Stormshield Network Security UTM / NG - Firewall Software Suite (Version 3.7.9)

CSV information ?

Status active
Valid from 16.06.2020
Valid until 16.06.2025
Scheme 🇫🇷 FR
Manufacturer Stormshield
Category Network and Network-Related Devices and Systems
Security level ALC_FLR.3, ALC_CMS.4, EAL3+, ALC_CMC.4, AVA_VAN.3

Heuristics summary ?

Certificate ID: ANSSI-CC-2020/39

Certificate ?

Extracted keywords

Security level
EAL3, EAL2
Security Assurance Requirements (SAR)
ALC_CMS.4, ALC_CMC.4, ALC_FLR.3, AVA_VAN.3
Certificates
ANSSI-CC-2020/39

File metadata

Title: ANSSI-CC-2020/39
Subject: CER/F/14.2
Author: Christian Benardeau
Creation date: D:20200617133909+02'00'
Modification date: D:20200617133909+02'00'
Pages: 1
Creator: Microsoft® Word 2010
Producer: Microsoft® Word 2010

Certification report ?

Extracted keywords

Symmetric Algorithms
DES
Protocols
SSH, SSL, IKE, IPsec, VPN

Security level
EAL 3, EAL2, EAL4, EAL 1, EAL 5, EAL 7, EAL3+, ITSEC E3 Elémentaire
Security Assurance Requirements (SAR)
ADV_ARC, ADV_FSP, ADV_IMP, ADV_INT, ADV_SPM, ADV_TDS, AGD_OPE, AGD_PRE, ALC_CMS.4, ALC_CMC.4, ALC_FLR.3, ALC_FLR, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS, ALC_LCD, ALC_TAT, ATE_COV, ATE_DPT, ATE_FUN, ATE_IND, AVA_VAN.3, AVA_VAN, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_REQ, ASE_SPD, ASE_TSS
Certificates
ANSSI-CC-2020/39

Standards
CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004

File metadata

Title: ANSSI-CC-2020/39
Subject: Stormshield Network Security UTM / NG-Firewall Software Suite
Keywords: ANSSI-CC-CER-F-07 v29.2
Author: BENARDEAU Christian
Creation date: D:20200617133832+02'00'
Modification date: D:20200617133832+02'00'
Pages: 15
Creator: Microsoft® Word 2010
Producer: Microsoft® Word 2010

References

No references.

Security target ?

Extracted keywords

Symmetric Algorithms
AES, CAST, CAST-128, DES, Triple-DES, Blowfish, HMAC
Asymmetric Algorithms
RSA 2048, ECDH, ECDSA, Diffie-Hellman, DH, DSA
Hash functions
SHA2, SHA-2, MD5
Schemes
Key Exchange, Key Agreement
Protocols
SSH, SSL, TLS, IKE, IKEv2, VPN
Libraries
OpenSSL
Block cipher modes
CBC
TLS cipher suites
TLS_DHE_RSA_WITH_AES_128_CBC_SHA

JavaCard API constants
SECP256R1
Vendor
Microsoft, Cisco

Security level
EAL3+, EAL3, EAL3 augmented
Claims
O.PCAOA, O.RESIST_AUTH_ADMIN, O.PCFI_FILTERING, O.PCFI_APPLICATION_CONTEXT, O.PCFI_ENCRYPTION, O.IPS_ATTACK_DETECTION, O.LAA_PCFI, O.CRYPTO, O.IPS_RFC_COMPLIANCE, O.LAA_IPS, O.LAA_PCAOA, O.BACKUP_RESTORATION, O.PROTECT_LOGS, O.PROTECT_ADMIN_SESSIONS, T.IP_SPOOFING, T.IMPROPER_USE, T.ILLEGAL_ADMIN, T.ADMIN_USURP, T.ILLEGAL_ADMIN_SESSION, T.AUDIT, OE.PROTECT_APPLIANCES, OE.SUPER_ADMIN, OE.PASSWORD, OE.GOOD_PCFI, OE.CRYPTO_EXT, OE.PERSONNEL, OE.INTERPOSITION, OE.STRICT_USAGE, OE.AUTONOMOUS, OE.PROTECT_WORKSTATIONS, OE.PROTECT_VPN_PEER, OE.PROTECT_VPN_CLIENTS, OE.TIMESTAMPS, OE.REVOCATION_LIST, OE.PROTECT_WORKSTATIO
Security Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.3, ADV_TDS.2, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ALC_CMC.4, ALC_FLR.3, ALC_DEL.1, ALC_DVS.1, ALC_LCD.1, ALC_CMS, ALC_CMC, ALC_CMS.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.3, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1
Security Functional Requirements (SFR)
FAU_GEN.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_STG.3, FAU_SAA.4, FAU_GEN.2, FAU_GEN.2.1, FAU_SAR.1, FAU_SAR.1.1, FAU_SAR.1.2, FAU_STG.3.1, FAU_ARP.1, FAU_SAA.4.1, FAU_SAA.4.2, FAU_SAA.4.3, FAU_SAA.1, FAU_ARP, FAU_ARP.1.1, FAU_GEN, FCS_COP.1, FCS_CKM.1, FCS_CKM.4, FDP_IFC.2.1, FDP_IFC.2, FDP_IFC.2.2, FDP_IFF.1, FDP_IFC.1, FDP_IFC.1.1, FDP_UCT.1, FDP_UIT.1, FDP_UCT.1.1, FDP_UIT.1.1, FDP_UIT.1.2, FDP_ACC.2, FDP_ACC.2.1, FDP_ACC.2.2, FDP_ACC.1, FDP_ITC.1, FDP_ITC.2, FDP_IFF.1.1, FDP_IFF.1.2, FDP_IFF.1.3, FDP_IFF.1.4, FDP_IFF.1.5, FIA_UAU.5, FIA_UID.1, FIA_UAU.5.1, FIA_UAU.5.2, FMT_MTD, FMT_SMR.1, FMT_MOF.1, FMT_MTD.1, FMT_SMF.1, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MOF.1.1, FMT_MTD.1.1, FMT_MSA.3, FMT_SMF, FPT_TDC.1, FPT_TDC.1.1, FPT_TDC.1.2, FPT_ITT.1, FPT_ITT.1.1, FPT_STM.1, FTP_TRP.1, FTP_ITT.1, FTP_ITC.1, FTP_TRP.1.1, FTP_TRP.1.2, FTP_TRP.1.3
Certificates
CC-01, CC-02, CC-03
Certification process
out of scope, protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted

Certification process
out of scope, protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted

Standards
FIPS PUB 197, FIPS PUB 46-3, FIPS 180-1, FIPS 180-2, FIPS PUB 186-4, PKCS #1, RFC 1349, RFC 792, RFC 3376, RFC 768, RFC 793, RFC 2401, RFC 4303, RFC 3526, RFC 5903, RFC 6932, RFC 4754, RFC 7427, RFC 959, RFC 2577, RFC 2389, RFC 2428, RFC 2616, RFC 2518, RFC 3253, RFC 1034, RFC 1035, RFC 1058, RFC 2453, RFC 2474, RFC 3435, RFC 3261, RFC 3550, RFC 3605, RFC 2246, RFC 3268, RFC 2631, RFC 2144, RFC 2104, RFC 1321, RFC 2409, RFC 3330, RFC 2385, RFC 2817, RFC 6455, X.509, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004

File metadata

Title: Stormshield Network Security
Subject: UTM / NG-Firewall Software Suite
Author: Stormshield
Creation date: D:20200515152045+02'00'
Modification date: D:20200515152045+02'00'
Pages: 95
Creator: Microsoft® Word 2010
Producer: Microsoft® Word 2010

References

No references.

Heuristics ?

Certificate ID: ANSSI-CC-2020/39

Extracted SARs

ADV_ARC.1, ASE_OBJ.2, ADV_FSP.4, ALC_DVS.1, ASE_SPD.1, ASE_ECD.1, ALC_CMC.4, ATE_DPT.1, ADV_TDS.3, ASE_INT.1, ATE_IND.2, ALC_LCD.1, ADV_IMP.1, ASE_TSS.1, ATE_FUN.1, ASE_REQ.2, ALC_FLR.3, ALC_CMS.4, AVA_VAN.3, AGD_PRE.1, ASE_CCL.1, AGD_OPE.1, ALC_DEL.1, ATE_COV.2

Scheme data ?

