National Information Assurance Partnership
|
|
|
- Antony Gaines
- 6 years ago
- Views:
Transcription
1 National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report U.S. Government Protection Profile for Separation Kernels in Environments Requiring High Robustness Report Number: CCEVS-VR Dated: 17 July 2007 Version: 1.0 National Institute of Standards and Technology National Security Agency Information Technology Laboratory Information Assurance Directorate 100 Bureau Drive 9800 Savage Road STE 6740 Gaithersburg, MD Fort George G. Meade, MD
2 ACKNOWLEDGEMENTS Validation Team Franklin Haskell The MITRE Corporation Bedford, Massachusetts James Donndelinger The Aerospace Corporation Columbia, Maryland Common Criteria Testing Laboratory COACT CAFÉ Laboratory Columbia, Maryland ii
3 Table of Contents 1 Executive Summary Evaluation Details Interpretations Protection Profile Summary TOE Security Environment Threats to Security Security Policy Security Usage Assumptions Clarification of Scope Security Content of the Protection Profile Results of the Evaluation Validator Comments/Recommendations Glossary Bibliography...7 iii
4 List of Tables Table 1 Evaluation Details... 1 Table 2 Threats... 3 Table 3 Policies... 4 Table 4 Security Usage Assumptions
5 1 Executive Summary The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme and was completed during April, The criteria against which the Separation Kernel Protection Profile (SKPP) was judged is described in the Common Criteria for Information Technology Security Evaluation, Version 2.3 and International Interpretations effective on July 1, The evaluation methodology used by the COACT CAFÉ Lab evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.3, Part 3, Class APE: Protection Profile Evaluation. The assurance activities in this CC class offer confidence that the SKPP contains requirements that are: 1. justifiably included to counter stated threats and meet realistic security objectives, 2. internally consistent and coherent and 3. technically sound. COACT, the Common Criteria Testing Laboratory, is certified by the NIAP validation body for laboratory accreditation. The CCTL has presented CEM work units and rationale that are consistent with the CC, the CEM and CCEVS publication number 4 Guidance to CCEVS Approved Common Criteria Testing Laboratories. The CCTL team concluded that the requirements of the APE class have been met. Therefore, a pass verdict has been issued by the CCTL for the protection profile assurance family. The validation team followed the procedures outlined in the Common Criteria Evaluation Scheme publication number 3 for Technical Oversight and Validation Procedures. The validation team has observed that the evaluation and all of its activities were in accordance with the Common Criteria, the Common Evaluation Methodology, and CCEVS policy. The validation team concludes that the evaluation has completed and the evaluation team s results are valid. Therefore, the Common Criteria Evaluation and Validation Scheme grants a Common Criteria Certificate to the sponsor, acknowledging the successful completion of the evaluation and the validity of this Common Criteria Protection Profile. 1.1 Evaluation Details Table 1 Evaluation Details Evaluated Product: Registration: Keywords: Developer: U.S. Government Protection Profile for Separation Kernels in Environments Requiring High Robustness Version 1.03, June 29, 2007 Information Assurance Directorate separation kernel, high robustness, data isolation, information flow control, partition, cryptography, commercial-off-the-shelf (COTS) Information Assurance Directorate, National Security Agency, 9800 Savage Road, Fort George G. Meade, MD 1
6 CCTL: COACT, Inc., Rivers Ninety Five, 9140 Guilford Road, Suite G, Columbia, MD Kickoff Date: December 2006 Completion Date: July CC: Common Criteria for Information Technology Security Evaluation, Version 2.3, August Interpretations: I-407 CEM: Description: Evaluation Personnel: Validation Team: Common Evaluation Methodology for Information Technology Security, Part 1: Introduction and General Model, Version 0.6, January 1997; Common Methodology for Information Technology Security Evaluation, Part 2: Evaluation Methodology, Version 2.3, August The SKPP specifies the security functional and assurance requirements for the separation kernel portion of an operating system. Unlike those traditional security kernels which perform all trusted functions for a secure operating system, a separation kernel s primary security function is to partition (viz. separate) the subjects and resources of a system and to enforce the rules for authorized information flows between those partitions as defined by the security policy.. COACT: Brian Pleffner Greg Beaver MITRE: Franklin Haskell Aerospace: James Donndelinger 1.2 Interpretations Interpretation ID Impact on CC Requirements Impact on CEM Work Units Comment I-407 FAU_GEN.1 None Applied 2
