This page was not yet optimized for use on mobile devices.
Citrix XenApp 7.6 Platinum Edition
This certificate has known related CVEs, which means that
the certified
product might be vulnerable.
CSV information ?
| Status | archived |
|---|---|
| Valid from | 19.03.2015 |
| Valid until | 19.03.2020 |
| Scheme | 🇬🇧 UK |
| Manufacturer | Citrix Systems, Inc. |
| Category | Access Control Devices and Systems |
| Security level | ALC_FLR.2, EAL2+ |
Heuristics summary ?
Certificate ID: CRP282
Certificate ?
Certification report ?
Extracted keywords
Hash functions
MD5Vendor
MicrosoftSecurity level
EAL2, EAL1, EAL7, EAL2 augmentedSecurity Assurance Requirements (SAR)
ALC_FLR.2Certificates
CRP282, CRP281, CRP257Standards
ISO/IEC 17065:2012, CCMB-2012-09-001, CCMB-2012-09-002, CCMB-2012-09-003, CCMB-2012-09-004File metadata
| Creation date: | D:20150323102434+00'00' |
|---|---|
| Modification date: | D:20150323102434+00'00' |
| Pages: | 24 |
References
Outgoing- CRP281 - Citrix XenDesktop 7.6 Platinum Edition
- CRP257 - Citrix XenApp 6.0 for Windows Server 2008 R2 - Platinum Edition
- CRP281 - Citrix XenDesktop 7.6 Platinum Edition
Security target ?
Extracted keywords
Symmetric Algorithms
AES, HMACProtocols
TLSTLS cipher suites
TLS_RSA_WITH_AES_128_CBC_SHAVendor
MicrosoftSecurity level
EAL2, EAL2 augmentedClaims
OE.TLSSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.2, ADV_TDS.1, AGD_OPE.1, AGD_PRE.1, ALC_FLR.2, ALC_CMC.2, ALC_CMS.2, ALC_DEL.1, ATE_COV.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.2, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.2, ASE_ECD.1, ASE_REQ.2, ASE_TSS.1Security Functional Requirements (SFR)
FCO_SCO, FCO_SCO.1, FCO_SCO.1.3, FCO_SCO.1.1, FCO_SCO.1.2, FCO_SCO.1.4, FCS_ECA, FCS_ECA.1, FCS_ECA.1.1, FDP_ACC, FDP_ACF, FDP_ACC.1, FDP_ACF.1, FDP_IFC.1, FIA_ATD, FIA_UID, FIA_UAU, FIA_ATD.1, FIA_UID.2, FIA_UAU.2, FIA_UID.1, FMT_SMR, FMT_SMF, FMT_MSA, FMT_MOF, FMT_SMR.1, FMT_SMF.1, FMT_MSA.1, FMT_MSA.3, FMT_MOF.1Certification process
out of scope, 19 1.4.3 Summary of items out of scope of the TOE , shown shaded are components of the TOE. Figure 4: Logical boundaries 1.4.3 Summary of items out of scope of the TOE The items out of scope of the TOE include the Microsoft components with which XenDesktop, XenApp integrate, as detailed in section 1.2.3. Also out of scope of the TOE are the following Citrix components which are included in XenDesktop Platinum EditionCertification process
out of scope, 19 1.4.3 Summary of items out of scope of the TOE , shown shaded are components of the TOE. Figure 4: Logical boundaries 1.4.3 Summary of items out of scope of the TOE The items out of scope of the TOE include the Microsoft components with which XenDesktop, XenApp integrate, as detailed in section 1.2.3. Also out of scope of the TOE are the following Citrix components which are included in XenDesktop Platinum EditionStandards
FIPS140-2, FIPS PUB 140-2, FIPS 140-2, FIPS 140, RFC 2246, CCMB-2012-09-001, CCMB-2012-09-002, CCMB-2012-09-003, CCMB-2012-09-004File metadata
| Creation date: | D:20150319112721+00'00' |
|---|---|
| Modification date: | D:20150319112721+00'00' |
| Pages: | 61 |
References
OutgoingHeuristics ?
