This page was not yet optimized for use on mobile devices.
IC chip for the reader / writer RC-S940 (CXD9768GG), version 4
CSV information ?
| Status | archived |
|---|---|
| Valid from | 30.07.2009 |
| Valid until | 01.09.2019 |
| Scheme | 🇩🇪 DE |
| Manufacturer | Sony Corporation |
| Category | ICs, Smart Cards and Smart Card-Related Devices and Systems |
| Security level | EAL4 |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-0588-2009
Certificate ?
Certification report ?
Extracted keywords
Hash functions
SHA-1Protocols
SSLSecurity level
EAL 4, EAL 1, EAL 7, EAL4, EAL1, EAL3, EAL5, EAL7, EAL2, EAL6, EAL 4 augmented, EAL4 augmentedClaims
OE.DIR_CONTROL, OE.COM_PROT, OE.CLIENT_AP, OE.DBV_INSTALLSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.1, ADV_FSP.2, ADV_FSP.3, ADV_FSP.4, ADV_FSP.5, ADV_FSP.6, ADV_IMP.1, ADV_IMP.2, ADV_INT.1, ADV_INT.2, ADV_INT.3, ADV_SPM.1, ADV_TDS.1, ADV_TDS.2, ADV_TDS.3, ADV_TDS.4, ADV_TDS.5, ADV_TDS.6, ADV_ARC, ADV_FSP, ADV_IMP, ADV_INT, ADV_SPM, ADV_TDS, AGD_OPE.1, AGD_PRE.1, AGD_OPE, AGD_PRE, ALC_FLR.3, ALC_CMC.1, ALC_CMC.2, ALC_CMC.3, ALC_CMC.4, ALC_CMC.5, ALC_CMS.1, ALC_CMS.2, ALC_CMS.3, ALC_CMS.4, ALC_CMS.5, ALC_DEL.1, ALC_DVS.1, ALC_DVS.2, ALC_FLR.1, ALC_FLR.2, ALC_LCD.1, ALC_LCD.2, ALC_TAT.1, ALC_TAT.2, ALC_TAT.3, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS, ALC_FLR, ALC_TAT, ATE_COV.1, ATE_COV.2, ATE_COV.3, ATE_DPT.1, ATE_DPT.2, ATE_DPT.3, ATE_DPT.4, ATE_FUN.1, ATE_FUN.2, ATE_IND.1, ATE_IND.2, ATE_IND.3, ATE_COV, ATE_DPT, ATE_FUN, ATE_IND, AVA_VAN.1, AVA_VAN.2, AVA_VAN.3, AVA_VAN.4, AVA_VAN.5, AVA_VAN, APE_INT.1, APE_CCL.1, APE_SPD.1, APE_OBJ.1, APE_OBJ.2, APE_ECD.1, APE_REQ.1, APE_REQ.2, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_OBJ.2, ASE_ECD.1, ASE_REQ.1, ASE_REQ.2, ASE_TSS.1, ASE_TSS.2, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_SPD, ASE_TSSCertificates
BSI-DSZ-CC-0588-2009, BSI-DSZ-CC-0403-2008, BSI-DSZ-CC-0588Evaluation facilities
atsecCertification process
Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness, 1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part numberCertification process
Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness, 1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part numberStandards
AIS 38Technical reports
BSI 7125, BSI 7148, BSI 7149File metadata
| Title | Certification Report BSI-DSZ-CC-0588-2009 |
|---|---|
| Subject | Common Criteria, Certification |
| Keywords | "Common Criteria, Certification, Zertifizierung, Oracle Coporation" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Creation date | D:20091030082805+01'00' |
| Modification date | D:20091030093623+01'00' |
| Pages | 34 |
| Creator | Writer |
| Producer | StarOffice 9 |
Frontpage
| Certificate ID | BSI-DSZ-CC-0588-2009 |
|---|---|
| Certified item | Oracle Database 11g Enterprise Edition with Oracle Database Vault Release 11.1.0.7 with Critical Patch Updates up to and including July 2009 |
| Certification lab | BSI |
| Developer | Oracle Corporation |
Security target ?