7 1.3 Protection Profile Summary VALIDATION REPORT The SKPP contains requirements which specify the security functional and assurance requirements for the separation kernel portion of an operating system. Compliant TOE implementations provide a highly robust foundation for system services and applications in mission-critical embedded systems, and a high degree of assurance for the enforcement of related security policies. They do this by providing facilities that partition or separate the various pieces of software built to operate in this environment; and mechanisms that strictly control the flow of information between the partitions created. A TOE conforming to the SKPP requirements will include the following security features: 1. Trusted Delivery: using cryptographically-based techniques. 2. Configuration: to translate human-readable representations into OS useable data. 3. Load: to copy configuration data onto the execution platform. 4. Initialization: to copy the software with its configuration data onto the execution platform and start it for application operation. 5. Information flow control that enforces strict partition isolation, with the exception of explicit interactions specified by the configuration data 6. Cryptographic mechanisms that provide functions to verify the integrity of TSF code and data during trusted delivery 7. Trusted initialization and recovery functions 8. Detection and response to security function failures 9. Generation of audit data These facilities create a software execution environment that is suitable for applications requiring high assurance and robustness. 2 TOE Security Environment 2.1 Threats to Security The following are the threats that the evaluated product addresses: Table 2 Threats Threat Identifier T.ADMIN_ERROR T.ALTERED_DELIVERY T.CONFIGURATION_CHANGE T.CONFIGURATION_INTEGRITY Threat Description An administrator may incorrectly install or configure the TOE (including the misapplication of the protections afforded by the PIFP), or install a corrupted TOE resulting in ineffective security mechanisms. The TOE may be corrupted or otherwise modified during delivery such that the on-site version does not match the master distribution version. The lack of TSF-enforced constraints on the ability of an authorized subject to invoke or dictate how the TOE is reconfigured may result in the TOE transitioning to an insecure (unknown, inconsistent, etc) state. The TOE may be placed in a configuration that is not consistent with that of the configuration vector due to 3
8 the improper loading of the configuration vector or incorrect use of the configuration vector during TOE initialization. T.COVERT_CHANNEL_EXPLOIT T.DENIAL_OF_SERVICE T.INCORRECT_CONFIG T.INCORRECT_LOAD T.INSECURE_STATE T.LEAST_PRIVILEGE T.POOR_DESIGN T.POOR_IMPLEMENTATION T.POOR_TEST T.TSF_COMPROMISE T.UNAUTHORIZED_ACCESS An unauthorized information flow may occur between partitions as a result of covert channel exploitation. A malicious subject may block others from system resources (e.g., system memory, persistent storage, and processing time) via a resource exhaustion attack. The configuration vectors are not an accurate and complete description of the operational configuration of the TOE as used by an organization. The software portion of the TSF implementation and/or configuration vectors are not correctly converted into a TOE-useable form. The TOE may be placed in an insecure state as a result of an erroneous initialization, halt, reconfiguration or restart, transition to maintenance mode, or as a result of an unsuccessful recovery from a system failure or discontinuity. The design and implementation of the TSF internals may not suffice to limit the damage resulting from accident, error or unauthorized use. Unintentional or intentional errors in requirements specification or design of the TOE may occur, leading to flaws that may be exploited by a malicious subject. Unintentional or intentional errors in implementation of the TOE design may occur, leading to flaws that may be exploited by a malicious subject. Lack of or insufficient evaluation and runtime tests to demonstrate that all TOE security functions operate correctly (including in a fielded TOE) may result in incorrect TOE behavior being undiscovered. A malicious subject may cause TSF data or executable code to be inappropriately accessed (viewed, modified, executed, or deleted). A subject may gain access to resources or TOE security management functions for which it is not authorized according to the TOE security policy. 2.2 Security Policy Table 3 Policies Policy Identifier P.ACCOUNTABILITY P.CONFIGURATION_CHANGE Policy Description The TOE shall provide the capability to make available information regarding the occurrence of security relevant events. The TOE shall support the capability to perform a static configuration change. The TOE may also provide the capability for an authorized subject to select or redefine the configuration vector to be used upon TOE startup, TOE restart or TOE reconfiguration. 4