Certificate ID: CRP282
Extracted SARs
ASE_SPD.1, AGD_PRE.1, ASE_ECD.1, ASE_TSS.1, ADV_ARC.1, ASE_REQ.2, ALC_DEL.1, ADV_FSP.2, ASE_CCL.1, ASE_INT.1, AVA_VAN.2, ADV_TDS.1, AGD_OPE.1, ATE_FUN.1, ALC_CMC.2, ATE_IND.2, ASE_OBJ.2, ALC_FLR.2, ATE_COV.1, ALC_CMS.2Related CVEs
| ID | Links | Severity | CVSS Score | Published on | ||
|---|---|---|---|---|---|---|
| Base | Exploitability | Impact | ||||
| CVE-2016-4810 | HIGH | 7.5 | 3.6 | 01.06.2016 22:59 | ||
| CVE-2016-6493 | CRITICAL | 9.8 | 5.9 | 19.08.2016 21:59 | ||
References ?
Updates ?
-
15.02.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'report': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '1452856b4fb6585c6105609b6dba6a129ce49405d39cac59f4cfca613deff59d', 'txt_hash': '5007a7b1fb38486190e2846a5b2f6ae42afa6d89c3b45dc44edb265d987ea07b'}, 'st': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '6107b2b7a6cecb8165fdc181f171abcc468b31ae01d80cf8da378e4651f93cda', 'txt_hash': '81befd653a9e5c14292f29f8fca093ae6afc7d017d04d3d74d7b009da051d2de'}, 'cert': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': False, 'convert_garbage': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}}. - The following properties were deleted:
['st_download_ok', 'report_download_ok', 'st_convert_garbage', 'report_convert_garbage', 'st_convert_ok', 'report_convert_ok', 'st_extract_ok', 'report_extract_ok', 'st_pdf_hash', 'report_pdf_hash', 'st_txt_hash', 'report_txt_hash'].
The PDF extraction data was updated.
- The following values were inserted:
{'cert_metadata': None, 'cert_frontpage': None, 'cert_keywords': None, 'cert_filename': None}. - The report_frontpage property was set to
{}. - The st_frontpage property was set to
None.
- The following values were inserted:
-
07.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The st_keywords property was updated, with the
{'cc_cert_id': {}}data.
- The st_keywords property was updated, with the
-
07.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The st_keywords property was updated, with the
{'cc_cert_id': {'CA': {'1-0 2': 2}}}data.
- The st_keywords property was updated, with the
-
04.01.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'annotated_references': None}.
- The following values were inserted:
-
26.04.2023 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'scheme_data': None}.
- The following values were inserted:
-
11.02.2023 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.cc.CCCertificate.
The state of the certificate object was updated.
- The _type property was set to
sec_certs.sample.cc.CCCertificate.InternalState. - The following properties were deleted:
['errors'].
The PDF extraction data was updated.
- The _type property was set to
sec_certs.sample.cc.CCCertificate.PdfData.
The computed heuristics were updated.
- The following values were inserted:
{'direct_transitive_cves': {'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2014-4700', 'CVE-2016-6493']}, 'indirect_transitive_cves': {'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2014-4700', 'CVE-2016-6493']}}. - The _type property was set to
sec_certs.sample.cc.CCCertificate.Heuristics. - The following properties were deleted:
['direct_dependency_cves', 'indirect_dependency_cves'].
- The new value is
-
05.02.2023 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The errors property was set to
[].
The computed heuristics were updated.
- The related_cves property was set to
{'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2016-6493']}. - The direct_dependency_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2016-6493']}values added. - The indirect_dependency_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2016-6493']}values added.
- The errors property was set to
-
26.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The errors property was set to
['failed to download report from https://www.commoncriteriaportal.org/files/epfiles/CRP282%20v1.0%20Final%20(NWA).pdf, code: nok'].
- The errors property was set to
-
25.12.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The report_references property was updated, with the
{'indirectly_referencing': {'__add__': {'_type': 'Set', 'elements': ['CRP256', 'CRP271']}}}data.