Product Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9
Url https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379
Description Le produit évalué est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » développé par STORMSHIELD et exécuté par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN3000 et SN6000. Le produit offre des fonctions de sécurité permettant d’interconnecter un ou plusieurs réseaux de confiance via un réseau non maitrisé
Sponsor Stormshield
Developer Stormshield
Cert Id 2020/39
Level EAL3+
Expiration Date 16 Juin 2025
Enhanced
Cert Id 2020/39
Certification Date 16/06/2020
Expiration Date 16/06/2025
Category Produits réseau
Cc Version Critères Communs version 3.1r5
Developer Stormshield
Sponsor Stormshield
Evaluation Facility Oppida
Level EAL3+
Protection Profile
Mutual Recognition SOG-IS CCRA
Augmented ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3
Report Link https://cyber.gouv.fr/sites/default/files/2020/06/anssi-cc-2020_39fr.pdf
Target Link https://cyber.gouv.fr/sites/default/files/2020/06/anssi-cible-cc-2020_39en.pdf

References ?

No references are available for this certificate.

Updates ?

  • 15.02.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The following values were inserted: {'report': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'a3bc406e9a1fc6b0d5bc5135b649200ec42a55fd0767b1788bab01cfd5dbd59f', 'txt_hash': 'e6ed447b3231a8473cc984a8d71977d56c639d04a0aaeb0c9e9af4181c2021af'}, 'st': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd09805a4776537b501a094940768fe98376b6b078b26a0bdd333486155310582', 'txt_hash': '8b7c73bbe8a411c494f171df0f03ad7800c3886b7d74fc91b7cfe69cf017279e'}, 'cert': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'b4dbfb34fa87e08fc50e66448949aef4e95bbc2a52329f72528a6a82fd978440', 'txt_hash': '13e856a63140a601a987824aeb34b4acab5046db290eb8f99ffd54f5534a7ffa'}}.
    • The following properties were deleted: ['st_download_ok', 'report_download_ok', 'st_convert_garbage', 'report_convert_garbage', 'st_convert_ok', 'report_convert_ok', 'st_extract_ok', 'report_extract_ok', 'st_pdf_hash', 'report_pdf_hash', 'st_txt_hash', 'report_txt_hash'].

    The PDF extraction data was updated.

    • The following values were inserted: {'cert_metadata': {'pdf_file_size_bytes': 732474, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Title': 'ANSSI-CC-2020/39', '/Author': 'Christian Benardeau', '/Subject': 'CER/F/14.2', '/Creator': 'Microsoft® Word 2010', '/CreationDate': "D:20200617133909+02'00'", '/ModDate': "D:20200617133909+02'00'", '/Producer': 'Microsoft® Word 2010', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}, 'cert_frontpage': None, 'cert_keywords': {'cc_cert_id': {'FR': {'ANSSI-CC-2020/39': 2}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL3': 2, 'EAL2': 1}}, 'cc_sar': {'ALC': {'ALC_CMS.4': 2, 'ALC_CMC.4': 1, 'ALC_FLR.3': 1}, 'AVA': {'AVA_VAN.3': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}, 'cert_filename': 'certificat-ANSSI-CC-2020_39 ORIGINAL SIGNE.pdf'}.
    • The report_frontpage property was set to {'FR': {}}.
    • The st_frontpage property was set to None.
    • The report_keywords property was updated, with the {'cc_cert_id': {'__update__': {'FR': {'__update__': {'ANSSI-CC-2020/39': 16}}}}} data.
    • The st_keywords property was updated, with the {'cc_cert_id': {'NL': {'CC-01': 3, 'CC-02': 6, 'CC-03': 5}}} data.
  • 13.02.2024 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'cc_cert_id': {'__update__': {'FR': {'__update__': {'ANSSI-CC-2020/39': 32}}}}} data.
    • The st_keywords property was updated, with the {'cc_cert_id': {}} data.
  • 07.02.2024 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'cc_cert_id': {'__delete__': ['CA']}} data.
  • 07.02.2024 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'cc_cert_id': {'__insert__': {'CA': {'1 1 1': 21, '1 2 3': 5, '5 5 6': 1, '1 1 2': 1, '2 3 3': 1, '5 6 2': 1, '4 5 5': 2, '5 5 5': 1, '1 2 2': 5, '2 2 2': 2, '3 3 2': 1, '1 1 3': 1, '2 2 1': 1, '2 2 3': 1}}, '__update__': {'FR': {'__update__': {'ANSSI-CC-2020/39': 16}}}}} data.
    • The st_keywords property was updated, with the {'cc_cert_id': {'NL': {'CC-01': 3, 'CC-02': 6, 'CC-03': 5}}} data.
  • 05.02.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The scheme_data property was updated, with the {'description': 'Le produit Ă©valuĂ© est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » dĂ©veloppĂ© par STORMSHIELD et exĂ©cutĂ© par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN3000 et SN6000.\n\nLe produit offre des fonctions de sĂ©curitĂ© permettant d’interconnecter un ou plusieurs rĂ©seaux de confiance via un rĂ©seau non maitrisĂ©'} data.
  • 04.01.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'annotated_references': None}.
    • The scheme_data property was updated, with the {'url': 'https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379', 'enhanced': {'__insert__': {'cert_id': '2020/39', 'sponsor': 'Stormshield', 'protection_profile': '', 'mutual_recognition': 'SOG-IS\n CCRA', 'augmented': 'ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3'}, '__update__': {'developer': 'Stormshield', 'report_link': 'https://cyber.gouv.fr/sites/default/files/2020/06/anssi-cc-2020_39fr.pdf', 'target_link': 'https://cyber.gouv.fr/sites/default/files/2020/06/anssi-cible-cc-2020_39en.pdf'}, '__delete__': ['id', 'augmentations', 'recognition', 'description']}} data.
  • 21.09.2023 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The scheme_data property was updated, with the {'id': '2020/39', 'certification_date': '16/06/2020', 'url': 'https://www.ssi.gouv.fr/certification_cc/stormshield-network-security-utm-ng-firewall-software-suite-version-3-7-9/', 'enhanced': {'__update__': {'id': '2020/39', 'certification_date': '16/06/2020', 'expiration_date': '16/06/2025', 'description': 'Descriptif du produit\n\t\t\t\tLe produit Ă©valuĂ© est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » dĂ©veloppĂ© par STORMSHIELD et exĂ©cutĂ© par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN3000 et SN6000.\nLe produit offre des fonctions de sĂ©curitĂ© permettant d’interconnecter un ou plusieurs rĂ©seaux de confiance via un rĂ©seau non maitrisĂ© sans dĂ©grader le niveau de confiance.\n\t\t\t\t\n Rapport de certification\nSecurity target', 'report_link': 'https://www.ssi.gouv.fr/uploads/2020/06/anssi-cc-2020_39fr.pdf', 'target_link': 'https://www.ssi.gouv.fr/uploads/2020/06/anssi-cible-cc-2020_39en.pdf'}}} data.
  • 26.04.2023 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'scheme_data': {'product': 'Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9', 'vendor': 'StormshieldStormshield', 'level': 'EAL3+', 'id': '2020/66', 'certification_date': '09/07/2020', 'category': 'Network products', 'url': 'https://www.ssi.gouv.fr/certification_cc/stormshield-network-security-utm-ng-firewall-software-suite-version-3-7-9-2/', 'enhanced': {'id': '2020/66', 'certification_date': '09/07/2020', 'expiration_date': '09/07/2025', 'category': 'Produits rĂ©seau', 'cc_version': 'Critères Communs version 3.1r5', 'level': 'EAL3+', 'augmentations': 'ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3', 'developer': 'Stormshield / Stormshield', 'evaluation_facility': 'Oppida', 'recognition': 'SOG-IS - CCRA', 'description': 'Descriptif du produit\n\t\t\t\tLe produit Ă©valuĂ© est le logiciel « Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 » dĂ©veloppĂ© par STORMSHIELD et exĂ©cutĂ© par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN2100, SN3000, SN3100, SN6000, SN6100.\nLe produit offre des fonctions de sĂ©curitĂ© permettant d’interconnecter un ou plusieurs rĂ©seaux de confiance via un rĂ©seau non maitrisĂ© sans dĂ©grader le niveau de confiance.\n\t\t\t\t\n Rapport de certification\nSecurity target', 'report_link': 'https://www.ssi.gouv.fr/uploads/2020/07/anssi-cc-2020_66fr.pdf', 'target_link': 'https://www.ssi.gouv.fr/uploads/2020/07/anssi-cible-cc-2020_66en.pdf'}}}.
  • 11.02.2023 The certificate data changed.
    Certificate changed

    The _type was updated.