9 P.CRYPTOGRAPHY P.INDEPENDENT_TESTING P.RATINGS_MAINTENANCE P.SYSTEM_INTEGRITY P.USER_GUIDANCE P.VULNERABILITY_ANALYSIS_AND_ TEST The TOE shall use NSA approved cryptographic mechanisms. The TOE shall undergo independent testing. A plan for procedures and processes to maintain the TOE s rating shall be in place to maintain the TOE s rating once it is evaluated. The TOE shall provide the ability to periodically validate its correct operation. The TOE shall provide documentation regarding the correct use of the TOE security features. The TOE shall undergo independent vulnerability analysis and penetration testing by NSA to demonstrate that the TOE is resistant to an attacker possessing a high attack potential. 2.3 Security Usage Assumptions The specific conditions below are assumed to exist in a PP-compliant TOE environment: Table 4 Security Usage Assumptions Assumption Identifier A.PHYSICAL A.SUBJECT_ALLOCATION A.COVERT_CHANNELS A.TRUSTED_FLOWS Assumption Description It is assumed that the non-it environment provides the TOE with appropriate physical security commensurate with the value of the IT assets protected by the TOE. It is assumed that a trusted individual will create configuration vectors such that, for those partitions to which subjects are allocated, each partition is allocated one or more subjects (i.e., subjects with homogeneous access requirements, or subjects with heterogeneous access requirements) that are appropriate for the policy abstraction supported by the TOE. If the TOE has covert storage and/or timing channels, then for all subjects executing on that TOE, it is assumed that relative to the IT assets to which they have access, those subjects will have assurance sufficient to outweigh the risk that they will violate the security policy of the TOE by using those covert channels. For any subject configured to have unrestricted access in multiple policy equivalence classes, it is assumed that the subject is trusted at least with assurance commensurate with the value of the IT assets in all equivalence classes to which it has access 2.4 Clarification of Scope Any TOE under evaluation which claims conformance to the SKPP will include hardware as part of its evaluation as it s required for all medium and high robustness evaluations. 5
10 3 4 5 VALIDATION REPORT There are parts of the TOE that are not part of the TSF for which specific assurances are required. These include facilities used to configure and start (in the very general sense) the TOE. In particular creation of the partitions and the database containing the security policy, which is to say the allowable data flows from partition to partition, are included. A number of requirements are levied upon these specifically because a great deal of trust is placed on these for correct operation of the TOE. Security Content of the Protection Profile An SKPP-compliant TOE will provide the following features: 1. Information flow control that enforces strict partition isolation, with the exception of explicit interactions specified by the configuration data 2. Cryptographic mechanisms that provide functions to verify the integrity of TSF code and data during trusted delivery 3. Trusted initialization and recovery functions 4. Detection and response to security function failures 5. Generation of audit data 6. Trusted Delivery: using cryptographically-based techniques. 7. Configuration: to translate human-readable representations into OS useable data. 8. Load: to copy configuration data onto the execution platform. 9. Initialization: to copy the software with its configuration data onto the execution platform and start it for application operation. Results of the Evaluation The Common Criteria Testing Laboratory team conducted the evaluation according to the CC and the CEM and concluded that the requirements of the APE class were met. Therefore, a pass verdict has been issued for the protection profile assurance family. Validator Comments/Recommendations The validation team believes that the SKPP is a very good set of requirements for particular types of high assurance applications. Such applications would be rigorously defined and implemented. The SKPP is not intended for general purpose operating systems though such systems could be installed on top of a separation kernel but such use of a separation kernel would not be readily apparent to the users of the general purpose OS. Three new families of explicit requirements have been created whose requirements are virtual duplicates of requirements in other existing CC requirement families: ADV_CTD, ADV_INI, and ADV_LTD. This was done because these are requirements levied upon what might be called support functions rather than security functions. Examination of the explicit requirements will reveal that they are closely related to other ADV, ATE families and that therefore the methodology specified in the CEM for their evaluation can be transplanted onto the new families. Audit requirements are present but minimal in scope. It is up to the application designers to decide how much audit capability is necessary beyond the requirements; i.e. audit trail maintenance, automatic actions, reduction of audit data and so forth are not included. In 6
