Junos OS 20.2R1-S1 for QFX5120-48T, QFX5120-48Y, QFX5120-32C, QFX5210-64C, EX4650-48Y and QFX5200-48Y

CSV information ?

Status active
Valid from 15.02.2021
Valid until 15.02.2026
Scheme 🇦🇺 AU
Manufacturer Juniper Networks, Inc.
Category Network and Network-Related Devices and Systems
Security level

Heuristics summary ?

Certification report ?

Extracted keywords

Protocols
SSH
Randomness
RBG

Evaluation facilities
Teron Labs

File metadata

Creation date: D:20210128143119+11'00'
Modification date: D:20210128143119+11'00'
Pages: 17

References

Security target ?

Extracted keywords

Symmetric Algorithms
AES, HMAC, HMAC-SHA-256, HMAC-SHA-512
Asymmetric Algorithms
RSA 2048, ECDH, ECDSA, ECC, Diffie-Hellman, DH
Hash functions
SHA-1, SHA1, SHA-256, SHA-384, SHA-512
Schemes
MAC, Key Exchange, Key exchange
Protocols
SSH, SSL, TLS, TLS1.1, TLS1.2
Randomness
DRBG, RNG, RBG
Libraries
OpenSSL
Elliptic Curves
P-256, P-384, P-521
Block cipher modes
CBC, CTR

Claims
T.UNAUTHORIZED_ADMINISTRATOR_ACCESS, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_CHANNELS, T.WEAK_AUTHENTICATION_ENDPOINTS, T.UPDATE_COMPROMISE, T.UNDETECTED_ACTIVITY, T.SECURITY_FUNCTIONALITY_COMPROMISE, T.PASSWORD_CRACKING, T.SECURITY_FUNCTIONALITY_FAILURE, A.PHYSICAL_PROTECTION, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.TRUSTED_ADMINSTRATOR, A.REGULAR_UPDATES, A.ADMIN_CREDENTIALS_SECURE, A.RESIDUAL_INFORMATION, OE.PHYSICAL, OE.NO_GENERAL_PURPOSE, OE.NO_THRU_TRAFFIC_PROTECTION, OE.TRUSTED_ADMIN, OE.UPDATES, OE.ADMIN_CREDENTIALS_SECURE, OE.RESIDUAL_INFORMATION
Security Assurance Requirements (SAR)
ADV_FSP.1, AGD_PRE.1, AGD_OPE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN, AVA_VAN.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_SPD.1, ASE_TSS.1
Security Functional Requirements (SFR)
FAU_GEN, FAU_STG_EXT, FAU_GEN.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2, FAU_STG_EXT.1, FAU_STG, FAU_GEN.2.1, FAU_STG_EXT.1.1, FAU_STG_EXT.1.2, FAU_STG_EXT.1.3, FAU_STG.1, FAU_STG.1.1, FAU_STG.1.2, FCS_CKM, FCS_COP, FCS_RBG_EXT, FCS_TLSC_EXT.1.1, FCS_NTP_EXT.1.4, FCS_SSHS_EXT.1.5, FCS_SSHC_EXT.1.5, FCS_CKM.2, FCS_CKM.1, FCS_CKM.4, FCS_RBG_EXT.1, FCS_SSHS_EXT, FCS_CKM.1.1, FCS_CKM.2.1, FCS_CKM.4.1, FCS_COP.1, FCS_RBG_EXT.1.1, FCS_RBG_EXT.1.2, FCS_SSHS_EXT.1, FCS_SSHS_EXT.1.1, FCS_SSHS_EXT.1.2, FCS_SSHS_EXT.1.3, FCS_SSHS_EXT.1.4, FCS_SSHS_EXT.1.6, FCS_SSHS_EXT.1.7, FCS_SSHS_EXT.1.8, FIA_AFL, FIA_PMG_EXT, FIA_UIA_EXT, FIA_UAU, FIA_UAU_EXT, FIA_AFL.1, FIA_PMG_EXT.1, FIA_UIA_EXT.1, FIA_UAU_EXT.2, FIA_UAU.7, FIA_AFL.1.1, FIA_AFL.1.2, FIA_PMG_EXT.1.1, FIA_UIA_EXT.1.1, FIA_UIA_EXT.1.2, FIA_UAU_EXT.2.1, FIA_UAU.7.1, FIA_UID.1, FMT_MOF, FMT_MTD, FMT_SMF, FMT_SMR, FMT_SMF.1, FMT_SMR.2, FMT_MOF.1, FMT_MTD.1, FMT_SMF.1.1, FMT_SMR.2.1, FMT_SMR.2.2, FMT_SMR.2.3, FMT_SMR.1, FPT_SKP_EXT, FPT_APW_EXT, FPT_TST_EXT, FPT_TUD_EXT, FPT_STM_EXT, FPT_APW_EXT.1, FPT_TUD_EXT.1, FPT_SKP_EXT.1, FPT_TST_EXT.1, FPT_STM_EXT.1, FPT_SKP_EXT.1.1, FPT_APW_EXT.1.1, FPT_APW_EXT.1.2, FPT_TST_EXT.1.1, FPT_TUD_EXT.1.1, FPT_TUD_EXT.1.2, FPT_TUD_EXT.1.3, FPT_STM, FPT_STM_EXT.1.1, FPT_STM_EXT.1.2, FPT_STM.1, FTA_SSL_EXT, FTA_SSL, FTA_TAB, FTA_SSL_EXT.1, FTA_SSL.3, FTA_SSL.4, FTA_TAB.1, FTA_SSL_EXT.1.1, FTP_ITC, FTP_TRP, FTP_TUD.1, FTP_ITC.1, FTP_ITC.1.1, FTP_ITC.1.2, FTP_ITC.1.3, FTP_TRP.1, FTP_ITC.2
Certification process
out of scope, It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE. 1.5.1 Overview 5. The Target of Evaluation (TOE) is Juniper Networks, Inc. Junos OS 20

Certification process
out of scope, It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE. 1.5.1 Overview 5. The Target of Evaluation (TOE) is Juniper Networks, Inc. Junos OS 20

Standards
FIPS PUB 186-4, FIPS 197, FIPS 180-4, FIPS 198-1, FIPS 186-4, PKCS #1, PKCS#1, RFC 3526, RFC 4253, RFC3526, RFC 4251, RFC 5656, RFC 4252, RFC 4254, RFC5656, RFC 6668, ISO/IEC 9796-2, ISO/IEC 14888-3, ISO/IEC 18031:2011, X.509, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2012-09-004

File metadata

Creation date: D:20210317120949+11'00'
Modification date: D:20210317120949+11'00'
Pages: 46
Creator: Microsoft® Word for Microsoft 365
Producer: Microsoft® Word for Microsoft 365

References

Heuristics ?