    • The new value is sec_certs.sample.cc.CCCertificate.

    The state of the certificate object was updated.

    • The _type property was set to sec_certs.sample.cc.CCCertificate.InternalState.
    • The following properties were deleted: ['errors'].

    The PDF extraction data was updated.

    • The _type property was set to sec_certs.sample.cc.CCCertificate.PdfData.

    The computed heuristics were updated.

    • The following values were inserted: {'direct_transitive_cves': None, 'indirect_transitive_cves': None}.
    • The _type property was set to sec_certs.sample.cc.CCCertificate.Heuristics.
    • The following properties were deleted: ['direct_dependency_cves', 'indirect_dependency_cves'].
  • 05.02.2023 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The errors property was set to [].
  • 26.12.2022 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The st_download_ok property was set to True.
    • The st_convert_ok property was set to True.
    • The st_extract_ok property was set to True.
    • The errors property was set to ['failed to download report from https://www.commoncriteriaportal.org/files/epfiles/anssi-cc-2020_39fr.pdf, code: nok'].
    • The st_pdf_hash property was set to d09805a4776537b501a094940768fe98376b6b078b26a0bdd333486155310582.
    • The st_txt_hash property was set to 8b7c73bbe8a411c494f171df0f03ad7800c3886b7d74fc91b7cfe69cf017279e.

    The PDF extraction data was updated.

    • The st_metadata property was set to {'pdf_file_size_bytes': 2167789, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 95, '/Title': 'Stormshield Network Security', '/Author': 'Stormshield', '/Subject': 'UTM / NG-Firewall Software Suite', '/Creator': 'Microsoft® Word 2010', '/CreationDate': "D:20200515152045+02'00'", '/ModDate': "D:20200515152045+02'00'", '/Producer': 'Microsoft® Word 2010', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['2.1.1.General%20points%7Coutline']}}.
    • The st_frontpage property was set to {'anssi': {}, 'bsi': {}, 'nscib': {}, 'niap': {}, 'canada': {}}.
    • The st_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL3+': 2, 'EAL3': 22, 'EAL3 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 1, 'ADV_FSP.3': 1, 'ADV_TDS.2': 1, 'ADV_FSP.4': 1, 'ADV_IMP.1': 1, 'ADV_TDS.3': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_CMS.4': 5, 'ALC_CMC.4': 5, 'ALC_FLR.3': 4, 'ALC_DEL.1': 1, 'ALC_DVS.1': 2, 'ALC_LCD.1': 2, 'ALC_CMS': 1, 'ALC_CMC': 1, 'ALC_CMS.1': 1}, 'ATE': {'ATE_COV.2': 1, 'ATE_DPT.1': 1, 'ATE_FUN.1': 1, 'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.3': 5}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 3, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 7, 'FAU_GEN.1.1': 2, 'FAU_GEN.1.2': 4, 'FAU_STG.3': 7, 'FAU_SAA.4': 9, 'FAU_GEN.2': 6, 'FAU_GEN.2.1': 2, 'FAU_SAR.1': 7, 'FAU_SAR.1.1': 2, 'FAU_SAR.1.2': 2, 'FAU_STG.3.1': 2, 'FAU_ARP.1': 14, 'FAU_SAA.4.1': 4, 'FAU_SAA.4.2': 2, 'FAU_SAA.4.3': 3, 'FAU_SAA.1': 2, 'FAU_ARP': 2, 'FAU_ARP.1.1': 2, 'FAU_GEN': 1}, 'FCS': {'FCS_COP.1': 59, 'FCS_CKM.1': 7, 'FCS_CKM.4': 7}, 'FDP': {'FDP_IFC.2.1': 3, 'FDP_IFC.2': 6, 'FDP_IFC.2.2': 2, 'FDP_IFF.1': 29, 'FDP_IFC.1': 10, 'FDP_IFC.1.1': 2, 'FDP_UCT.1': 11, 'FDP_UIT.1': 11, 'FDP_UCT.1.1': 2, 'FDP_UIT.1.1': 2, 'FDP_UIT.1.2': 2, 'FDP_ACC.2': 6, 'FDP_ACC.2.1': 2, 'FDP_ACC.2.2': 2, 'FDP_ACC.1': 2, 'FDP_ITC.1': 7, 'FDP_ITC.2': 7, 'FDP_IFF.1.1': 2, 'FDP_IFF.1.2': 2, 'FDP_IFF.1.3': 2, 'FDP_IFF.1.4': 2, 'FDP_IFF.1.5': 2}, 'FIA': {'FIA_UAU.5': 45, 'FIA_UID.1': 2, 'FIA_UAU.5.1': 4, 'FIA_UAU.5.2': 4}, 'FMT': {'FMT_MTD': 22, 'FMT_SMR.1': 8, 'FMT_MOF.1': 10, 'FMT_MTD.1': 11, 'FMT_SMF.1': 12, 'FMT_SMF.1.1': 2, 'FMT_SMR.1.1': 3, 'FMT_SMR.1.2': 4, 'FMT_MOF.1.1': 3, 'FMT_MTD.1.1': 3, 'FMT_MSA.3': 2, 'FMT_SMF': 1}, 'FPT': {'FPT_TDC.1': 8, 'FPT_TDC.1.1': 2, 'FPT_TDC.1.2': 2, 'FPT_ITT.1': 10, 'FPT_ITT.1.1': 2, 'FPT_STM.1': 1}, 'FTP': {'FTP_TRP.1': 64, 'FTP_ITT.1': 1, 'FTP_ITC.1': 2, 'FTP_TRP.1.1': 4, 'FTP_TRP.1.2': 4, 'FTP_TRP.1.3': 4}}, 'cc_claims': {'O': {'O.PCAOA': 13, 'O.RESIST_AUTH_ADMIN': 6, 'O.PCFI_FILTERING': 7, 'O.PCFI_APPLICATION_CONTEXT': 4, 'O.PCFI_ENCRYPTION': 14, 'O.IPS_ATTACK_DETECTION': 8, 'O.LAA_PCFI': 8, 'O.CRYPTO': 4, 'O.IPS_RFC_COMPLIANCE': 7, 'O.LAA_IPS': 9, 'O.LAA_PCAOA': 13, 'O.BACKUP_RESTORATION': 6, 'O.PROTECT_LOGS': 6, 'O.PROTECT_ADMIN_SESSIONS': 6}, 'T': {'T.IP_SPOOFING': 5, 'T.IMPROPER_USE': 11, 'T.ILLEGAL_ADMIN': 18, 'T.ADMIN_USURP': 3, 'T.ILLEGAL_ADMIN_SESSION': 4, 'T.AUDIT': 2}, 'OE': {'OE.PROTECT_APPLIANCES': 3, 'OE.SUPER_ADMIN': 3, 'OE.PASSWORD': 3, 'OE.GOOD_PCFI': 3, 'OE.CRYPTO_EXT': 3, 'OE.PERSONNEL': 3, 'OE.INTERPOSITION': 4, 'OE.STRICT_USAGE': 3, 'OE.AUTONOMOUS': 3, 'OE.PROTECT_WORKSTATIONS': 2, 'OE.PROTECT_VPN_PEER': 3, 'OE.PROTECT_VPN_CLIENTS': 3, 'OE.TIMESTAMPS': 4, 'OE.REVOCATION_LIST': 3, 'OE.PROTECT_WORKSTATIO': 1}}, 'vendor': {'Microsoft': {'Microsoft': 4}, 'Cisco': {'Cisco': 1}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 15}, 'CAST': {'CAST': 9, 'CAST-128': 1}}, 'DES': {'DES': {'DES': 9}, '3DES': {'Triple-DES': 1}}, 'miscellaneous': {'Blowfish': {'Blowfish': 9}}, 'constructions': {'MAC': {'HMAC': 3}}}, 'asymmetric_crypto': {'RSA': {'RSA 2048': 1}, 'ECC': {'ECDH': {'ECDH': 4}, 'ECDSA': {'ECDSA': 6}}, 'FF': {'DH': {'Diffie-Hellman': 9, 'DH': 4}, 'DSA': {'DSA': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA2': 9, 'SHA-2': 1}}, 'MD': {'MD5': {'MD5': 3}}}, 'crypto_scheme': {'KEX': {'Key Exchange': 3}, 'KA': {'Key Agreement': 1}}, 'crypto_protocol': {'SSH': {'SSH': 1}, 'TLS': {'SSL': {'SSL': 2}, 'TLS': {'TLS': 40}}, 'IKE': {'IKE': 33, 'IKEv2': 8}, 'VPN': {'VPN': 98}}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_DHE_RSA_WITH_AES_128_CBC_SHA': 1}}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 197': 1, 'FIPS PUB 46-3': 1, 'FIPS 180-1': 1, 'FIPS 180-2': 1, 'FIPS PUB 186-4': 1}, 'PKCS': {'PKCS #1': 1}, 'RFC': {'RFC 1349': 1, 'RFC 792': 1, 'RFC 3376': 1, 'RFC 768': 1, 'RFC 793': 1, 'RFC 2401': 2, 'RFC 4303': 1, 'RFC 3526': 1, 'RFC 5903': 1, 'RFC 6932': 1, 'RFC 4754': 1, 'RFC 7427': 1, 'RFC 959': 1, 'RFC 2577': 1, 'RFC 2389': 1, 'RFC 2428': 1, 'RFC 2616': 1, 'RFC 2518': 1, 'RFC 3253': 1, 'RFC 1034': 1, 'RFC 1035': 1, 'RFC 1058': 1, 'RFC 2453': 1, 'RFC 2474': 1, 'RFC 3435': 1, 'RFC 3261': 1, 'RFC 3550': 1, 'RFC 3605': 1, 'RFC 2246': 2, 'RFC 3268': 1, 'RFC 2631': 1, 'RFC 2144': 1, 'RFC 2104': 1, 'RFC 1321': 1, 'RFC 2409': 2, 'RFC 3330': 1, 'RFC 2385': 1, 'RFC 2817': 1, 'RFC 6455': 1}, 'X509': {'X.509': 17}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {'curves': {'SECP256R1': 1}}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 1, 'protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted': 1}}}.
    • The st_filename property was set to anssi-cible-cc-2020_39en.pdf.

