AEADProtocols
SSH, SSL, SSL 2.0, SSL 3.0, TLS, TLS 1.2, TLS 1.1, TLS v1.2, TLS 1.0, TLS v1.0, DTLS, DTLS 1.2, DTLS 1.0, DTLS v1.2, DTLS v1.0, IKEv1, IKEv2, IKE, IPsec, VPNRandomness
DRBG, RBGElliptic Curves
P-256, P-384, P-521, curve P-384, secp256r1, secp384r1, secp521r1Block cipher modes
CBC, CTR, GCMTLS cipher suites
TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_192_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_192_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_192_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_192_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_192_CBC_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_192_GCM_SHA256, TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_192_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_192_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_192_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_192_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384Claims
T.UNAUTHORIZED_ADMINISTRATOR_ACCESS, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_CHANNELS, T.WEAK_AUTHENTICATION_ENDPOINTS, T.UPDATE_COMPROMISE, T.UNDETECTED_ACTIVITY, T.SECURITY_FUNCTIONALITY_COMPROMISE, T.PASSWORD_CRACKING, T.SECURITY_FUNCTIONALITY_FAILURE, A.PHYSICAL_PROTECTION, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.TRUSTED_ADMINISTRATOR, A.REGULAR_UPDATES, A.ADMIN_CREDENTIALS_SECURE, A.COMPONENTS_RUNNING, A.RESIDUAL_INFORMATION, OE.PHYSICAL, OE.NO_GENERAL_PURPOSE, OE.NO_THRU_TRAFFIC_PROTECTION, OE.TRUSTED_ADMIN, OE.UPDATES, OE.ADMIN_CREDENTIALS_SECURE, OE.COMPONENTS_RUNNING, OE.RESIDUAL_INFORMATIONSecurity Assurance Requirements (SAR)
ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, AGD_OPE, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, ATE_IND, AVA_VAN.1, AVA_VAN, APE_CCL.1, APE_ECD.1, APE_INT.1, APE_OBJ.1, APE_REQ.1, APE_SPD.1, ASE_TSS.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_SPD.1Security Functional Requirements (SFR)
FAU_GEN, FAU_GEN.1, FAU_GEN.2, FAU_STG_EXT, FAU_STG.1, FAU_STG_EXT.1, FAU_STG, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FAU_STG_EXT.1.1, FAU_STG_EXT.1.2, FAU_STG_EXT.1.3, FAU_STG.1.1, FAU_STG.1.2, FAU_STG_EXT.2, FAU_STG.3, FAU_STG_EXT.2.1, FCO_CPC_EXT, FCO_CPC_EXT.1, FCO_CPC_EXT.1.2, FCO_CPC_EXT.1.1, FCO_CPC_EXT.1.3, FCS_CKM, FCS_CKM.1, FCS_CKM.2, FCS_CKM.4, FCS_COP, FCS_COP.1, FCS_RBG_EXT, FCS_RBG_EXT.1, FCS_SSHC_EXT, FCS_SSHS_EXT, FCS_TLSC_EXT, FCS_TLSS_EXT, FCS_SSHC_EXT.1, FCS_SSHS_EXT.1, FCS_TLSC_EXT.1, FCS_TLSC_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2, FCS_CKM.1.1, FCS_CKM.2.1, FCS_CKM.4.1, FCS_RBG_EXT.1.1, FCS_RBG_EXT.1.2, FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8, FCS_TLSC_EXT.1.2, FCS_SSHC_EXT.1.1, FCS_SSHC_EXT.1.2, FCS_SSHC_EXT.1.3, FCS_SSHC_EXT.1.4, FCS_SSHC_EXT.1.5, FCS_SSHC_EXT.1.9, FCS_SSHC_EXT.1.6, FCS_SSHC_EXT.1.7, FCS_SSHS_EXT.1.1, FCS_SSHS_EXT.1.2, FCS_SSHS_EXT.1.3, FCS_SSHS_EXT.1.4, FCS_SSHS_EXT.1.5, FCS_SSHS_EXT.1.6, FCS_SSHS_EXT.1.7, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.1.3, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