United States
Communities
I am a...
I want to...
Communities
|
Social Applications
Networks
Support
|
|
C-Level Executives
Other Roles
|
|
Support
Education
Partner
Other Tasks
|
Oracle Technology Network
Topics
Security
Topics
Security
Oracle Security Evaluations |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Oracle Security Evaluations are an integral part of the Oracle Software Security Assurance program. Go to Security Evaluations for more information on the evaluations and validations that Oracle undertake. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Status of Oracle Security Evaluations 1Common Criteria and FIPS EvaluationsIn EvaluationCommon Criteria
FIPS140-2
|
|
Oracle Database
|
Oracle Servers |
Oracle Fusion Middleware |
Oracle Applications |
Other |
| Oracle Database | Oracle Primavera |
Oracle Database
| Product Type | Product | Release | Level | Criteria | Platform | Status |
| Oracle Database | Oracle Database 11g Release 2
|
11.2.0.2 | EAL4+ | US PP DMS for Basic Robustness Environment |
RedHat Enterprise Linux AS version 5 Oracle Linux version 5 update 1 |
Evaluated |
| 11.2.0.2 | EAL4+ | US PP DMS for Basic Robustness Environment |
RedHat Enterprise Linux AS version 5 Oracle Linux version 5 update 1 |
Evaluated | ||
| Oracle Database Vault 11g
|
11.1.0.7 | EAL4+ | US PP DMS for Basic Robustness Environment |
RedHat Enterprise Linux AS version 5 Oracle Linux version 4 update 5 |
Evaluated | |
| 11.1.0.7 | EAL4+ | US PP DMS for Basic Robustness Environment |
RedHat Enterprise Linux AS version 5 Oracle Linux version 4 update 5 |
Evaluated | ||
| 11.1.0.7 | EAL4+ | US PP DMS for Basic Robustness Environment |
RedHat Enterprise Linux AS version 5 Oracle Linux version 4 update 5 |
Evaluated | ||
| Oracle Label Security 11g | 11.1.0.7 | EAL4+ | US PP DMS for Basic Robustness Environment |
RedHat Enterprise Linux AS version 5 Oracle Linux version 4 update 5 |
Evaluated | |
|
|
10.2.0.3 | EAL4+ | US PP DMS for Basic Robustness Environment | RedHat Enterprise Linux 4 SuSE Linux Enterprise Server 9 |
Evaluated | |
| Oracle Label Security 10g | 10.2.0.3 | EAL4+ | US PP DMS for Basic Robustness Environment | RedHat Enterprise Linux 4 SuSE Linux Enterprise Server 9 |
Evaluated | |
| Oracle Database 10g | 10.1.0.4.0 | EAL4+ | DBMS PP | RedHat Enterprise Linux | Evaluated | |
| Oracle Label Security 10g | 10.1.0.4.0 | EAL4+ | DBMS PP | RedHat Enterprise Linux | Evaluated | |
| Oracle9i Database | 9.2.0.1.0 | EAL4+ | DBMS PP | Solaris 8, NT 4.0 SuSE SLES8 |
Evaluated | |
| Oracle9i Label Security | 9.2.0.1.0 | EAL4+ | DBMS PP | Solaris 8, NT 4.0 SuSE SLES8 |
Evaluated | |
| Oracle8i Label Security | 8.1.7 | EAL4 | DBMS PP | Solaris 8, NT 4.0 SuSE SLES8 |
Evaluated | |
| Oracle8i Database | 8.1.7 | EAL4 | DBMS PP | Solaris 8 | Evaluated | |
| Oracle8 Database Server | 8.0.5 | EAL4 | DBMS PP | NT 4.0 | Evaluated | |
| Oracle7 Server | 7.2.2.4.1.3 | EAL4 | C.DBMS PP | NT 3.51 | Evaluated |
Oracle Servers
| Product Type | Product | Release | Level | Criteria | Platform | Status |
| Oracle Linux | Oracle Linux | Version 5 Update 1 | EAL4+ | CAPP | HP, DELL, OVM | Evaluated |
| Oracle Linux | Version 4 Update 4 & 5 | EAL4+ | CAPP | HP, DELL | Evaluated | |
