This page was not yet optimized for use on mobile devices.
Secure Smart Grid Hub (SGH-S), V1.02
CSV information ?
| Status | active |
|---|---|
| Valid from | 03.02.2025 |
| Valid until | 02.02.2033 |
| Scheme | 🇩🇪 DE |
| Manufacturer | EFR GmbH |
| Category | Other Devices and Systems |
| Security level | ALC_FLR.2, EAL4+, AVA_VAN.5 |
| Protection profiles |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-1000-V2-2025
Certificate ?
Extracted keywords
Security level
EAL 4, EAL 5, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLR, AVA_VAN.5Protection profiles
BSI-CC-PP-0073-2014Certificates
BSI-DSZ-CC-1000-V2-2025Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
| Title | Certificate BSI-DSZ-CC-1000-V2-2025 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025 |
| Keywords | "Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025" |
| Author | Federal Office for Information Security |
| Pages | 1 |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, AES-, HMAC, CMACAsymmetric Algorithms
ECCHash functions
SHA256, SHA-256, SHA-384, SHA-512Schemes
MAC, Key agreement, Key AgreementProtocols
SSH, TLSRandomness
TRNGBlock cipher modes
CBC, GCMSecurity level
EAL 4, EAL 5, EAL 2, EAL 1, EAL 5+, EAL 6, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLR, ALC_CMS, ATE_COV, ATE_DPT, ATE_IND, AVA_VAN.5Security Functional Requirements (SFR)
FCS_CKM.1, FMT_SMR.1Protection profiles
BSI-CC-PP-0073-2014, BSI-CC-PP-0077-V2-2015, BSI-CC-PP-0073Certificates
BSI-DSZ-CC-1000-V2-2025, BSI-DSZ-CC-1000-2023Evaluation facilities
SRC Security Research & ConsultingSide-channel analysis
side channel, physical tampering, malfunctionCertification process
out of scope, 2. Multiple Communication Modules for LTE exist, however these are non-TOE components and as such out of scope for this certification. 16 / 26 BSI-DSZ-CC-1000-V2-2025 Certification Report 9. Results of the, being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, 7] Evaluation Technical Report, Version 2.3, 21.01.2025, SRC Security Research & Consulting GmbH, (confidential document) [8] Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, ALC_CMS “Konfigurations-Management-Scope Konfigurationsliste”, v1.19_e; 13.01.2025, EFR GmbH (confidential document) [11] Servicetechniker Handbuch für das Smart-Meter-Gateway (SMGW) Secure Smart Grid Hub EFR SGH-SStandards
FIPS 197, FIPS 180-4, AIS 34, AIS 46, AIS 48, AIS 1, AIS 32, AIS 38, RFC 5289, RFC-2104, RFC-3394, RFC 5084, RFC 5652, RFC 4493, RFC4493, RFC 2104, RFC 3394, RFC5246, RFC 5246, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ISO/IEC 18033-Technical reports
BSI TR-03109-3, BSI TR-03116, BSI TR-02102-1, BSI TR-03111, BSI 7148File metadata
| Title | Certification Report BSI-DSZ-CC-1000-V2-2025 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025 |
| Keywords | "Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025" |
| Author | Federal Office for Information Security |
| Pages | 26 |
Frontpage
| Certificate ID | BSI-DSZ-CC-1000-V2-2025 |
|---|---|
| Certified item | Secure Smart Grid Hub (SGH-S) Version 1.02 |
| Certification lab | BSI |
| Developer | EFR GmbH |
References
Outgoing- BSI-DSZ-CC-1000-2023 - active - Secure Smart Grid Hub (SGH-S), V1.00
Security target ?
Extracted keywords
Symmetric Algorithms
AES, AES-, HMAC, CMACAsymmetric Algorithms
ECDSA, ECC, Diffie-HellmanHash functions
SHA-256, SHA-384, SHA-512, SHA-2, JHSchemes
MAC, Key agreement, Key AgreementProtocols
TLS, TLSv1.2, PACE, VPNRandomness
TRNGBlock cipher modes
GCMTLS cipher suites
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Security level
EAL4, EAL 4, EAL4 augmented, EAL 4 augmentedClaims
OE.SM, OSP.SMSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_IMP.1, AGD_OPE.1, ALC_DEL.1, ALC_FLR.2, ALC_CMC.4, ALC_LCD.1, ATE_COV.2, ATE_FUN.1, AVA_VAN.5, ASE_CCL, ASE_SPD, ASE_OBJ, ASE_CCL.1, ASE_ECD.1, ASE_OBJ.2, ASE_SPD.1Security Functional Requirements (SFR)