No heuristics are available for this certificate.

Extracted SARs

ADV_FSP.1, ASE_OBJ.1, ASE_CCL.1, ASE_REQ.1, ALC_CMC.1, AGD_PRE.1, ATE_IND.1, ASE_TSS.1, ASE_SPD.1, AVA_VAN.1, ALC_CMS.1, ASE_INT.1, ASE_ECD.1, AGD_OPE.1

References ?

No references are available for this certificate as its ID was not successfully extracted.

Updates ?

  • 28.01.2022 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name Junos OS 20.2R1-S1 for QFX5120-48T, QFX5120-48Y, QFX5120-32C, QFX5210-64C, EX4650-48Y and QFX5200-48Y was processed.

  • 30.01.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-22157', 'CVE-2022-22163', 'CVE-2022-22160', 'CVE-2022-22167']} values added.
  • 01.02.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the [[0, 'cpe:2.3:o:juniper:junos:20.2:r2:*:*:*:*:*:*'], [3, 'cpe:2.3:o:juniper:junos:20.2:r1-s3:*:*:*:*:*:*'], [4, 'cpe:2.3:o:juniper:junos:20.2:r3-s3:*:*:*:*:*:*'], [6, 'cpe:2.3:o:juniper:junos:20.2:r2-s3:*:*:*:*:*:*'], [7, 'cpe:2.3:o:juniper:junos:20.2:r3-s1:*:*:*:*:*:*'], [8, 'cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*'], [10, 'cpe:2.3:o:juniper:junos:20.2:r3:*:*:*:*:*:*'], [11, 'cpe:2.3:o:juniper:junos:20.2:-:*:*:*:*:*:*'], [12, 'cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*']] values inserted.
  • 02.02.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the [[0, 'cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*'], [1, 'cpe:2.3:o:juniper:junos:20.2:r3-s1:*:*:*:*:*:*'], [3, 'cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*'], [4, 'cpe:2.3:o:juniper:junos:20.2:r2-s1:*:*:*:*:*:*'], [7, 'cpe:2.3:o:juniper:junos:20.2:r2-s2:*:*:*:*:*:*'], [8, 'cpe:2.3:o:juniper:junos:20.2:-:*:*:*:*:*:*'], [10, 'cpe:2.3:o:juniper:junos:20.2:r1-s2:*:*:*:*:*:*'], [12, 'cpe:2.3:o:juniper:junos:20.2:r2:*:*:*:*:*:*']] values inserted.
  • 03.02.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the [[0, 'cpe:2.3:o:juniper:junos:20.2:r2-s3:*:*:*:*:*:*'], [2, 'cpe:2.3:o:juniper:junos:20.2:r1-s2:*:*:*:*:*:*'], [3, 'cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*'], [4, 'cpe:2.3:o:juniper:junos:20.2:r3-s2:*:*:*:*:*:*'], [5, 'cpe:2.3:o:juniper:junos:20.2:r2:*:*:*:*:*:*'], [7, 'cpe:2.3:o:juniper:junos:20.2:r3-s1:*:*:*:*:*:*'], [8, 'cpe:2.3:o:juniper:junos:20.2:-:*:*:*:*:*:*'], [10, 'cpe:2.3:o:juniper:junos:20.2:r1-s3:*:*:*:*:*:*']] values inserted.
    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-22172', 'CVE-2022-22180', 'CVE-2022-22173', 'CVE-2022-22174', 'CVE-2022-22169']} values added.
  • 11.02.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the [[0, 'cpe:2.3:o:juniper:junos:20.2:r3-s1:*:*:*:*:*:*'], [1, 'cpe:2.3:o:juniper:junos:20.2:r3:*:*:*:*:*:*'], [2, 'cpe:2.3:o:juniper:junos:20.2:r2:*:*:*:*:*:*'], [7, 'cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*'], [8, 'cpe:2.3:o:juniper:junos:20.2:-:*:*:*:*:*:*'], [9, 'cpe:2.3:o:juniper:junos:20.2:r1-s2:*:*:*:*:*:*'], [11, 'cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*']] values inserted.
  • 12.02.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the [[1, 'cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*'], [3, 'cpe:2.3:o:juniper:junos:20.2:-:*:*:*:*:*:*'], [4, 'cpe:2.3:o:juniper:junos:20.2:r2-s2:*:*:*:*:*:*'], [5, 'cpe:2.3:o:juniper:junos:20.2:r3:*:*:*:*:*:*'], [6, 'cpe:2.3:o:juniper:junos:20.2:r1-s3:*:*:*:*:*:*'], [10, 'cpe:2.3:o:juniper:junos:20.2:r2-s3:*:*:*:*:*:*'], [12, 'cpe:2.3:o:juniper:junos:20.2:r3-s2:*:*:*:*:*:*']] values inserted.
  • 18.02.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_frontpage property was updated, with the {'nscib': {}, 'niap': {}, 'canada': {}} values inserted.
    • The st_frontpage property was updated, with the {'nscib': {}, 'niap': {}, 'canada': {}} values inserted.

    The computed heuristics were updated.

