This page was not yet optimized for use on mobile devices.
genuscreen 7.0
CSV information ?
| Status | active |
|---|---|
| Valid from | 18.08.2020 |
| Valid until | 17.08.2025 |
| Scheme | 🇩🇪 DE |
| Manufacturer | genua GmbH |
| Category | Boundary Protection Devices and Systems |
| Security level | AVA_VAN.4, ASE_TSS.2, EAL4+, ALC_FLR.2 |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-1142-2020
Certificate ?
Extracted keywords
Security level
EAL 4, EAL 5, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLR, AVA_VAN.4, ASE_TSS.2Certificates
BSI-DSZ-CC-1142-2020Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
| Title: | Certification Report BSI-DSZ-CC-1142-2020 |
|---|---|
| Subject: | BSI-DSZ-CC-1142-2020 for genuscreen 7.0 from genua GmbH |
| Keywords: | "Common Criteria, Certification, Zertifizierung" |
| Author: | Bundesamt für Sicherheit in der Informationstechnik |
| Creation date: | D:20200826080252+02'00' |
| Modification date: | D:20200828100319+02'00' |
| Pages: | 1 |
| Creator: | Writer |
| Producer: | LibreOffice 6.2 |
Certification report ?
Extracted keywords
Symmetric Algorithms
HMACAsymmetric Algorithms
DHHash functions
SHA256, SHA512Schemes
Key ExchangeProtocols
SSH, IKE, IPsec, VPNRandomness
RNGBlock cipher modes
CBCSecurity level
EAL 4, EAL 5, EAL 2, EAL 1, EAL 2+, EAL 5+, EAL 6, EAL 4 augmentedClaims
A.PHYSEC, A.INIT, A.NOEVIL, A.SINGEN, A.ADMIN, A.HANET, A.REMOTE_AUTH, A.TIMESTMPSecurity Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLR, AVA_VAN.4, ASE_TSS.2Certificates
BSI-DSZ-CC-1142-2020, BSI-DSZ-CC-1085-2019Evaluation facilities
secuveraCertification process
out of scope, The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE. The Security Target [6] is the basis for this certification. It is not based on a, components were installed on physical hardware, the installation of the TOE on virtual machines is out of scope of the evaluated configuration. For the operational configuration the firewall appliances and the, VPN, IKEv2/MOBIKE VPN, Dynamic Routing, genucenter HA, Remote Maintenance, genucenter REST API) are out of scope of the evaluated configuration. All information contained in the Security Target [6] and the, being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, for genuscreen 7.0 from genua GmbH, Version 2, Date: 05.08.2020, secuvera GmbH (confidential document) [8] Guidance documentation for the TOE, genucenter Installations- und KonfigurationshandbuchCertification process
out of scope, The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE. The Security Target [6] is the basis for this certification. It is not based on a, components were installed on physical hardware, the installation of the TOE on virtual machines is out of scope of the evaluated configuration. For the operational configuration the firewall appliances and the, VPN, IKEv2/MOBIKE VPN, Dynamic Routing, genucenter HA, Remote Maintenance, genucenter REST API) are out of scope of the evaluated configuration. All information contained in the Security Target [6] and the, being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, for genuscreen 7.0 from genua GmbH, Version 2, Date: 05.08.2020, secuvera GmbH (confidential document) [8] Guidance documentation for the TOE, genucenter Installations- und KonfigurationshandbuchStandards
AIS20, AIS 20, AIS 32, AIS 34, AIS 38, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065Technical reports
BSI TR-02102, BSI 7148File metadata
| Title: | Certification Report BSI-DSZ-CC-1142-2020 |
|---|---|
| Subject: | BSI-DSZ-CC-1142-2020 for genuscreen 7.0 from genua GmbH |
| Keywords: | "Common Criteria, Certification, Zertifizierung" |
| Author: | Bundesamt für Sicherheit in der Informationstechnik |
| Creation date: | D:20200826080252+02'00' |
| Modification date: | D:20200826154915+02'00' |
| Pages: | 27 |
| Creator: | Writer |
| Producer: | LibreOffice 6.2 |
Frontpage
| Certificate ID: | BSI-DSZ-CC-1142-2020 |
|---|---|
| Certified item: | genuscreen 7.0 |
| Certification lab: | BSI |
| Developer: | genua GmbH |
References
Incoming- BSI-DSZ-CC-1194-2023 - genuscreen 8.0
Security target ?
Extracted keywords
Symmetric Algorithms
AES, HMAC, HMAC-SHA-256Asymmetric Algorithms
ECDH, ECC, Diffie-Hellman, DHHash functions
SHA256, SHA-256, SHA-512Schemes
MAC, Key ExchangeProtocols
SSH, TLS, IKEv2, IKEv1, IKE, IPsec, VPNRandomness
RNGLibraries
OpenSSL, LibreSSLBlock cipher modes
CBC, CTRSecurity level
EAL4, EAL4 augmentedClaims
O.AUTH, O.MEDIAT, O.CONFID, O.INTEG, O.NOREPLAY, O.AUDREC, O.AVAIL, T.NOAUTH, T.SNIFF, T.SELPRO, T.MEDIAT, T.MSNIFF, T.MODIFY, T.MMODIFY, A.PHYSEC, A.INIT, A.NOEVIL, A.SINGEN, A.TIMESTMP, A.ADMIN, A.HANET, A.REMOTE_AUTH, OE.PHYSEC, OE.INIT, OE.NOEVIL, OE.SINGEN, OE.TIMESTMP, OE.ADMIN, OE.HANET, OE.REMOTE_AUTHSecurity Assurance Requirements (SAR)
ADV_INT, ADV_SPM, ADV_ARC, ADV_FSP, ADV_IMP, ADV_TDS, ADV_ARC.1, ADV_TDS.1, ADV_FSP.4, ADV_IMP.1, ADV_TAT.1, ADV_TDS.3, ADV_FSP.1, ADV_FSP.2, ADV_TDS.2, AGD_OPE, AGD_PRE, AGD_OPE.1, AGD_PRE.1, ALC_FLR.2, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS, ALC_FLR, ALC_LCD, ALC_TAT, ALC_CMC.4, ALC_DVS.1, ALC_LCD.1, ALC_CMS.4, ALC_DEL.1, ALC_TAT.1, ATE_COV, ATE_DPT, ATE_FUN, ATE_IND, ATE_COV.2, ATE_FUN.1, ATE_DPT.1, ATE_IND.2, ATE_COV.1, AVA_VAN.4, AVA_VAN, ASE_TSS.2, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_REQ, ASE_SPD, ASE_TSS, ASE_CCL.1, ASE_ECD.1, ASE_REQ.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1Security Functional Requirements (SFR)
FAU_GEN, FAU_GEN.1, FAU_GEN.2, FAU_SAR, FAU_SAR.1, FAU_SAR.3, FCS_RNG, FCS_RNG.1, FCS_RNG.1.1, FCS_RNG.1.2, FCS_COP, FCS_COP.1, FCS_CKM, FCS_CKM.4, FCS_CKM.1, FDP_IFC, FDP_IFC.1, FDP_IFF, FDP_IFF.1, FDP_IFC.2, FDP_ITT, FDP_ITT.1, FIA_ATD, FIA_ATD.1, FIA_SOS, FIA_SOS.1, FIA_UAU, FIA_UAU.2, FIA_UAU.6, FIA_UID, FIA_UID.2, FIA_UID.1, FMT_MSA, FMT_MSA.1, FMT_MSA.3, FMT_SMF, FMT_SMF.1, FMT_MSA.2, FMT_MOF, FMT_MOF.1, FMT_SMR, FMT_SMR.1, FPT_STM.1, FPT_ITT, FPT_ITT.1, FPT_TEE, FPT_TEE.1, FPT_TRC, FPT_TRC.1.1, FPT_TRC.1.2, FPT_TRC.1, FTP_STM.1Certification process
out of scope, and genucenter versions 200, 400, 600 and 800 in the field with hardware revision 6 and 7 which are out of scope for the current certification. The software genuscreen 7.0 runs on this hardware with the same, hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all, cryptocard to perform cryptographic operations for IPsec usage. However, usage of the cryptocard is out of scope for this TOE. 1.4.10.2 No VPN to Other Appliances or Mobile Clients It is possible to build VPN, 1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE. 1.4.10.6 No genucenter HA While the HA setup for the genuscreens is part of the, the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen, is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of softwareCertification process
out of scope, and genucenter versions 200, 400, 600 and 800 in the field with hardware revision 6 and 7 which are out of scope for the current certification. The software genuscreen 7.0 runs on this hardware with the same, hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all, cryptocard to perform cryptographic operations for IPsec usage. However, usage of the cryptocard is out of scope for this TOE. 1.4.10.2 No VPN to Other Appliances or Mobile Clients It is possible to build VPN, 1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE. 1.4.10.6 No genucenter HA While the HA setup for the genuscreens is part of the, the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen, is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of softwareStandards
FIPS180-4, PKCS#1, AIS20, AIS31, AIS 20, AIS 31, RFC2409, RFC3526, RFC2104, RFC5639, RFC4418, RFC2460, RFC4253, RFC3502, RFC4301, RFC4432, RFC5656, RFC4344, RFC 2460, RFC 2409, RFC 4306, RFC 4109, RFC 3447, RFC 3526, RFC 2104, RFC 6151, RFC 4418, RFC 5639, RFC 4253, RFC 6668, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2012-04-003Technical reports
BSI TR-02102, BSI TR-02102-1, BSI TR-02102-2, BSI TR-02102-3, BSI TR-02102-4File metadata
| Title: | genuscreen 7.0 Security Target |
|---|---|
| Subject: | Common Criteria certification |
| Keywords: | firewall |
| Author: | genua GmbH |
| Creation date: | D:20200717120845+02'00' |
| Modification date: | D:20200717120845+02'00' |
| Pages: | 71 |
| Creator: | LaTeX with hyperref |
| Producer: | pdfTeX-1.40.20 |
References
IncomingHeuristics ?