.2.2, FCS_TLSC_EXT.2.3, FCS_TLSC_EXT.2.4, FCS_TLSC_EXT.2.5, FCS_TLSS_EXT.1.1, FCS_TLSS_EXT.1.2, FCS_TLSS_EXT.1.3, FCS_TLSS_EXT.2.1, FCS_TLSS_EXT.2.2, FCS_TLSS_EXT.2.3, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5, FCS_TLSS_EXT.2.6, FCS_DTLS_EXT.1.1, FCS_DTLS_EXT.2.1, FCS_TLS_EXT.1.1, FIA_AFL, FIA_AFL.1, FIA_PMG_EXT, FIA_PMG_EXT.1, FIA_UIA_EXT, FIA_UIA_EXT.1, FIA_UAU, FIA_UAU_EXT, FIA_UAU_EXT.2, FIA_UAU.7, FIA_AFL.1.1, FIA_AFL.1.2, FIA_PMG_EXT.1.1, FIA_UIA_EXT.1.1, FIA_UIA_EXT.1.2, FIA_UAU_EXT.2.1, FIA_UAU.7.1, FIA_UAU.1, FIA_UID.1, FMT_MOF, FMT_MTD, FMT_SMF, FMT_SMF.1, FMT_SMR, FMT_SMR.2, FMT_MOF.1, FMT_MTD.1, FMT_SMF.1.1, FMT_SMR.2.1, FMT_SMR.2.2, FMT_SMR.2.3, FMT_SMR.1, FPT_SKP_EXT, FPT_SKP_EXT.1, FPT_APW_EXT, FPT_APW_EXT.1, FPT_TST_EXT, FPT_TST_EXT.1, FPT_TUD_EXT, FPT_TUD_EXT.1, FPT_STM_EXT, FPT_STM_EXT.1, FPT_ITT, FPT_ITT.1, FPT_TST_EXT.2, FPT_TUD_EXT.2, FPT_TUD_EXT.1.2, FPT_TUD_EXT.2.2, FPT_SKP_EXT.1.1, FPT_APW_EXT.1.1, FPT_APW_EXT.1.2, FPT_TST_EXT.1.1, FPT_TUD_EXT.1.1, FPT_TUD_EXT.1.3, FPT_STM_EXT.1.1, FPT_STM_EXT.1.2, FPT_ITT.1.1, FPT_TST_EXT.2.1, FPT_TUD_EXT.2.1, FPT_PTD, FPT_STM, FPT_STM.1, FTA_SSL_EXT, FTA_SSL_EXT.1, FTA_SSL, FTA_SSL.3, FTA_SSL.4, FTA_TAB, FTA_TAB.1, FTA_SSL_EXT.1.1, FTP_ITC, FTP_ITC.1, FTP_TRP, FTP_TRP.1, FTP_ITC.1.1, FTP_ITC.1.2, FTP_ITC.1.3, FTP_ITC.2Certification process
out of scope, 16 Figure 4: Distributed TOE use case with Management Component out of scope , 16 Figure 4: Distributed TOE use case with Management Component out of scope ................................................16 Figure 5: Management Component required to, cPP, and such functionality will be specified in other device-type specific cPPs. Also considered out of scope are virus and emailing scanning, intrusion detection/prevention capabilities, Network Address, situation is depicted in Figure 4. Figure 4: Distributed TOE use case with Management Component out of scope For the cases in both Figure 3 and Figure 4, the Management Component may be certified separately, indicated as “REQUIRED” but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHC_EXT.1.2 The TSF shall ensure that the SSH, indicated as “REQUIRED” but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHS_EXT.1.2 The TSF shall ensure that the SSH, indicated as “REQUIRED” but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHC_EXT SSH Client Protocol 1 F I A _ X 5 0 9Standards
FIPS PUB 186-4, NIST SP 800-56B, SP 800-56B, SP 800-131A, NIST SP 800-57, PKCS #1, RFC 2986, RFC 3526, RFC 5280, RFC 6960, RFC 5759, RFC 6347, RFC 4347, RFC 3268, RFC 4492, RFC 5246, RFC 5288, RFC 5289, RFC 6125, RFC 2818, RFC 4301, RFC 4303, RFC 3602, RFC 4106, RFC 4109, RFC 4304, RFC 4868, RFC 5996, RFC 5282, RFC 4945, RFC 2409, RFC 4253, RFC 5647, RFC 6668, RFC 4251, RFC 4346, ISO/IEC 9796-2, ISO/IEC 14888-3, ISO/IEC 10118, ISO/IEC 18031:2011, X.509, CCMB-2012-09-001, CCMB-2012-09-002, CCMB-2012-09-003, CCMB-2012-09-004File metadata
| Creation date | D:20180404095719-04'00' |
|---|---|
| Modification date | D:20180404095719-04'00' |
| Pages | 182 |
References ?