    The computed heuristics were updated.

    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}]} values added.
  • 25.12.2022 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The st_download_ok property was set to False.
    • The st_convert_ok property was set to False.
    • The st_extract_ok property was set to False.
    • The errors property was set to ['failed to download ST from https://www.commoncriteriaportal.org/files/epfiles/anssi-cible-cc-2020_39en.pdf, code: 408'].
    • The st_pdf_hash property was set to None.
    • The st_txt_hash property was set to None.

    The PDF extraction data was updated.

    • The st_metadata property was set to None.
    • The st_frontpage property was set to None.
    • The st_keywords property was set to None.
    • The st_filename property was set to None.

    The computed heuristics were updated.

    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}]} values discarded.
  • 24.12.2022 The certificate data changed.
    Certificate changed

    The cert_link was updated.

    • The new value is https://www.commoncriteriaportal.org/files/epfiles/certificat-ANSSI-CC-2020_39%20ORIGINAL%20SIGNE.pdf.

    The manufacturer_web was updated.

    • The new value is https://www.stormshield.eu/.
  • 23.12.2022 The certificate data changed.
    Certificate changed

    The cert_link was updated.

    • The new value is None.

    The manufacturer_web was updated.

    • The new value is None.

    The state of the certificate object was updated.

    • The errors property was set to [].
  • 22.12.2022 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The errors property was set to ['failed to download report from https://www.commoncriteriaportal.org/files/epfiles/anssi-cc-2020_39fr.pdf, code: nok'].
  • 05.10.2022 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The following values were inserted: {'st_convert_garbage': False, 'report_convert_garbage': False}.
  • 26.09.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'crypto_protocol': {'__insert__': {'VPN': {'VPN': 2}}}} data.
    • The st_keywords property was updated, with the {'vendor': {'__insert__': {'Cisco': {'Cisco': 1}}}, 'crypto_protocol': {'__insert__': {'VPN': {'VPN': 98}}}} data.
  • 24.09.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The following values were inserted: {'report_filename': 'anssi-cc-2020_39fr.pdf', 'st_filename': 'anssi-cible-cc-2020_39en.pdf'}.
    • The report_keywords property was updated, with the {'cc_security_level': {'__update__': {'EAL': {'__delete__': ['EAL 2', 'EAL 4', 'EAL 6', 'EAL 3+']}}}, 'cc_sar': {'__update__': {'ALC': {'__update__': {'ALC_FLR.3': 4, 'ALC_FLR': 2}}, 'AVA': {'__update__': {'AVA_VAN.3': 3}}}}, 'cc_claims': {}, 'symmetric_crypto': {'__update__': {'DES': {'__update__': {'DES': {'__update__': {'DES': 1}}}}}}, 'crypto_scheme': {}, 'tee_name': {}, 'standard_id': {'__update__': {'CC': {'__insert__': {'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}}}} data.
    • The st_keywords property was updated, with the {'cc_sar': {'__update__': {'ALC': {'__insert__': {'ALC_CMS': 1, 'ALC_CMC': 1}, '__update__': {'ALC_CMC.4': 5}}, 'AVA': {'__update__': {'AVA_VAN.3': 5}}, 'ASE': {'__update__': {'ASE_REQ.2': 3}}}}, 'cc_sfr': {'__update__': {'FAU': {'__insert__': {'FAU_ARP.1': 14, 'FAU_ARP': 2}, '__update__': {'FAU_GEN.1': 7, 'FAU_SAA.4': 9, 'FAU_GEN.2': 6, 'FAU_SAR.1': 7, 'FAU_SAA.4.1': 4}, '__delete__': ['FAU_STG.1']}, 'FCS': {'__update__': {'FCS_COP.1': 59}}, 'FDP': {'__update__': {'FDP_IFC.2': 6, 'FDP_IFC.1': 10, 'FDP_UCT.1': 11, 'FDP_UIT.1': 11, 'FDP_ACC.2': 6, 'FDP_IFF.1': 29}, '__delete__': ['FDP_ACF.1']}, 'FIA': {'__insert__': {'FIA_UAU.5': 45}}, 'FMT': {'__insert__': {'FMT_SMF': 1}, '__update__': {'FMT_MTD': 22, 'FMT_SMR.1': 8, 'FMT_MOF.1': 10, 'FMT_SMF.1': 12, 'FMT_SMR.1.1': 3, 'FMT_SMR.1.2': 4}}, 'FTP': {'__update__': {'FTP_TRP.1': 64}}}}, 'cc_claims': {'__update__': {'O': {'__update__': {'O.PCFI_APPLICATION_CONTEXT': 4, 'O.IPS_ATTACK_DETECTION': 8, 'O.LAA_PCFI': 8, 'O.LAA_IPS': 9, 'O.BACKUP_RESTORATION': 6, 'O.PROTECT_LOGS': 6}, '__delete__': ['O.GOOD_PCFI', 'O.SUPER_ADMIN', 'O.PASSWORD', 'O.CRYPTO_EXT']}, 'T': {'__update__': {'T.IMPROPER_USE': 11, 'T.ADMIN_USURP': 3, 'T.AUDIT': 2}, '__delete__': ['T.INTERPOSITION', 'T.STRICT_USAGE', 'T.AUTONOMOUS', 'T.PROTECT_WORKSTATIONS', 'T.PROTECT_VPN_PEER', 'T.PROTECT_VPN_CLIENTS', 'T.TIMESTAMPS', 'T.REVOCATION_LIST']}, 'OE': {'__delete__': ['OE']}}, '__delete__': ['D']}, 'vendor': {'__update__': {'Microsoft': {'__update__': {'Microsoft': 4}}}, '__delete__': ['STMicroelectronics']}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES': 15}}}}, 'DES': {'__update__': {'DES': {'__update__': {'DES': 9}}}}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__update__': {'DH': 4}}, 'DSA': {'__update__': {'DSA': 2}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA2': {'__update__': {'SHA2': 9}, '__delete__': ['SHA256', 'SHA384']}}}, 'MD': {'__update__': {'MD5': {'__update__': {'MD5': 3}}}}}}, 'crypto_scheme': {'__update__': {'KA': {'__delete__': ['KA']}}, '__delete__': ['MAC']}, 'crypto_protocol': {'__update__': {'TLS': {'__update__': {'SSL': {'__update__': {'SSL': 2}}}}}}, 'tee_name': {}, 'certification_process': {'__update__': {'OutOfScope': {'out of scope': 1, 'protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted': 1}}}} data.
  • 18.07.2022 The certificate data changed.
    Certificate changed