Certificate ID: BSI-DSZ-CC-1142-2020
Extracted SARs
ALC_DVS.1, AGD_OPE.1, ADV_IMP.1, ASE_CCL.1, ADV_ARC.1, ADV_FSP.4, ASE_SPD.1, ASE_ECD.1, ADV_TDS.3, ASE_TSS.2, ATE_FUN.1, ALC_CMS.4, ATE_DPT.1, ALC_LCD.1, AGD_PRE.1, ALC_DEL.1, ALC_TAT.1, AVA_VAN.4, ALC_FLR.2, ASE_OBJ.2, ASE_INT.1, ATE_COV.2, ADV_TAT.1, ALC_CMC.4, ATE_IND.2, ASE_REQ.2References ?
Updates ?
-
15.02.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'report': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '4d53b348e09cdc04c57bd2a28e090c0d047ce7c850bd86ea71c66122bbeacf37', 'txt_hash': 'b01b1f50e1a26e783559584485ffd0db0afdaf8fce083bb3c76fb1c3b9704962'}, 'st': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'a2ae857248933bdb010cbea74937a57df42a6bd6fff12cae0906d86d30f68ba6', 'txt_hash': '04c792eb547f9955e2d088d196bbc2cc349f9e09a8b1849d2b28f041ed7ccb63'}, 'cert': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'c85350fb2baf096bfe6caaa949e7c85dd426e4883ee0b7e7f254c57fd3170956', 'txt_hash': 'bc4e84826fd365bf8ad697740e0b55331e224175eab7e3d4b3554abbfa2eae02'}}. - The following properties were deleted:
['st_download_ok', 'report_download_ok', 'st_convert_garbage', 'report_convert_garbage', 'st_convert_ok', 'report_convert_ok', 'st_extract_ok', 'report_extract_ok', 'st_pdf_hash', 'report_pdf_hash', 'st_txt_hash', 'report_txt_hash'].
The PDF extraction data was updated.
- The following values were inserted:
{'cert_metadata': {'pdf_file_size_bytes': 284767, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20200826080252+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung"', '/ModDate': "D:20200828100319+02'00'", '/Producer': 'LibreOffice 6.2', '/Subject': 'BSI-DSZ-CC-1142-2020 for genuscreen 7.0 from genua GmbH', '/Title': 'Certification Report BSI-DSZ-CC-1142-2020', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}, 'cert_frontpage': None, 'cert_keywords': {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1142-2020': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 2, 'EAL 5': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 1, 'ALC_FLR': 1}, 'AVA': {'AVA_VAN.4': 1}, 'ASE': {'ASE_TSS.2': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}, 'cert_filename': '1142c_pdf.pdf'}. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-1142-2020', 'cert_item': 'genuscreen 7.0', 'developer': 'genua GmbH', 'cert_lab': 'BSI', 'ref_protection_profiles': 'None', 'cc_version': 'Product specific Security Target, Common Criteria Part 2 extended', 'cc_security_level': 'Common Criteria Part 3 extended EAL 4 augmented by ALC_FLR.2, ASE_TSS.2 and AVA_VAN.4'}}. - The st_frontpage property was set to
None. - The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1142-2020': 15, 'BSI-DSZ-CC-1085-2019': 3}}}}}data.
- The following values were inserted:
-
13.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1142-2020': 30, 'BSI-DSZ-CC-1085-2019': 6}}}}}data.
- The report_keywords property was updated, with the
-
07.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1142-2020': 15, 'BSI-DSZ-CC-1085-2019': 3}}}}}data.
- The report_keywords property was updated, with the
-
04.01.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'annotated_references': None}.
- The following values were inserted:
-
21.09.2023 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was set to
None.
- The scheme_data property was set to
-
26.04.2023 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'scheme_data': {'cert_id': 'BSI-DSZ-CC-1194-2023', 'product': 'genuscreen 8.0', 'vendor': 'genua GmbH', 'certification_date': '06.04.2023', 'category': 'Network and Network related Devices and Systems', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1194.html', 'enhanced': {'product': 'genuscreen 8.0', 'applicant': 'genua GmbH \n\nDomagkstrasse 7\n85551 Kirchheim', 'evaluation_facility': 'secuvera GmbH', 'assurance_level': 'EAL4+,AVA_VAN.4,ASE_TSS.2,ALC_PAM.1', 'certification_date': '06.04.2023', 'expiration_date': '05.04.2028', 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1194a_pdf.pdf?__blob=publicationFile&v=1', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1194b_pdf.pdf?__blob=publicationFile&v=1', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1194c_pdf.pdf?__blob=publicationFile&v=1', 'description': 'The TOE makes VPN and firewall functionality available and easy to manage. It protects networks at the border to the Internet by filtering incoming and outgoing data traffic. It protects the data flowing between several protected networks against unauthorised inspection and modification. It consists of software on a number (at least 2) of machines (genuscreen appliances) that work as network filters, hereafter called firewall components, and another machine to manage this network of firewall components. This machine, the management system (genucenter management system), is a central component.'}}}. - The report_references property was updated, with the
{'directly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1194-2023']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1194-2023']}}data.
- The following values were inserted:
-
11.02.2023 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.cc.CCCertificate.
The state of the certificate object was updated.
- The _type property was set to
sec_certs.sample.cc.CCCertificate.InternalState. - The following properties were deleted:
['errors'].
The PDF extraction data was updated.
- The _type property was set to
sec_certs.sample.cc.CCCertificate.PdfData.
The computed heuristics were updated.
- The following values were inserted:
{'direct_transitive_cves': None, 'indirect_transitive_cves': None}. - The _type property was set to
sec_certs.sample.cc.CCCertificate.Heuristics. - The following properties were deleted:
['direct_dependency_cves', 'indirect_dependency_cves'].
- The new value is
-
05.02.2023 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The errors property was set to
[].
- The errors property was set to
-
26.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The errors property was set to
['failed to download report from https://www.commoncriteriaportal.org/files/epfiles/1142a_pdf.pdf, code: nok'].