- Aruba, a Hewlett Packard Enterprise Company 2930F, 2930M, 3810M, and 5400R Switch Series running ArubaOS version 16.04 archived
- Aruba, a Hewlett Packard Enterprise Company 8320 and 8400 Switch Series archived
- Binary Armor SCADA Network Guard archived
- Ciena Carrier Ethernet Solutions (CES) 3900 series and 5100 series archived
- Ciena Waveserver Ai Rel 1.3 archived
- Cisco Aggregation Services Router 1004 (ASR1K) running IOS-XE 16.9 archived
- Cisco Catalyst 2960 and 3560 Wired Access Switches running IOS 15.2 archived
- Cisco Catalyst 3650 and 3850 Series Switches running IOS-XE 16.9 archived
- Cisco Catalyst 4500 Series Wired Access Switches running IOS-XE 3.10 archived
- Cisco Catalyst 9200L and 9400 Series Switches running IOS-XE 16.9 archived
- Cisco Catalyst 9400 Series Switches running IOS-XE 16.6 archived
- Cisco Expressway X12.5 archived
- Cisco Expressway X12.5 archived
- Cisco IoT Industrial Ethernet and Connected Grid Switches running IOS 15.2 archived
- Citrix ADC (formerly NetScaler) Platinum Edition Version 11.1 archived
- Exabeam Security Management Platform archived
- Extreme Networks, Inc. VDX Product Series operating with NOS version 7.3.0aa archived
- Fidelis Network v9.0.3 archived
- FireEye HX Appliances, Version 4.0 archived
- Forescout v8.1 archived
- Fortinet FortiMail 6.0 archived
- Fortinet FortiProxy v1.0 archived
- Huawei NE40E Series Software Consisting of VRP and the Underlying OS V800R010C00SPC200, V800R010SPH220T archived
- Juniper Junos OS 18.1R2 for QFX10002, QFX10008 and QFX10016 archived
- Junos OS 18.1R1 for QFX5100 and EX4600 Ethernet Switches archived
- Junos OS 18.1R3 for MX series and EX9200 series archived
- Junos OS 18.1R3-S2.1 for EX4300 Series Ethernet switches archived
- NETSCOUT Arbor Edge Defense and APS Systems (AED/APS) archived
- NIKSUN NetDetector/NetVCR 10440 archived
- NetApp E-Series & EF-Series with SANtricity OS 11.50 archived
- Ruckus Solution archived
- Siemens RUGGEDCOM ROS v4.2.2.F running on the M969F, RS900F, RS900GF, RS900GPF, RS940GF, M2100F, RSG2100F, RSG2100PF, M2200F, RSG2200F, RSG2300F, RSG2300PF, RS400F, RS416F, RS416PF, RSG2488F switches archived
- Trend Micro TippingPoint Threat Protection System version 5.1.0 archived
- Virtual Instruments VirtualWisdom Platform Appliance v5.7 archived
- Voyager TDC 10G Switch - V2.0 archived
Updates ?
-
04.02.2025 The protection profile was first processed.
New Protection Profile
A new Protection Profile with the name Protection Profile was processed.