    • The extracted_versions property was set to {'_type': 'Set', 'elements': ['20.2']}.
    • The cpe_matches property was set to {'_type': 'Set', 'elements': ['cpe:2.3:o:juniper:junos:20.2:r3-s1:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r2-s1:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r2:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r2-s2:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r1-s3:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r2-s3:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r3-s2:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r3-s3:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r1-s2:*:*:*:*:*:*', 'cpe:2.3:o:juniper:junos:20.2:r3:*:*:*:*:*:*']}.
  • 08.03.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'report_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}.
    • The following properties were deleted: ['directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
  • 28.03.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2021-31369', 'CVE-2021-31372', 'CVE-2021-0235', 'CVE-2021-0254', 'CVE-2021-0285', 'CVE-2021-0204', 'CVE-2021-0210', 'CVE-2021-31355', 'CVE-2021-31362', 'CVE-2021-0277', 'CVE-2021-0257', 'CVE-2021-0218', 'CVE-2022-22161', 'CVE-2021-31366', 'CVE-2021-31363', 'CVE-2021-31370', 'CVE-2021-31383', 'CVE-2021-31350', 'CVE-2021-0267', 'CVE-2021-31361', 'CVE-2021-0289', 'CVE-2022-22162', 'CVE-2021-0202', 'CVE-2021-0219', 'CVE-2021-31367', 'CVE-2021-0243', 'CVE-2021-0217', 'CVE-2021-0221', 'CVE-2021-0264', 'CVE-2021-0281', 'CVE-2021-0263', 'CVE-2021-31360', 'CVE-2022-22168', 'CVE-2022-22169', 'CVE-2021-0216', 'CVE-2022-22160', 'CVE-2004-0468', 'CVE-2021-31385', 'CVE-2022-22173', 'CVE-2021-0224', 'CVE-2021-0238', 'CVE-2021-0211', 'CVE-2021-0259', 'CVE-2021-0231', 'CVE-2021-0295', 'CVE-2021-0236', 'CVE-2021-0228', 'CVE-2021-0214', 'CVE-2022-22170', 'CVE-2021-31378', 'CVE-2021-0223', 'CVE-2021-31371', 'CVE-2021-31373', 'CVE-2021-0291', 'CVE-2021-0280', 'CVE-2021-0262', 'CVE-2021-0256', 'CVE-2004-0230', 'CVE-2021-31354', 'CVE-2021-0284', 'CVE-2022-22163', 'CVE-2022-22171', 'CVE-2022-22179', 'CVE-2022-22157', 'CVE-2021-31364', 'CVE-2022-22167', 'CVE-2021-0230', 'CVE-2021-31351', 'CVE-2021-0242', 'CVE-2021-31377', 'CVE-2021-0287', 'CVE-2021-31365', 'CVE-2022-22172', 'CVE-2021-0288', 'CVE-2021-0261', 'CVE-2022-22174', 'CVE-2021-0299', 'CVE-2021-31374', 'CVE-2022-22176', 'CVE-2021-0205', 'CVE-2021-0240', 'CVE-2021-0237', 'CVE-2022-22177', 'CVE-2021-0266', 'CVE-2021-31382', 'CVE-2021-0269', 'CVE-2021-31386', 'CVE-2021-31368', 'CVE-2022-22180', 'CVE-2021-0283', 'CVE-2021-0293', 'CVE-2022-22155', 'CVE-2022-22156', 'CVE-2021-0241', 'CVE-2021-0255', 'CVE-2021-0278', 'CVE-2021-31353', 'CVE-2021-0229', 'CVE-2021-31359']} values discarded.
  • 29.03.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2021-31369', 'CVE-2021-31372', 'CVE-2021-0235', 'CVE-2021-0254', 'CVE-2021-0285', 'CVE-2021-0204', 'CVE-2021-0210', 'CVE-2021-31355', 'CVE-2021-31362', 'CVE-2021-0277', 'CVE-2021-0257', 'CVE-2021-0218', 'CVE-2022-22161', 'CVE-2021-31366', 'CVE-2021-31363', 'CVE-2021-31370', 'CVE-2021-31383', 'CVE-2021-31350', 'CVE-2021-0267', 'CVE-2021-31361', 'CVE-2021-0289', 'CVE-2022-22162', 'CVE-2021-0202', 'CVE-2021-0219', 'CVE-2021-31367', 'CVE-2021-0243', 'CVE-2021-0217', 'CVE-2021-0221', 'CVE-2021-0264', 'CVE-2021-0281', 'CVE-2021-0263', 'CVE-2021-31360', 'CVE-2022-22168', 'CVE-2022-22169', 'CVE-2021-0216', 'CVE-2022-22160', 'CVE-2004-0468', 'CVE-2021-31385', 'CVE-2022-22173', 'CVE-2021-0224', 'CVE-2021-0238', 'CVE-2021-0211', 'CVE-2021-0259', 'CVE-2021-0231', 'CVE-2021-0295', 'CVE-2021-0236', 'CVE-2021-0228', 'CVE-2021-0214', 'CVE-2022-22170', 'CVE-2021-31378', 'CVE-2021-0223', 'CVE-2021-31371', 'CVE-2021-31373', 'CVE-2021-0291', 'CVE-2021-0280', 'CVE-2021-0262', 'CVE-2021-0256', 'CVE-2004-0230', 'CVE-2021-31354', 'CVE-2021-0284', 'CVE-2022-22163', 'CVE-2022-22171', 'CVE-2022-22179', 'CVE-2022-22157', 'CVE-2021-31364', 'CVE-2022-22167', 'CVE-2021-0230', 'CVE-2021-31351', 'CVE-2021-0242', 'CVE-2021-31377', 'CVE-2021-0287', 'CVE-2021-31365', 'CVE-2022-22172', 'CVE-2021-0288', 'CVE-2021-0261', 'CVE-2022-22174', 'CVE-2021-0299', 'CVE-2021-31374', 'CVE-2022-22176', 'CVE-2021-0205', 'CVE-2021-0240', 'CVE-2021-0237', 'CVE-2022-22177', 'CVE-2021-0266', 'CVE-2021-31382', 'CVE-2021-0269', 'CVE-2021-31386', 'CVE-2021-31368', 'CVE-2022-22180', 'CVE-2021-0283', 'CVE-2021-0293', 'CVE-2022-22155', 'CVE-2022-22156', 'CVE-2021-0241', 'CVE-2021-0255', 'CVE-2021-0278', 'CVE-2021-31353', 'CVE-2021-0229', 'CVE-2021-31359']} values added.
  • 22.04.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:juniper:junos:20.2:r3-s4:*:*:*:*:*:*']} values added.
  • 23.04.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-22191', 'CVE-2022-22188', 'CVE-2022-22182', 'CVE-2022-22185', 'CVE-2022-22197', 'CVE-2022-22186', 'CVE-2022-22196', 'CVE-2022-22181']} values added.
  • 24.04.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'rules_cert_id': {'EFT-T017-ETR 1.0': 2}} data.

    The computed heuristics were updated.