11 certain real-time applications these functions are not even considered for inclusion in the system. Other systems could well include them but make their operation secondary to other tasks of the applications. The audit requirements present were created by rewriting several of the CC audit requirements as explicit requirements with the effect of limiting their functionality. This is entirely appropriate. 6 7 [1] Glossary No definitions beyond those in the CC or CEM are supplied. Bibliography The Validation Team used the following documents to produce this Validation Report: Common Criteria for Information Technology Security Evaluation Part 1: Introduction and general model, Version 2.2, January 2004, CCIMB [2] [3] [4] [5] Common Criteria for Information Technology Security Evaluation Part 2: Security functional requirements, Version 2.2, January 2004, CCIMB Common Criteria for Information Technology Security Evaluation Part 3: Security assurance requirements, Version 2.2, January 2004, CCIMB Common Methodology for Information Technology Security: Evaluation Methodology, Version 2.2, January 2004, CCIMB NIAP Common Criteria Evaluation and Validation Scheme for IT Security, Guidance to Common Criteria Testing Laboratories, Version 1.0, March 20,
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Green Hills Software INTEGRITY-178B Separation Kernel Report Number: CCEVS-VR-10119-2008
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report U.S. Government Router Protection Profile for Medium Robustness Environments Report Number:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report U. S. Government Protection Profile Database Management System for Basic Robustness Environments,
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report IEEE IEEE 2600.1-2009 Report Number: CCEVS-VR-10340 Dated: 2009-06-09 Version: 2.0 National
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Report Number: CCEVS-VR-06-0023 Dated: 28 April 2006 Version: 1.0 National Institute of
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Blue Ridge Networks BorderGuard Centrally Managed Embedded PKI Virtual Private Network (VPN)
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Delta Security Technologies Sentinel Model III Computer Security System Report Number: CCEVS-VR-02-0023
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Xceedium Gatekeeper Version 3.6 Report Number: CCEVS-VR-06-0048 Dated: 31 October 2006 Version:
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Report Number: CCEVS-VR-07-0045 Dated: 7 June 2007 Version: 0.4 National Institute of Standards
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. Tripp Lite Secure KVM Switch Series
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Report Number: CCEVS-VR-VID10481-2011 Dated: October 31, 2011 Version: 2.0 National Institute
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Network Device Protection Profile (NDPP) Extended Package SIP Server, Version 1.1, November
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Report Number: CCEVS-VR-10446-2011 Dated: July 1, 2011 Version: 1.0 National Institute of
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report U. S. Government Protection Profile Authorization Server For Basic Robustness Environments,
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Microsoft Windows 8, Microsoft Windows Server 2012 Full Disk Encryption TM Report Number: CCEVS-VR-VID10540-2014
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme NetScreen Technologies, Incorporated Report Number: CCEVS-VR-02-0027 Version 1.0 Dated: 30 November 2002 National
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Sun Java System Identity Manager v5.0 Report Number: CCEVS-VR-05-0117 Dated: 6 September
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. for
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report for Microsoft Windows 10 Anniversary Update IPsec VPN Client TM Report Number: CCEVS-VR-VID10753-2016
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. for
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for Report Number: CCEVS-VR-10746-2016 Dated: November 10, 2016 Version: 1.0 National Institute
Check Point Endpoint Security Media Encryption
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Check Point Endpoint Security Media Encryption Report Number: CCEVS-VR-VID10231-2010 Dated:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Extended Package for Secure Shell, Version 1.0, February 19, 2016 Report Number: CCEVS-VR-PP-0039
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Protection Profile for IPsec Virtual Private Network (VPN) Clients, Version 1.1 Report Number:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for the Cisco Jabber 11.8 for Windows 10 Report Number: CCEVS-VR-10802-2017 Dated: 6/13/2017
AnyConnect Secure Mobility Client for Windows 10
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Cisco Systems, Inc. 170 West Tasman Dr. San Jose, CA 95134 AnyConnect Secure Mobility Client
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Host Intrusion Prevention 8 and epolicy Orchestrator 4.5 Report Number: CCEVS-VR-VID10377-2011