Raw data
{
"_id": "48ac4778e4272298",
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"dgst": "48ac4778e4272298",
"heuristics": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.Heuristics"
},
"pdf_data": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.PdfData",
"pp_filename": "CPP_ND_V2.0E.pdf",
"pp_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 1
},
"ECDH": {
"ECDH": 5,
"ECDHE": 6
},
"ECDSA": {
"ECDSA": 5
}
},
"FF": {
"DH": {
"DH": 20,
"DHE": 6,
"Diffie-Hellman": 22
},
"DSA": {
"DSA": 1
}
}
},
"cc_cert_id": {},
"cc_claims": {
"A": {
"A.ADMIN_CREDENTIALS_SECURE": 2,
"A.COMPONENTS_RUNNING": 2,
"A.LIMITED_FUNCTIONALITY": 2,
"A.NO_THRU_TRAFFIC_PROTECTION": 3,
"A.PHYSICAL_PROTECTION": 2,
"A.REGULAR_UPDATES": 2,
"A.RESIDUAL_INFORMATION": 2,
"A.TRUSTED_ADMINISTRATOR": 2
},
"OE": {
"OE.ADMIN_CREDENTIALS_SECURE": 3,
"OE.COMPONENTS_RUNNING": 3,
"OE.NO_GENERAL_PURPOSE": 3,
"OE.NO_THRU_TRAFFIC_PROTECTION": 3,
"OE.PHYSICAL": 3,
"OE.RESIDUAL_INFORMATION": 3,
"OE.TRUSTED_ADMIN": 3,
"OE.UPDATES": 3
},
"T": {
"T.PASSWORD_CRACKING": 4,
"T.SECURITY_FUNCTIONALITY_COMPROMISE": 2,
"T.SECURITY_FUNCTIONALITY_FAILURE": 2,
"T.UNAUTHORIZED_ADMINISTRATOR_ACCESS": 2,
"T.UNDETECTED_ACTIVITY": 3,
"T.UNTRUSTED_COMMUNICATION_CHANNELS": 4,
"T.UPDATE_COMPROMISE": 2,
"T.WEAK_AUTHENTICATION_ENDPOINTS": 2,
"T.WEAK_CRYPTOGRAPHY": 2
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_FSP.1": 4
},
"AGD": {
"AGD_OPE": 8,
"AGD_OPE.1": 3,
"AGD_PRE.1": 3
},
"ALC": {
"ALC_CMC.1": 4,
"ALC_CMS.1": 4
},
"APE": {
"APE_CCL.1": 1,
"APE_ECD.1": 1,
"APE_INT.1": 1,
"APE_OBJ.1": 1,
"APE_REQ.1": 1,
"APE_SPD.1": 1
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.1": 1,
"ASE_REQ.1": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 7
},
"ATE": {
"ATE_IND": 1,
"ATE_IND.1": 3
},
"AVA": {
"AVA_VAN": 2,
"AVA_VAN.1": 5
}
},
"cc_security_level": {},
"cc_sfr": {
"FAU": {
"FAU_GEN": 22,
"FAU_GEN.1": 17,
"FAU_GEN.1.1": 6,
"FAU_GEN.1.2": 1,
"FAU_GEN.2": 7,
"FAU_GEN.2.1": 1,
"FAU_STG": 9,
"FAU_STG.1": 12,
"FAU_STG.1.1": 1,
"FAU_STG.1.2": 1,
"FAU_STG.3": 2,
"FAU_STG_EXT": 16,
"FAU_STG_EXT.1": 11,
"FAU_STG_EXT.1.1": 3,
"FAU_STG_EXT.1.2": 3,
"FAU_STG_EXT.1.3": 6,
"FAU_STG_EXT.2": 6,
"FAU_STG_EXT.2.1": 1
},
"FCO": {
"FCO_CPC_EXT": 5,
"FCO_CPC_EXT.1": 24,
"FCO_CPC_EXT.1.1": 5,
"FCO_CPC_EXT.1.2": 12,
"FCO_CPC_EXT.1.3": 3
},
"FCS": {
"FCS_CKM": 8,
"FCS_CKM.1": 41,
"FCS_CKM.1.1": 3,
"FCS_CKM.2": 45,
"FCS_CKM.2.1": 2,
"FCS_CKM.4": 12,
"FCS_CKM.4.1": 1,
"FCS_COP": 172,
"FCS_COP.1": 10,
"FCS_DTLS_EXT.1.1": 1,
"FCS_DTLS_EXT.2.1": 1,
"FCS_RBG_EXT": 6,
"FCS_RBG_EXT.1": 48,
"FCS_RBG_EXT.1.1": 2,
"FCS_RBG_EXT.1.2": 5,
"FCS_SSHC_EXT": 9,
"FCS_SSHC_EXT.1": 11,
"FCS_SSHC_EXT.1.1": 2,
"FCS_SSHC_EXT.1.2": 2,
"FCS_SSHC_EXT.1.3": 2,
"FCS_SSHC_EXT.1.4": 2,