| Oracle Solaris | Oracle Solaris 10 | 11/06 Trusted Extensions | EAL4+ |
CAPP, RBAC, LSPP |
See Security Target | Evaluated |
| Oracle Solaris 10 | 5/09 Trusted Extensions | |||||
| Oracle Solaris 10 | 5/08 Trusted Extensions | |||||
| Oracle Solaris 10 | 11/06 | EAL4+ |
CAPP, RBAC |
See Security Target | Evaluated | |
| Oracle Solaris 10 | 5/09 | |||||
| Oracle Solaris 10 | 5/08 | |||||
| Oracle Solaris 10 | 03/05 | EAL4+ | CAPP, RBAC | See Security Target | Evaluated | |
| Oracle Solaris 9 | 08/03 | EAL4+ | CAPP, RBAC | See Security Target | Evaluated | |
| Trusted Oracle Solaris 8 | 4/01 | EAL4 | CAPP, RBAC, LSPP | See Security Target | Evaluated | |
| Oracle Solaris 8 | 02/02 | EAL4 | CAPP | Evaluated | ||
| Oracle Solaris 8 | 8 with AdminSuite v 3.0.1 | EAL4 | CAPP | Evaluated |
Oracle Fusion Middleware
| Product Type | Product | Release | Level | Criteria | Platform | Status |
| Oracle Application Server | Oracle HTTP Server 10g | 10.1.2 | EAL4+ |
—
|
Solaris 8 Solaris 9 |
Evaluated |
| Oracle Application Server 10g | 9.0.4.1.0 | EAL4+ |
—
|
Solaris 8 | Evaluated | |
| AquaLogic | AquaLogic Interaction Publisher | 6.4 | EAL2+ |
—
|
Windows Server 2003 SP1 |
Evaluated |
| AquaLogic Interaction Collaboration | 4.2 | EAL2+ |
—
|
Windows Server 2003 SP1 Solaris 10 Red Hat Enterprise Linux 4 Update 3 |
Evaluated | |
| Oracle AquaLogic Business Process Management Suite | Version 6.0 MP4 | EAL2+ |
—
|
Windows Server 2003 SP1 SuSE Linux Enterprise Server 10 (x86-32,x86-64,Itanium-64) HP-UX 11.23 ( Itanium-64), AIX 5.3 |
Evaluated | |
| AquaLogic Interaction 6.1 with AquaLogic Interaction Development Kit | EAL2+ |
—
|
Windows Server 2003 SP1 |
Evaluated | ||
| Oracle Business Intelligence | Oracle Business Intelligence Enterprise Edition | Release 10.1.2 | EAL3 |
—
|
Oracle Linux, Version 4 Update 5 | Evaluated |
| Oracle Enterprise Manager | Oracle Enterprise Manager 10g Grid Control Release 5 | 10.2.0.5 | EAL4+ |
—
|
RedHat Enterprise Linux AS version 5 SuSE Linux Enterprise Server 10 SP1
Oracle Linux version 5 |
Evaluated |
| Oracle Identity and Access Manager | Oracle Identity and Access Management 10g | Release 3 (10.1.4.0.1) | EAL4+ |
—
|
RedHat Enterprise Linux 4 | Evaluated |
| Oracle Identity Manager | Oracle Identity Manager | 9.1.0 | EAL4+ |
—
|
RedHat Enterprise Linux AS version 4 Update 5 | Evaluated |
| Oracle Internet Directory | Oracle Internet Directory 10g | 10.1.4.0.1 | EAL4+ |
—
|
RedHat Enterprise Linux 4 | Evaluated |
| Oracle Internet Directory 10g | 9.0.4.0.0 | EAL4+ |
—
|
Solaris 8 | Evaluated | |
| WebLogic | BEA WebLogic Server® | 8.1 SP5 | EAL2+ |
—
|
Java 2 BEA JRockit®1.4.2_08 SDK or Sun Java 2 SDK 1.4.2_08 with Java HotSpot™ Client VM |
Evaluated |
| BEA WebLogic Portal | V8.1 SP5 with BEA06-81/02 and BEA07-107.02 security advisory patches | EAL2+ |
—
|
Java 2 BEA JRockit®1.4.2_08 SDK or Sun Java 2 SDK 1.4.2_08 with Java HotSpot™ Client VM
|
Evaluated | |
| BEA WebLogic Platform | V8.1 SP6 with BEA07-169.00 Security Advisory Patch | EAL2+ |
—
|
BEA JRockit®1.4.2_10 SDK or Sun Java 2 SDK 1.4.2_11 with Java HotSpot™Client VM | Evaluated | |
| BEA WebLogic Integration | V8.1 SP6 with BEA07-169.00 Security Advisory Patch | EAL2+ |