    The _type was updated.

    • The new value is sec_certs.sample.common_criteria.CommonCriteriaCert.

    The state of the certificate object was updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState.

    The PDF extraction data was updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData.

    The computed heuristics were updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics.
    • The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
    • The report_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
    • The extracted_sars property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}]}.
  • 17.07.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_metadata property was updated, with the {'pdf_hyperlinks': {'_type': 'Set', 'elements': ['mailto:certification@ssi.gouv.fr', 'http://www.ssi.gouv.fr/']}} values inserted.
    • The st_metadata property was updated, with the {'pdf_hyperlinks': {'_type': 'Set', 'elements': ['2.1.1.General%20points%7Coutline']}} values inserted.
    • The report_keywords property was set to {'cc_cert_id': {'FR': {'ANSSI-CC-2020/39': 32}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 3': 3, 'EAL2': 2, 'EAL4': 2, 'EAL 1': 1, 'EAL 2': 1, 'EAL 4': 1, 'EAL 5': 1, 'EAL 6': 1, 'EAL 7': 1, 'EAL 3+': 1, 'EAL3+': 1}, 'ITSEC': {'ITSEC E3 ElĂ©mentaire': 1}}, 'cc_sar': {'ADV': {'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP': 1, 'ADV_INT': 1, 'ADV_SPM': 1, 'ADV_TDS': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_CMS.4': 3, 'ALC_CMC.4': 3, 'ALC_FLR.3': 2, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_FLR': 1, 'ALC_LCD': 1, 'ALC_TAT': 1}, 'ATE': {'ATE_COV': 1, 'ATE_DPT': 1, 'ATE_FUN': 1, 'ATE_IND': 1}, 'AVA': {'AVA_VAN.3': 2, 'AVA_VAN': 1}, 'ASE': {'ASE_CCL': 1, 'ASE_ECD': 1, 'ASE_INT': 1, 'ASE_OBJ': 1, 'ASE_REQ': 1, 'ASE_SPD': 1, 'ASE_TSS': 1}}, 'cc_sfr': {}, 'cc_claims': {'T': {'T': 1}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'DES': {'DES': {'DES': 5}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {'KA': {'KA': 1}}, 'crypto_protocol': {'SSH': {'SSH': 1}, 'TLS': {'SSL': {'SSL': 2}}, 'IKE': {'IKE': 1}, 'IPsec': {'IPsec': 1}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 2}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The st_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL3+': 2, 'EAL3': 22, 'EAL3 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 1, 'ADV_FSP.3': 1, 'ADV_TDS.2': 1, 'ADV_FSP.4': 1, 'ADV_IMP.1': 1, 'ADV_TDS.3': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_CMS.4': 5, 'ALC_CMC.4': 4, 'ALC_FLR.3': 4, 'ALC_DEL.1': 1, 'ALC_DVS.1': 2, 'ALC_LCD.1': 2, 'ALC_CMS.1': 1}, 'ATE': {'ATE_COV.2': 1, 'ATE_DPT.1': 1, 'ATE_FUN.1': 1, 'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.3': 4}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 1, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 9, 'FAU_GEN.1.1': 2, 'FAU_GEN.1.2': 4, 'FAU_STG.3': 7, 'FAU_SAA.4': 10, 'FAU_GEN.2': 5, 'FAU_GEN.2.1': 2, 'FAU_SAR.1': 6, 'FAU_SAR.1.1': 2, 'FAU_SAR.1.2': 2, 'FAU_STG.3.1': 2, 'FAU_SAA.4.1': 2, 'FAU_SAA.4.2': 2, 'FAU_SAA.4.3': 3, 'FAU_STG.1': 1, 'FAU_SAA.1': 2, 'FAU_ARP.1.1': 2, 'FAU_GEN': 1}, 'FCS': {'FCS_COP.1': 3, 'FCS_CKM.1': 7, 'FCS_CKM.4': 7}, 'FDP': {'FDP_IFC.2.1': 3, 'FDP_IFC.2': 7, 'FDP_IFC.2.2': 2, 'FDP_IFC.1': 13, 'FDP_IFC.1.1': 2, 'FDP_UCT.1': 10, 'FDP_UIT.1': 10, 'FDP_UCT.1.1': 2, 'FDP_UIT.1.1': 2, 'FDP_UIT.1.2': 2, 'FDP_ACC.2': 5, 'FDP_ACC.2.1': 2, 'FDP_ACC.2.2': 2, 'FDP_IFF.1': 2, 'FDP_ACC.1': 2, 'FDP_ACF.1': 1, 'FDP_ITC.1': 7, 'FDP_ITC.2': 7, 'FDP_IFF.1.1': 2, 'FDP_IFF.1.2': 2, 'FDP_IFF.1.3': 2, 'FDP_IFF.1.4': 2, 'FDP_IFF.1.5': 2}, 'FIA': {'FIA_UID.1': 2, 'FIA_UAU.5.1': 4, 'FIA_UAU.5.2': 4}, 'FMT': {'FMT_MTD': 2, 'FMT_SMR.1': 10, 'FMT_MOF.1': 9, 'FMT_MTD.1': 11, 'FMT_SMF.1': 7, 'FMT_SMF.1.1': 2, 'FMT_SMR.1.1': 2, 'FMT_SMR.1.2': 2, 'FMT_MOF.1.1': 3, 'FMT_MTD.1.1': 3, 'FMT_MSA.3': 2}, 'FPT': {'FPT_TDC.1': 8, 'FPT_TDC.1.1': 2, 'FPT_TDC.1.2': 2, 'FPT_ITT.1': 10, 'FPT_ITT.1.1': 2, 'FPT_STM.1': 1}, 'FTP': {'FTP_TRP.1': 3, 'FTP_ITT.1': 1, 'FTP_ITC.1': 2, 'FTP_TRP.1.1': 4, 'FTP_TRP.1.2': 4, 'FTP_TRP.1.3': 4}}, 'cc_claims': {'D': {'D.BRS': 12}, 'O': {'O.GOOD_PCFI': 4, 'O.SUPER_ADMIN': 3, 'O.PASSWORD': 3, 'O.CRYPTO_EXT': 3, 'O.PCAOA': 13, 'O.RESIST_AUTH_ADMIN': 6, 'O.PCFI_FILTERING': 7, 'O.PCFI_APPLICATION_CONTEXT': 5, 'O.PCFI_ENCRYPTION': 14, 'O.IPS_ATTACK_DETECTION': 9, 'O.LAA_PCFI': 9, 'O.CRYPTO': 4, 'O.IPS_RFC_COMPLIANCE': 7, 'O.LAA_IPS': 10, 'O.LAA_PCAOA': 13, 'O.BACKUP_RESTORATION': 7, 'O.PROTECT_LOGS': 7, 'O.PROTECT_ADMIN_SESSIONS': 6}, 'T': {'T.IP_SPOOFING': 5, 'T.IMPROPER_USE': 12, 'T.ILLEGAL_ADMIN': 18, 'T.ADMIN_USURP': 4, 'T.ILLEGAL_ADMIN_SESSION': 4, 'T.AUDIT': 3, 'T.INTERPOSITION': 3, 'T.STRICT_USAGE': 3, 'T.AUTONOMOUS': 3, 'T.PROTECT_WORKSTATIONS': 3, 'T.PROTECT_VPN_PEER': 4, 'T.PROTECT_VPN_CLIENTS': 4, 'T.TIMESTAMPS': 3, 'T.REVOCATION_LIST': 3}, 'OE': {'OE': 2, 'OE.PROTECT_APPLIANCES': 3, 'OE.SUPER_ADMIN': 3, 'OE.PASSWORD': 3, 'OE.GOOD_PCFI': 3, 'OE.CRYPTO_EXT': 3, 'OE.PERSONNEL': 3, 'OE.INTERPOSITION': 4, 'OE.STRICT_USAGE': 3, 'OE.AUTONOMOUS': 3, 'OE.PROTECT_WORKSTATIONS': 2, 'OE.PROTECT_VPN_PEER': 3, 'OE.PROTECT_VPN_CLIENTS': 3, 'OE.TIMESTAMPS': 4, 'OE.REVOCATION_LIST': 3, 'OE.PROTECT_WORKSTATIO': 1}}, 'vendor': {'STMicroelectronics': {'STM': 1}, 'Microsoft': {'Microsoft': 2}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 17}, 'CAST': {'CAST': 9, 'CAST-128': 1}}, 'DES': {'DES': {'DES': 10}, '3DES': {'Triple-DES': 1}}, 'miscellaneous': {'Blowfish': {'Blowfish': 9}}, 'constructions': {'MAC': {'HMAC': 3}}}, 'asymmetric_crypto': {'RSA': {'RSA 2048': 1}, 'ECC': {'ECDH': {'ECDH': 4}, 'ECDSA': {'ECDSA': 6}}, 'FF': {'DH': {'Diffie-Hellman': 9, 'DH': 8}, 'DSA': {'DSA': 8}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA256': 5, 'SHA384': 3, 'SHA2': 14, 'SHA-2': 1}}, 'MD': {'MD5': {'MD5': 4}}}, 'crypto_scheme': {'MAC': {'MAC': 3}, 'KEX': {'Key Exchange': 3}, 'KA': {'Key Agreement': 1, 'KA': 4}}, 'crypto_protocol': {'SSH': {'SSH': 1}, 'TLS': {'SSL': {'SSL': 3}, 'TLS': {'TLS': 40}}, 'IKE': {'IKE': 33, 'IKEv2': 8}}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_DHE_RSA_WITH_AES_128_CBC_SHA': 1}}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 12}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 197': 1, 'FIPS PUB 46-3': 1, 'FIPS 180-1': 1, 'FIPS 180-2': 1, 'FIPS PUB 186-4': 1}, 'PKCS': {'PKCS #1': 1}, 'RFC': {'RFC 1349': 1, 'RFC 792': 1, 'RFC 3376': 1, 'RFC 768': 1, 'RFC 793': 1, 'RFC 2401': 2, 'RFC 4303': 1, 'RFC 3526': 1, 'RFC 5903': 1, 'RFC 6932': 1, 'RFC 4754': 1, 'RFC 7427': 1, 'RFC 959': 1, 'RFC 2577': 1, 'RFC 2389': 1, 'RFC 2428': 1, 'RFC 2616': 1, 'RFC 2518': 1, 'RFC 3253': 1, 'RFC 1034': 1, 'RFC 1035': 1, 'RFC 1058': 1, 'RFC 2453': 1, 'RFC 2474': 1, 'RFC 3435': 1, 'RFC 3261': 1, 'RFC 3550': 1, 'RFC 3605': 1, 'RFC 2246': 2, 'RFC 3268': 1, 'RFC 2631': 1, 'RFC 2144': 1, 'RFC 2104': 1, 'RFC 1321': 1, 'RFC 2409': 2, 'RFC 3330': 1, 'RFC 2385': 1, 'RFC 2817': 1, 'RFC 6455': 1}, 'X509': {'X.509': 17}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {'curves': {'SECP256R1': 1}}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'LS protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted': 1}}}.