"FCS_SSHC_EXT.1.5": 7,
"FCS_SSHC_EXT.1.6": 2,
"FCS_SSHC_EXT.1.7": 2,
"FCS_SSHC_EXT.1.8": 3,
"FCS_SSHC_EXT.1.9": 3,
"FCS_SSHS_EXT": 9,
"FCS_SSHS_EXT.1": 11,
"FCS_SSHS_EXT.1.1": 2,
"FCS_SSHS_EXT.1.2": 2,
"FCS_SSHS_EXT.1.3": 2,
"FCS_SSHS_EXT.1.4": 2,
"FCS_SSHS_EXT.1.5": 5,
"FCS_SSHS_EXT.1.6": 2,
"FCS_SSHS_EXT.1.7": 2,
"FCS_SSHS_EXT.1.8": 3,
"FCS_TLSC_EXT": 13,
"FCS_TLSC_EXT.1": 13,
"FCS_TLSC_EXT.1.1": 6,
"FCS_TLSC_EXT.1.2": 3,
"FCS_TLSC_EXT.1.3": 3,
"FCS_TLSC_EXT.1.4": 2,
"FCS_TLSC_EXT.2": 10,
"FCS_TLSC_EXT.2.1": 4,
"FCS_TLSC_EXT.2.2": 2,
"FCS_TLSC_EXT.2.3": 3,
"FCS_TLSC_EXT.2.4": 2,
"FCS_TLSC_EXT.2.5": 2,
"FCS_TLSS_EXT": 14,
"FCS_TLSS_EXT.1": 14,
"FCS_TLSS_EXT.1.1": 8,
"FCS_TLSS_EXT.1.2": 2,
"FCS_TLSS_EXT.1.3": 2,
"FCS_TLSS_EXT.2": 9,
"FCS_TLSS_EXT.2.1": 4,
"FCS_TLSS_EXT.2.2": 2,
"FCS_TLSS_EXT.2.3": 2,
"FCS_TLSS_EXT.2.4": 3,
"FCS_TLSS_EXT.2.5": 2,
"FCS_TLSS_EXT.2.6": 2,
"FCS_TLS_EXT.1.1": 2
},
"FIA": {
"FIA_AFL": 2,
"FIA_AFL.1": 10,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 1,
"FIA_PMG_EXT": 6,
"FIA_PMG_EXT.1": 13,
"FIA_PMG_EXT.1.1": 2,
"FIA_UAU": 2,
"FIA_UAU.1": 2,
"FIA_UAU.7": 8,
"FIA_UAU.7.1": 1,
"FIA_UAU_EXT": 6,
"FIA_UAU_EXT.2": 20,
"FIA_UAU_EXT.2.1": 2,
"FIA_UIA_EXT": 7,
"FIA_UIA_EXT.1": 25,
"FIA_UIA_EXT.1.1": 2,
"FIA_UIA_EXT.1.2": 3,
"FIA_UID.1": 2
},
"FMT": {
"FMT_MOF": 51,
"FMT_MOF.1": 4,
"FMT_MTD": 21,
"FMT_MTD.1": 7,
"FMT_SMF": 2,
"FMT_SMF.1": 26,
"FMT_SMF.1.1": 1,
"FMT_SMR": 2,
"FMT_SMR.1": 6,
"FMT_SMR.2": 17,
"FMT_SMR.2.1": 1,
"FMT_SMR.2.2": 2,
"FMT_SMR.2.3": 3
},
"FPT": {
"FPT_APW_EXT": 6,
"FPT_APW_EXT.1": 13,
"FPT_APW_EXT.1.1": 2,
"FPT_APW_EXT.1.2": 2,
"FPT_ITT": 14,
"FPT_ITT.1": 36,
"FPT_ITT.1.1": 1,
"FPT_PTD": 1,
"FPT_SKP_EXT": 6,
"FPT_SKP_EXT.1": 13,
"FPT_SKP_EXT.1.1": 2,
"FPT_STM": 2,
"FPT_STM.1": 2,
"FPT_STM_EXT": 5,
"FPT_STM_EXT.1": 12,
"FPT_STM_EXT.1.1": 2,
"FPT_STM_EXT.1.2": 4,
"FPT_TST_EXT": 8,
"FPT_TST_EXT.1": 13,
"FPT_TST_EXT.1.1": 4,
"FPT_TST_EXT.2": 16,
"FPT_TST_EXT.2.1": 2,
"FPT_TUD_EXT": 10,
"FPT_TUD_EXT.1": 15,
"FPT_TUD_EXT.1.1": 4,
"FPT_TUD_EXT.1.2": 5,
"FPT_TUD_EXT.1.3": 14,
"FPT_TUD_EXT.2": 17,
"FPT_TUD_EXT.2.1": 1,
"FPT_TUD_EXT.2.2": 3
},
"FTA": {
"FTA_SSL": 3,
"FTA_SSL.3": 9,
"FTA_SSL.4": 8,
"FTA_SSL_EXT": 5,
"FTA_SSL_EXT.1": 16,
"FTA_SSL_EXT.1.1": 2,
"FTA_TAB": 2,
"FTA_TAB.1": 14
},
"FTP": {
"FTP_ITC": 14,
"FTP_ITC.1": 61,
"FTP_ITC.1.1": 3,
"FTP_ITC.1.2": 1,
"FTP_ITC.1.3": 2,
"FTP_ITC.2": 6,
"FTP_TRP": 45,
"FTP_TRP.1": 11
}
},
"certification_process": {
"OutOfScope": {
"16 Figure 4: Distributed TOE use case with Management Component out of scope ": 1,
"16 Figure 4: Distributed TOE use case with Management Component out of scope ................................................16 Figure 5: Management Component required to": 1,