Extracted keywords
Symmetric Algorithms
DES, Triple-DESRandomness
RNGBlock cipher modes
CBCSecurity level
EAL4Security Assurance Requirements (SAR)
ACM_AUT.1, ACM_CAP.4, ACM_SCP.2, ACM_SCP.1, ACM_CAP.3, ADO_DEL.2, ADO_IGS.1, ADV_FSP.2, ADV_HLD.2, ADV_IMP.1, ADV_LLD.1, ADV_RCR.1, ADV_SPM.1, ADV_FSP.1, ADV_HLD.1, AGD_ADM.1, AGD_USR.1, ALC_DVS.1, ALC_LCD.1, ALC_TAT.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_MSU.2, AVA_SOF.1, AVA_VLA.2Security Functional Requirements (SFR)
FCS_COP.1, FCS_CKM.1, FCS_CKM.4, FCS_COP.1.1, FCS_CKM.1.1, FCS_CKM.4.1, FDP_IFC.1, FDP_IFF.1, FDP_ITT.1, FDP_SDI.1, FDP_UIT.1, FDP_UCT.1, FDP_ACC.1, FDP_ACF.1, FDP_IFC.1.1, FDP_IFF.1.1, FDP_IFF.1.2, FDP_IFF.1.3, FDP_IFF.1.4, FDP_IFF.1.5, FDP_IFF.1.6, FDP_ITT.1.1, FDP_SDI.1.1, FDP_UIT.1.1, FDP_UIT.1.2, FDP_UCT.1.1, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_ITC.1, FDP_ACC, FIA_UID.1, FIA_UAU.2, FIA_AFL.1, FIA_UID.1.1, FIA_UID.1.2, FIA_UAU.2.1, FIA_AFL.1.1, FIA_AFL.1.2, FIA_ALF.1, FIA_UAU, FIA_AFL, FMT_SMR.1, FMT_MTD.1, FMT_MSA.2, FMT_MSA.3, FMT_MSA.1, FMT_SMF.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MSA.2.1, FMT_MTD.1.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MSA.1.1, FMT_SMF.1.1, FMT_MSA, FPT_FLS.1, FPT_PHP.3, FPT_ITT.1, FPT_RCV.4, FPT_TST.1, FPT_FLS.1.1, FPT_TST.1.1, FPT_TST, FPT_TST.1.2, FPT_TST.1.3, FPT_PHP.3.1, FPT_ITT.1.1, FPT_RCV.4.1, FPT_SDI.1, FPT_AMT.1, FTP_ITC.1, FTP_ITC.1.1, FTP_ITC.1.2, FTP_ITC.1.3, FTP_TRP.1Evaluation facilities
TÜV InformationstechnikCertification process
out of scope, Out of scope, i.e. TOE is operating in Normal Mode) is out of scope of this evaluation, Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE, of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious, 2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of, mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer, up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the, that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The, utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the, level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the, results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data, processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE, of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip, Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information, parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04Side-channel analysis
Physical Probing, physical probing, DPA, Malfunction, DFA, reverse engineeringCertification process
out of scope, Out of scope, i.e. TOE is operating in Normal Mode) is out of scope of this evaluation, Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE, of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious, 2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of, mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer, up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the, that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The, utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the, level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the, results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data, processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE, of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip, Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information, parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04Standards
AIS20, AIS 20, ISO/IEC 18092, ISO/IEC 15408, CCIMB-99-031, CCIMB-99-032, CCIMB-99-033File metadata
| Title | MDPU2 ST Ver1.11 |
|---|---|
| Subject | 英文(K.H.) |
| Author | EbisawaHiroki |
| Creation date | D:20050819223433+09'00' |
| Modification date | D:20050819223926+09'00' |
| Pages | 70 |
| Creator | Word 用 Acrobat PDFMaker 7.0 |
| Producer | Acrobat Distiller 7.0 (Windows) |
Heuristics ?
Certificate ID: BSI-DSZ-CC-0588-2009
Extracted SARs
ASE_CCL.1, AGD_PRE.1, ADV_LLD.1, ATE_COV.2, ASE_REQ.2, APE_INT.1, ALC_FLR.3, AGD_ADM.1, ADV_TDS.6, ATE_IND.2, ADV_FSP.2, ASE_ECD.1, ASE_TSS.2, AGD_USR.1, ASE_SPD.1, ADV_HLD.2, AVA_VAN.5, APE_ECD.1, ALC_DEL.1, APE_CCL.1, ADV_SPM.1, ATE_DPT.1, ALC_LCD.1, ALC_CMC.5, ASE_INT.1, ALC_DVS.1, AVA_MSU.2, AVA_SOF.1, ADV_RCR.1, ATE_FUN.1, APE_SPD.1, ASE_OBJ.2, ADV_IMP.1, ADV_INT.3, APE_OBJ.2, ALC_CMS.5, AVA_VLA.2, APE_REQ.2, ALC_TAT.1, ADV_ARC.1, AGD_OPE.1References ?
