Certified Product: SonicWall SonicOS Enhanced V6.2.5 on NSA, SM, and TZ Appliances

SonicWall SonicOS Enhanced V6.2.5 on NSA, SM, and TZ Appliances (hereafter referred to as the Target of Evaluation, or TOE) from SonicWall, Inc., was the subject of a Common Criteria evaluation performed by the Common Criteria Evaluation Facility at EWA-Canada. The evaluation was completed in June 2017.

The evaluation of the TOE determined that this Information Technology (IT) product is conformant with the requirements of the collaborative Protection Profile for Stateful Traffic Filter Firewalls Version 1.0.

The TOE is comprised of the SonicWALL SonicOS Enhanced v6.2.5 software running on purpose built NSA, SM, and TZ model hardware platforms. The TOEs firewall capabilities include stateful packet inspection. Stateful packet inspection maintains the state of network connections, such as Transmission Control Protocol (TCP) streams and User Datagram Protocol (UDP) communication, traveling across the firewall. The firewall distinguishes between legitimate packets and illegitimate packets for the given network deployment. Only packets adhering to the administrator-configured access rules are permitted to pass through the firewall; all others are rejected.

The TOE supports Virtual Private Network (VPN) functionality, which provides a secure connection between the TOE and the audit server. The TOE supports authentication, and protects data from disclosure or modification during transfer.

The scope of this evaluation is defined by the security target, which identifies assumptions made during the evaluation, the intended environment for the TOE, the IT security requirements to be met, and the level of confidence (evaluation assurance level) to which it is asserted that the TOE satisfies its IT security requirements.

Consumers are advised to carefully review the certification report to gain an understanding of the security functionality, the evaluated configuration, and the intended operating environment for the TOE.