    • The following values were inserted: {'direct_dependency_cves': None, 'indirect_dependency_cves': None}.
    • The cert_id property was set to EFT-T017-ETR 1.0.
  • 13.05.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'extracted_sars': {'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_FSP', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMC', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_IND', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_OBJ', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_REQ', 'level': 1}, {'_type': 'SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMS', 'level': 1}, {'_type': 'SAR', 'family': 'AVA_VAN', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_INT', 'level': 1}]}}.
  • 05.06.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:juniper:junos:20.2:-:*:*:*:*:*:*']} values added.
  • 14.06.2022 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The following values were inserted: {'report_pdf_hash': 'bddf13f40de3d9cb92c9abbe68aaa10b8a6c79a9e423de8f190974b3a8ee8e6f', 'st_pdf_hash': '6472d784f3dfccd33f0ced9d81e9b904a4e58afa199091a0ca27c662b06f4377', 'report_txt_hash': '10a9390fcc6bc5718d0eb46eeaee9398795880e05eb10a244c0f2eac3e05f7eb', 'st_txt_hash': 'd2fe8cca8851a7d5afb3d7d84a8c94ddd36185f2efb521bfcc984a24b4f04847'}.

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'rules_symmetric_crypto': {}, 'rules_asymmetric_crypto': {}, 'rules_pq_crypto': {}, 'rules_hashes': {}, 'rules_crypto_schemes': {}, 'rules_randomness': {'RBG': 1}, 'rules_tee': {}, 'rules_side_channels': {}} values inserted.
    • The st_keywords property was updated, with the {'rules_symmetric_crypto': {'AES': 9, 'HMAC': 1, 'HMAC-SHA-256': 3, 'HMAC-SHA-512': 3}, 'rules_asymmetric_crypto': {'RSA 2048': 1, 'ECDH': 4, 'ECDSA': 8, 'ECC': 5, 'Diffie-Hellman': 4, 'DH': 6, 'DSA': 8}, 'rules_pq_crypto': {}, 'rules_hashes': {'SHA-1': 5, 'SHA1': 8, 'SHA-256': 5, 'SHA-384': 4, 'SHA-512': 5}, 'rules_crypto_schemes': {'MAC': 4, 'Key Exchange': 3, 'Key exchange': 1, 'SSL': 7, 'TLS': 7}, 'rules_randomness': {'DRBG': 7, 'RNG': 1, 'RBG': 9}, 'rules_tee': {'SE': 4}, 'rules_side_channels': {}} values inserted.
  • 17.07.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_metadata property was updated, with the {'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.cyber.gov.au/sites/default/files/2019-03/AISEP_Policy_Manual.pdf', 'https://www.nzism.gcsb.govt.nz/ism-document/', 'https://www.commoncriteriaportal.org/', 'https://www.gcsb.govt.nz/', 'https://www.cyber.gov.au/ism', 'https://support.juniper.net/support']}} values inserted.
    • The st_metadata property was updated, with the {'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0453', 'http://www.juniper.net/']}} values inserted.
    • The report_keywords property was set to {'cc_cert_id': {'AU': {'EFT-T017-ETR 1.0': 2}}, 'cc_protection_profile_id': {}, 'cc_security_level': {}, 'cc_sar': {}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'Teron': {'Teron Labs': 3}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'SSH': {'SSH': 3}}, 'randomness': {'RNG': {'RBG': 1}}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The st_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {}, 'cc_sar': {'ADV': {'ADV_FSP.1': 1}, 'AGD': {'AGD_PRE.1': 1, 'AGD_OPE.1': 1}, 'ALC': {'ALC_CMC.1': 1, 'ALC_CMS.1': 1}, 'ATE': {'ATE_IND.1': 1}, 'AVA': {'AVA_VAN': 1, 'AVA_VAN.1': 1}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.1': 1, 'ASE_REQ.1': 1, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN': 2, 'FAU_STG_EXT': 2, 'FAU_GEN.1': 13, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2': 5, 'FAU_STG_EXT.1': 5, 'FAU_GEN.2.1': 1, 'FAU_STG_EXT.1.1': 1, 'FAU_STG_EXT.1.2': 1, 'FAU_STG_EXT.1.3': 1, 'FAU_STG.1': 4, 'FAU_STG.1.1': 1, 'FAU_STG.1.2': 1}, 'FCS': {'FCS_CKM': 2, 'FCS_COP': 2, 'FCS_RBG_EXT': 2, 'FCS_SSHS_EXT': 2, 'FCS_TLSC_EXT.1.1': 2, 'FCS_NTP_EXT.1.4': 1, 'FCS_SSHS_EXT.1.5': 2, 'FCS_SSHC_EXT.1.5': 1, 'FCS_CKM.2': 11, 'FCS_CKM.1': 20, 'FCS_CKM.4': 17, 'FCS_RBG_EXT.1': 7, 'FCS_CKM.1.1': 1, 'FCS_CKM.2.1': 1, 'FCS_CKM.4.1': 1, 'FCS_COP.1': 2, 'FCS_RBG_EXT.1.1': 2, 'FCS_RBG_EXT.1.2': 1, 'FCS_SSHS_EXT.1': 6, 'FCS_SSHS_EXT.1.1': 1, 'FCS_SSHS_EXT.1.2': 1, 'FCS_SSHS_EXT.1.3': 1, 'FCS_SSHS_EXT.1.4': 1, 'FCS_SSHS_EXT.1.6': 1, 'FCS_SSHS_EXT.1.7': 1, 'FCS_SSHS_EXT.1.8': 1}, 'FIA': {'FIA_AFL': 2, 'FIA_PMG_EXT': 2, 'FIA_UIA_EXT': 2, 'FIA_UAU': 