- The errors property was set to
-
25.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_download_ok property was set to
True. - The st_convert_ok property was set to
True. - The st_extract_ok property was set to
True. - The errors property was set to
[]. - The st_pdf_hash property was set to
a2ae857248933bdb010cbea74937a57df42a6bd6fff12cae0906d86d30f68ba6. - The st_txt_hash property was set to
04c792eb547f9955e2d088d196bbc2cc349f9e09a8b1849d2b28f041ed7ccb63.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 1010308, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 71, '/Author': 'genua GmbH', '/Producer': 'pdfTeX-1.40.20', '/Creator': 'LaTeX with hyperref', '/Trapped': '/False', '/ModDate': "D:20200717120845+02'00'", '/Keywords': 'firewall', '/PTEX.Fullbanner': 'This is pdfTeX, Version 3.14159265-2.6-1.40.20 (TeX Live 2019) kpathsea version 6.3.1', '/Title': 'genuscreen 7.0 Security Target', '/Subject': 'Common Criteria certification', '/CreationDate': "D:20200717120845+02'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.ietf.org/rfc/rfc4253.txt', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_pdf.html', 'http://www.ietf.org/rfc/rfc2460.txt', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_Functionality_classes_for_random_number_generators_e.pdf?__blob=publicationFile', 'http://www.ietf.org/rfc/rfc5639.txt', 'http://www.ietf.org/rfc/rfc2104.txt', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_20_pdf.html', 'https://tools.ietf.org/html/draft-miller-secsh-umac-01', 'http://dx.doi.org/10.6028/NIST.SP.800-38A', 'http://www.ecc-brainpool.org/download/Domain-parameters.pdf', 'http://www.ietf.org/rfc/rfc2409.txt', 'http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf', 'http://www.ietf.org/rfc/rfc4418.txt', 'http://www.ietf.org/rfc/rfc3526.txt', 'http://dx.doi.org/10.6028/NIST.FIPS.180-4', 'http://dx.doi.org/10.6028/NIST.FIPS.186-4', 'http://www.ietf.org/rfc/rfc3447.txt']}}. - The st_frontpage property was set to
{'anssi': {}, 'bsi': {}, 'nscib': {}, 'niap': {}, 'canada': {}}. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 4, 'EAL4 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_INT': 2, 'ADV_SPM': 2, 'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP': 1, 'ADV_TDS': 1, 'ADV_ARC.1': 4, 'ADV_TDS.1': 1, 'ADV_FSP.4': 2, 'ADV_IMP.1': 3, 'ADV_TAT.1': 1, 'ADV_TDS.3': 2, 'ADV_FSP.1': 1, 'ADV_FSP.2': 2, 'ADV_TDS.2': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1, 'AGD_OPE.1': 3, 'AGD_PRE.1': 3}, 'ALC': {'ALC_FLR.2': 3, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_FLR': 1, 'ALC_LCD': 1, 'ALC_TAT': 1, 'ALC_CMC.4': 1, 'ALC_DVS.1': 2, 'ALC_LCD.1': 2, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_COV': 1, 'ATE_DPT': 1, 'ATE_FUN': 1, 'ATE_IND': 1, 'ATE_COV.2': 1, 'ATE_FUN.1': 4, 'ATE_DPT.1': 2, 'ATE_IND.2': 1, 'ATE_COV.1': 1}, 'AVA': {'AVA_VAN.4': 4, 'AVA_VAN': 1}, 'ASE': {'ASE_TSS.2': 4, 'ASE_CCL': 1, 'ASE_ECD': 1, 'ASE_INT': 1, 'ASE_OBJ': 1, 'ASE_REQ': 1, 'ASE_SPD': 1, 'ASE_TSS': 1, 'ASE_CCL.1': 1, 'ASE_ECD.1': 3, 'ASE_REQ.1': 2, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 1, 'ASE_SPD.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN': 17, 'FAU_GEN.1': 5, 'FAU_GEN.2': 1, 'FAU_SAR': 10, 'FAU_SAR.1': 3, 'FAU_SAR.3': 1}, 'FCS': {'FCS_RNG': 1, 'FCS_RNG.1': 12, 'FCS_RNG.1.1': 2, 'FCS_RNG.1.2': 2, 'FCS_COP': 67, 'FCS_COP.1': 20, 'FCS_CKM': 86, 'FCS_CKM.4': 22, 'FCS_CKM.1': 21}, 'FDP': {'FDP_IFC': 43, 'FDP_IFC.1': 31, 'FDP_IFF': 34, 'FDP_IFF.1': 37, 'FDP_IFC.2': 2, 'FDP_ITT': 21, 'FDP_ITT.1': 3}, 'FIA': {'FIA_ATD': 5, 'FIA_ATD.1': 1, 'FIA_SOS': 5, 'FIA_SOS.1': 1, 'FIA_UAU': 10, 'FIA_UAU.2': 1, 'FIA_UAU.6': 1, 'FIA_UID': 5, 'FIA_UID.2': 2, 'FIA_UID.1': 3}, 'FMT': {'FMT_MSA': 125, 'FMT_MSA.1': 24, 'FMT_MSA.3': 18, 'FMT_SMF': 39, 'FMT_SMF.1': 22, 'FMT_MSA.2': 3, 'FMT_MOF': 5, 'FMT_MOF.1': 1, 'FMT_SMR': 6, 'FMT_SMR.1': 25}, 'FPT': {'FPT_STM.1': 3, 'FPT_ITT': 7, 'FPT_ITT.1': 3, 'FPT_TEE': 7, 'FPT_TEE.1': 2, 'FPT_TRC': 5, 'FPT_TRC.1.1': 1, 'FPT_TRC.1.2': 1, 'FPT_TRC.1': 1}, 'FTP': {'FTP_STM.1': 1}}, 'cc_claims': {'O': {'O.AUTH': 11, 'O.MEDIAT': 4, 'O.CONFID': 11, 'O.INTEG': 8, 'O.NOREPLAY': 11, 'O.AUDREC': 5, 'O.AVAIL': 7}, 'T': {'T.NOAUTH': 3, 'T.SNIFF': 3, 'T.SELPRO': 3, 'T.MEDIAT': 3, 'T.MSNIFF': 3, 'T.MODIFY': 3, 'T.MMODIFY': 3}, 'A': {'A.PHYSEC': 3, 'A.INIT': 3, 'A.NOEVIL': 3, 'A.SINGEN': 4, 'A.TIMESTMP': 3, 'A.ADMIN': 3, 'A.HANET': 2, 'A.REMOTE_AUTH': 2}, 'OE': {'OE.PHYSEC': 4, 'OE.INIT': 7, 'OE.NOEVIL': 3, 'OE.SINGEN': 4, 'OE.TIMESTMP': 5, 'OE.ADMIN': 2, 'OE.HANET': 4, 'OE.REMOTE_AUTH': 1}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 13}}, 'constructions': {'MAC': {'HMAC': 4, 'HMAC-SHA-256': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 2}, 'ECC': {'ECC': 3}}, 'FF': {'DH': {'Diffie-Hellman': 6, 'DH': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA256': 3, 'SHA-256': 5, 'SHA-512': 3}}}, 'crypto_scheme': {'MAC': {'MAC': 2}, 'KEX': {'Key Exchange': 5}}, 'crypto_protocol': {'SSH': {'SSH': 111}, 'TLS': {'TLS': {'TLS': 3}}, 'IKE': {'IKEv2': 6, 'IKEv1': 7, 'IKE': 82}, 'IPsec': {'IPsec': 37}, 'VPN': {'VPN': 20}}, 'randomness': {'RNG': {'RNG': 5}}, 'cipher_mode': {'CBC': {'CBC': 6}, 'CTR': {'CTR': 5}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}, 'LibreSSL': {'LibreSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-02102': 2, 'BSI TR-02102-1': 2, 'BSI TR-02102-2': 2, 'BSI TR-02102-3': 2, 'BSI TR-02102-4': 2}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS180-4': 2}, 'PKCS': {'PKCS#1': 9}, 'BSI': {'AIS20': 2, 'AIS31': 1, 'AIS 20': 2, 'AIS 31': 2}, 'RFC': {'RFC2409': 9, 'RFC3526': 4, 'RFC2104': 6, 'RFC5639': 3, 'RFC4418': 4, 'RFC2460': 1, 'RFC4253': 3, 'RFC3502': 1, 'RFC4301': 1, 'RFC4432': 1, 'RFC5656': 1, 'RFC4344': 1, 'RFC 2460': 1, 'RFC 2409': 1, 'RFC 4306': 1, 'RFC 4109': 1, 'RFC 3447': 1, 'RFC 3526': 1, 'RFC 2104': 1, 'RFC 6151': 1, 'RFC 4418': 1, 'RFC 5639': 1, 'RFC 4253': 1, 'RFC 6668': 1}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2012-04-003': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 7, 'and genucenter versions 200, 400, 600 and 800 in the field with hardware revision 6 and 7 which are out of scope for the current certification. The software genuscreen 7.0 runs on this hardware with the same': 1, 'hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all': 1, 'cryptocard to perform cryptographic operations for IPsec usage. However, usage of the cryptocard is out of scope for this TOE. 1.4.10.2 No VPN to Other Appliances or Mobile Clients It is possible to build VPN': 1, '1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE. 1.4.10.6 No genucenter HA While the HA setup for the genuscreens is part of the': 1, 'the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen': 1, 'is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of software': 1}}}. - The st_filename property was set to
1142b_pdf.pdf.
The computed heuristics were updated.
- The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}]}values added.
- The st_download_ok property was set to
-
25.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_download_ok property was set to
False. - The st_convert_ok property was set to
False. - The st_extract_ok property was set to
False. - The errors property was set to
['failed to download ST from https://www.commoncriteriaportal.org/files/epfiles/1142b_pdf.pdf, code: 408']. - The st_pdf_hash property was set to
None. - The st_txt_hash property was set to
None.
The PDF extraction data was updated.
- The st_metadata property was set to
None. - The st_frontpage property was set to
None. - The st_keywords property was set to
None. - The st_filename property was set to
None.
The computed heuristics were updated.
- The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}]}values discarded.
- The st_download_ok property was set to
-
24.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The errors property was set to
['failed to download report from https://www.commoncriteriaportal.org/files/epfiles/1142a_pdf.pdf, code: 408'].