No references are available for this certificate.
Updates ?
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name IC chip for the reader / writer RC-S940 (CXD9768GG), version 4 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"cert_link": null,
"dgst": "16dd51266c48e083",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-0588-2009",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_RCR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VLA",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_MSU",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_INT",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_USR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_ADM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 6
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_LLD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_SOF",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_HLD",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_SPM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"4"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0403-2008"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0403-2008"
]
}
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Sony Corporation",
"manufacturer_web": "https://www.sony.com/",
"name": "IC chip for the reader / writer RC-S940 (CXD9768GG), version 4",
"not_valid_after": "2019-09-01",
"not_valid_before": "2009-07-30",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": null,
"cert_frontpage": null,
"cert_keywords": null,
"cert_metadata": null,
"report_filename": "0588a_pdf.pdf",
"report_frontpage": {
"DE": {
"cert_id": "BSI-DSZ-CC-0588-2009",
"cert_item": "Oracle Database 11g Enterprise Edition with Oracle Database Vault Release 11.1.0.7 with Critical Patch Updates up to and including July 2009",
"cert_lab": "BSI",
"developer": "Oracle Corporation",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
]
}
},
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-0403-2008": 3,
"BSI-DSZ-CC-0588": 1,
"BSI-DSZ-CC-0588-2009": 15
}
},
"cc_claims": {
"OE": {
"OE.CLIENT_AP": 1,
"OE.COM_PROT": 1,
"OE.DBV_INSTALL": 1,
"OE.DIR_CONTROL": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_ARC": 1,
"ADV_ARC.1": 1,
"ADV_FSP": 1,
"ADV_FSP.1": 1,
"ADV_FSP.2": 1,
"ADV_FSP.3": 1,
"ADV_FSP.4": 1,
"ADV_FSP.5": 1,
"ADV_FSP.6": 1,
"ADV_IMP": 1,
"ADV_IMP.1": 1,
"ADV_IMP.2": 1,
"ADV_INT": 1,
"ADV_INT.1": 1,
"ADV_INT.2": 1,
"ADV_INT.3": 1,
"ADV_SPM": 1,
"ADV_SPM.1": 1,
"ADV_TDS": 1,
"ADV_TDS.1": 1,
"ADV_TDS.2": 1,
"ADV_TDS.3": 1,
"ADV_TDS.4": 1,
"ADV_TDS.5": 1,
"ADV_TDS.6": 1
},
"AGD": {
"AGD_OPE": 1,
"AGD_OPE.1": 1,
"AGD_PRE": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMC": 1,
"ALC_CMC.1": 1,
"ALC_CMC.2": 1,
"ALC_CMC.3": 1,
"ALC_CMC.4": 1,
"ALC_CMC.5": 1,
"ALC_CMS": 1,
"ALC_CMS.1": 1,
"ALC_CMS.2": 1,
"ALC_CMS.3": 1,
"ALC_CMS.4": 1,
"ALC_CMS.5": 1,
"ALC_DEL": 1,
"ALC_DEL.1": 1,
"ALC_DVS": 1,
"ALC_DVS.1": 1,
"ALC_DVS.2": 1,
"ALC_FLR": 1,
"ALC_FLR.1": 1,
"ALC_FLR.2": 1,
"ALC_FLR.3": 5,
"ALC_LCD.1": 1,
"ALC_LCD.2": 1,
"ALC_TAT": 1,
"ALC_TAT.1": 1,
"ALC_TAT.2": 1,
"ALC_TAT.3": 1
},
"APE": {
"APE_CCL.1": 1,
"APE_ECD.1": 1,
"APE_INT.1": 1,
"APE_OBJ.1": 1,
"APE_OBJ.2": 1,
"APE_REQ.1": 1,
"APE_REQ.2": 1,
"APE_SPD.1": 1
},
"ASE": {
"ASE_CCL": 1,
"ASE_CCL.1": 1,
"ASE_ECD": 1,
"ASE_ECD.1": 1,
"ASE_INT": 1,
"ASE_INT.1": 1,
"ASE_OBJ": 1,