    The computed heuristics were updated.

    • The _type property was set to Heuristics.
  • 14.06.2022 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The following values were inserted: {'report_pdf_hash': 'a3bc406e9a1fc6b0d5bc5135b649200ec42a55fd0767b1788bab01cfd5dbd59f', 'st_pdf_hash': 'd09805a4776537b501a094940768fe98376b6b078b26a0bdd333486155310582', 'report_txt_hash': 'e6ed447b3231a8473cc984a8d71977d56c639d04a0aaeb0c9e9af4181c2021af', 'st_txt_hash': '8b7c73bbe8a411c494f171df0f03ad7800c3886b7d74fc91b7cfe69cf017279e'}.

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'rules_symmetric_crypto': {'DES': 5}, 'rules_asymmetric_crypto': {}, 'rules_pq_crypto': {}, 'rules_hashes': {}, 'rules_crypto_schemes': {'SSL': 2}, 'rules_randomness': {}, 'rules_tee': {'SE': 2}, 'rules_side_channels': {}} values inserted.
    • The st_keywords property was updated, with the {'rules_symmetric_crypto': {'AES': 17, 'CAST-128': 1, 'DES': 10, 'HMAC': 3, 'Blowfish': 9, 'CAST': 9}, 'rules_asymmetric_crypto': {'RSA 2048': 1, 'ECDH': 4, 'ECDSA': 6, 'Diffie-Hellman': 9, 'DH': 8, 'DSA': 8}, 'rules_pq_crypto': {}, 'rules_hashes': {'SHA256': 5, 'SHA384': 3, 'MD5': 4}, 'rules_crypto_schemes': {'MAC': 3, 'Key Exchange': 3, 'TLS': 40, 'SSL': 3}, 'rules_randomness': {}, 'rules_tee': {'SE': 12}, 'rules_side_channels': {}} values inserted.
  • 13.05.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'extracted_sars': {'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'SAR', 'family': 'AVA_VAN', 'level': 3}, {'_type': 'SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'SAR', 'family': 'ALC_FLR', 'level': 3}, {'_type': 'SAR', 'family': 'ALC_CMS', 'level': 4}]}}.
  • 24.04.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'direct_dependency_cves': None, 'indirect_dependency_cves': None}.
  • 08.03.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'report_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}.
    • The following properties were deleted: ['directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
  • 18.02.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_frontpage property was updated, with the {'nscib': {}, 'niap': {}, 'canada': {}} values inserted.
    • The st_frontpage property was updated, with the {'nscib': {}, 'niap': {}, 'canada': {}} values inserted.

    The computed heuristics were updated.