- The errors property was set to
-
23.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_download_ok property was set to
True. - The st_convert_ok property was set to
True. - The st_extract_ok property was set to
True. - The errors property was set to
[]. - The st_pdf_hash property was set to
a2ae857248933bdb010cbea74937a57df42a6bd6fff12cae0906d86d30f68ba6. - The st_txt_hash property was set to
04c792eb547f9955e2d088d196bbc2cc349f9e09a8b1849d2b28f041ed7ccb63.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 1010308, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 71, '/Author': 'genua GmbH', '/Producer': 'pdfTeX-1.40.20', '/Creator': 'LaTeX with hyperref', '/Trapped': '/False', '/ModDate': "D:20200717120845+02'00'", '/Keywords': 'firewall', '/PTEX.Fullbanner': 'This is pdfTeX, Version 3.14159265-2.6-1.40.20 (TeX Live 2019) kpathsea version 6.3.1', '/Title': 'genuscreen 7.0 Security Target', '/Subject': 'Common Criteria certification', '/CreationDate': "D:20200717120845+02'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.ietf.org/rfc/rfc4253.txt', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_pdf.html', 'http://www.ietf.org/rfc/rfc2460.txt', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_Functionality_classes_for_random_number_generators_e.pdf?__blob=publicationFile', 'http://www.ietf.org/rfc/rfc5639.txt', 'http://www.ietf.org/rfc/rfc2104.txt', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_20_pdf.html', 'https://tools.ietf.org/html/draft-miller-secsh-umac-01', 'http://dx.doi.org/10.6028/NIST.SP.800-38A', 'http://www.ecc-brainpool.org/download/Domain-parameters.pdf', 'http://www.ietf.org/rfc/rfc2409.txt', 'http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf', 'http://www.ietf.org/rfc/rfc4418.txt', 'http://www.ietf.org/rfc/rfc3526.txt', 'http://dx.doi.org/10.6028/NIST.FIPS.180-4', 'http://dx.doi.org/10.6028/NIST.FIPS.186-4', 'http://www.ietf.org/rfc/rfc3447.txt']}}. - The st_frontpage property was set to
{'anssi': {}, 'bsi': {}, 'nscib': {}, 'niap': {}, 'canada': {}}. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 4, 'EAL4 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_INT': 2, 'ADV_SPM': 2, 'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP': 1, 'ADV_TDS': 1, 'ADV_ARC.1': 4, 'ADV_TDS.1': 1, 'ADV_FSP.4': 2, 'ADV_IMP.1': 3, 'ADV_TAT.1': 1, 'ADV_TDS.3': 2, 'ADV_FSP.1': 1, 'ADV_FSP.2': 2, 'ADV_TDS.2': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1, 'AGD_OPE.1': 3, 'AGD_PRE.1': 3}, 'ALC': {'ALC_FLR.2': 3, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_FLR': 1, 'ALC_LCD': 1, 'ALC_TAT': 1, 'ALC_CMC.4': 1, 'ALC_DVS.1': 2, 'ALC_LCD.1': 2, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_COV': 1, 'ATE_DPT': 1, 'ATE_FUN': 1, 'ATE_IND': 1, 'ATE_COV.2': 1, 'ATE_FUN.1': 4, 'ATE_DPT.1': 2, 'ATE_IND.2': 1, 'ATE_COV.1': 1}, 'AVA': {'AVA_VAN.4': 4, 'AVA_VAN': 1}, 'ASE': {'ASE_TSS.2': 4, 'ASE_CCL': 1, 'ASE_ECD': 1, 'ASE_INT': 1, 'ASE_OBJ': 1, 'ASE_REQ': 1, 'ASE_SPD': 1, 'ASE_TSS': 1, 'ASE_CCL.1': 1, 'ASE_ECD.1': 3, 'ASE_REQ.1': 2, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 1, 'ASE_SPD.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN': 17, 'FAU_GEN.1': 5, 'FAU_GEN.2': 1, 'FAU_SAR': 10, 'FAU_SAR.1': 3, 'FAU_SAR.3': 1}, 'FCS': {'FCS_RNG': 1, 'FCS_RNG.1': 12, 'FCS_RNG.1.1': 2, 'FCS_RNG.1.2': 2, 'FCS_COP': 67, 'FCS_COP.1': 20, 'FCS_CKM': 86, 'FCS_CKM.4': 22, 'FCS_CKM.1': 21}, 'FDP': {'FDP_IFC': 43, 'FDP_IFC.1': 31, 'FDP_IFF': 34, 'FDP_IFF.1': 37, 'FDP_IFC.2': 2, 'FDP_ITT': 21, 'FDP_ITT.1': 3}, 'FIA': {'FIA_ATD': 5, 'FIA_ATD.1': 1, 'FIA_SOS': 5, 'FIA_SOS.1': 1, 'FIA_UAU': 10, 'FIA_UAU.2': 1, 'FIA_UAU.6': 1, 'FIA_UID': 5, 'FIA_UID.2': 2, 'FIA_UID.1': 3}, 'FMT': {'FMT_MSA': 125, 'FMT_MSA.1': 24, 'FMT_MSA.3': 18, 'FMT_SMF': 39, 'FMT_SMF.1': 22, 'FMT_MSA.2': 3, 'FMT_MOF': 5, 'FMT_MOF.1': 1, 'FMT_SMR': 6, 'FMT_SMR.1': 25}, 'FPT': {'FPT_STM.1': 3, 'FPT_ITT': 7, 'FPT_ITT.1': 3, 'FPT_TEE': 7, 'FPT_TEE.1': 2, 'FPT_TRC': 5, 'FPT_TRC.1.1': 1, 'FPT_TRC.1.2': 1, 'FPT_TRC.1': 1}, 'FTP': {'FTP_STM.1': 1}}, 'cc_claims': {'O': {'O.AUTH': 11, 'O.MEDIAT': 4, 'O.CONFID': 11, 'O.INTEG': 8, 'O.NOREPLAY': 11, 'O.AUDREC': 5, 'O.AVAIL': 7}, 'T': {'T.NOAUTH': 3, 'T.SNIFF': 3, 'T.SELPRO': 3, 'T.MEDIAT': 3, 'T.MSNIFF': 3, 'T.MODIFY': 3, 'T.MMODIFY': 3}, 'A': {'A.PHYSEC': 3, 'A.INIT': 3, 'A.NOEVIL': 3, 'A.SINGEN': 4, 'A.TIMESTMP': 3, 'A.ADMIN': 3, 'A.HANET': 2, 'A.REMOTE_AUTH': 2}, 'OE': {'OE.PHYSEC': 4, 'OE.INIT': 7, 'OE.NOEVIL': 3, 'OE.SINGEN': 4, 'OE.TIMESTMP': 5, 'OE.ADMIN': 2, 'OE.HANET': 4, 'OE.REMOTE_AUTH': 1}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 13}}, 'constructions': {'MAC': {'HMAC': 4, 'HMAC-SHA-256': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 2}, 'ECC': {'ECC': 3}}, 'FF': {'DH': {'Diffie-Hellman': 6, 'DH': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA256': 3, 'SHA-256': 5, 'SHA-512': 3}}}, 'crypto_scheme': {'MAC': {'MAC': 2}, 'KEX': {'Key Exchange': 5}}, 'crypto_protocol': {'SSH': {'SSH': 111}, 'TLS': {'TLS': {'TLS': 3}}, 'IKE': {'IKEv2': 6, 'IKEv1': 7, 'IKE': 82}, 'IPsec': {'IPsec': 37}, 'VPN': {'VPN': 20}}, 'randomness': {'RNG': {'RNG': 5}}, 'cipher_mode': {'CBC': {'CBC': 6}, 'CTR': {'CTR': 5}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}, 'LibreSSL': {'LibreSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-02102': 2, 'BSI TR-02102-1': 2, 'BSI TR-02102-2': 2, 'BSI TR-02102-3': 2, 'BSI TR-02102-4': 2}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS180-4': 2}, 'PKCS': {'PKCS#1': 9}, 'BSI': {'AIS20': 2, 'AIS31': 1, 'AIS 20': 2, 'AIS 31': 2}, 'RFC': {'RFC2409': 9, 'RFC3526': 4, 'RFC2104': 6, 'RFC5639': 3, 'RFC4418': 4, 'RFC2460': 1, 'RFC4253': 3, 'RFC3502': 1, 'RFC4301': 1, 'RFC4432': 1, 'RFC5656': 1, 'RFC4344': 1, 'RFC 2460': 1, 'RFC 2409': 1, 'RFC 4306': 1, 'RFC 4109': 1, 'RFC 3447': 1, 'RFC 3526': 1, 'RFC 2104': 1, 'RFC 6151': 1, 'RFC 4418': 1, 'RFC 5639': 1, 'RFC 4253': 1, 'RFC 6668': 1}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2012-04-003': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 7, 'and genucenter versions 200, 400, 600 and 800 in the field with hardware revision 6 and 7 which are out of scope for the current certification. The software genuscreen 7.0 runs on this hardware with the same': 1, 'hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all': 1, 'cryptocard to perform cryptographic operations for IPsec usage. However, usage of the cryptocard is out of scope for this TOE. 1.4.10.2 No VPN to Other Appliances or Mobile Clients It is possible to build VPN': 1, '1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE. 1.4.10.6 No genucenter HA While the HA setup for the genuscreens is part of the': 1, 'the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen': 1, 'is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of software': 1}}}. - The st_filename property was set to
1142b_pdf.pdf.
The computed heuristics were updated.
- The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}]}values added.
- The st_download_ok property was set to
-
22.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_download_ok property was set to
False. - The st_convert_ok property was set to
False. - The st_extract_ok property was set to
False. - The errors property was set to
['failed to download ST from https://www.commoncriteriaportal.org/files/epfiles/1142b_pdf.pdf, code: nok']. - The st_pdf_hash property was set to
None. - The st_txt_hash property was set to
None.
The PDF extraction data was updated.
- The st_metadata property was set to
None. - The st_frontpage property was set to
None. - The st_keywords property was set to
None. - The st_filename property was set to
None.
The computed heuristics were updated.
- The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}]}values discarded.
- The st_download_ok property was set to
-
05.10.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'st_convert_garbage': False, 'report_convert_garbage': False}.
- The following values were inserted:
-
28.09.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The report_references property was updated, with the
{'directly_referencing': None, 'indirectly_referencing': None}data.
- The report_references property was updated, with the
-
26.09.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'crypto_protocol': {'__insert__': {'VPN': {'VPN': 7}}}}data. - The st_keywords property was updated, with the
{'crypto_protocol': {'__insert__': {'VPN': {'VPN': 20}}}}data.
