2015年5月3日 · EAL4 - methodically designed, tested, and reviewed; EAL5 - semi-formally designed and tested; EAL6 - semi-formally verified design and tested; EAL7 - formally verified design and tested; You can see these are increasingly rigorous, from functionally tested to formal verification. The security or safety of something isn't an absolute value, it ...

2013年6月6日 · I am trying to find out if the ASA 5515-X is EAL4 certified, and if not, what recommendations of EAL4 certified devices can I use.

2012年1月19日 · what you need is: Cisco Adaptive Security Appliance (ASA) Firewall & Virtual Private Network (VPN) Platform Preparative Procedures & Operational User Guide Version 0.8 April 2011 This document describes how to install and configure the Cisco ASA 5500 Series Adaptive Security Appliance (ASA) running software version 8.3.2 as certified by Common …

2010年3月23日 · Solved: I'm struggling to find a good clear document on CCO that states what/if verion of ASA is EAL4 compliant. Also is the VPN aspect also EAL4? Anyone know a good summary or knows the answer?

2002年2月15日 · Common Criteria only issued EAL 1,2,3,etc.. never with + or -. The actual case are some products changed their system (version upgrade, patching), as the certification statement, they are no longer certified at that level.

2014年10月28日 · Hi, Can someone expand on the differences between EAL certification vs using a Protection Profile as an alternative? I understand that Cisco is moving to PP certifications, and one of the differences that has created some speculation is the software version that is used during testing.Since a PP is ...

2020年8月9日 · You better talk to the parties who did the EAL4 evaluation for you and already know lots of details of your product for how to achieve EAL7 with this specific product. In general EAL7 is much harder too achieve than EAL4. It comes with requirements like formal verification which are simply not doable currently for more complex software systems.

2021年6月10日 · It is more or less proving that the source code does what it is supposed to do and that what it is supposed to do is also the right thing. Just providing the code to prove this is not sufficient but proving it without providing the code is probably not possible. And at least in my experience it is normal to provide source code with EAL4 already.

2020年2月17日 · Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

2016年9月6日 · Suppose you are writing a security target or protection profile targeting EAL4. Then you take a look at the column for EAL4 and screen each row. The first row is for ALC_TAT, and the entry in the EAL4 column is 1. This means that for EAL4, the assurance component ALC_TAT.1 will be included in the evaluation process.