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. for
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for of Peripheral Sharing Switches Report Number: CCEVS-VR-10865-2018 Dated: February 13,
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Innovation Data Processing FDRERASE Version 5.4, Level 50 Report Number: CCEVS-VR-05-0109
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report TM Trusted Computing Group (TCG) Personal Computer (PC) Specific Trusted Building Block (TBB)
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report For VMware ESX Server 2.5.0 and VirtualCenter 1.2.0 Report Number: CCEVS-VR-06-0013 Dated:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report U. S. Government Biometric Verification Mode Protection Profile for Medium Robustness Environments,
Brocade FastIron SX, ICX, and FCX Series Switch/Router
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Brocade Communications Systems, Inc. 130 Holger Way San Jose, CA 95134 Brocade FastIron
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Network Device collaborative Protection Profile (NDcPP) Extended Package VPN Gateway Version
Cisco IoT Industrial Ethernet and Connected Grid Switches running IOS
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Cisco Systems, Inc. 170 West Tasman Drive, San Jose, CA 95134-1706 Cisco IoT Industrial Ethernet
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Cisco Systems, Inc. 170 West Tasman Drive, San Jose, CA 95134-1706 Cisco Catalyst 2K/3K
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for the Apple ios 11 VPN Client on iphone and ipad Report Number: CCEVS-VR-VID10876 Dated:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report DataPower XS40 XML Security Gateway and DataPower XI50 Integration Appliance Version 3.6
National Information Assurance Partnership. Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Xerox Corporation Xerox CopyCentre C2128/C2636/C3545 Copier and WorkCentre Pro C2128/C2636/C3545
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report US Government Family of Protection Profiles for Public Key Enabled Applications for Basic
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Protection Profile for Voice over IP (VoIP) Applications, Version 1.3, November 3, 2014 TM
D4 Secure VPN Client for the HTC A9 Secured by Cog Systems
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Cog Systems Level 1, 277 King Street Newton NSW 2042 Australia D4 Secure VPN Client for the
MarkLogic Server Enterprise Edition Version 4.0
National Information Assurance Partnership Ø TM Common Criteria Evaluation and Validation Scheme Validation Report MarkLogic Server Enterprise Edition Version 4.0 Report Number: CCEVS-VR-VID10306-2010
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Secure Systems Limited Silicon Data Vault Laptop Version SDV18A03-A2-0003 and Desktop Version
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for the Venafi Trust Protection Platform, Version 1.0 Report Number: CCEVS-VR-VID10800-2017
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Microsoft Corporation Windows 2000 Report Number: CCEVS-VR-02-0025 Dated: 25 October 2002
Common Criteria Certificate
National Information Assurance Partnership Common Criteria Certificate is awarded to Xerox Corporation for ColorQube 8700/8900 Xerox ConnectKey Controller The IT product identified in this certificate
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Curtiss-Wright Defense Solutions Compact Network Storage 4-Slot Hardware Encryption Layer Report
Forcepoint NGFW 6.3.1
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Forcepoint 10900-A Stonelake Blvd. Austin, TX 78759, USA Forcepoint NGFW 6.3.1 Report Number:
Samsung Electronics Co., Ltd. Samsung Galaxy Note 5 & Galaxy Tab S2 VPN Client
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Samsung Electronics Co., Ltd. 416 Maetan-3dong, Yeongtong-gu, Suwon-si, Gyeonggido, 443-742
Cisco Catalyst 3K/4K Wired Access Switches
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Cisco Systems, Inc. 170 West Tasman Drive, San Jose, CA 95134-1706 Cisco Catalyst 3K/4K
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Protection Profile for IPsec Virtual Private Network (VPN) Clients, Version 1.4, October 21
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Public Key-Enabled Application Family of Protection Profiles, Version 2.5 Report Number:
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report ForeScout ActiveScout v3.0.5 / CounterACT v4.1.0 Report Number: CCEVS-VR-05-0108 Dated:
Owl Computing Technologies Data Diode Network Interface Card Version 3
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Owl Computing Technologies Data Diode Network Interface Card Version 3 Report Number: CCEVS-VR-05-0120
Brocade FastIron SX, ICX, and FCX Series Switch/Router
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Brocade Communications Systems, Inc. 130 Holger Way San Jose, CA 95134 Brocade FastIron
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme. Validation Report Apple, Inc. Apple ios 9.