"cPP, and such functionality will be specified in other device-type specific cPPs. Also considered out of scope are virus and emailing scanning, intrusion detection/prevention capabilities, Network Address": 1,
"indicated as \u201cREQUIRED\u201d but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHC_EXT SSH Client Protocol 1 F I A _ X 5 0 9": 1,
"indicated as \u201cREQUIRED\u201d but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHC_EXT.1.2 The TSF shall ensure that the SSH": 1,
"indicated as \u201cREQUIRED\u201d but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHS_EXT.1.2 The TSF shall ensure that the SSH": 2,
"out of scope": 7,
"situation is depicted in Figure 4. Figure 4: Distributed TOE use case with Management Component out of scope For the cases in both Figure 3 and Figure 4, the Management Component may be certified separately": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"CTR": {
"CTR": 2
},
"GCM": {
"GCM": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 10,
"IKEv1": 25,
"IKEv2": 25
},
"IPsec": {
"IPsec": 49
},
"SSH": {
"SSH": 102
},
"TLS": {
"DTLS": {
"DTLS": 161,
"DTLS 1.0": 18,
"DTLS 1.2": 18,
"DTLS v1.0": 8,
"DTLS v1.2": 8
},
"SSL": {
"SSL": 12,
"SSL 2.0": 4,
"SSL 3.0": 4
},
"TLS": {
"TLS": 131,
"TLS 1.0": 4,
"TLS 1.1": 12,
"TLS 1.2": 12,
"TLS v1.0": 4,
"TLS v1.2": 4
}
},
"VPN": {
"VPN": 2
}
},
"crypto_scheme": {
"AEAD": {
"AEAD": 1
},
"MAC": {
"MAC": 35
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 4,
"P-384": 8,
"P-521": 4,
"curve P-384": 4,
"secp256r1": 16,
"secp384r1": 16,
"secp521r1": 16
}
},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 4
},
"SHA2": {
"SHA-2": 2,
"SHA-256": 4,
"SHA-384": 3,
"SHA-512": 5,
"SHA256": 32
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 3
},
"RNG": {
"RBG": 10
}
},
"side_channel_analysis": {},
"standard_id": {
"CC": {
"CCMB-2012-09-001": 1,
"CCMB-2012-09-002": 1,
"CCMB-2012-09-003": 1,
"CCMB-2012-09-004": 1
},
"FIPS": {
"FIPS PUB 186-4": 5
},
"ISO": {
"ISO/IEC 10118": 2,
"ISO/IEC 14888-3": 1,
"ISO/IEC 18031:2011": 6,
"ISO/IEC 9796-2": 1
},
"NIST": {
"NIST SP 800-56B": 1,
"NIST SP 800-57": 4,
"SP 800-131A": 1,
"SP 800-56B": 1
},
"PKCS": {
"PKCS #1": 1
},
"RFC": {
"RFC 2409": 1,
"RFC 2818": 3,
"RFC 2986": 3,
"RFC 3268": 48,
"RFC 3526": 1,
"RFC 3602": 4,
"RFC 4106": 2,
"RFC 4109": 2,
"RFC 4251": 2,
"RFC 4253": 12,
"RFC 4301": 4,
"RFC 4303": 2,
"RFC 4304": 2,
"RFC 4346": 8,
"RFC 4347": 18,
"RFC 4492": 48,
"RFC 4868": 6,
"RFC 4945": 2,
"RFC 5246": 64,
"RFC 5280": 21,
"RFC 5282": 2,
"RFC 5288": 24,
"RFC 5289": 96,
"RFC 5647": 8,
"RFC 5759": 3,
"RFC 5996": 5,
"RFC 6125": 16,
"RFC 6347": 26,
"RFC 6668": 2,
"RFC 6960": 3
},
"X509": {
"X.509": 46
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 21,
"AES-": 1
}
},