2, 'FIA_UAU_EXT': 2, 'FIA_AFL.1': 9, 'FIA_PMG_EXT.1': 5, 'FIA_UIA_EXT.1': 11, 'FIA_UAU_EXT.2': 5, 'FIA_UAU.7': 5, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 1, 'FIA_PMG_EXT.1.1': 1, 'FIA_UIA_EXT.1.1': 1, 'FIA_UIA_EXT.1.2': 1, 'FIA_UAU_EXT.2.1': 1, 'FIA_UAU.7.1': 1, 'FIA_UID.1': 3, 'FIA_UAU.1': 2}, 'FMT': {'FMT_MOF': 2, 'FMT_MTD': 2, 'FMT_SMF': 2, 'FMT_SMR': 2, 'FMT_SMF.1': 18, 'FMT_SMR.2': 12, 'FMT_SMF.1.1': 1, 'FMT_SMR.2.1': 1, 'FMT_SMR.2.2': 1, 'FMT_SMR.2.3': 1, 'FMT_SMR.1': 5}, 'FPT': {'FPT_SKP_EXT': 2, 'FPT_APW_EXT': 2, 'FPT_TST_EXT': 2, 'FPT_TUD_EXT': 2, 'FPT_STM_EXT': 2, 'FPT_APW_EXT.1': 6, 'FPT_TUD_EXT.1': 7, 'FPT_SKP_EXT.1': 5, 'FPT_TST_EXT.1': 6, 'FPT_STM_EXT.1': 3, 'FPT_SKP_EXT.1.1': 1, 'FPT_APW_EXT.1.1': 1, 'FPT_APW_EXT.1.2': 1, 'FPT_TST_EXT.1.1': 1, 'FPT_TUD_EXT.1.1': 1, 'FPT_TUD_EXT.1.2': 1, 'FPT_TUD_EXT.1.3': 1, 'FPT_STM_EXT.1.1': 1, 'FPT_STM_EXT.1.2': 1, 'FPT_STM.1': 3}, 'FTA': {'FTA_SSL_EXT': 2, 'FTA_SSL': 2, 'FTA_TAB': 2, 'FTA_SSL_EXT.1': 7, 'FTA_SSL.3': 7, 'FTA_SSL.4': 5, 'FTA_TAB.1': 9, 'FTA_SSL_EXT.1.1': 1}, 'FTP': {'FTP_ITC': 2, 'FTP_TRP': 2, 'FTP_TUD.1': 1, 'FTP_ITC.1': 21, 'FTP_ITC.1.1': 1, 'FTP_ITC.1.2': 1, 'FTP_ITC.1.3': 1, 'FTP_ITC.2': 6}}, 'cc_claims': {'T': {'T.UNAUTHORIZED_ADMINISTRATOR_ACCESS': 1, 'T.WEAK_CRYPTOGRAPHY': 1, 'T.UNTRUSTED_COMMUNICATION_CHANNELS': 1, 'T.WEAK_AUTHENTICATION_ENDPOINTS': 1, 'T.UPDATE_COMPROMISE': 1, 'T.UNDETECTED_ACTIVITY': 1, 'T.SECURITY_FUNCTIONALITY_COMPROMISE': 1, 'T.PASSWORD_CRACKING': 1, 'T.SECURITY_FUNCTIONALITY_FAILURE': 1}, 'A': {'A.PHYSICAL_PROTECTION': 1, 'A.LIMITED_FUNCTIONALITY': 1, 'A.NO_THRU_TRAFFIC_PROTECTION': 1, 'A.TRUSTED_ADMINSTRATOR': 1, 'A.REGULAR_UPDATES': 1, 'A.ADMIN_CREDENTIALS_SECURE': 1, 'A.RESIDUAL_INFORMATION': 1}, 'OE': {'OE.PHYSICAL': 1, 'OE.NO_GENERAL_PURPOSE': 1, 'OE.NO_THRU_TRAFFIC_PROTECTION': 1, 'OE.TRUSTED_ADMIN': 1, 'OE.UPDATES': 1, 'OE.ADMIN_CREDENTIALS_SECURE': 1, 'OE.RESIDUAL_INFORMATION': 1}}, 'vendor': {'STMicroelectronics': {'STM': 13}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 9}}, 'constructions': {'MAC': {'HMAC': 1, 'HMAC-SHA-256': 3, 'HMAC-SHA-512': 3}}}, 'asymmetric_crypto': {'RSA': {'RSA 2048': 1}, 'ECC': {'ECDH': {'ECDH': 4}, 'ECDSA': {'ECDSA': 8}, 'ECC': {'ECC': 5}}, 'FF': {'DH': {'Diffie-Hellman': 4, 'DH': 6}, 'DSA': {'DSA': 8}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 5, 'SHA1': 8}, 'SHA2': {'SHA-256': 5, 'SHA-384': 4, 'SHA-512': 5}}}, 'crypto_scheme': {'MAC': {'MAC': 4}, 'KEX': {'Key Exchange': 3, 'Key exchange': 1, 'KEX': 1}, 'KA': {'KA': 1}}, 'crypto_protocol': {'SSH': {'SSH': 97}, 'TLS': {'SSL': {'SSL': 7}, 'TLS': {'TLS': 7, 'TLS1.1': 1, 'TLS1.2': 1}}}, 'randomness': {'PRNG': {'DRBG': 7}, 'RNG': {'RNG': 1, 'RBG': 9}}, 'cipher_mode': {'CBC': {'CBC': 5}, 'CTR': {'CTR': 7}}, 'ecc_curve': {'NIST': {'P-256': 8, 'P-384': 6, 'P-521': 6}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'OpenSSL': {'OpenSSL': 3}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 4}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 186-4': 6, 'FIPS 197': 2, 'FIPS 180-4': 3, 'FIPS 198-1': 3, 'FIPS 186-4': 2}, 'PKCS': {'PKCS #1': 1, 'PKCS#1': 1}, 'RFC': {'RFC 3526': 2, 'RFC 4253': 3, 'RFC 4251': 2, 'RFC 5656': 1, 'RFC 4252': 1, 'RFC 4254': 1, 'RFC5656': 1, 'RFC 6668': 1}, 'ISO': {'ISO/IEC 9796-2': 1, 'ISO/IEC 14888-3': 1, 'ISO/IEC 18031:2011': 2}, 'X509': {'X.509': 3}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2012-09-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 1, '. It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE': 1, 'erview. It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE. 1.5.1 Overview 5. The Target of Evaluation (TOE) is Juniper Networks, Inc. Junos OS': 1}}}.

    The computed heuristics were updated.

    • The _type property was set to Heuristics.
  • 18.07.2022 The certificate data changed.
    Certificate changed

    The _type was updated.

    • The new value is sec_certs.sample.common_criteria.CommonCriteriaCert.

    The Protection profiles of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'collaborative Protection Profile for Network Devices v2.1', 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/CPP_ND_V2.1.pdf', 'pp_ids': None}]}.

    The state of the certificate object was updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState.

    The PDF extraction data was updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData.