- The report_references property was updated, with the
-
25.12.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The report_references property was updated, with the
{'directly_referenced_by': {'_type': 'Set', 'elements': ['CRP281']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['CRP281', 'CRP282']}, 'directly_referencing': {'_type': 'Set', 'elements': ['CRP281', 'CRP257']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['CRP281', 'CRP257', 'CRP241', 'CRP282']}}data. - The direct_dependency_cves property was set to
{'_type': 'Set', 'elements': ['CVE-2014-4700']}. - The indirect_dependency_cves property was set to
{'_type': 'Set', 'elements': ['CVE-2014-4700']}.
- The report_references property was updated, with the
-
24.12.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The report_references property was updated, with the
{'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}data. - The direct_dependency_cves property was set to
None. - The indirect_dependency_cves property was set to
None.
- The report_references property was updated, with the
-
24.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The errors property was set to
[].
- The errors property was set to
-
23.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The errors property was set to
['failed to download report from https://www.commoncriteriaportal.org/files/epfiles/CRP282%20v1.0%20Final%20(NWA).pdf, code: nok'].
- The errors property was set to
-
23.12.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The related_cves property was set to
None. - The direct_dependency_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2016-6493']}values discarded. - The indirect_dependency_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2016-6493']}values discarded.
- The related_cves property was set to
-
10.10.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The cpe_matches property was updated, with the
{'_type': 'Set', 'elements': ['cpe:2.3:a:citrix:xenapp:7.6.0.0:*:*:*:*:*:*:*']}values added. - The related_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2016-6493']}values added.
- The cpe_matches property was updated, with the
-
05.10.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'st_convert_garbage': False, 'report_convert_garbage': False}.
- The following values were inserted:
-
04.10.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The cpe_matches property was updated, with the
{'_type': 'Set', 'elements': ['cpe:2.3:a:citrix:xenapp:7.6.0.0:*:*:*:*:*:*:*']}values discarded. - The related_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2016-6493']}values discarded.
- The cpe_matches property was updated, with the
-
24.09.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The following values were inserted:
{'report_filename': 'CRP282 v1.0 Final (NWA).pdf', 'st_filename': 'XenApp7-STv1-0.pdf'}. - The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'UK': {'__update__': {'CRP282': 2, 'CRP281': 3, 'CRP257': 3}}}}, 'cc_security_level': {'__update__': {'EAL': {'__insert__': {'EAL7': 1}}}}, 'cc_sar': {'__update__': {'ALC': {'__update__': {'ALC_FLR.2': 5}}}}, 'crypto_scheme': {}}data. - The st_keywords property was updated, with the
{'cc_sfr': {'__update__': {'FCO': {'__update__': {'FCO_SCO': 41, 'FCO_SCO.1': 21}}, 'FCS': {'__update__': {'FCS_ECA': 21, 'FCS_ECA.1': 10}}, 'FDP': {'__insert__': {'FDP_ACC': 36, 'FDP_ACF': 34}, '__update__': {'FDP_ACF.1': 15, 'FDP_ACC.1': 8}}, 'FIA': {'__insert__': {'FIA_ATD': 10, 'FIA_UID': 10, 'FIA_UAU': 8, 'FIA_ATD.1': 1, 'FIA_UID.2': 1, 'FIA_UAU.2': 1}}, 'FMT': {'__insert__': {'FMT_SMR': 22, 'FMT_SMF': 20, 'FMT_MSA': 61, 'FMT_MOF': 10, 'FMT_MOF.1': 1}, '__update__': {'FMT_MSA.3': 9, 'FMT_SMR.1': 8, 'FMT_MSA.1': 5, 'FMT_SMF.1': 5}}}}, 'cc_claims': {'__update__': {'OE': {'__delete__': ['OE']}}, '__delete__': ['O']}, 'crypto_scheme': {}, 'crypto_protocol': {'__update__': {'TLS': {'__update__': {'TLS': {'__update__': {'TLS': 22}}}}}}, 'tee_name': {}, 'certification_process': {'__update__': {'OutOfScope': {'__insert__': {' 19 1.4.3 Summary of items out of scope of the TOE ': 2, 'shown shaded are components of the TOE. Figure 4: Logical boundaries 1.4.3 Summary of items out of scope of the TOE The items out of scope of the TOE include the Microsoft components with which XenDesktop': 1, 'XenApp integrate, as detailed in section 1.2.3. Also out of scope of the TOE are the following Citrix components which are included in XenDesktop Platinum Edition': 1}, '__delete__': ['........................................................................... 19 1.4.3 Summary of items out of scope of the TOE ', '......................................................................... 19 1.4.3 Summary of items out of scope of the TOE ', 'lements shown shaded are components of the TOE. Figure 4: Logical boundaries 1.4.3 Summary of items out of scope of the TOE The items out of scope of the TOE include the Microsoft components with which XenDesktop', 'and XenApp integrate, as detailed in section 1.2.3. Also out of scope of the TOE are the following Citrix components which are included in XenDesktop Platinum Edition']}}}}data.