"constructions": {
"MAC": {
"HMAC": 7,
"HMAC-SHA-256": 2,
"HMAC-SHA-384": 3,
"HMAC-SHA-512": 1
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_DHE_RSA_WITH_AES_128_CBC_SHA": 8,
"TLS_DHE_RSA_WITH_AES_192_CBC_SHA": 8,
"TLS_DHE_RSA_WITH_AES_256_CBC_SHA": 8,
"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA": 8,
"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256": 8,
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 8,
"TLS_ECDHE_ECDSA_WITH_AES_192_CBC_SHA": 8,
"TLS_ECDHE_ECDSA_WITH_AES_192_CBC_SHA256": 8,
"TLS_ECDHE_ECDSA_WITH_AES_192_GCM_SHA256": 8,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA": 8,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384": 8,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 8,
"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA": 8,
"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256": 8,
"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": 8,
"TLS_ECDHE_RSA_WITH_AES_192_CBC_SHA": 8,
"TLS_ECDHE_RSA_WITH_AES_192_CBC_SHA256": 8,
"TLS_ECDHE_RSA_WITH_AES_192_GCM_SHA256": 8,
"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA": 8,
"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384": 8,
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 8,
"TLS_RSA_WITH_AES_128_CBC_SHA": 24,
"TLS_RSA_WITH_AES_128_CBC_SHA256": 8,
"TLS_RSA_WITH_AES_128_GCM_SHA256": 8,
"TLS_RSA_WITH_AES_192_CBC_SHA": 8,
"TLS_RSA_WITH_AES_192_CBC_SHA256": 8,
"TLS_RSA_WITH_AES_192_GCM_SHA256": 8,
"TLS_RSA_WITH_AES_256_CBC_SHA": 8,
"TLS_RSA_WITH_AES_256_GCM_SHA384": 8
}
},
"vendor": {},
"vulnerability": {}
},
"pp_metadata": {
"/CreationDate": "D:20180404095719-04\u002700\u0027",
"/ModDate": "D:20180404095719-04\u002700\u0027",
"pdf_file_size_bytes": 2942711,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.commoncriteriaportal.org/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 182
},
"report_filename": "cpp_nd_v2.0-vr.pdf",
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {
"A": {
"A.ADMIN_CREDENTIALS_SECURE": 1,
"A.COMPONENTS_RUNNING": 1,
"A.LIMITED_FUNCTIONALITY": 1,
"A.NO_THRU_TRAFFIC_PROTECTION": 1,
"A.PHYSICAL_PROTECTION": 1,
"A.REGULAR_UPDATES": 1,
"A.RESIDUAL_INFORMATION": 1,
"A.TRUSTED_ADMINISTRATOR": 1
},
"OE": {
"OE.ADMIN_CREDENTIALS_SECURE": 1,
"OE.COMPONENTS_RUNNING": 1,
"OE.NO_GENERAL_PURPOSE": 1,
"OE.NO_THRU_TRAFFIC_PROTECTION": 1,
"OE.PHYSICAL": 1,
"OE.RESIDUAL_INFORMATION": 1,
"OE.TRUSTED_ADMIN": 1,
"OE.UPDATES": 1
},
"T": {
"T.PASSWORD_CRACKING": 1,
"T.SECURITY_FUNCTIONALITY_": 2,
"T.UNAUTHORIZED_ADMINISTRATOR": 1,
"T.UNDETECTED_ACTI": 1,
"T.UNTRUSTED_COMMUNICATION_": 1,
"T.UPDATE_COMPROMISE": 1,
"T.WEAK_AUTHENTICATION_": 1,
"T.WEAK_CRYPTOGRAPHY": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_FSP.1": 1
},
"AGD": {