    The computed heuristics were updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics.
    • The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
    • The report_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
    • The extracted_sars property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}]}.
  • 27.07.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2021-0205', 'CVE-2021-31369', 'CVE-2021-0237', 'CVE-2021-0263', 'CVE-2021-0235', 'CVE-2021-0266', 'CVE-2021-0285', 'CVE-2021-31382', 'CVE-2022-22168', 'CVE-2021-0216', 'CVE-2021-31368', 'CVE-2022-22160', 'CVE-2022-22180', 'CVE-2021-0264', 'CVE-2022-22155', 'CVE-2021-0238', 'CVE-2021-0259', 'CVE-2021-0231', 'CVE-2021-31364', 'CVE-2022-22167', 'CVE-2021-0230', 'CVE-2021-0257', 'CVE-2021-0295', 'CVE-2021-31351', 'CVE-2021-0242', 'CVE-2022-22191', 'CVE-2022-22188', 'CVE-2022-22161', 'CVE-2022-22185', 'CVE-2021-0228', 'CVE-2021-31366', 'CVE-2021-31365', 'CVE-2021-31370', 'CVE-2022-22186', 'CVE-2021-31361', 'CVE-2021-0289', 'CVE-2021-0288', 'CVE-2021-0202', 'CVE-2021-31367', 'CVE-2021-31371', 'CVE-2022-22174', 'CVE-2021-0243', 'CVE-2021-31373', 'CVE-2021-0217', 'CVE-2021-0280']} values discarded.
  • 31.07.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-22215', 'CVE-2022-22214']} values added.
  • 24.09.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The following values were inserted: {'report_filename': 'T0017-Certification_Report_V1.0.pdf', 'st_filename': 'Juniper QFX5120, QFX5200, QFX5210, EX4650 Junos 20.2R1 ST v1.3.pdf'}.
    • The report_keywords property was updated, with the {'cc_cert_id': {}, 'eval_facility': {'__update__': {'Teron': {'__update__': {'Teron Labs': 4}}}}} data.
    • The st_keywords property was updated, with the {'cc_sfr': {'__update__': {'FAU': {'__insert__': {'FAU_STG': 1}, '__update__': {'FAU_GEN.1': 10}}, 'FCS': {'__update__': {'FCS_COP': 28, 'FCS_SSHS_EXT': 1, 'FCS_CKM.2': 10, 'FCS_CKM.1': 17, 'FCS_CKM.4': 11, 'FCS_COP.1': 6}}, 'FIA': {'__delete__': ['FIA_UAU.1']}, 'FMT': {'__insert__': {'FMT_MOF.1': 3, 'FMT_MTD.1': 2}, '__update__': {'FMT_MOF': 19, 'FMT_MTD': 14, 'FMT_SMF.1': 13}}, 'FPT': {'__insert__': {'FPT_STM': 3}, '__update__': {'FPT_STM_EXT.1': 2}}, 'FTA': {'__update__': {'FTA_SSL.3': 8, 'FTA_SSL.4': 6}}, 'FTP': {'__insert__': {'FTP_TRP.1': 3}, '__update__': {'FTP_TRP': 8, 'FTP_ITC.1': 22}}}}, 'vendor': {}, 'symmetric_crypto': {'__update__': {'constructions': {'__update__': {'MAC': {'__update__': {'HMAC-SHA-512': 2}}}}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__update__': {'DH': 2}}}, '__delete__': ['DSA']}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 2, 'SHA1': 4}}, 'SHA2': {'__update__': {'SHA-256': 3, 'SHA-512': 2}}}}}}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 2}}, 'KEX': {'__delete__': ['KEX']}}, '__delete__': ['KA']}, 'crypto_protocol': {'__update__': {'TLS': {'__update__': {'SSL': {'__update__': {'SSL': 2}}}}}}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 4}}, 'RNG': {'__update__': {'RBG': 2}}}}, 'cipher_mode': {'__update__': {'CBC': {'__update__': {'CBC': 4}}, 'CTR': {'__update__': {'CTR': 4}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'RFC': {'__insert__': {'RFC3526': 1}}}}, 'certification_process': {'__update__': {'OutOfScope': {'__insert__': {'It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE. 1.5.1 Overview 5. The Target of Evaluation (TOE) is Juniper Networks, Inc. Junos OS 20': 1}, '__delete__': ['. It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE', 'erview. It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE. 1.5.1 Overview 5. The Target of Evaluation (TOE) is Juniper Networks, Inc. Junos OS']}}}} data.

    The computed heuristics were updated.

    • The cert_id property was set to None.
  • 04.10.2022 The certificate data changed.
    Certificate changed

    The Protection profiles of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'collaborative Protection Profile for Network Devices v2.1', 'pp_eal': 'http://www.commoncriteriaportal.org/files/ppfiles/CPP_ND_V2.1.pdf', 'pp_link': None, 'pp_ids': None}]}.
  • 05.10.2022 The certificate data changed.
    Certificate changed

    The Protection profiles of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'collaborative Protection Profile for Network Devices v2.1', 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/CPP_ND_V2.1.pdf', 'pp_ids': None}]}.

    The state of the certificate object was updated.

    • The following values were inserted: {'st_convert_garbage': False, 'report_convert_garbage': False}.
  • 10.10.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was updated, with the {'_type': 'Set', 'elements': ['cpe:2.3:o:juniper:junos:20.2:-:*:*:*:*:*:*']} values discarded.
  • 22.10.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-22224', 'CVE-2022-22208', 'CVE-2022-22244', 'CVE-2022-22242', 'CVE-2022-22241', 'CVE-2022-22245', 'CVE-2022-22243', 'CVE-2022-22246', 'CVE-2022-22220']} values added.
  • 23.10.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The related_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2022-22238', 'CVE-2022-22230', 'CVE-2022-22250', 'CVE-2022-22225', 'CVE-2022-22240']} values added.
  • 16.11.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The cpe_matches property was set to None.
    • The related_cves property was set to None.