The computed heuristics were updated.
- The report_references property was updated, with the
{'directly_referenced_by': {'_type': 'Set', 'elements': ['CRP281']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['CRP281', 'CRP282']}, 'directly_referencing': {'_type': 'Set', 'elements': ['CRP281', 'CRP257']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['CRP257', 'CRP241', 'CRP282', 'CRP281', 'CRP271', 'CRP256']}}data. - The direct_dependency_cves property was set to
{'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2014-4700', 'CVE-2016-6493']}. - The indirect_dependency_cves property was set to
{'_type': 'Set', 'elements': ['CVE-2016-4810', 'CVE-2014-4700', 'CVE-2016-6493']}.
- The following values were inserted:
-
18.07.2022 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.common_criteria.CommonCriteriaCert.
The state of the certificate object was updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState.
The PDF extraction data was updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData.
The computed heuristics were updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics. - The st_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}data. - The report_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}data. - The extracted_sars property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 2}]}.
- The new value is
-
17.07.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_metadata property was updated, with the
{'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.citrix.com/support/security-compliance', 'http://www.cesg.gov.uk/', 'http://www.commoncriteriaportal.org/', 'https://www.citrix.com/', 'http://www.ukas.org/', 'https://www.citrix.com/security', 'http://www.sogisportal.eu/']}}values inserted. - The st_metadata property was updated, with the
{'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.commoncriteriaportal.org/', 'http://support.citrix.com/']}}values inserted. - The report_keywords property was set to
{'cc_cert_id': {'UK': {'CRP282': 44, 'CRP281': 6, 'CRP257': 6}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL2': 5, 'EAL1': 1, 'EAL2 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 4}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {'Microsoft': {'Microsoft': 27}}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {'MD': {'MD5': {'MD5': 1}}}, 'crypto_scheme': {'KA': {'KA': 2}}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 17065:2012': 2}, 'CC': {'CCMB-2012-09-001': 1, 'CCMB-2012-09-002': 1, 'CCMB-2012-09-003': 1, 'CCMB-2012-09-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL2': 5, 'EAL2 augmented': 2}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 1, 'ADV_FSP.2': 1, 'ADV_TDS.1': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_FLR.2': 5, 'ALC_CMC.2': 1, 'ALC_CMS.2': 1, 'ALC_DEL.1': 1}, 'ATE': {'ATE_COV.1': 1, 'ATE_FUN.1': 1, 'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.2': 1}, 'ASE': {'ASE_INT.1': 1, 'ASE_CCL.1': 1, 'ASE_SPD.1': 1, 'ASE_OBJ.2': 1, 'ASE_ECD.1': 1, 'ASE_REQ.2': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FCO': {'FCO_SCO': 4, 'FCO_SCO.1': 6, 'FCO_SCO.1.3': 2, 'FCO_SCO.1.1': 1, 'FCO_SCO.1.2': 1, 'FCO_SCO.1.4': 1}, 'FCS': {'FCS_ECA': 3, 'FCS_ECA.1': 5, 'FCS_ECA.1.1': 1}, 'FDP': {'FDP_ACF.1': 3, 'FDP_ACC.1': 5, 'FDP_IFC.1': 2}, 'FIA': {'FIA_UID.1': 2}, 'FMT': {'FMT_MSA.3': 3, 'FMT_SMR.1': 6, 'FMT_MSA.1': 4, 'FMT_SMF.1': 4}}, 'cc_claims': {'O': {'O.NET': 1}, 