topic Re: Common Criteria EAL4+ compliance for R80.10? in Firewall and Security Management

Common Criteria EAL4+ compliance for R80.10?

Jonathan_Pitt — Fri, 17 Nov 2017 12:03:19 GMT

Does anyone have any information on Common Criteria EAL4+ compliance for R80.10?

There is no info here: Certified Check Point Solutions | Check Point Software regards anything beyond R77.30.

Anyone with info regards implied compliance or an ETA on a statement would be most welcomed. I appreciate that sometimes these statements come someway behind release.

Thanks

Jon

Re: Common Criteria EAL4+ compliance for R80.10?

PhoneBoy — Sat, 18 Nov 2017 00:55:49 GMT

In general, these certifications take some time to complete and we only typically post official notice once the product has achieved the relevant certification.

I'll see what I can find out, but I'm not sure what I can say publicly about it.

Your account team may be able to tell you more.

Re: Common Criteria EAL4+ compliance for R80.10?

Malcolm_Levy — Sat, 18 Nov 2017 20:05:18 GMT

We are performing 4 Common Criteria certifications:

1. EAL4+ R77.30

2. EAL4+ of R80.xx

3. NDcPP based evaluation of R80.10

4. NDcPP for the high end including 44K/64K

EAL4+ and NDcPP are to satisfy different markets.

NDcPP is primarily requested in the US, Canada, Australia/New Zealand and the UK

EAL4+ is requested in Germany and some other countries

There are countries where either standard is accepted, and this sometimes depends upon the requesting agency.

EAL4+ is the traditional Common Criteria standard and requires much effort in developing a complete set of design and assurance evidence.

NDcPP is essentially a formalized set of back box tests defined as part of a Protection Profile for a technology type.

The EAL4+ In Evaluation listing for R77.30 is shown here: https://oc.ccn.cni.es/index.php?option=com_content&view=article&id=319&Itemid=131&lang=en

The EAL4+ for R80.xx should be listed by the BSI in the very near future (we after the official kick-off meeting)

Projects are subject to change during the evaluations.

Letters attesting to these commitments are available upon request.

Malcolm

Re: Common Criteria EAL4+ compliance for R80.10?

Malcolm_Levy — Wed, 14 Mar 2018 12:24:06 GMT

We have updated the projects as follows. The link for 1 and 2 are the official the In_Evaluation listing:

1. EAL4+ R77.30 https://oc.ccn.cni.es/index.php?option=com_content&view=article&id=319&Itemid=131&lang=en

2. EAL4+ of R80.20 BSI - Certification - Products / systems, which are in evaluation / certification

3. NDcPP based evaluation of R80.20 - not yet listed as pre-kickoff

4. NDcPP for the high end including 44K/64K -not yet listed as pre-kickoff

Re: Common Criteria EAL4+ compliance for R80.10?

Malcolm_Levy — Mon, 04 Jun 2018 08:48:11 GMT

the EAL4 of R77.30 link looks to be problematic

here is another https://oc.ccn.cni.es/index.php/en/certified-products/certified-products/status/49-evaluation/295-check-point-software-technologies-ltd-security-appliances-with-security-management-and-security-gateway-r77-30-on-gaia

For this project is progressing. The lab is here in Israel validating the site, security and procedures

Re: Common Criteria EAL4+ compliance for R80.10?

Malcolm_Levy — Fri, 14 Sep 2018 08:52:42 GMT

Please see that the In Evaluation listing for R80.20 being performed in Germany through the BSI is shown on the 2nd page of this link as follows:

https://www.bsi.bund.de/EN/Topics/Certification/incertification.html?nn=6650938&cms_gtp=6650840_unnamed%253D2

BSI-DSZ-CC-1054

Check Point Security Gateway and Security Management R80.xx Firmware for Security Gateway, Firewall, VPN, Security Management Server, and GAiA

Check Point Software Technologies Ltd

Network Device Additional information: Product in evaluation

Re: Common Criteria EAL4+ compliance for R80.10?

Malcolm_Levy — Thu, 01 Nov 2018 06:49:27 GMT

We have now officially commenced the cPP evaluation for R80.20 through NIAP-CCEVS. We are claiming FW, VPN, IPS and NSA CSFC compliance.

The In_Evaluation listing shown below is linked at: https://www.niap-ccevs.org/Product/PINE.cfm

The NSA CSFC listing will be here https://www.nsa.gov/resources/everyone/csfc/components-list/#ipsec-vpn-gateway

Malcolm

Product	VID	Conformance Claim	CCTL	Kickoff Date
Check Point Software Technologies Ltd. Check Point Software Technologies Ltd. Security Gateway and Sandblast Appliances, CloudGuard R80.20	10942	· CPP_FW_V2.0E · EP_IPS_V2.11 · EP_VPN_GW_V2.1	Gossamer Security Solutions	2018.10.30

Re: Common Criteria EAL4+ compliance for R80.10?

Danny — Mon, 21 Jan 2019 05:02:31 GMT

This is great news.

Re: Common Criteria EAL4+ compliance for R80.10?

Fatih_Ergul — Wed, 25 Sep 2019 19:38:11 GMT

Hi all,

Do we have any updated info for EAL4+ complaince of for R80.30 or R80.x ?

Thanks

Re: Common Criteria EAL4+ compliance for R80.10?

Matthias_Haas — Thu, 09 Jan 2020 09:51:34 GMT

certified: Certification Report

Re: Common Criteria EAL4+ compliance for R80.10?

PhoneBoy — Fri, 17 Jan 2020 12:08:48 GMT

Hi, we now have Common Criteria certification for R80.30.
See details here: https://community.checkpoint.com/t5/Enterprise-Appliances-and-Gaia/2-new-Common-Criteria-certificates-R80-30-Protection-Profile-and/m-p/72441#M5512