Raw data

{
  "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert",
  "category": "Network and Network-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/files/epfiles/EFT-T017%20Cert%202021_135%20OS.pdf",
  "dgst": "5ceb859ce72daecf",
  "heuristics": {
    "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics",
    "cert_id": null,
    "cert_lab": null,
    "cpe_matches": null,
    "direct_dependency_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_OBJ",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_CCL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_REQ",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_INT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_SPD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_ECD",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "20.2"
      ]
    },
    "indirect_dependency_cves": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "Juniper Networks, Inc.",
  "manufacturer_web": "https://www.juniper.net/",
  "name": "Junos OS 20.2R1-S1 for QFX5120-48T, QFX5120-48Y, QFX5120-32C, QFX5210-64C, EX4650-48Y and QFX5200-48Y",
  "not_valid_after": "2026-02-15",
  "not_valid_before": "2021-02-15",
  "pdf_data": {
    "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData",
    "report_filename": "T0017-Certification_Report_V1.0.pdf",
    "report_frontpage": {
      "anssi": {},
      "bsi": {},
      "canada": {},
      "niap": {},
      "nscib": {}
    },
    "report_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {},
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {},
      "cc_security_level": {},
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "SSH": {
          "SSH": 3
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "Teron": {
          "Teron Labs": 4
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RBG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {},
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/CreationDate": "D:20210128143119+11\u002700\u0027",
      "/ModDate": "D:20210128143119+11\u002700\u0027",
      "pdf_file_size_bytes": 3964125,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.cyber.gov.au/sites/default/files/2019-03/AISEP_Policy_Manual.pdf",
          "https://www.cyber.gov.au/ism",
          "https://www.gcsb.govt.nz/",
          "https://support.juniper.net/support",
          "https://www.nzism.gcsb.govt.nz/ism-document/",
          "https://www.commoncriteriaportal.org/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 17
    },
    "st_filename": "Juniper QFX5120, QFX5200, QFX5210, EX4650 Junos 20.2R1 ST v1.3.pdf",
    "st_frontpage": {
      "anssi": {},
      "bsi": {},
      "canada": {},
      "niap": {},
      "nscib": {}
    },
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 5
          },
          "ECDH": {
            "ECDH": 4
          },
          "ECDSA": {
            "ECDSA": 8
          }
        },
        "FF": {
          "DH": {
            "DH": 2,
            "Diffie-Hellman": 4
          }
        },
        "RSA": {
          "RSA 2048": 1
        }
      },
      "cc_cert_id": {},
      "cc_claims": {
        "A": {
          "A.ADMIN_CREDENTIALS_SECURE": 1,
          "A.LIMITED_FUNCTIONALITY": 1,
          "A.NO_THRU_TRAFFIC_PROTECTION": 1,
          "A.PHYSICAL_PROTECTION": 1,
          "A.REGULAR_UPDATES": 1,
          "A.RESIDUAL_INFORMATION": 1,
          "A.TRUSTED_ADMINSTRATOR": 1
        },
        "OE": {
          "OE.ADMIN_CREDENTIALS_SECURE": 1,
          "OE.NO_GENERAL_PURPOSE": 1,
          "OE.NO_THRU_TRAFFIC_PROTECTION": 1,
          "OE.PHYSICAL": 1,
          "OE.RESIDUAL_INFORMATION": 1,
          "OE.TRUSTED_ADMIN": 1,
          "OE.UPDATES": 1
        },
        "T": {
          "T.PASSWORD_CRACKING": 1,
          "T.SECURITY_FUNCTIONALITY_COMPROMISE": 1,
          "T.SECURITY_FUNCTIONALITY_FAILURE": 1,
          "T.UNAUTHORIZED_ADMINISTRATOR_ACCESS": 1,
          "T.UNDETECTED_ACTIVITY": 1,
          "T.UNTRUSTED_COMMUNICATION_CHANNELS": 1,
          "T.UPDATE_COMPROMISE": 1,
          "T.WEAK_AUTHENTICATION_ENDPOINTS": 1,
          "T.WEAK_CRYPTOGRAPHY": 1
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_FSP.1": 1
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC.1": 1,
          "ALC_CMS.1": 1
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.1": 1,
          "ASE_REQ.1": 1,
          "ASE_SPD.1": 1,
          "ASE_TSS.1": 1
        },
        "ATE": {
          "ATE_IND.1": 1
        },
        "AVA": {
          "AVA_VAN": 1,
          "AVA_VAN.1": 1
        }
      },
      "cc_security_level": {},
      "cc_sfr": {
        "FAU": {
          "FAU_GEN": 2,
          "FAU_GEN.1": 10,
          "FAU_GEN.1.1": 1,
          "FAU_GEN.1.2": 1,
          "FAU_GEN.2": 5,
          "FAU_GEN.2.1": 1,
          "FAU_STG": 1,
          "FAU_STG.1": 4,
          "FAU_STG.1.1": 1,
          "FAU_STG.1.2": 1,
          "FAU_STG_EXT": 2,
          "FAU_STG_EXT.1": 5,
          "FAU_STG_EXT.1.1": 1,
          "FAU_STG_EXT.1.2": 1,
          "FAU_STG_EXT.1.3": 1
        },
        "FCS": {
          "FCS_CKM": 2,
          "FCS_CKM.1": 17,
          "FCS_CKM.1.1": 1,
          "FCS_CKM.2": 10,
          "FCS_CKM.2.1": 1,
          "FCS_CKM.4": 11,
          "FCS_CKM.4.1": 1,
          "FCS_COP": 28,
          "FCS_COP.1": 6,
          "FCS_NTP_EXT.1.4": 1,
          "FCS_RBG_EXT": 2,
          "FCS_RBG_EXT.1": 7,
          "FCS_RBG_EXT.1.1": 2,
          "FCS_RBG_EXT.1.2": 1,
          "FCS_SSHC_EXT.1.5": 1,
          "FCS_SSHS_EXT": 1,
          "FCS_SSHS_EXT.1": 6,
          "FCS_SSHS_EXT.1.1": 1,
          "FCS_SSHS_EXT.1.2": 1,
          "FCS_SSHS_EXT.1.3": 1,
          "FCS_SSHS_EXT.1.4": 1,
          "FCS_SSHS_EXT.1.5": 2,
          "FCS_SSHS_EXT.1.6": 1,
          "FCS_SSHS_EXT.1.7": 1,
          "FCS_SSHS_EXT.1.8": 1,
          "FCS_TLSC_EXT.1.1": 2
        },
        "FIA": {
          "FIA_AFL": 2,
          "FIA_AFL.1": 9,
          "FIA_AFL.1.1": 1,
          "FIA_AFL.1.2": 1,