'OE': {'OE': 1, 'OE.TLS': 7}}, 'vendor': {'Microsoft': {'Microsoft': 42}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 6}}, 'constructions': {'MAC': {'HMAC': 1}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {'MAC': {'MAC': 1}}, 'crypto_protocol': {'TLS': {'TLS': {'TLS': 19}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_RSA_WITH_AES_128_CBC_SHA': 5}}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 1}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS140-2': 10, 'FIPS PUB 140-2': 1, 'FIPS 140-2': 10, 'FIPS 140': 2}, 'RFC': {'RFC 2246': 5}, 'CC': {'CCMB-2012-09-001': 1, 'CCMB-2012-09-002': 1, 'CCMB-2012-09-003': 1, 'CCMB-2012-09-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 4, '........................................................................... 19 1.4.3 Summary of items out of scope of the TOE ': 1, '......................................................................... 19 1.4.3 Summary of items out of scope of the TOE ': 1, 'lements shown shaded are components of the TOE. Figure 4: Logical boundaries 1.4.3 Summary of items out of scope of the TOE The items out of scope of the TOE include the Microsoft components with which XenDesktop': 1, 'and XenApp integrate, as detailed in section 1.2.3. Also out of scope of the TOE are the following Citrix components which are included in XenDesktop Platinum Edition': 1}}}.
The computed heuristics were updated.
- The _type property was set to
Heuristics.
- The report_metadata property was updated, with the
-
14.06.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'report_pdf_hash': '1452856b4fb6585c6105609b6dba6a129ce49405d39cac59f4cfca613deff59d', 'st_pdf_hash': '6107b2b7a6cecb8165fdc181f171abcc468b31ae01d80cf8da378e4651f93cda', 'report_txt_hash': '5007a7b1fb38486190e2846a5b2f6ae42afa6d89c3b45dc44edb265d987ea07b', 'st_txt_hash': '81befd653a9e5c14292f29f8fca093ae6afc7d017d04d3d74d7b009da051d2de'}.
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'rules_symmetric_crypto': {}, 'rules_asymmetric_crypto': {}, 'rules_pq_crypto': {}, 'rules_hashes': {'MD5': 1}, 'rules_crypto_schemes': {}, 'rules_randomness': {}, 'rules_tee': {}, 'rules_side_channels': {}}values inserted. - The st_keywords property was updated, with the
{'rules_symmetric_crypto': {'AES': 6, 'HMAC': 1}, 'rules_asymmetric_crypto': {}, 'rules_pq_crypto': {}, 'rules_hashes': {}, 'rules_crypto_schemes': {'MAC': 1, 'TLS': 19}, 'rules_randomness': {}, 'rules_tee': {'SE': 1}, 'rules_side_channels': {}}values inserted.
- The following values were inserted:
-
21.05.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The cpe_matches property was updated, with the
{'_type': 'Set', 'elements': ['cpe:2.3:a:citrix:xenapp:7.6.0.0:*:*:*:*:*:*:*']}values added. - The related_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2016-6493']}values added.
- The cpe_matches property was updated, with the
-
13.05.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'extracted_sars': {'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'AVA_VAN', 'level': 2}, {'_type': 'SAR', 'family': 'ADV_TDS', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_COV', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_FSP', 'level': 2}, {'_type': 'SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_FLR', 'level': 2}, {'_type': 'SAR', 'family': 'ALC_CMC', 'level': 2}, {'_type': 'SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'SAR', 'family': 'ALC_CMS', 'level': 2}]}}.