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Apple, Inc. Apple ios 9.2 Report Number: CCEVS-VR-VID10695-2016 Dated: January 28, 2016 Version:
Brocade MLXe Family Devices with Multi- Service IronWare R
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Brocade Communication Systems, Inc 130 Holger Way San Jose, CA 95134 Brocade MLXe Family
Brocade MLXe and NetIron Family Devices with Multi-Service IronWare R
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Brocade Communications Systems, Inc. Brocade MLXe and NetIron Family Devices with Multi-Service
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Marconi Corporation plc (ASX-200BX, ASX-1000, ASX-1200, TNX-210, TNX- 1100, ASX-4000, ASX-4000M,
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report TM QRadar V5.1.2 Report Number: Dated: January 26, 2007 Version: 1.1 National Institute of
Samsung Electronics Co., Ltd. Samsung Galaxy Note 4 Android 5
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Samsung Electronics Co., Ltd. 416 Maetan-3dong, Yeongtong-gu, Suwon-si, Gyeonggido, 443-742
Brocade FastIron Switch/Router
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Brocade Communications Systems, Inc. 130 Holger Way San Jose, CA 95134 USA Brocade FastIron
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. For. Imperva SecureSphere 9.
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report For Report Number: CCEVS-VR-10466-2012 Dated: 28 December 2012 Version: 0.2 National Institute
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme NetScreen Technologies, Incorporated NetScreen Appliance Model 5200 Report Number: CCEVS-VR-03-0042 Dated:
Brocade Directors and Switches using Fabric OS v8.1.0
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Brocade Communications Systems, Inc. 130 Holger Way San Jose, CA 95134 USA Brocade Directors
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Cybex SwitchView SC Series Switches for Models without [EXP_TMP] Report Number: CCEVS-VR-VID10250-2008
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Vormetric Data Security Manager V6000, Version 5.3 Report Number: CCEVS-VR-VID10737-2016 Dated:
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report TippingPoint Intrusion Protection System (IPS) E-Series (5000E, 2400E, 1200E, 600E, 210E),
Brocade FastIron Switch/Router with IPsec VPN Module
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Brocade Communications Systems, Inc. 130 Holger Way San Jose, CA 95134 USA Brocade FastIron
Aruba Virtual Intranet Access (VIA) Client Version 3.0
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Aruba, a Hewlett Packard Enterprise Company 3333 Scott Blvd Santa Clara, CA 95054 USA Aruba
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Cisco Systems, Inc., 170 West Tasman Dr., San Jose, CA 95134 TM Cisco Wide Area Application
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. for
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for Report Number: CCEVS-VR-VID10769-2017 Dated: May 31, 2017 Version: 1.0 National Institute
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report CREDANT Mobile Guardian Enterprise Edition Version 5.2.1 SP4 Report Number: CCEVS-VR-VID10240-2008
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Infoblox Trinzic Appliances with NIOS 7.1 Report Number: CCEVS-VR-VID10624-2015 Dated: December
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Axway API Gateway version 7.4.1 with SP2 Report Number: CCEVS-VR-VID10778-2017 Dated: January
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Information Security Corporation (ISC) CertAgent v 7.0 Report Number: CCEVS-VR-10815-2018
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Secure Computing Corporation, 2340 Energy Park Drive, Saint Paul, Minnesota 55108 Sidewinder
Trivalent Protect (for Android) 2.6
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Trivalent 180 Admiral Cochrane Drive, Suite 410 Annapolis, MD 21401 USA Trivalent Protect (for
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Fidelis XPS 5.0.3 Report Number: CCEVS-VR-VID10223-2008 Dated: Version: 1.6 National Institute
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report. Aruba Networks Inc Scott Blvd.