"ASE_OBJ.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.1": 1,
"ASE_REQ.2": 1,
"ASE_SPD": 1,
"ASE_SPD.1": 1,
"ASE_TSS": 1,
"ASE_TSS.1": 1,
"ASE_TSS.2": 1
},
"ATE": {
"ATE_COV": 1,
"ATE_COV.1": 1,
"ATE_COV.2": 1,
"ATE_COV.3": 1,
"ATE_DPT": 1,
"ATE_DPT.1": 1,
"ATE_DPT.2": 1,
"ATE_DPT.3": 1,
"ATE_DPT.4": 1,
"ATE_FUN": 1,
"ATE_FUN.1": 1,
"ATE_FUN.2": 1,
"ATE_IND": 1,
"ATE_IND.1": 1,
"ATE_IND.2": 1,
"ATE_IND.3": 1
},
"AVA": {
"AVA_VAN": 2,
"AVA_VAN.1": 1,
"AVA_VAN.2": 1,
"AVA_VAN.3": 1,
"AVA_VAN.4": 1,
"AVA_VAN.5": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 4": 3,
"EAL 4 augmented": 2,
"EAL 7": 1,
"EAL1": 6,
"EAL2": 3,
"EAL3": 4,
"EAL4": 7,
"EAL4 augmented": 1,
"EAL5": 6,
"EAL6": 3,
"EAL7": 4
}
},
"cc_sfr": {},
"certification_process": {
"ConfidentialDocument": {
"1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part number": 1,
"Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness": 1
}
},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"atsec": {
"atsec": 3
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 38": 1
}
},
"symmetric_crypto": {},
"technical_report_id": {
"BSI": {
"BSI 7125": 2,
"BSI 7148": 1,
"BSI 7149": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20091030082805+01\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Oracle Coporation\"",
"/ModDate": "D:20091030093623+01\u002700\u0027",
"/Producer": "StarOffice 9",
"/Subject": "Common Criteria, Certification",
"/Title": "Certification Report BSI-DSZ-CC-0588-2009",
"pdf_file_size_bytes": 931333,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.bsi.bund.de/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 34
},
"st_filename": "0308b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"ACM": {
"ACM_AUT.1": 3,
"ACM_CAP.3": 1,
"ACM_CAP.4": 3,
"ACM_SCP.1": 1,
"ACM_SCP.2": 3
},
"ADO": {
"ADO_DEL.2": 3,
"ADO_IGS.1": 4
},
"ADV": {
"ADV_FSP.1": 7,
"ADV_FSP.2": 3,
"ADV_HLD.1": 2,
"ADV_HLD.2": 5,
"ADV_IMP.1": 4,
"ADV_LLD.1": 5,
"ADV_RCR.1": 4,
"ADV_SPM.1": 6
},
"AGD": {
"AGD_ADM.1": 7,
"AGD_USR.1": 3
},
"ALC": {
"ALC_DVS.1": 4,
"ALC_LCD.1": 3,
"ALC_TAT.1": 4
},
"ATE": {
"ATE_COV.2": 3,
"ATE_DPT.1": 3,
"ATE_FUN.1": 3,
"ATE_IND.2": 3
},
"AVA": {
"AVA_MSU.2": 3,
"AVA_SOF.1": 3,
"AVA_VLA.2": 3
}
},
"cc_security_level": {
"EAL": {
"EAL4": 10
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM.1": 20,
"FCS_CKM.1.1": 2,
"FCS_CKM.4": 16,
"FCS_CKM.4.1": 2,
"FCS_COP.1": 22,
"FCS_COP.1.1": 2
},
"FDP": {
"FDP_ACC": 3,
"FDP_ACC.1": 13,
"FDP_ACC.1.1": 1,
"FDP_ACF.1": 10,
"FDP_ACF.1.1": 1,
"FDP_ACF.1.2": 1,
"FDP_ACF.1.3": 1,
"FDP_ACF.1.4": 1,
"FDP_IFC.1": 20,
"FDP_IFC.1.1": 1,
"FDP_IFF.1": 15,
"FDP_IFF.1.1": 1,
"FDP_IFF.1.2": 1,
"FDP_IFF.1.3": 1,
"FDP_IFF.1.4": 1,
"FDP_IFF.1.5": 1,
"FDP_IFF.1.6": 1,
"FDP_ITC.1": 2,
"FDP_ITT.1": 12,
"FDP_ITT.1.1": 1,
"FDP_SDI.1": 14,
"FDP_SDI.1.1": 1,
"FDP_UCT.1": 11,
"FDP_UCT.1.1": 1,
"FDP_UIT.1": 11,
"FDP_UIT.1.1": 1,
"FDP_UIT.1.2": 1
},
"FIA": {
"FIA_AFL": 1,
"FIA_AFL.1": 7,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 2,
"FIA_ALF.1": 2,
"FIA_UAU": 1,
"FIA_UAU.2": 10,
"FIA_UAU.2.1": 1,
"FIA_UID.1": 11,
"FIA_UID.1.1": 1,
"FIA_UID.1.2": 1
},
"FMT": {
"FMT_MSA": 1,
"FMT_MSA.1": 22,
"FMT_MSA.1.1": 2,
"FMT_MSA.2": 11,
"FMT_MSA.2.1": 1,
"FMT_MSA.3": 12,
"FMT_MSA.3.1": 1,
"FMT_MSA.3.2": 1,
"FMT_MTD.1": 10,
"FMT_MTD.1.1": 1,
"FMT_SMF.1": 11,
"FMT_SMF.1.1": 1,