    • The extracted_versions property was set to {'_type': 'Set', 'elements': ['3.7.9']}.
  • 28.01.2022 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name Stormshield Network Security UTM / NG - Firewall Software Suite (Version 3.7.9) was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Network and Network-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/files/epfiles/certificat-ANSSI-CC-2020_39%20ORIGINAL%20SIGNE.pdf",
  "dgst": "56b8fe3ae6e096e4",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "ANSSI-CC-2020/39",
    "cert_lab": null,
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_CCL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_IMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_OBJ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DVS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DEL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_ARC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_COV",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_REQ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_FUN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_INT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_LCD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_DPT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_ECD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_TDS",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_SPD",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.7.9"
      ]
    },
    "indirect_transitive_cves": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": {
      "cert_id": "2020/39",
      "description": "Le produit \u00e9valu\u00e9 est le logiciel \u00ab Stormshield Network Security UTM / NG-Firewall Software Suite, version 3.7.9 \u00bb d\u00e9velopp\u00e9 par STORMSHIELD et ex\u00e9cut\u00e9 par les appliances STORMSHIELD suivantes : SN210, SN310, SNi40, SN510, SN710, SN910, SN2000, SN3000 et SN6000.\n\nLe produit offre des fonctions de s\u00e9curit\u00e9 permettant d\u2019interconnecter un ou plusieurs r\u00e9seaux de confiance via un r\u00e9seau non maitris\u00e9",
      "developer": "Stormshield",
      "enhanced": {
        "augmented": "ALC_CMS.4, ALC_CMC.4, ALC_FLR.3 et AVA_VAN.3",
        "category": "Produits r\u00e9seau",
        "cc_version": "Crit\u00e8res Communs version 3.1r5",
        "cert_id": "2020/39",
        "certification_date": "16/06/2020",
        "developer": "Stormshield",
        "evaluation_facility": "Oppida",
        "expiration_date": "16/06/2025",
        "level": "EAL3+",
        "mutual_recognition": "SOG-IS\n                          CCRA",
        "protection_profile": "",
        "report_link": "https://cyber.gouv.fr/sites/default/files/2020/06/anssi-cc-2020_39fr.pdf",
        "sponsor": "Stormshield",
        "target_link": "https://cyber.gouv.fr/sites/default/files/2020/06/anssi-cible-cc-2020_39en.pdf"
      },
      "expiration_date": "16 Juin 2025",
      "level": "EAL3+",
      "product": "Stormshield Network Security UTM / NG-Firewall Software Suite version 3.7.9",
      "sponsor": "Stormshield",
      "url": "https://cyber.gouv.fr/produits-certifies/stormshield-network-security-utm-ng-firewall-software-suite-version-379"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "Stormshield",
  "manufacturer_web": "https://www.stormshield.eu/",
  "name": "Stormshield Network Security UTM / NG - Firewall Software Suite (Version 3.7.9)",
  "not_valid_after": "2025-06-16",
  "not_valid_before": "2020-06-16",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "certificat-ANSSI-CC-2020_39 ORIGINAL SIGNE.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "FR": {
          "ANSSI-CC-2020/39": 2
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ALC": {
          "ALC_CMC.4": 1,
          "ALC_CMS.4": 2,
          "ALC_FLR.3": 1
        },
        "AVA": {
          "AVA_VAN.3": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL2": 1,
          "EAL3": 2
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {},
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Christian Benardeau",
      "/CreationDate": "D:20200617133909+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010",
      "/ModDate": "D:20200617133909+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010",
      "/Subject": "CER/F/14.2",
      "/Title": "ANSSI-CC-2020/39",
      "pdf_file_size_bytes": 732474,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "anssi-cc-2020_39fr.pdf",
    "report_frontpage": {
      "FR": {}
    },
    "report_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "FR": {
          "ANSSI-CC-2020/39": 16
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1,
          "ADV_FSP": 1,
          "ADV_IMP": 1,
          "ADV_INT": 1,
          "ADV_SPM": 1,
          "ADV_TDS": 1
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_PRE": 1
        },
        "ALC": {
          "ALC_CMC": 1,
          "ALC_CMC.4": 3,
          "ALC_CMS": 1,
          "ALC_CMS.4": 3,
          "ALC_DEL": 1,
          "ALC_DVS": 1,
          "ALC_FLR": 2,
          "ALC_FLR.3": 4,
          "ALC_LCD": 1,
          "ALC_TAT": 1
        },
        "ASE": {
          "ASE_CCL": 1,
          "ASE_ECD": 1,
          "ASE_INT": 1,
          "ASE_OBJ": 1,
          "ASE_REQ": 1,
          "ASE_SPD": 1,
          "ASE_TSS": 1
        },
        "ATE": {
          "ATE_COV": 1,
          "ATE_DPT": 1,
          "ATE_FUN": 1,
          "ATE_IND": 1
        },
        "AVA": {
          "AVA_VAN": 1,
          "AVA_VAN.3": 3
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 3": 3,
          "EAL 5": 1,
          "EAL 7": 1,
          "EAL2": 2,
          "EAL3+": 1,
          "EAL4": 2
        },
        "ITSEC": {
          "ITSEC E3 El\u00e9mentaire": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 1
        },
        "IPsec": {
          "IPsec": 1
        },
        "SSH": {
          "SSH": 1
        },
        "TLS": {
          "SSL": {
            "SSL": 2
          }
        },
        "VPN": {
          "VPN": 2
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "CC": {
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1,
          "CCMB-2017-04-004": 1
        }
      },
      "symmetric_crypto": {
        "DES": {
          "DES": {
            "DES": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "BENARDEAU Christian",
      "/CreationDate": "D:20200617133832+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010",
      "/Keywords": "ANSSI-CC-CER-F-07 v29.2",
      "/ModDate": "D:20200617133832+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010",
      "/Subject": "Stormshield Network Security UTM / NG-Firewall Software Suite",
      "/Title": "ANSSI-CC-2020/39",
      "pdf_file_size_bytes": 628788,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.ssi.gouv.fr/",
          "mailto:certification@ssi.gouv.fr"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 15
    },
    "st_filename": "anssi-cible-cc-2020_39en.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 4
          },
          "ECDSA": {
            "ECDSA": 6
          }
        },
        "FF": {
          "DH": {
            "DH": 4,
            "Diffie-Hellman": 9
          },
          "DSA": {
            "DSA": 2
          }
        },
        "RSA": {
          "RSA 2048": 1
        }
      },
      "cc_cert_id": {
        "NL": {
          "CC-01": 3,
          "CC-02": 6,
          "CC-03": 5
        }
      },
      "cc_claims": {
        "O": {
          "O.BACKUP_RESTORATION": 6,
          "O.CRYPTO": 4,
          "O.IPS_ATTACK_DETECTION": 8,
          "O.IPS_RFC_COMPLIANCE": 7,
          "O.LAA_IPS": 9,
          "O.LAA_PCAOA": 13,
          "O.LAA_PCFI": 8,
          "O.PCAOA": 13,
          "O.PCFI_APPLICATION_CONTEXT": 4,
          "O.PCFI_ENCRYPTION": 14,
          "O.PCFI_FILTERING": 7,
          "O.PROTECT_ADMIN_SESSIONS": 6,
          "O.PROTECT_LOGS": 6,
          "O.RESIST_AUTH_ADMIN": 6
        },
        "OE": {
          "OE.AUTONOMOUS": 3,
          "OE.CRYPTO_EXT": 3,
          "OE.GOOD_PCFI": 3,
          "OE.INTERPOSITION": 4,
          "OE.PASSWORD": 3,
          "OE.PERSONNEL": 3,
          "OE.PROTECT_APPLIANCES": 3,
          "OE.PROTECT_VPN_CLIENTS": 3,
          "OE.PROTECT_VPN_PEER": 3,
          "OE.PROTECT_WORKSTATIO": 1,