          "FIA_PMG_EXT": 2,
          "FIA_PMG_EXT.1": 5,
          "FIA_PMG_EXT.1.1": 1,
          "FIA_UAU": 2,
          "FIA_UAU.7": 5,
          "FIA_UAU.7.1": 1,
          "FIA_UAU_EXT": 2,
          "FIA_UAU_EXT.2": 5,
          "FIA_UAU_EXT.2.1": 1,
          "FIA_UIA_EXT": 2,
          "FIA_UIA_EXT.1": 11,
          "FIA_UIA_EXT.1.1": 1,
          "FIA_UIA_EXT.1.2": 1,
          "FIA_UID.1": 3
        },
        "FMT": {
          "FMT_MOF": 19,
          "FMT_MOF.1": 3,
          "FMT_MTD": 14,
          "FMT_MTD.1": 2,
          "FMT_SMF": 2,
          "FMT_SMF.1": 13,
          "FMT_SMF.1.1": 1,
          "FMT_SMR": 2,
          "FMT_SMR.1": 5,
          "FMT_SMR.2": 12,
          "FMT_SMR.2.1": 1,
          "FMT_SMR.2.2": 1,
          "FMT_SMR.2.3": 1
        },
        "FPT": {
          "FPT_APW_EXT": 2,
          "FPT_APW_EXT.1": 6,
          "FPT_APW_EXT.1.1": 1,
          "FPT_APW_EXT.1.2": 1,
          "FPT_SKP_EXT": 2,
          "FPT_SKP_EXT.1": 5,
          "FPT_SKP_EXT.1.1": 1,
          "FPT_STM": 3,
          "FPT_STM.1": 3,
          "FPT_STM_EXT": 2,
          "FPT_STM_EXT.1": 2,
          "FPT_STM_EXT.1.1": 1,
          "FPT_STM_EXT.1.2": 1,
          "FPT_TST_EXT": 2,
          "FPT_TST_EXT.1": 6,
          "FPT_TST_EXT.1.1": 1,
          "FPT_TUD_EXT": 2,
          "FPT_TUD_EXT.1": 7,
          "FPT_TUD_EXT.1.1": 1,
          "FPT_TUD_EXT.1.2": 1,
          "FPT_TUD_EXT.1.3": 1
        },
        "FTA": {
          "FTA_SSL": 2,
          "FTA_SSL.3": 8,
          "FTA_SSL.4": 6,
          "FTA_SSL_EXT": 2,
          "FTA_SSL_EXT.1": 7,
          "FTA_SSL_EXT.1.1": 1,
          "FTA_TAB": 2,
          "FTA_TAB.1": 9
        },
        "FTP": {
          "FTP_ITC": 2,
          "FTP_ITC.1": 22,
          "FTP_ITC.1.1": 1,
          "FTP_ITC.1.2": 1,
          "FTP_ITC.1.3": 1,
          "FTP_ITC.2": 6,
          "FTP_TRP": 8,
          "FTP_TRP.1": 3,
          "FTP_TUD.1": 1
        }
      },
      "certification_process": {
        "OutOfScope": {
          "It first provides a descriptive overview of the TOE and then summarises the items which are out of scope of the TOE. 1.5.1 Overview 5. The Target of Evaluation (TOE) is Juniper Networks, Inc. Junos OS 20": 1,
          "out of scope": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 4
        },
        "CTR": {
          "CTR": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 3
        }
      },
      "crypto_protocol": {
        "SSH": {
          "SSH": 97
        },
        "TLS": {
          "SSL": {
            "SSL": 2
          },
          "TLS": {
            "TLS": 7,
            "TLS1.1": 1,
            "TLS1.2": 1
          }
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key Exchange": 3,
          "Key exchange": 1
        },
        "MAC": {
          "MAC": 2
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 8,
          "P-384": 6,
          "P-521": 6
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 2,
            "SHA1": 4
          },
          "SHA2": {
            "SHA-256": 3,
            "SHA-384": 4,
            "SHA-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 4
        },
        "RNG": {
          "RBG": 2,
          "RNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "CC": {
          "CCMB-2012-09-004": 1,
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1
        },
        "FIPS": {
          "FIPS 180-4": 3,
          "FIPS 186-4": 2,
          "FIPS 197": 2,
          "FIPS 198-1": 3,
          "FIPS PUB 186-4": 6
        },
        "ISO": {
          "ISO/IEC 14888-3": 1,
          "ISO/IEC 18031:2011": 2,
          "ISO/IEC 9796-2": 1
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 1
        },
        "RFC": {
          "RFC 3526": 2,
          "RFC 4251": 2,
          "RFC 4252": 1,
          "RFC 4253": 3,
          "RFC 4254": 1,
          "RFC 5656": 1,
          "RFC 6668": 1,
          "RFC3526": 1,
          "RFC5656": 1
        },
        "X509": {
          "X.509": 3
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 9
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 1,
            "HMAC-SHA-256": 3,
            "HMAC-SHA-512": 2
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "st_metadata": {
      "/CreationDate": "D:20210317120949+11\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20210317120949+11\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "pdf_file_size_bytes": 880547,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.niap-ccevs.org/Documents_and_Guidance/view_td.cfm?TD=0453",
          "http://www.juniper.net/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 46
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": null,
        "pp_ids": null,
        "pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/CPP_ND_V2.1.pdf",
        "pp_name": "collaborative Protection Profile for Network Devices v2.1"
      }
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/files/epfiles/T0017-Certification_Report_V1.0.pdf",
  "scheme": "AU",
  "security_level": {
    "_type": "Set",
    "elements": []
  },
  "st_link": "https://www.commoncriteriaportal.org/files/epfiles/Juniper%20QFX5120,%20QFX5200,%20QFX5210,%20EX4650%20Junos%2020.2R1%20ST%20v1.3.pdf",
  "state": {
    "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState",
    "errors": [],
    "report_convert_garbage": false,
    "report_convert_ok": true,
    "report_download_ok": true,
    "report_extract_ok": true,
    "report_pdf_hash": "bddf13f40de3d9cb92c9abbe68aaa10b8a6c79a9e423de8f190974b3a8ee8e6f",
    "report_txt_hash": "10a9390fcc6bc5718d0eb46eeaee9398795880e05eb10a244c0f2eac3e05f7eb",
    "st_convert_garbage": false,
    "st_convert_ok": true,
    "st_download_ok": true,
    "st_extract_ok": true,
    "st_pdf_hash": "6472d784f3dfccd33f0ced9d81e9b904a4e58afa199091a0ca27c662b06f4377",
    "st_txt_hash": "d2fe8cca8851a7d5afb3d7d84a8c94ddd36185f2efb521bfcc984a24b4f04847"
  },
  "status": "active"
}