"FMT_SMR.1": 15,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_AMT.1": 3,
"FPT_FLS.1": 19,
"FPT_FLS.1.1": 1,
"FPT_ITT.1": 12,
"FPT_ITT.1.1": 1,
"FPT_PHP.3": 14,
"FPT_PHP.3.1": 1,
"FPT_RCV.4": 20,
"FPT_RCV.4.1": 1,
"FPT_SDI.1": 1,
"FPT_TST": 1,
"FPT_TST.1": 11,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1
},
"FTP": {
"FTP_ITC.1": 22,
"FTP_ITC.1.1": 2,
"FTP_ITC.1.2": 2,
"FTP_ITC.1.3": 2,
"FTP_TRP.1": 2
}
},
"certification_process": {
"OutOfScope": {
"2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the \u201c2.1 Product Type\u201d. Be careful that only a part of the IC-Chip components are scope of": 1,
"Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information": 1,
"Out of scope": 1,
"Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE": 1,
"i.e. TOE is operating in Normal Mode) is out of scope of this evaluation": 1,
"level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the": 1,
"mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer": 1,
"of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious": 1,
"of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip": 1,
"out of scope": 10,
"parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04": 1,
"processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE": 1,
"results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data": 1,
"that the following paragraphs describe the TOE\u2019s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The": 1,
"up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the": 1,
"utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"TUV": {
"T\u00dcV Informationstechnik": 1
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {
"FI": {
"DFA": 1,
"Malfunction": 26
},
"SCA": {
"DPA": 1,
"Physical Probing": 5,
"physical probing": 3
},
"other": {
"reverse engineering": 1
}
},
"standard_id": {
"BSI": {
"AIS 20": 1,
"AIS20": 2
},
"CC": {
"CCIMB-99-031": 1,
"CCIMB-99-032": 1,
"CCIMB-99-033": 1
},
"ISO": {
"ISO/IEC 15408": 6,
"ISO/IEC 18092": 2
}
},
"symmetric_crypto": {
"DES": {
"3DES": {
"Triple-DES": 4
},
"DES": {
"DES": 17
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"/Author": "EbisawaHiroki",
"/Comments": "\u82f1\u6587\u6821\u6b63 by H.Hamada",
"/Company": "Sony Corporation",
"/CreationDate": "D:20050819223433+09\u002700\u0027",
"/Creator": "Word \u7528 Acrobat PDFMaker 7.0",
"/ModDate": "D:20050819223926+09\u002700\u0027",
"/Producer": "Acrobat Distiller 7.0 (Windows)",
"/Subject": "\u82f1\u6587(K.H.)",
"/Title": "MDPU2 ST Ver1.11",
"pdf_file_size_bytes": 309061,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": true,
"pdf_number_of_pages": 70
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/files/epfiles/0588a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL4"
]
},
"st_link": "https://www.commoncriteriaportal.org/files/epfiles/0308b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": false,
"download_ok": false,
"extract_ok": false,
"pdf_hash": null,
"txt_hash": null
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "30010ed4e1b294c92f22a16304bfdedfa1c88716601449e96d49cd6a22fcfb84",
"txt_hash": "610b9a864af5c2168b9838a8a2b252d1f17701b9f9554e472ea62eac6b5816c3"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "e9e1220e48d91026af3d57651c2d4aafc383d7e462d61de9efc9a0f5fddd44b4",
"txt_hash": "06f0047ce2d6262bd013e6c87868a2b41c26a9c06801a15179fafef22c05fe3c"
}
},
"status": "archived"
}