- The report_keywords property was updated, with the
-
24.09.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The following values were inserted:
{'report_filename': '1142a_pdf.pdf', 'st_filename': '1142b_pdf.pdf'}. - The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1142-2020': 30, 'BSI-DSZ-CC-1085-2019': 6}}}}, 'cc_security_level': {'__update__': {'EAL': {'__update__': {'EAL 4': 8, 'EAL 5': 3}}}}, 'cc_sar': {'__update__': {'AVA': {'__update__': {'AVA_VAN.4': 5}}}}, 'cc_claims': {'__update__': {'A': {'__update__': {'A.TIMESTMP': 2}}}}, 'vendor': {}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__delete__': ['Diffie-Hellman']}}}}}, 'pq_crypto': {}, 'crypto_scheme': {'__delete__': ['MAC']}, 'crypto_protocol': {'__update__': {'SSH': {'__update__': {'SSH': 5}}, 'IKE': {'__update__': {'IKE': 1}}, 'IPsec': {'__update__': {'IPsec': 7}}}}, 'technical_report_id': {'__update__': {'BSI': {'__insert__': {'BSI TR-02102': 1}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'ISO': {'__update__': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4}}}}, 'certification_process': {'__update__': {'OutOfScope': {'__insert__': {'The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE. The Security Target [6] is the basis for this certification. It is not based on a': 1}, '__delete__': ['. The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE', 'e. The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE. The Security Target [6] is the basis for this certification. It is not based on a']}, 'ConfidentialDocument': {'being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, 'for genuscreen 7.0 from genua GmbH, Version 2, Date: 05.08.2020, secuvera GmbH (confidential document) [8] Guidance documentation for the TOE, genucenter Installations- und Konfigurationshandbuch': 1}}}}data. - The st_keywords property was updated, with the
{'cc_security_level': {'__update__': {'EAL': {'__update__': {'EAL4': 4}}}}, 'cc_sar': {'__update__': {'ADV': {'__update__': {'ADV_ARC.1': 4, 'ADV_FSP.4': 2, 'ADV_IMP.1': 3, 'ADV_TDS.3': 2, 'ADV_FSP.1': 1, 'ADV_TDS.1': 1}}, 'AGD': {'__update__': {'AGD_OPE.1': 3, 'AGD_PRE.1': 3}}, 'ALC': {'__update__': {'ALC_FLR.2': 3, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_DVS.1': 2, 'ALC_LCD.1': 2, 'ALC_TAT.1': 1}, '__delete__': ['ALC_CMS.1']}, 'ATE': {'__update__': {'ATE_COV.2': 1, 'ATE_DPT.1': 2, 'ATE_FUN.1': 4, 'ATE_IND.2': 1, 'ATE_COV.1': 1}}, 'ASE': {'__update__': {'ASE_CCL.1': 1, 'ASE_ECD.1': 3, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 1, 'ASE_SPD.1': 1}}}}, 'cc_sfr': {'__update__': {'FAU': {'__insert__': {'FAU_SAR': 10, 'FAU_SAR.3': 1}, '__update__': {'FAU_GEN.1': 5, 'FAU_GEN': 17, 'FAU_SAR.1': 3}}, 'FCS': {'__insert__': {'FCS_CKM': 86}, '__update__': {'FCS_RNG.1': 12, 'FCS_COP': 67, 'FCS_CKM.4': 22, 'FCS_COP.1': 20, 'FCS_CKM.1': 21}}, 'FDP': {'__insert__': {'FDP_IFC': 43, 'FDP_IFC.2': 2, 'FDP_ITT': 21, 'FDP_ITT.1': 3}, '__update__': {'FDP_IFF': 34, 'FDP_IFF.1': 37, 'FDP_IFC.1': 31}}, 'FIA': {'__insert__': {'FIA_ATD': 5, 'FIA_ATD.1': 1, 'FIA_SOS': 5, 'FIA_SOS.1': 1, 'FIA_UAU': 10, 'FIA_UAU.2': 1, 'FIA_UAU.6': 1, 'FIA_UID': 5}, '__update__': {'FIA_UID.2': 2}}, 'FMT': {'__insert__': {'FMT_MSA': 125, 'FMT_MOF.1': 1, 'FMT_SMR': 6}, '__update__': {'FMT_SMF': 39, 'FMT_MOF': 5, 'FMT_MSA.3': 18, 'FMT_SMR.1': 25, 'FMT_SMF.1': 22, 'FMT_MSA.1': 24, 'FMT_MSA.2': 3}}, 'FPT': {'__insert__': {'FPT_ITT': 7, 'FPT_TEE': 7, 'FPT_TEE.1': 2, 'FPT_TRC': 5}, '__update__': {'FPT_ITT.1': 3}}}}, 'cc_claims': {'__update__': {'O': {'__update__': {'O.MEDIAT': 4, 'O.INTEG': 8, 'O.AUDREC': 5}}, 'OE': {'__update__': {'OE.INIT': 7, 'OE.SINGEN': 4, 'OE.ADMIN': 2, 'OE.REMOTE_AUTH': 1}}}}, 'vendor': {}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES': 13}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 4}}}}}}, 'asymmetric_crypto': {'__update__': {'ECC': {'__update__': {'ECDH': {'__update__': {'ECDH': 2}}}}, 'FF': {'__update__': {'DH': {'__update__': {'Diffie-Hellman': 6, 'DH': 2}}}}}}, 'pq_crypto': {}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA2': {'__update__': {'SHA256': 3, 'SHA-512': 3}}}}}}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 2}}}}, 'crypto_protocol': {'__update__': {'SSH': {'__update__': {'SSH': 111}}, 'TLS': {'__delete__': ['SSL']}, 'IKE': {'__update__': {'IKE': 82, 'IKEv1': 7}}}}, 'crypto_library': {'__insert__': {'OpenSSL': {'OpenSSL': 1}}}, 'tee_name': {}, 'standard_id': {'__insert__': {'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2012-04-003': 1}}, '__update__': {'BSI': {'__update__': {'AIS 20': 2}}, 'RFC': {'__insert__': {'RFC 4109': 1, 'RFC 6151': 1, 'RFC 6668': 1}}}}, 'certification_process': {'__update__': {'OutOfScope': {'__insert__': {'hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all': 1, 'the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen': 1, 'is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of software': 1}, '__update__': {'out of scope': 7}, '__delete__': ['. Also, operating the genucenter software on a virtual machine is out of scope for this certification', '. However, usage of the cryptocard is out of scope for this TOE', '. 1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE', '.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen application is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used', 'cy hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all', 'evaluation, the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen', 'application is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of software']}}}}data.
- The following values were inserted:
-
18.07.2022 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.common_criteria.CommonCriteriaCert.
The state of the certificate object was updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState.
The PDF extraction data was updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData.
The computed heuristics were updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics. - The st_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}data. - The report_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}data. - The extracted_sars property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}]}.