—
|
BEA JRockit®1.4.2_10 SDK or Sun Java 2 SDK 1.4.2_11 with Java HotSpot™Client VM | Evaluated | |
| BEA WebLogic Server | V7.0 SP6 with BEA05-107.00 advisory patch | EAL2+ |
—
|
Microsoft Windows 2000 Server
|
Evaluated |
Oracle Applications
| Product Type | Product | Release | Level | Criteria | Platform | Status |
| Oracle Primavera | Primavera P6 Enterprise Project Portfolio Management | v6.2.1 | EAL4 |
—
|
Evaluated |
Other Products
| Product Type | Product | Release | Level | Criteria | Platform | Status |
| Passlogix | Passlogix v-GO Access Accelerator Suite | 6 | EAL3+ |
—
|
MS Windows environment | Evaluated |
| Siebel | Siebel eBusiness | 7.8.2 | EAL2 |
—
|
Application Server: MS Windows 2000 Advanced Server SP4; Remote Workstation: MS Windows 2000 Professional SP4 | Evaluated |
FIPS Validated
| Scheme | Product | Release | Level | Criteria | Platform | Status |
| FIPS | StorageTek™ T10000C Tape Drive | Hardware Part Number 316052503Firmware Version 1.51.318 | 1 | FIPS 140-2 | The StorageTek™ T10000C Tape Drive provides 5 TB native capacity and 240 MB/sec throughput using BaFe media and with backward read compatibility to the T10000A/B | Validated |
| Oracle Database 10 g (Oracle Cryptographic Libraries for SSL) | 10.1.0.5 | 2 | FIPS 140-2 | Solaris 8 | Validated | |
| Oracle Application Server 10 g (Oracle Cryptographic Libraries for SSL) | 9.0.4 | 2 | FIPS 140-2 | Solaris 8 | Validated | |
| Oracle Phaos Crypto | 3.0 and 3.0.1 | 1 | FIPS 140-2 | Window 2000 (Single User mode), Sun Java 2 Runtime Environment (V1.3.1) | Validated | |
| Oracle8i Advanced Security | 8.1.6 | 2 | FIPS 140-1 | Solaris 2.6 SE | Validated | |
| Network Security Services (NSS) Cryptographic Module | Software Version: 3.12.4 | 2 | FIPS 140-2 | Red Hat Enterprise Linux v5 running on an IBM System x3550; Red Hat Enterprise Linux v5 running on an HP ProLiant DL145 | Validated | |
| Network Security Services (NSS) Cryptographic Module (Extend ECC) | Software Version: 3.12.4 | 2 | FIPS 140-2 | Sun Solaris 10 5/08 running on a Sun SunBlade 2000 workstation; Sun Solaris 10 5/08 running on a Sun W2100z workstation | Validated | |
| Network Security Services (NSS) Cryptographic Module (Basic ECC) | Software Version: 3.12.4 | 1 | FIPS 140-2 | Microsoft Windows XP with SP3; Apple Mac OS X 10.5 (single-user mode) | Validated | |
| Sun Crypto Accelerator 6000 | Hardware Versions: 375-3424, Revisions -02, -03 and -04; Firmware Versions: Bootstrap version 1.0.1 or 1.0.10, Operational firmware version 1.1.2 | 3 | FIPS 140-2 | High performance hardware security module for Sun SPARC, x86, x64 platforms in a lowprofile, short PCI-E (X8) card. Supported on Linux and Solaris-10 | Validated | |
| Sun Crypto Accelerator 6000 | Hardware Version: 375-3424, Revisions -02, -03 and -04; Firmware Version: Bootstrap versions 1.0.1 and 1.0.10, Operational firmware version 1.0.11 | 3 | FIPS 140-2 | High performance hardware security module for Sun platforms (SPARC, x86, x64) | Validated | |
| Sun Cryptographic Accelerator 6000 | Hardware Version: 375-3424, Revisions -02 and -03; Firmware Version: 1.0.7 | 3 | FIPS 140-2 | High performance hardware security module for Sun platforms (SPARC, x86, x64) | Validated | |