"AGD_OPE": 1,
"AGD_PRE": 1
},
"ALC": {
"ALC_CMC": 1,
"ALC_CMS": 1
},
"APE": {
"APE_CCL.1": 1,
"APE_ECD.1": 1,
"APE_INT.1": 1,
"APE_OBJ.1": 1,
"APE_REQ": 1,
"APE_REQ.1": 1,
"APE_SPD.1": 1
},
"ASE": {
"ASE_CCL": 1,
"ASE_ECD": 1,
"ASE_INT": 1,
"ASE_OBJ": 1,
"ASE_REQ": 1,
"ASE_SPD": 1,
"ASE_TSS": 1
},
"ATE": {
"ATE_IND": 1
},
"AVA": {
"AVA_VAN": 1
}
},
"cc_security_level": {},
"cc_sfr": {
"FAU": {
"FAU_GEN": 2,
"FAU_STG": 2,
"FAU_STG_EXT": 2
},
"FCO": {
"FCO_CPC_EXT": 1
},
"FCS": {
"FCS_CKM": 3,
"FCS_COP": 4,
"FCS_RBG_EXT": 1,
"FCS_SSHC_EXT": 1,
"FCS_SSHS_EXT": 1,
"FCS_TLSC_EXT": 2,
"FCS_TLSS_EXT": 2
},
"FIA": {
"FIA_AFL": 1,
"FIA_PMG_EXT": 1,
"FIA_UAU": 1,
"FIA_UAU_EXT": 1,
"FIA_UIA_EXT": 1
},
"FMT": {
"FMT_MOF": 4,
"FMT_MTD": 2,
"FMT_SMF": 1,
"FMT_SMR": 1
},
"FPT": {
"FPT_APW_EXT": 1,
"FPT_ITT": 1,
"FPT_SKP_EXT": 1,
"FPT_STM_EXT": 1,
"FPT_TST_EXT": 2,
"FPT_TUD_EXT": 2
},
"FTA": {
"FTA_SSL": 2,
"FTA_SSL_EXT": 1,
"FTA_TAB": 1
},
"FTP": {
"FTP_ITC": 1,
"FTP_TRP": 2
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IPsec": {
"IPsec": 1
},
"SSH": {
"SSH": 2
},
"TLS": {
"DTLS": {
"DTLS": 4
},
"TLS": {
"TLS": 4
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"Acumen": {
"Acumen Security": 4
},
"Gossamer": {
"Gossamer Security": 8
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"X509": {
"X.509": 4
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 1
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Cisco": {
"Cisco": 63
}
},
"vulnerability": {}
},
"report_metadata": {
"/CreationDate": "D:20180420133139-04\u002700\u0027",
"/ModDate": "D:20180420133139-04\u002700\u0027",
"pdf_file_size_bytes": 714523,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 18
}
},
"state": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.InternalState",
"pp": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "0157d6544adc07395f951bd02e894878739f28419eda51b7ef3530c376cfc40d",
"txt_hash": "9ee7a3c02bb06fc01fed7dcca53eea5a9ded01faa7e1fcbf742cd101b921cc5c"
},
"report": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "8f0f0b9fb4352427fcd5fe1d73c0f8b3a25d6c7388d8dcfac51c72cab24a900c",
"txt_hash": "5bf5f4739756783eb8af8108381f1455ec0bb0d531ecd4585ea086ddaf61eb04"
}
},
"web_data": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.WebData",
"category": "Network and Network-Related Devices and Systems",
"is_collaborative": false,
"maintenances": [],
"name": "Protection Profile",
"not_valid_after": "2022-01-11",
"not_valid_before": "2018-03-14",
"pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.0E.pdf",
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/cpp_nd_v2.0-vr.pdf",
"scheme": null,
"security_level": {
"_type": "Set",
"elements": [
"None"
]
},
"status": "archived",
"version": "2.0E"
}
}