- The new value is
-
17.07.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_metadata property was updated, with the
{'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.sogis.eu/', 'http://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/zertifizierung', 'https://www.bsi.bund.de/zertifizierungsreporte', 'https://www.bsi.bund.de/', 'http://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/AIS']}}values inserted. - The st_metadata property was updated, with the
{'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.ietf.org/rfc/rfc4253.txt', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_pdf.html', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_Functionality_classes_for_random_number_generators_e.pdf?__blob=publicationFile', 'http://www.ietf.org/rfc/rfc2460.txt', 'http://www.ietf.org/rfc/rfc5639.txt', 'http://www.ietf.org/rfc/rfc2104.txt', 'http://www.ietf.org/rfc/rfc2409.txt', 'http://dx.doi.org/10.6028/NIST.SP.800-38A', 'https://tools.ietf.org/html/draft-miller-secsh-umac-01', 'http://www.ecc-brainpool.org/download/Domain-parameters.pdf', 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_20_pdf.html', 'http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf', 'http://www.ietf.org/rfc/rfc4418.txt', 'http://www.ietf.org/rfc/rfc3526.txt', 'http://dx.doi.org/10.6028/NIST.FIPS.180-4', 'http://dx.doi.org/10.6028/NIST.FIPS.186-4', 'http://www.ietf.org/rfc/rfc3447.txt']}}values inserted. - The report_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1142-2020': 56, 'BSI-DSZ-CC-1085-2019': 2}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 7, 'EAL 5': 2, 'EAL 2': 2, 'EAL 1': 1, 'EAL 2+': 1, 'EAL 5+': 1, 'EAL 6': 1, 'EAL 4 augmented': 3}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 5, 'ALC_FLR': 3}, 'AVA': {'AVA_VAN.4': 4}, 'ASE': {'ASE_TSS.2': 5}}, 'cc_sfr': {}, 'cc_claims': {'A': {'A.PHYSEC': 4, 'A.INIT': 3, 'A.NOEVIL': 3, 'A.SINGEN': 3, 'A.TIMESTMP': 3, 'A.ADMIN': 3, 'A.HANET': 3, 'A.REMOTE_AUTH': 3}}, 'vendor': {'STMicroelectronics': {'STM': 3}}, 'eval_facility': {'secuvera': {'secuvera': 3}}, 'symmetric_crypto': {'constructions': {'MAC': {'HMAC': 1}}}, 'asymmetric_crypto': {'FF': {'DH': {'DH': 1, 'Diffie-Hellman': 1}}}, 'pq_crypto': {'BIKE': {'BIKE': 2}}, 'hash_function': {'SHA': {'SHA2': {'SHA256': 5, 'SHA512': 5}}}, 'crypto_scheme': {'MAC': {'MAC': 1}, 'KEX': {'Key Exchange': 1}}, 'crypto_protocol': {'SSH': {'SSH': 4}, 'IKE': {'IKE': 3}, 'IPsec': {'IPsec': 6}}, 'randomness': {'RNG': {'RNG': 2}}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 2}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'BSI': {'AIS20': 2, 'AIS 20': 2, 'AIS 32': 1, 'AIS 34': 1, 'AIS 38': 1}, 'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 17065': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 3, '. The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE': 1, 'e. The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE. The Security Target [6] is the basis for this certification. It is not based on a': 1, 'components were installed on physical hardware, the installation of the TOE on virtual machines is out of scope of the evaluated configuration. For the operational configuration the firewall appliances and the': 1, 'VPN, IKEv2/MOBIKE VPN, Dynamic Routing, genucenter HA, Remote Maintenance, genucenter REST API) are out of scope of the evaluated configuration. All information contained in the Security Target [6] and the': 1}, 'ConfidentialDocument': {'identiality being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, 'SI-DSZ-CC-1142-2020 for genuscreen 7.0 from genua GmbH, Version 2, Date: 05.08.2020, secuvera GmbH (confidential document) [8] Guidance documentation for the TOE, genucenter Installations- und Konfigurationshandbuch': 1}}}. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 2, 'EAL4 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_INT': 2, 'ADV_SPM': 2, 'ADV_ARC': 1, 'ADV_ARC.1': 5, 'ADV_FSP': 1, 'ADV_FSP.4': 4, 'ADV_IMP': 1, 'ADV_IMP.1': 4, 'ADV_TDS': 1, 'ADV_TDS.3': 4, 'ADV_FSP.1': 2, 'ADV_TDS.1': 2, 'ADV_TAT.1': 1, 'ADV_FSP.2': 2, 'ADV_TDS.2': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_OPE.1': 4, 'AGD_PRE': 1, 'AGD_PRE.1': 4}, 'ALC': {'ALC_FLR.2': 4, 'ALC_CMC': 1, 'ALC_CMC.4': 2, 'ALC_CMS': 1, 'ALC_CMS.4': 2, 'ALC_DEL': 1, 'ALC_DEL.1': 2, 'ALC_DVS': 1, 'ALC_DVS.1': 3, 'ALC_FLR': 1, 'ALC_LCD': 1, 'ALC_LCD.1': 3, 'ALC_TAT': 1, 'ALC_TAT.1': 2, 'ALC_CMS.1': 1}, 'ATE': {'ATE_COV': 1, 'ATE_COV.2': 2, 'ATE_DPT': 1, 'ATE_DPT.1': 3, 'ATE_FUN': 1, 'ATE_FUN.1': 5, 'ATE_IND': 1, 'ATE_IND.2': 2, 'ATE_COV.1': 2}, 'AVA': {'AVA_VAN.4': 4, 'AVA_VAN': 1}, 'ASE': {'ASE_TSS.2': 4, 'ASE_CCL': 1, 'ASE_CCL.1': 2, 'ASE_ECD': 1, 'ASE_ECD.1': 4, 'ASE_INT': 1, 'ASE_INT.1': 4, 'ASE_OBJ': 1, 'ASE_OBJ.2': 3, 'ASE_REQ': 1, 'ASE_REQ.2': 2, 'ASE_SPD': 1, 'ASE_SPD.1': 3, 'ASE_TSS': 1, 'ASE_REQ.1': 2}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 4, 'FAU_GEN': 2, 'FAU_GEN.2': 1, 'FAU_SAR.1': 1}, 'FCS': {'FCS_RNG': 1, 'FCS_RNG.1': 10, 'FCS_RNG.1.1': 2, 'FCS_RNG.1.2': 2, 'FCS_COP': 9, 'FCS_CKM.4': 19, 'FCS_COP.1': 10, 'FCS_CKM.1': 13}, 'FDP': {'FDP_IFF': 6, 'FDP_IFF.1': 7, 'FDP_IFC.1': 25}, 'FIA': {'FIA_UID.1': 3, 'FIA_UID.2': 1}, 'FMT': {'FMT_SMF': 7, 'FMT_MOF': 1, 'FMT_MSA.3': 6, 'FMT_SMR.1': 23, 'FMT_SMF.1': 15, 'FMT_MSA.1': 8, 'FMT_MSA.2': 1}, 'FPT': {'FPT_STM.1': 3, 'FPT_TRC.1.1': 1, 'FPT_TRC.1.2': 1, 'FPT_ITT.1': 2, 'FPT_TRC.1': 1}, 'FTP': {'FTP_STM.1': 1}}, 'cc_claims': {'O': {'O.AUTH': 11, 'O.MEDIAT': 8, 'O.CONFID': 11, 'O.INTEG': 12, 'O.NOREPLAY': 11, 'O.AUDREC': 9, 'O.AVAIL': 7}, 'T': {'T.NOAUTH': 3, 'T.SNIFF': 3, 'T.SELPRO': 3, 'T.MEDIAT': 3, 'T.MSNIFF': 3, 'T.MODIFY': 3, 'T.MMODIFY': 3}, 'A': {'A.PHYSEC': 3, 'A.INIT': 3, 'A.NOEVIL': 3, 'A.SINGEN': 4, 'A.TIMESTMP': 3, 'A.ADMIN': 3, 'A.HANET': 2, 'A.REMOTE_AUTH': 2}, 'OE': {'OE.PHYSEC': 4, 'OE.INIT': 8, 'OE.NOEVIL': 3, 'OE.SINGEN': 5, 'OE.TIMESTMP': 5, 'OE.ADMIN': 3, 'OE.HANET': 4, 'OE.REMOTE_AUTH': 2}}, 'vendor': {'STMicroelectronics': {'STM': 12}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 57}}, 'constructions': {'MAC': {'HMAC': 31, 'HMAC-SHA-256': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 11}, 'ECC': {'ECC': 3}}, 'FF': {'DH': {'Diffie-Hellman': 7, 'DH': 30}}}, 'pq_crypto': {'BIKE': {'BIKE': 2}}, 'hash_function': {'SHA': {'SHA2': {'SHA256': 4, 'SHA-256': 5, 'SHA-512': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 53}, 'KEX': {'Key Exchange': 5}}, 'crypto_protocol': {'SSH': {'SSH': 110}, 'TLS': {'SSL': {'SSL': 1}, 'TLS': {'TLS': 3}}, 'IKE': {'IKEv2': 6, 'IKE': 85, 'IKEv1': 3}, 'IPsec': {'IPsec': 37}}, 'randomness': {'RNG': {'RNG': 5}}, 'cipher_mode': {'CBC': {'CBC': 6}, 'CTR': {'CTR': 5}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'LibreSSL': {'LibreSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-02102': 2, 'BSI TR-02102-1': 2, 'BSI TR-02102-2': 2, 'BSI TR-02102-3': 2, 'BSI TR-02102-4': 2}}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 2}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS180-4': 2}, 'PKCS': {'PKCS#1': 9}, 'BSI': {'AIS20': 2, 'AIS31': 1, 'AIS 20': 1, 'AIS 31': 2}, 'RFC': {'RFC2409': 9, 'RFC3526': 4, 'RFC2104': 6, 'RFC5639': 3, 'RFC4418': 4, 'RFC2460': 1, 'RFC4253': 3, 'RFC3502': 1, 'RFC4301': 1, 'RFC4432': 1, 'RFC5656': 1, 'RFC4344': 1, 'RFC 2460': 1, 'RFC 2409': 1, 'RFC 4306': 1, 'RFC 3447': 1, 'RFC 3526': 1, 'RFC 2104': 1, 'RFC 4418': 1, 'RFC 5639': 1, 'RFC 4253': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 5, '. Also, operating the genucenter software on a virtual machine is out of scope for this certification': 1, '. However, usage of the cryptocard is out of scope for this TOE': 1, '. 1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE': 1, '.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen application is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used': 1, 'and genucenter versions 200, 400, 600 and 800 in the field with hardware revision 6 and 7 which are out of scope for the current certification. The software genuscreen 7.0 runs on this hardware with the same': 1, 'cy hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all': 1, 'cryptocard to perform cryptographic operations for IPsec usage. However, usage of the cryptocard is out of scope for this TOE. 1.4.10.2 No VPN to Other Appliances or Mobile Clients It is possible to build VPN': 1, '1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE. 1.4.10.6 No genucenter HA While the HA setup for the genuscreens is part of the': 1, 'evaluation, the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen': 1, 'application is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of software': 1}}}.
The computed heuristics were updated.
- The _type property was set to
Heuristics.
- The report_metadata property was updated, with the
-
14.06.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'report_pdf_hash': '4d53b348e09cdc04c57bd2a28e090c0d047ce7c850bd86ea71c66122bbeacf37', 'st_pdf_hash': 'a2ae857248933bdb010cbea74937a57df42a6bd6fff12cae0906d86d30f68ba6', 'report_txt_hash': 'b01b1f50e1a26e783559584485ffd0db0afdaf8fce083bb3c76fb1c3b9704962', 'st_txt_hash': '04c792eb547f9955e2d088d196bbc2cc349f9e09a8b1849d2b28f041ed7ccb63'}.