| Sun Cryptographic Accelerator 4000 | Hardware Versions: 501-6040-02 and 501-6040-03 (Fiber), 501-6039-05 and 501-6039-06 (UTP/Copper); Firmware Versions: 2.0 and 2.0.1 | 3 | FIPS 140-2 | High performance secure networking solution for Sun servers | Validated | |
| Sun Cryptographic Accelerator 4000 | Hardware Versions: Fiber: 501-6040-02 and 501-6040-03, UTP/Copper: 501-6039-05 and 501-6039-06, Firmware Version: 1.1 | 3 | FIPS 140-2 | High performance secure networking solution for Sun servers | Validated | |
| Sun Cryptographic Accelerator 4000 | Hardware Versions: 501-6040-02 and 501-6040-03 (Fiber) and 501-6039-05 and 501-6039-06 (UTP/Copper), Firmware Version: 1.0.3 | 3 | FIPS 140-2 | High performance secure networking solution for Sun servers | Validated | |
| Network Security Services | Software Version: 3.2.2 | 2 | FIPS 140-1 | Solaris v8.0 with AdminSuite 3.0.1 as specified in UK IT SEC CC Report No. P148 EAL4 on a SUN SPARC Ultra-1 | Validated | |
| Network Security Services | Software Version: 3.2.2 | 1 | FIPS 140-1 | Windows 98 (single user mode) | Validated | |
| Key Token | Hardware Version: P/N 314478004 Version G; Firmware Version: 1.20 | 1 | FIPS 140-2 | The Key Token is a part of the larger Encrypted Data-At-Rest Solution (EDRS) | Validated | |
| Sun StorageTek™ T10000B Tape Drive | Hardware Version: P/N 315488302; Firmware Versions: 1.40.208, 1.41.210 and 1.41.211 | 2 | FIPS 140-2 | The Sun StorageTek™ T10000B tape drive provides 1 TB native capacity and 120 MB/sec throughput. | Validated | |
| Sun StorageTek™ T10000A Tape Drive | Hardware Version: P/N 315462802; Firmware Versions: 1.40.108, 1.41.110 and 1.41.111 | 1 | FIPS 140-2 | The Sun StorageTek™ T10000A tape drive provides 500 GB native capacity and 120 MB/sec throughput | Validated | |
| Sun StorageTek™ T9840D Tape Drive | Hardware Version: P/N 315479501; Firmware Version: 1.44.710 | 1 | FIPS 140-2 | The Sun StorageTek T9840D drive provides 75 GB native capacity and 30 MB/sec throughput. | Validated |
Status of Oracle Security Evaluations 2
Regionally Specific Criteria (Obsolete) and Sponsored Evaluations
| Scheme | Product | Release | Level | Criteria | Platform | Status |
| Common Criteria | Red Hat Linux 3 | AS ES WS | EAL2 |
—
|
Sponsored by Oracle | Evaluated |
| ITSEC | Oracle7 Server | 7.3.4.0.0 | E3 / F-C2 | E3 / F-C2 | NT 4.0 | Evaluated |
| Oracle7 Server | 7.2.2.4.13 | E3 / F-C2 | E3 / F-C2 | NT 3.51 | Evaluated | |
| Oracle7 Server | 7.0.13.6 | E3 / F-C2 | E3 / F-C2 | Solaris 2.2 | Evaluated | |
| Trusted Oracle7 | 7.2.3.0.4 | E3 / F-B1 | E3 / F-B1 | HP-UX CMW 10.16 | Evaluated | |
| Trusted Oracle7 | 7.1.5.9.3 | E3 / F-B1 | E3 / F-B1 | Trusted Solaris 1.2 | Evaluated | |
| Trusted Oracle7 | 7.0.13.6 | E3 / F-B1 | E3 / F-B1 | Solaris CMW 1.0 | Evaluated | |
| Trusted Solaris | 2.5.1 | E3 / F-B1 | E3 / F-B1 | Evaluated | ||
| TCSEC | Oracle7 Server | 7.0.13.1 | C2 | C2 | HP-UX BLS 8.0.4 | Evaluated |
| Trusted Oracle7 | 7.0.13.1 | B1 | B1 | HP-UX BLS 8.0.4 | Evaluated | |
| Russian | Oracle8 Database | 8.0.3 | IV | Russian | HP-UX 10.20 | Evaluated |
| Oracle7 Server | 7.3.4 | III | Russian | NT 4.0 | Evaluated |
Printer View