- The following values were inserted:
-
24.04.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'direct_dependency_cves': None, 'indirect_dependency_cves': None}.
- The following values were inserted:
-
08.03.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'report_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}. - The following properties were deleted:
['directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
- The following values were inserted:
-
18.02.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_frontpage property was updated, with the
{'nscib': {}, 'niap': {}, 'canada': {}}values inserted. - The st_frontpage property was updated, with the
{'nscib': {}, 'niap': {}, 'canada': {}}values inserted.
The computed heuristics were updated.
- The extracted_versions property was set to
{'_type': 'Set', 'elements': ['7.6']}. - The cpe_matches property was set to
{'_type': 'Set', 'elements': ['cpe:2.3:a:citrix:xenapp:7.6:*:*:*:*:*:*:*']}.
- The report_frontpage property was updated, with the
-
28.01.2022 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name Citrix XenApp 7.6 Platinum Edition was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Access Control Devices and Systems",
"cert_link": null,
"dgst": "1172a88e009dc248",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "CRP282",
"cert_lab": null,
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:a:citrix:xenapp:7.6.0.0:*:*:*:*:*:*:*",
"cpe:2.3:a:citrix:xenapp:7.6:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": {
"_type": "Set",
"elements": [
"CVE-2014-4700",
"CVE-2016-4810",
"CVE-2016-6493"
]
},
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"7.6"
]
},
"indirect_transitive_cves": {
"_type": "Set",
"elements": [
"CVE-2014-4700",
"CVE-2016-4810",
"CVE-2016-6493"
]
},
"related_cves": {
"_type": "Set",
"elements": [
"CVE-2016-4810",
"CVE-2016-6493"
]
},
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": {
"_type": "Set",
"elements": [
"CRP281"
]
},
"directly_referencing": {
"_type": "Set",
"elements": [
"CRP281",
"CRP257"
]
},
"indirectly_referenced_by": {
"_type": "Set",
"elements": [
"CRP281",
"CRP282"
]
},
"indirectly_referencing": {
"_type": "Set",
"elements": [
"CRP256",
"CRP271",
"CRP282",
"CRP281",
"CRP257",
"CRP241"
]
}
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Citrix Systems, Inc.",
"manufacturer_web": "https://www.citrix.com",
"name": "Citrix XenApp 7.6 Platinum Edition",
"not_valid_after": "2020-03-19",
"not_valid_before": "2015-03-19",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": null,
"cert_frontpage": null,
"cert_keywords": null,
"cert_metadata": null,
"report_filename": "CRP282 v1.0 Final (NWA).pdf",
"report_frontpage": {},
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"UK": {
"CRP257": 3,
"CRP281": 3,
"CRP282": 2
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"ALC": {
"ALC_FLR.2": 5
}
},
"cc_security_level": {
"EAL": {
"EAL1": 1,
"EAL2": 5,
"EAL2 augmented": 1,
"EAL7": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"MD": {
"MD5": {
"MD5": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"CC": {
"CCMB-2012-09-001": 1,
"CCMB-2012-09-002": 1,
"CCMB-2012-09-003": 1,
"CCMB-2012-09-004": 1
},
"ISO": {
"ISO/IEC 17065:2012": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 27
}
},
"vulnerability": {}
},
"report_metadata": {
"/CreationDate": "D:20150323102434+00\u002700\u0027",
"/ModDate": "D:20150323102434+00\u002700\u0027",
"pdf_file_size_bytes": 1056593,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.cesg.gov.uk/",
"https://www.citrix.com/security",
