NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems
Questions?  We're here to help
  NIAP  »»  Protection Profiles  »»  Archived PPs  »»  Details  
Archived U.S. Government Approved Protection Profile - Extended Package for VPN Gateways Version 2.1

Short Name: ep_vpn_gw_v2.1

Technology Type: Virtual Private Network

CC Version: 3.1

Date: 2017.03.08

Preceded By: pp_ndcpp_vpn_gw_ep_v2.0

Succeeded By: mod_vpngw_v1.0

Sunset Date: 2019.12.31 [Sunset Icon]

Conformance Claim: None

Protection Profile [PDF]

Control Mapping [PDF]



This Extended Package (EP) describes security requirements for a VPN Gateway. This is defined to be a device at the edge of a private network that terminates an IPsec tunnel, which provides device authentication, confidentiality, and integrity of information traversing a public or untrusted network. The EP is intended to provide a minimal, baseline set of requirements that are targeted at mitigating well defined and described threats to VPN Gateway technology. However, this EP is not complete in itself, but rather extends the collaborative Protection Profile for Network Devices (NDcPP) and the collaborative Protection Profile for Stateful Traffic Filter Firewalls (FWcPP).

This U.S. Government Approved Protection Profile is not assigned to any Validated Products

Archived Related Technical Decisions

Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).

Please forward any general questions to our Q&A tool.

Site Map              Contact Us              Home