Protection Profiles

A Protection Profile is a document that stipulates the security functionality that must be included in a Common Criteria evaluation. Agencies can have confidence that the scope of an evaluation against an ACSC-approved Protection Profile covers the necessary security functionality expected of the evaluated product and known security threats will have been addressed. The evaluation scope also includes the effectiveness and integrity of cryptographic functions.

In the past, a Common Criteria evaluation has been conducted at a specified Evaluation assurance level (EAL). However, Protection Profiles do not incorporate this scale. The Protection Profile describes the complete set of a products security functionality, against which it is evaluated. Products evaluated against a Protection Profile will still appear on ACSCs Evaluated Products List (EPL) but with the relevant Protection Profile rather than an EAL.

Protection Profiles provide better assurance in the security of evaluated products. During the transition to Protection Profiles, a cap of EAL 2 now applies for all traditional EAL-based evaluations overseen by ACSC.

ACSC-approved Protection profiles

 

Technology Protection Profile Version Published
Network-related devices Collaborative Protection Profile for Network Devices v2.0 + Errata 20180314 ND cPP Supporting Document (PDF) V2.0E 2018-03-14
Network-related devices Collaborative Protection Profile for Stateful Traffic Filter Firewalls v2.0 +Errata 20180314
FW cPP Supporting Document(PDF)		 V2.0E 2018-03-14
Network-related devices Extended Package VPN Gateway (GW EP) (PDF) V2.1 2017-06-15
Network-related devices Extended Package Intrusion Prevention Systems (IPS EP) (PDF) V2.11 2017-03-08

Other Protection Profiles the AISEP may consider depending on the needs of Australian government are listed here: https://www.niap-ccevs.org/Profile/PP.cfm

Archived Protection profiles

Protection Profiles listed below are for reference only and are not to be used as the basis for new evaluations in the AISEP. Protection Profiles are reviewed periodically to determine if the security functional and assurance requirements are still acceptable, given rapid technology changes and increasing threat levels.

 

Technology Protection Profile Version Approved
Certification authorities Certification Authority Protection Profile(PDF) 1.0 December 2015
Data protection Collaborative Protection Profile for Full Drive Encryption Authorisation Acquisition (AA cPP)(PDF)
AA cPP Supporting Document(PDF)		 1.0 May 2016
Data protection Collaborative Protection Profile for Full Drive Encryption - Encryption Engine (EE cPP)(PDF)
EE cPP Supporting Document(PDF)		 1.0 May 2016
Network-related devices Collaborative Protection Profile for Network Devices (ND cPP)(PDF)
ND cPP Supporting Document(PDF)		 1.0 May 2016
Network-related devices Collaborative Protection Profile for Network Devices Extended Package Intrusion Prevention Systems (ND cPP IPS EP)(PDF) 2.1 May 2016
Network-related devices Collaborative Protection Profile for Network Devices Extended Package VPNGateway (ND cPP VPN GW EP)(PDF) 2.0 May 2016
Network-related devices Collaborative Protection Profile for Network Devices Extended PackageWireless Local Area Network (WLAN) Access Systems (ND cPP WLAN ASEP)(PDF) 1.0 May 2016
Network-related devices Collaborative Protection Profile for Stateful Traffic Filter Firewalls (FWcPP)(PDF) FW cPP Supporting Document(PDF) 1.0 May 2016
Network-related devices Protection Profile for IPsec Virtual Private Network (VPN) Clients(PDF) 1.4 May 2016
Other devices and systems Protection Profile for Mobile Device Fundamentals (MDF PP) ACSC Mandatory Requirements Addendum to MDF PP v2.0(PDF) 2.0 May 2016
Data protection Protection Profile for Software Full-Disk Encryption(PDF) 1.1 October 2014
Network-related devices Network Device Protection Profile (NDPP) Extended Package (EP) for IntrusionPrevention Systems (IPS)(PDF) 1.0 June 2014
Mobile products Protection Profile for Mobile Device Fundamentals(PDF) ACSC Mandatory Requirements Addendum(PDF) 1.1 April 2014
Network-related devices Protection Profile for IPsec Virtual Private Network (VPN) Clients(PDF) 1.0 January 2013
Network-related devices Network Device Protection Profile (NDPP) Extended Package VPN Gateway(PDF) 1.0 January 2013
Network-related devices Network Device Protection Profile(PDF) 1.1 June 2012
Network-related devices Protection Profile Extended Package for Stateful Traffic Filter Firewalls(PDF) 1.0 May 2012
Data protection Protection Profile for Full Disk Encryption(PDF) 1.0 March 2012
Network-related devices Protection Profile for Wireless Local Area Network (WLAN) Access Systems(PDF) 1.0 March 2012
Network-related devices [Protection Profile for Wireless Local Area Network (WLAN) Clients(PDF)](https://www.acsc.gov.au/publications/epl/Protection_Profile_for_WLAN_Clients_v1_0.pdf 1.0 March 2012
Data protection Protection Profile for USB Flash Drives(PDF) 1.0 February 2012

Related content

ICT product security evaluations

We undertake formal independent assessment of ICT security products (both hardware and software) to make sure they meet our standards. What our evaluations provide Our Evaluated Products List (EPL) …

Programs

Submitting ICT security products for evaluation

If you are an industry consultant or a product developer and would like your product evaluated, use the following checklist: Step 1  Conduct background research on government agency security needs …

Programs

Australasian Information Security Evaluation …

The Australasian Information Security Evaluation Program (AISEP) evaluates and certifies ICT products for use in Australian and New Zealand government agencies to protect official information and …

Programs