"https://www.citrix.com/support/security-compliance",
"http://www.sogisportal.eu/",
"http://www.ukas.org/",
"http://www.commoncriteriaportal.org/",
"https://www.citrix.com/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 24
},
"st_filename": "XenApp7-STv1-0.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {
"OE": {
"OE.TLS": 7
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_ARC.1": 1,
"ADV_FSP.2": 1,
"ADV_TDS.1": 1
},
"AGD": {
"AGD_OPE.1": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMC.2": 1,
"ALC_CMS.2": 1,
"ALC_DEL.1": 1,
"ALC_FLR.2": 5
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.2": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_COV.1": 1,
"ATE_FUN.1": 1,
"ATE_IND.2": 1
},
"AVA": {
"AVA_VAN.2": 1
}
},
"cc_security_level": {
"EAL": {
"EAL2": 5,
"EAL2 augmented": 2
}
},
"cc_sfr": {
"FCO": {
"FCO_SCO": 41,
"FCO_SCO.1": 21,
"FCO_SCO.1.1": 1,
"FCO_SCO.1.2": 1,
"FCO_SCO.1.3": 2,
"FCO_SCO.1.4": 1
},
"FCS": {
"FCS_ECA": 21,
"FCS_ECA.1": 10,
"FCS_ECA.1.1": 1
},
"FDP": {
"FDP_ACC": 36,
"FDP_ACC.1": 8,
"FDP_ACF": 34,
"FDP_ACF.1": 15,
"FDP_IFC.1": 2
},
"FIA": {
"FIA_ATD": 10,
"FIA_ATD.1": 1,
"FIA_UAU": 8,
"FIA_UAU.2": 1,
"FIA_UID": 10,
"FIA_UID.1": 2,
"FIA_UID.2": 1
},
"FMT": {
"FMT_MOF": 10,
"FMT_MOF.1": 1,
"FMT_MSA": 61,
"FMT_MSA.1": 5,
"FMT_MSA.3": 9,
"FMT_SMF": 20,
"FMT_SMF.1": 5,
"FMT_SMR": 22,
"FMT_SMR.1": 8
}
},
"certification_process": {
"OutOfScope": {
" 19 1.4.3 Summary of items out of scope of the TOE ": 2,
"XenApp integrate, as detailed in section 1.2.3. Also out of scope of the TOE are the following Citrix components which are included in XenDesktop Platinum Edition": 1,
"out of scope": 4,
"shown shaded are components of the TOE. Figure 4: Logical boundaries 1.4.3 Summary of items out of scope of the TOE The items out of scope of the TOE include the Microsoft components with which XenDesktop": 1
}
},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"TLS": {
"TLS": 22
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"CC": {
"CCMB-2012-09-001": 1,
"CCMB-2012-09-002": 1,
"CCMB-2012-09-003": 1,
"CCMB-2012-09-004": 1
},
"FIPS": {
"FIPS 140": 2,
"FIPS 140-2": 10,
"FIPS PUB 140-2": 1,
"FIPS140-2": 10
},
"RFC": {
"RFC 2246": 5
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 6
}
},
"constructions": {
"MAC": {
"HMAC": 1
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_RSA_WITH_AES_128_CBC_SHA": 5
}
},
"vendor": {
"Microsoft": {
"Microsoft": 42
}
},
"vulnerability": {}
},
"st_metadata": {
"/CreationDate": "D:20150319112721+00\u002700\u0027",
"/ModDate": "D:20150319112721+00\u002700\u0027",
"pdf_file_size_bytes": 960434,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://support.citrix.com/",
"http://www.commoncriteriaportal.org/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 61
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/files/epfiles/CRP282%20v1.0%20Final%20(NWA).pdf",
"scheme": "UK",
"security_level": {
"_type": "Set",
"elements": [
"EAL2+",
"ALC_FLR.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/files/epfiles/XenApp7-STv1-0.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": false,
"download_ok": false,
"extract_ok": false,
"pdf_hash": null,
"txt_hash": null
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "1452856b4fb6585c6105609b6dba6a129ce49405d39cac59f4cfca613deff59d",
"txt_hash": "5007a7b1fb38486190e2846a5b2f6ae42afa6d89c3b45dc44edb265d987ea07b"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "6107b2b7a6cecb8165fdc181f171abcc468b31ae01d80cf8da378e4651f93cda",
"txt_hash": "81befd653a9e5c14292f29f8fca093ae6afc7d017d04d3d74d7b009da051d2de"
}
},
"status": "archived"
}