{"product_id":11434,"v_id":11434,"product_name":"Venafi Trust Protection Platform v23.1","certification_status":"Certified","certification_date":"2024-07-29T00:00:00Z","tech_type":"Application Software, Remote Access","vendor_id":{"name":"Venafi, Inc.","website":"venafi.com"},"vendor_poc":"Shivajee Samdarshi","vendor_phone":"801-676-6900","vendor_email":"shivajee.samdarshi@venafi.com","assigned_lab":{"cctl_name":"Acumen Security"},"product_description":"<p>Venafi Trust Protection Platform is a windows application that secures and protects keys and certificates. This protection improves security posture with increased visibility, threat intelligence, policy enforcement, and faster incident response for certificate-related outages and compromises leveraging misused keys and certificates.</p>\r\n<p>The platform supports all Venafi products and provides native integration with thousands of applications and common APIs for the extensive security ecosystem. Shared and extensible services enable enterprises to gain complete visibility into their key and certificate inventory, identify certificate reputation, and establish a baseline. The entire issuance and renewal process can be automated with policy enforcement and workflows, enabling new encryption dependent applications to be scaled quickly. Trust Protection Platform keeps organizations secure, helping them comply with standards and remediate key and certificate misuse.</p>\r\n<p>The description above provides a general description of the functionality provided by the Venafi Trust Protection Platform.</p>","evaluation_configuration":"<p>The TOE boundary is the application software which runs on the host platform. The TOE is a Windows Application. For this evaluation the TOE runs on Windows Server 2016 Standard configured in FIPS mode running on a server with an Intel Xeon processor with AES-NI and PCLMULQDQ and SSSE 3. The Universal C Runtime must be installed. In addition to this the following Microsoft Internet Information (IIS) web server roles must be installed:</p>\r\n<ul>\r\n<li>Common HTTP Features\\Static Content</li>\r\n<li>Common HTTP Features\\Default Document</li>\r\n<li>Health and Diagnostics\\HTTP Logging</li>\r\n<li>Health and Diagnostics\\Logging Tools</li>\r\n<li>Health and Diagnostics\\Request Monitor</li>\r\n<li>Health and Diagnostics\\Tracing</li>\r\n<li>Security\\Request Filtering</li>\r\n<li>Performance\\Static Content Compression</li>\r\n</ul>","security_evaluation_summary":"<p>The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Venafi Trust Protection Platform was evaluated is described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 5.&nbsp; The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 rev 5.&nbsp; The product, when delivered and configured as identified in the Common Criteria Administrator Guidance, satisfies all of the security functional requirements stated in the Venafi Trust Protection Platform v23.1 Security Target. The project underwent CCEVS Validator review.&nbsp; The evaluation was completed in July 2024.&nbsp; Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report prepared by CCEVS.</p>","environmental_strengths":"<p>The TOE provides the security functionality required by [SWAPP] and [SSHFP].</p>\r\n<p><a name=\"_Ref33018577\"></a><a name=\"_Toc168410405\"></a><strong>Cryptographic Support</strong></p>\r\n<p>The TOE relies on underlying cryptographic functionality provided by the platform for all of its cryptographic operations, as allowed by the [SWAPP] and [SSHFP].</p>\r\n<p><a name=\"_Toc168410406\"></a><strong>Security Management</strong></p>\r\n<p>The TOE does not come with any default credentials. Upon installation it will randomly generate a self-signed certificate, and AES 256 symmetric key and a GUID for the base configuration of the system. No data is stored by the application on the platform file system.</p>\r\n<p><a name=\"_Toc168410407\"></a><strong>Privacy</strong></p>\r\n<p>The TOE does not store or transmit anything that could be considered Personally Identifiable Information (PII).</p>\r\n<p><a name=\"_Toc168410408\"></a><strong>User Data Protection</strong></p>\r\n<p>The TOE relies on the platform to securely store the following:</p>\r\n<ul>\r\n<li>DSN key</li>\r\n<li>PKCS12 key</li>\r\n<li>PKCS8 (private key)</li>\r\n<li>Usernames</li>\r\n<li>Passwords</li>\r\n<li>Customer application credentials</li>\r\n</ul>\r\n<p>The Windows Registry is used for storage of the TOE&rsquo;s symmetric key. An AES 256 key is used for the encryption and decryption of secrets. It is protected by the Windows Data Protection API (DPAPI).</p>\r\n<p>No additional sensitive data is stored by the TOE.&nbsp;</p>\r\n<p><a name=\"_Toc168410409\"></a><strong>Protection of the TSF</strong></p>\r\n<p>The TOE employs several mechanisms to ensure that it is secure on the host platform. The TOE never allocates memory with both write and execute permission. The TOE is designed to operate in an environment in which the following security techniques are in effect:</p>\r\n<ul>\r\n<li>Data execution prevention,</li>\r\n<li>Mandatory address space layout randomization (no memory map to an explicit address),</li>\r\n<li>Structured exception handler overwrite protection,</li>\r\n<li>Export address table access filtering, and</li>\r\n<li>Anti-Return Oriented Programming.</li>\r\n</ul>\r\n<p>This allows the TOE to operate in an environment in which the Enhanced Mitigation Experience Toolkit is also running. During compilation, the TOE is built with several flags enabled that check for engineering flaws. The TOE is built with the /GS flag enabled. This reduces the possibilities of stack-based buffer overflows in the product.</p>\r\n<p><a name=\"_Ref33018585\"></a><a name=\"_Toc168410410\"></a><strong>Trusted Path/Channels</strong></p>\r\n<p>TLS and SSH are used to protect all data transmitted to and from the TOE.&nbsp;</p>","features":[{"id":3508,"feature_name":"Certificate Authentication"},{"id":3509,"feature_name":"Certificate Validation"},{"id":3511,"feature_name":"DRBG"},{"id":3513,"feature_name":"DTLS 1.0"},{"id":3515,"feature_name":"DTLS Server with Mutual Authentication"},{"id":3516,"feature_name":"PBKDF"},{"id":3506,"feature_name":"SSH"},{"id":3507,"feature_name":"SSH Client"}]}