          "OE.PROTECT_WORKSTATIONS": 2,
          "OE.REVOCATION_LIST": 3,
          "OE.STRICT_USAGE": 3,
          "OE.SUPER_ADMIN": 3,
          "OE.TIMESTAMPS": 4
        },
        "T": {
          "T.ADMIN_USURP": 3,
          "T.AUDIT": 2,
          "T.ILLEGAL_ADMIN": 18,
          "T.ILLEGAL_ADMIN_SESSION": 4,
          "T.IMPROPER_USE": 11,
          "T.IP_SPOOFING": 5
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_ARC.1": 1,
          "ADV_FSP.3": 1,
          "ADV_FSP.4": 1,
          "ADV_IMP.1": 1,
          "ADV_TDS.2": 1,
          "ADV_TDS.3": 1
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC": 1,
          "ALC_CMC.4": 5,
          "ALC_CMS": 1,
          "ALC_CMS.1": 1,
          "ALC_CMS.4": 5,
          "ALC_DEL.1": 1,
          "ALC_DVS.1": 2,
          "ALC_FLR.3": 4,
          "ALC_LCD.1": 2
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.2": 1,
          "ASE_REQ.2": 3,
          "ASE_SPD.1": 1,
          "ASE_TSS.1": 1
        },
        "ATE": {
          "ATE_COV.2": 1,
          "ATE_DPT.1": 1,
          "ATE_FUN.1": 1,
          "ATE_IND.2": 1
        },
        "AVA": {
          "AVA_VAN.3": 5
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL3": 22,
          "EAL3 augmented": 1,
          "EAL3+": 2
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_ARP": 2,
          "FAU_ARP.1": 14,
          "FAU_ARP.1.1": 2,
          "FAU_GEN": 1,
          "FAU_GEN.1": 7,
          "FAU_GEN.1.1": 2,
          "FAU_GEN.1.2": 4,
          "FAU_GEN.2": 6,
          "FAU_GEN.2.1": 2,
          "FAU_SAA.1": 2,
          "FAU_SAA.4": 9,
          "FAU_SAA.4.1": 4,
          "FAU_SAA.4.2": 2,
          "FAU_SAA.4.3": 3,
          "FAU_SAR.1": 7,
          "FAU_SAR.1.1": 2,
          "FAU_SAR.1.2": 2,
          "FAU_STG.3": 7,
          "FAU_STG.3.1": 2
        },
        "FCS": {
          "FCS_CKM.1": 7,
          "FCS_CKM.4": 7,
          "FCS_COP.1": 59
        },
        "FDP": {
          "FDP_ACC.1": 2,
          "FDP_ACC.2": 6,
          "FDP_ACC.2.1": 2,
          "FDP_ACC.2.2": 2,
          "FDP_IFC.1": 10,
          "FDP_IFC.1.1": 2,
          "FDP_IFC.2": 6,
          "FDP_IFC.2.1": 3,
          "FDP_IFC.2.2": 2,
          "FDP_IFF.1": 29,
          "FDP_IFF.1.1": 2,
          "FDP_IFF.1.2": 2,
          "FDP_IFF.1.3": 2,
          "FDP_IFF.1.4": 2,
          "FDP_IFF.1.5": 2,
          "FDP_ITC.1": 7,
          "FDP_ITC.2": 7,
          "FDP_UCT.1": 11,
          "FDP_UCT.1.1": 2,
          "FDP_UIT.1": 11,
          "FDP_UIT.1.1": 2,
          "FDP_UIT.1.2": 2
        },
        "FIA": {
          "FIA_UAU.5": 45,
          "FIA_UAU.5.1": 4,
          "FIA_UAU.5.2": 4,
          "FIA_UID.1": 2
        },
        "FMT": {
          "FMT_MOF.1": 10,
          "FMT_MOF.1.1": 3,
          "FMT_MSA.3": 2,
          "FMT_MTD": 22,
          "FMT_MTD.1": 11,
          "FMT_MTD.1.1": 3,
          "FMT_SMF": 1,
          "FMT_SMF.1": 12,
          "FMT_SMF.1.1": 2,
          "FMT_SMR.1": 8,
          "FMT_SMR.1.1": 3,
          "FMT_SMR.1.2": 4
        },
        "FPT": {
          "FPT_ITT.1": 10,
          "FPT_ITT.1.1": 2,
          "FPT_STM.1": 1,
          "FPT_TDC.1": 8,
          "FPT_TDC.1.1": 2,
          "FPT_TDC.1.2": 2
        },
        "FTP": {
          "FTP_ITC.1": 2,
          "FTP_ITT.1": 1,
          "FTP_TRP.1": 64,
          "FTP_TRP.1.1": 4,
          "FTP_TRP.1.2": 4,
          "FTP_TRP.1.3": 4
        }
      },
      "certification_process": {
        "OutOfScope": {
          "out of scope": 1,
          "protocol, the connection is set up by the web browser on the administration workstation which is out of scope. Likewise the TLS protocol itself is outside the scope of this evaluation. Rationale: the trusted": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 1
        }
      },
      "crypto_protocol": {
        "IKE": {
          "IKE": 33,
          "IKEv2": 8
        },
        "SSH": {
          "SSH": 1
        },
        "TLS": {
          "SSL": {
            "SSL": 2
          },
          "TLS": {
            "TLS": 40
          }
        },
        "VPN": {
          "VPN": 98
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        },
        "KEX": {
          "Key Exchange": 3
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 3
          }
        },
        "SHA": {
          "SHA2": {
            "SHA-2": 1,
            "SHA2": 9
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {
        "curves": {
          "SECP256R1": 1
        }
      },
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "CC": {
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1,
          "CCMB-2017-04-004": 1
        },
        "FIPS": {
          "FIPS 180-1": 1,
          "FIPS 180-2": 1,
          "FIPS PUB 186-4": 1,
          "FIPS PUB 197": 1,
          "FIPS PUB 46-3": 1
        },
        "PKCS": {
          "PKCS #1": 1
        },
        "RFC": {
          "RFC 1034": 1,
          "RFC 1035": 1,
          "RFC 1058": 1,
          "RFC 1321": 1,
          "RFC 1349": 1,
          "RFC 2104": 1,
          "RFC 2144": 1,
          "RFC 2246": 2,
          "RFC 2385": 1,
          "RFC 2389": 1,
          "RFC 2401": 2,
          "RFC 2409": 2,
          "RFC 2428": 1,
          "RFC 2453": 1,
          "RFC 2474": 1,
          "RFC 2518": 1,
          "RFC 2577": 1,
          "RFC 2616": 1,
          "RFC 2631": 1,
          "RFC 2817": 1,
          "RFC 3253": 1,
          "RFC 3261": 1,
          "RFC 3268": 1,
          "RFC 3330": 1,
          "RFC 3376": 1,
          "RFC 3435": 1,
          "RFC 3526": 1,
          "RFC 3550": 1,
          "RFC 3605": 1,
          "RFC 4303": 1,
          "RFC 4754": 1,
          "RFC 5903": 1,
          "RFC 6455": 1,
          "RFC 6932": 1,
          "RFC 7427": 1,
          "RFC 768": 1,
          "RFC 792": 1,
          "RFC 793": 1,
          "RFC 959": 1
        },
        "X509": {
          "X.509": 17
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 15
          },
          "CAST": {
            "CAST": 9,
            "CAST-128": 1
          }
        },
        "DES": {
          "3DES": {
            "Triple-DES": 1
          },
          "DES": {
            "DES": 9
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 3
          }
        },
        "miscellaneous": {
          "Blowfish": {
            "Blowfish": 9
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {
        "TLS": {
          "TLS_DHE_RSA_WITH_AES_128_CBC_SHA": 1
        }
      },
      "vendor": {
        "Cisco": {
          "Cisco": 1
        },
        "Microsoft": {
          "Microsoft": 4
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Stormshield",
      "/CreationDate": "D:20200515152045+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010",
      "/ModDate": "D:20200515152045+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010",
      "/Subject": "UTM / NG-Firewall Software Suite",
      "/Title": "Stormshield Network Security",
      "pdf_file_size_bytes": 2167789,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "2.1.1.General%20points%7Coutline"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 95
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": []
  },
  "report_link": "https://www.commoncriteriaportal.org/files/epfiles/anssi-cc-2020_39fr.pdf",
  "scheme": "FR",
  "security_level": {
    "_type": "Set",
    "elements": [
      "EAL3+",
      "ALC_CMC.4",
      "ALC_CMS.4",
      "AVA_VAN.3",
      "ALC_FLR.3"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/files/epfiles/anssi-cible-cc-2020_39en.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": true,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "b4dbfb34fa87e08fc50e66448949aef4e95bbc2a52329f72528a6a82fd978440",
      "txt_hash": "13e856a63140a601a987824aeb34b4acab5046db290eb8f99ffd54f5534a7ffa"
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "a3bc406e9a1fc6b0d5bc5135b649200ec42a55fd0767b1788bab01cfd5dbd59f",
      "txt_hash": "e6ed447b3231a8473cc984a8d71977d56c639d04a0aaeb0c9e9af4181c2021af"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "d09805a4776537b501a094940768fe98376b6b078b26a0bdd333486155310582",
      "txt_hash": "8b7c73bbe8a411c494f171df0f03ad7800c3886b7d74fc91b7cfe69cf017279e"
    }
  },
  "status": "active"
}