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Aruba Networks Inc. 3333 Scott Blvd. Santa Clara, CA 95054 Aruba Networks ClearPass Policy
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for the FireEye VX Series Appliance, Version 1.0 Report Number: CCEVS-VR-10835-2017 Dated:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Smart Card Security User Group (SCSUG) Smart Card Protection Profile (SCPP), Version 3.0
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Xerox AltaLink C8030/C8035/C8045/C8055/ C8070 Report Number: CCEVS-VR-VID10788-2017 Dated:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report Software AG webmethods Business Process Management Suite 8.2 SP2 Report Number: CCEVS-VR-
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. for
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for of Peripheral Sharing Switches Report Number: CCEVS-VR-10822-2018 Dated: January 29,
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report. IBM WebSphere Application Server
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report IBM WebSphere Application Server Report Number: CCEVS-VR-07-0013 Dated: March 16, 2007 Version:
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Common Criteria Evaluation and Validation Scheme Validation Report Cisco Security Agent 4.5.1.655 Report Number:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Cisco Systems, Inc. Catalyst 4500 Series Wired Access Switches running IOS-XE 3.10 Report Number:
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Microsoft Windows Server 2003 Certificate Server Report Number: CCEVS-VR-05-0134 Dated:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Cisco Systems, Inc. Catalyst 2960 and 3560 Series Wired Access Switches running IOS 15.2 Report
National Information Assurance Partnership
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report McAfee Policy Auditor 5.2 and epolicy Orchestrator 4.5 Report Number: CCEVS-VR-VID10337-2011
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Collaborative Protection Profile for Full Drive Encryption Authorization Acquisition, Version
Certification Report
Certification Report Symantec Security Information Manager 4.8.1 Issued by: Communications Security Establishment Certification Body Canadian Common Criteria Evaluation and Certification Scheme Government
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. Cisco Systems, Inc.
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 94002, USA Cisco Adaptive Security Appliances
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report. Cisco Systems, Inc.
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 94002, USA Cisco Adaptive Security
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report McAfee Foundstone Enterprise Vulnerability Management Solution Version 5.0.4 Report Number:
National Information Assurance Partnership
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report Sidewinder G2 Security Appliance Models EAL4+ with Basic and Medium PP Compliance Report
Australasian Information Security Evaluation Program (AISEP)
Australasian Information Security Evaluation Program (AISEP) Network Device Protection Profile (NDPP) Extended Package for Intrusion Prevention Systems (IPS EP) Version 1.0, dated 26 June 2014 Certification
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme. Validation Report. IBM MaaS360 v2.
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report IBM MaaS360 v2.91 Cloud Extender Report Number: CCEVS-VR-10896-2018 Dated: 14 June 2018 Version:
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme Validation Report Standard Protection Profile for Enterprise Security Management Policy Management, Version 1.4,
National Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme. Validation Report. for
National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme TM Validation Report for Report Number: CCEVS-VR-10772-2017 Dated: March 9, 2017 Version: 1.0 National Institute
Trust Technology Assessment Program. Validation Report. Peripheral Sharing Switch (PSS) for Human Interface Devices Protection Profile Version 1.
Trust Technology Assessment Program Validation Report Peripheral Sharing Switch (PSS) for Human Interface Devices Protection Profile Version 1.0 TTAP Report Number: TTAP-VR-0012 Version 1.0 August 2000