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'rules_symmetric_crypto': {'HMAC': 1}, 'rules_asymmetric_crypto': {'DH': 1, 'Diffie-Hellman': 1}, 'rules_pq_crypto': {'BIKE': 2}, 'rules_hashes': {'SHA256': 5, 'SHA512': 5}, 'rules_crypto_schemes': {'MAC': 1, 'Key Exchange': 1}, 'rules_randomness': {'RNG': 2}, 'rules_tee': {'SE': 2}, 'rules_side_channels': {}}values inserted. - The st_keywords property was updated, with the
{'rules_symmetric_crypto': {'AES': 57, 'HMAC': 31, 'HMAC-SHA-256': 1}, 'rules_asymmetric_crypto': {'ECDH': 11, 'ECC': 3, 'Diffie-Hellman': 7, 'DH': 30}, 'rules_pq_crypto': {'BIKE': 2}, 'rules_hashes': {'SHA256': 4, 'SHA-256': 5, 'SHA-512': 2}, 'rules_crypto_schemes': {'MAC': 53, 'Key Exchange': 5, 'TLS': 3, 'SSL': 1}, 'rules_randomness': {'RNG': 5}, 'rules_tee': {'SE': 2}, 'rules_side_channels': {}}values inserted.
- The following values were inserted:
-
13.05.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'extracted_sars': {'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'SAR', 'family': 'AVA_VAN', 'level': 4}, {'_type': 'SAR', 'family': 'ALC_FLR', 'level': 2}, {'_type': 'SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'SAR', 'family': 'ADV_TAT', 'level': 1}, {'_type': 'SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'SAR', 'family': 'ATE_FUN', 'level': 1}]}}.
- The following values were inserted:
-
24.04.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'direct_dependency_cves': None, 'indirect_dependency_cves': None}.
- The following values were inserted:
-
08.03.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'report_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1085-2019']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1085-2019']}}}. - The following properties were deleted:
['directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
- The following values were inserted:
-
18.02.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_frontpage property was updated, with the
{'nscib': {}, 'niap': {}, 'canada': {}}values inserted. - The st_frontpage property was updated, with the
{'nscib': {}, 'niap': {}, 'canada': {}}values inserted.
The computed heuristics were updated.
- The extracted_versions property was set to
{'_type': 'Set', 'elements': ['7.0']}.
- The report_frontpage property was updated, with the
-
28.01.2022 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name genuscreen 7.0 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Boundary Protection Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/files/epfiles/1142c_pdf.pdf",
"dgst": "98c1ac41aedcdae2",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1142-2020",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"7.0"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1194-2023"
]
},
"directly_referencing": null,
"indirectly_referenced_by": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1194-2023"
]
},
"indirectly_referencing": null
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "genua GmbH",
"manufacturer_web": "https://www.genua.de",
"name": "genuscreen 7.0",
"not_valid_after": "2025-08-17",
"not_valid_before": "2020-08-18",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1142c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1142-2020": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"ALC": {
"ALC_FLR": 1,
"ALC_FLR.2": 1
},
"ASE": {
"ASE_TSS.2": 1
},
"AVA": {
"AVA_VAN.4": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 2,
"EAL 4 augmented": 1,
"EAL 5": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20200826080252+02\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung\"",
"/ModDate": "D:20200828100319+02\u002700\u0027",
"/Producer": "LibreOffice 6.2",
"/Subject": "BSI-DSZ-CC-1142-2020 for genuscreen 7.0 from genua GmbH",
"/Title": "Certification Report BSI-DSZ-CC-1142-2020",
"pdf_file_size_bytes": 284767,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1142a_pdf.pdf",
"report_frontpage": {
"DE": {
"cc_security_level": "Common Criteria Part 3 extended EAL 4 augmented by ALC_FLR.2, ASE_TSS.2 and AVA_VAN.4",
"cc_version": "Product specific Security Target, Common Criteria Part 2 extended",
"cert_id": "BSI-DSZ-CC-1142-2020",
"cert_item": "genuscreen 7.0",
"cert_lab": "BSI",
"developer": "genua GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
],
"ref_protection_profiles": "None"
}
},
"report_keywords": {
"asymmetric_crypto": {
"FF": {
"DH": {
"DH": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1085-2019": 3,
"BSI-DSZ-CC-1142-2020": 15
}
},
"cc_claims": {
"A": {
"A.ADMIN": 3,
"A.HANET": 3,
"A.INIT": 3,
"A.NOEVIL": 3,
"A.PHYSEC": 4,
"A.REMOTE_AUTH": 3,
"A.SINGEN": 3,
"A.TIMESTMP": 2
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ALC": {
"ALC_FLR": 3,
"ALC_FLR.2": 5
},
"ASE": {
"ASE_TSS.2": 5
},
"AVA": {
"AVA_VAN.4": 5
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 2,
"EAL 2+": 1,
"EAL 4": 8,
"EAL 4 augmented": 3,
"EAL 5": 3,
"EAL 5+": 1,
"EAL 6": 1
}
},
"cc_sfr": {},
"certification_process": {
"ConfidentialDocument": {
"being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1,
"for genuscreen 7.0 from genua GmbH, Version 2, Date: 05.08.2020, secuvera GmbH (confidential document) [8] Guidance documentation for the TOE, genucenter Installations- und Konfigurationshandbuch": 1
},
"OutOfScope": {
"The genucenter must be operated on real hardware. Running the genucenter in a virtual machine is out of scope for this TOE. The Security Target [6] is the basis for this certification. It is not based on a": 1,
"VPN, IKEv2/MOBIKE VPN, Dynamic Routing, genucenter HA, Remote Maintenance, genucenter REST API) are out of scope of the evaluated configuration. All information contained in the Security Target [6] and the": 1,
"components were installed on physical hardware, the installation of the TOE on virtual machines is out of scope of the evaluated configuration. For the operational configuration the firewall appliances and the": 1,
"out of scope": 3
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 1
},
"IPsec": {
"IPsec": 7
},
"SSH": {
"SSH": 5
},
"VPN": {
"VPN": 7
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"secuvera": {
"secuvera": 3
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA256": 5,
"SHA512": 5
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 20": 2,
"AIS 32": 1,
"AIS 34": 1,
"AIS 38": 1,
"AIS20": 2
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18045": 4
}
},
"symmetric_crypto": {
"constructions": {
"MAC": {
"HMAC": 1
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-02102": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20200826080252+02\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung\"",
"/ModDate": "D:20200826154915+02\u002700\u0027",
"/Producer": "LibreOffice 6.2",
"/Subject": "BSI-DSZ-CC-1142-2020 for genuscreen 7.0 from genua GmbH",
"/Title": "Certification Report BSI-DSZ-CC-1142-2020",
"pdf_file_size_bytes": 432163,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.bsi.bund.de/zertifizierung",
"https://www.bsi.bund.de/zertifizierungsreporte",
"https://www.sogis.eu/",
"http://www.commoncriteriaportal.org/cc/",
"https://www.bsi.bund.de/AIS",
"http://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 27
},
"st_filename": "1142b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 3
},
"ECDH": {
"ECDH": 2
}
},
"FF": {
"DH": {
"DH": 2,
"Diffie-Hellman": 6
}
}
},
"cc_cert_id": {},
"cc_claims": {
"A": {
"A.ADMIN": 3,
"A.HANET": 2,
"A.INIT": 3,
"A.NOEVIL": 3,
"A.PHYSEC": 3,
"A.REMOTE_AUTH": 2,
"A.SINGEN": 4,
"A.TIMESTMP": 3
},
"O": {
"O.AUDREC": 5,
"O.AUTH": 11,
"O.AVAIL": 7,
"O.CONFID": 11,
"O.INTEG": 8,
"O.MEDIAT": 4,
"O.NOREPLAY": 11
},
"OE": {
"OE.ADMIN": 2,
"OE.HANET": 4,
"OE.INIT": 7,
"OE.NOEVIL": 3,
"OE.PHYSEC": 4,
"OE.REMOTE_AUTH": 1,
"OE.SINGEN": 4,
"OE.TIMESTMP": 5
},
"T": {
"T.MEDIAT": 3,
"T.MMODIFY": 3,
"T.MODIFY": 3,
"T.MSNIFF": 3,
"T.NOAUTH": 3,
"T.SELPRO": 3,
"T.SNIFF": 3
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_ARC": 1,
"ADV_ARC.1": 4,
"ADV_FSP": 1,
"ADV_FSP.1": 1,
"ADV_FSP.2": 2,
"ADV_FSP.4": 2,
"ADV_IMP": 1,
"ADV_IMP.1": 3,
"ADV_INT": 2,
"ADV_SPM": 2,
"ADV_TAT.1": 1,
"ADV_TDS": 1,
"ADV_TDS.1": 1,
"ADV_TDS.2": 1,
"ADV_TDS.3": 2
},
"AGD": {
"AGD_OPE": 1,
"AGD_OPE.1": 3,
"AGD_PRE": 1,
"AGD_PRE.1": 3
},
"ALC": {
"ALC_CMC": 1,
"ALC_CMC.4": 1,
"ALC_CMS": 1,
"ALC_CMS.4": 1,
"ALC_DEL": 1,
"ALC_DEL.1": 1,
"ALC_DVS": 1,
"ALC_DVS.1": 2,
"ALC_FLR": 1,
"ALC_FLR.2": 3,
"ALC_LCD": 1,
"ALC_LCD.1": 2,
"ALC_TAT": 1,
"ALC_TAT.1": 1
},
"ASE": {
"ASE_CCL": 1,
"ASE_CCL.1": 1,
"ASE_ECD": 1,
"ASE_ECD.1": 3,
"ASE_INT": 1,
"ASE_INT.1": 1,
"ASE_OBJ": 1,
"ASE_OBJ.2": 1,
"ASE_REQ": 1,
"ASE_REQ.1": 2,
"ASE_REQ.2": 1,
"ASE_SPD": 1,
"ASE_SPD.1": 1,
"ASE_TSS": 1,
"ASE_TSS.2": 4
},
"ATE": {
"ATE_COV": 1,
"ATE_COV.1": 1,
"ATE_COV.2": 1,
"ATE_DPT": 1,
"ATE_DPT.1": 2,
"ATE_FUN": 1,
"ATE_FUN.1": 4,
"ATE_IND": 1,
"ATE_IND.2": 1
},
"AVA": {
"AVA_VAN": 1,
"AVA_VAN.4": 4
}
},
"cc_security_level": {
"EAL": {
"EAL4": 4,
"EAL4 augmented": 1
}
},
"cc_sfr": {
"FAU": {
"FAU_GEN": 17,
"FAU_GEN.1": 5,
"FAU_GEN.2": 1,
"FAU_SAR": 10,
"FAU_SAR.1": 3,
"FAU_SAR.3": 1
},
"FCS": {
"FCS_CKM": 86,
"FCS_CKM.1": 21,
"FCS_CKM.4": 22,
"FCS_COP": 67,
"FCS_COP.1": 20,
"FCS_RNG": 1,
"FCS_RNG.1": 12,
"FCS_RNG.1.1": 2,
"FCS_RNG.1.2": 2
},
"FDP": {
"FDP_IFC": 43,
"FDP_IFC.1": 31,
"FDP_IFC.2": 2,
"FDP_IFF": 34,
"FDP_IFF.1": 37,
"FDP_ITT": 21,
"FDP_ITT.1": 3
},
"FIA": {
"FIA_ATD": 5,
"FIA_ATD.1": 1,
"FIA_SOS": 5,
"FIA_SOS.1": 1,
"FIA_UAU": 10,
"FIA_UAU.2": 1,
"FIA_UAU.6": 1,
"FIA_UID": 5,
"FIA_UID.1": 3,
"FIA_UID.2": 2
},
"FMT": {
"FMT_MOF": 5,
"FMT_MOF.1": 1,
"FMT_MSA": 125,
"FMT_MSA.1": 24,
"FMT_MSA.2": 3,
"FMT_MSA.3": 18,
"FMT_SMF": 39,
"FMT_SMF.1": 22,
"FMT_SMR": 6,
"FMT_SMR.1": 25
},
"FPT": {
"FPT_ITT": 7,
"FPT_ITT.1": 3,
"FPT_STM.1": 3,
"FPT_TEE": 7,
"FPT_TEE.1": 2,
"FPT_TRC": 5,
"FPT_TRC.1": 1,
"FPT_TRC.1.1": 1,
"FPT_TRC.1.2": 1
},
"FTP": {
"FTP_STM.1": 1
}
},
"certification_process": {
"OutOfScope": {
"1.4.10.5 No Dynamic Routing The dynamic routing feature which uses OSPF only works with IPv4 and is out of scope for this TOE. 1.4.10.6 No genucenter HA While the HA setup for the genuscreens is part of the": 1,
"and genucenter versions 200, 400, 600 and 800 in the field with hardware revision 6 and 7 which are out of scope for the current certification. The software genuscreen 7.0 runs on this hardware with the same": 1,
"cryptocard to perform cryptographic operations for IPsec usage. However, usage of the cryptocard is out of scope for this TOE. 1.4.10.2 No VPN to Other Appliances or Mobile Clients It is possible to build VPN": 1,
"hardware has not been evaluated. Also, operating the genucenter software on a virtual machine is out of scope for this certification. If the virtual genucenter is used, the end user has to ensure that all": 1,
"is out of scope. 1.4.10.8 No genucenter Rest API The genucenter REST API is out of scope and must not be used. 1.4.11 Physical Scope The physical scope of the TOE consists only of software": 1,
"out of scope": 7,
"the HA setup for genucenter is out of scope. 1.4.10.7 No Remote Maintenance The remote maintenance feature using a rendezvous genuscreen": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 6
},
"CTR": {
"CTR": 5
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"LibreSSL": {
"LibreSSL": 1
},
"OpenSSL": {
"OpenSSL": 1
}
},
"crypto_protocol": {
"IKE": {
"IKE": 82,
"IKEv1": 7,
"IKEv2": 6
},
"IPsec": {
"IPsec": 37
},
"SSH": {
"SSH": 111
},
"TLS": {
"TLS": {
"TLS": 3
}
},
"VPN": {
"VPN": 20
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 5
},
"MAC": {
"MAC": 2
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 5,
"SHA-512": 3,
"SHA256": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 5
}
},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 20": 2,
"AIS 31": 2,
"AIS20": 2,
"AIS31": 1
},
"CC": {
"CCMB-2012-04-003": 1,
"CCMB-2017-04-001": 1,
"CCMB-2017-04-002": 1
},
"FIPS": {
"FIPS180-4": 2
},
"PKCS": {
"PKCS#1": 9
},
"RFC": {
"RFC 2104": 1,
"RFC 2409": 1,
"RFC 2460": 1,
"RFC 3447": 1,
"RFC 3526": 1,
"RFC 4109": 1,
"RFC 4253": 1,
"RFC 4306": 1,
"RFC 4418": 1,
"RFC 5639": 1,
"RFC 6151": 1,
"RFC 6668": 1,
"RFC2104": 6,
"RFC2409": 9,
"RFC2460": 1,
"RFC3502": 1,
"RFC3526": 4,
"RFC4253": 3,
"RFC4301": 1,
"RFC4344": 1,
"RFC4418": 4,
"RFC4432": 1,
"RFC5639": 3,
"RFC5656": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 13
}
},
"constructions": {
"MAC": {
"HMAC": 4,
"HMAC-SHA-256": 1
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-02102": 2,
"BSI TR-02102-1": 2,
"BSI TR-02102-2": 2,
"BSI TR-02102-3": 2,
"BSI TR-02102-4": 2
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"/Author": "genua GmbH",
"/CreationDate": "D:20200717120845+02\u002700\u0027",
"/Creator": "LaTeX with hyperref",
"/Keywords": "firewall",
"/ModDate": "D:20200717120845+02\u002700\u0027",
"/PTEX.Fullbanner": "This is pdfTeX, Version 3.14159265-2.6-1.40.20 (TeX Live 2019) kpathsea version 6.3.1",
"/Producer": "pdfTeX-1.40.20",
"/Subject": "Common Criteria certification",
"/Title": "genuscreen 7.0 Security Target",
"/Trapped": "/False",
"pdf_file_size_bytes": 1010308,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
"http://dx.doi.org/10.6028/NIST.SP.800-38A",
"http://www.ietf.org/rfc/rfc4253.txt",
"http://www.ietf.org/rfc/rfc3526.txt",
"http://www.ietf.org/rfc/rfc2460.txt",
"http://www.ietf.org/rfc/rfc3447.txt",
"https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_20_pdf.html",
"http://dx.doi.org/10.6028/NIST.FIPS.186-4",
"https://tools.ietf.org/html/draft-miller-secsh-umac-01",
"http://www.ietf.org/rfc/rfc5639.txt",
"https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_pdf.html",
"http://www.ietf.org/rfc/rfc2409.txt",
"http://www.ecc-brainpool.org/download/Domain-parameters.pdf",
"http://www.ietf.org/rfc/rfc4418.txt",
"https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_Functionality_classes_for_random_number_generators_e.pdf?__blob=publicationFile",
"http://dx.doi.org/10.6028/NIST.FIPS.180-4",
"http://www.ietf.org/rfc/rfc2104.txt"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 71
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/files/epfiles/1142a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL4+",
"AVA_VAN.4",
"ASE_TSS.2",
"ALC_FLR.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/files/epfiles/1142b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "c85350fb2baf096bfe6caaa949e7c85dd426e4883ee0b7e7f254c57fd3170956",
"txt_hash": "bc4e84826fd365bf8ad697740e0b55331e224175eab7e3d4b3554abbfa2eae02"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "4d53b348e09cdc04c57bd2a28e090c0d047ce7c850bd86ea71c66122bbeacf37",
"txt_hash": "b01b1f50e1a26e783559584485ffd0db0afdaf8fce083bb3c76fb1c3b9704962"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "a2ae857248933bdb010cbea74937a57df42a6bd6fff12cae0906d86d30f68ba6",
"txt_hash": "04c792eb547f9955e2d088d196bbc2cc349f9e09a8b1849d2b28f041ed7ccb63"
}
},
"status": "active"
}