FAU_ARP, FAU_GEN, FAU_SAA, FAU_SAR, FAU_STG, FAU_GEN.2, FAU_STG.2, FAU_GEN.1, FAU_SAA.1, FAU_SAR.1, FAU_STG.4, FAU_STG.3, FAU_STG.1, FAU_GEN.2.1, FAU_STG.2.1, FAU_STG.2.2, FAU_STG.2.3, FAU_STG.4.1, FCO_NRO, FCO_NRO.2, FCO_NRO.2.1, FCO_NRO.2.2, FCO_NRO.2.3, FCO_NRO.1, FCS_CKM, FCS_COP, FCS_CKM.4, FCS_CKM.1, FCS_CKM.2, FCS_COP.1, FCS_CKM.4.1, FDP_IFC, FDP_ACC.2, FDP_ACF.1, FDP_IFF, FDP_RIP.2, FDP_SDI.2, FDP_ITC.1, FDP_ITC.2, FDP_ACC, FDP_ACC.2.1, FDP_ACC.2.2, FDP_ACC.1, FDP_ACF, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_IFC.2, FDP_IFC.1, FDP_IFF.1, FDP_IFF.1.3, FDP_RIP, FDP_RIP.2.1, FDP_RIP.1, FDP_SDI, FDP_SDI.2.1, FDP_SDI.2.2, FDP_SDI.1, FIA_ATD, FIA_AFL, FIA_UAU, FIA_UID, FIA_USB, FIA_ATD.1, FIA_AFL.1, FIA_UAU.2, FIA_UAU.5, FIA_UAU.6, FIA_UID.2, FIA_USB.1, FIA_UID.1, FIA_ATD.1.1, FIA_AFL.1.1, FIA_AFL.1.2, FIA_UAU.1, FIA_UAU.2.1, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.6.1, FIA_UID.2.1, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FMT_SMR, FMT_MOF.1, FMT_SMF.1, FMT_SMR.1, FMT_MSA, FMT_MSA.3, FMT_MOF, FMT_MOF.1.1, FMT_SMF, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MSA.1, FPR_CON, FPR_CON.1, FPR_PSE, FPR_CON.1.2, FPR_CON.1.1, FPR_PSE.1, FPR_PSE.1.1, FPR_PSE.1.2, FPR_PSE.1.3, FPT_FLS, FPT_RPL, FPT_STM, FPT_TST, FPT_FLS.1, FPT_RPL.1, FPT_STM.1, FPT_TST.1, FPT_PHP.1, FPT_FLS.1.1, FPT_RPL.1.1, FPT_RPL.1.2, FPT_STM.1.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FPT_PHP, FPT_PHP.1.1, FPT_PHP.1.2, FTP_ITC, FTP_ITC.1Protection profiles
BSI-CC-PP-0077-2015, BSI-CC-PP-0073-2014, BSI-CC-PP-0073-, BSI-CC-PP-0077-, BSI-CC-PP-0077-V2-2015Certificates
BSI-DSZ-CC-1003-2018, BSI-DSZ-CC-1003-Side-channel analysis
physical tampering, malfunctionStandards
FIPS 180-4, FIPS 197, SP 800-38A, NIST SP 800-38D, RFC-5289, RFC-5246, RFC-2104, RFC-3394, RFC-5084, RFC-5652, RFC-4493, RFC 2104, RFC 3394, RFC 4493, RFC 5084, RFC 5246, RFC 5289, RFC 5652Technical reports
BSI TR-03109-1, BSI TR-03111, BSI TR-03116-3File metadata
| Pages | 94 |
|---|
References
Outgoing- BSI-DSZ-CC-1003-2018 - active - Smart Meter Gateway Security Module Application on MultiApp V4 Revision A
Heuristics ?
Certificate ID: BSI-DSZ-CC-1000-V2-2025
Extracted SARs
ADV_ARC.1, ADV_IMP.1, AGD_OPE.1, ALC_CMC.4, ALC_DEL.1, ALC_FLR.2, ALC_LCD.1, ASE_CCL.1, ASE_ECD.1, ASE_OBJ.2, ASE_SPD.1, ATE_COV.2, ATE_FUN.1, AVA_VAN.5Scheme data ?
| Cert Id | BSI-DSZ-CC-1000-V2-2025 | |
|---|---|---|
| Product | Secure Smart Grid Hub (SGH-S), V1.02 | |
| Vendor | EFR GmbH | |
| Certification Date | 03.02.2025 | |
| Category | Intelligent measuring systems | |
| Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/1000.html | |
| Enhanced | ||
| Product | Secure Smart Grid Hub (SGH-S), V1.02 | |
| Applicant | EFR GmbH Nymphenburger Straße 20b 80335 München | |
| Evaluation Facility | SRC Security Research & Consulting GmbH | |
| Assurance Level | EAL4+,ALC_FLR.2,AVA_VAN.5 | |
| Protection Profile | Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014 | |
| Certification Date | 03.02.2025 | |
| Expiration Date | 02.02.2033 | |
| Entries | [frozendict({'id': 'BSI-DSZ-CC-1000-V2-2025', 'description': "This re-certification was necessary because of the re-location of IT infrastructure in the development Environment and a changed delivery method due to enable delivery chains according to [MSB-LK, see: https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Standards-und-Zertifizierung/Smart-metering/Smart-Meter- Gateway/MSB/MSB_node.html ]. Also, the developer updated third-party components of the TOE and corrected defects in the implementation. There were no changes to the TOE's security functionality."}), frozendict({'id': 'BSI-DSZ-CC-1000-2023-MA-01', 'description': '(National Metrology Institute) requirements.'})] | |
| Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2a_pdf.pdf?__blob=publicationFile&v=2 | |
| Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2b_pdf.pdf?__blob=publicationFile&v=2 | |
| Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2c_pdf.pdf?__blob=publicationFile&v=2 | |
| Description | The TOE is the security functionality of a Smart Meter Gateway that serves as the communi-cation unit between devices of private and commercial consumers and commodity industry service providers (e.g., electricity, gas, water, etc.). It also collects, processes and stores Meter Data and is responsible for the distribution of this data to external entities | |
| Subcategory | (Smart Meter Gateway) | |
References ?
Updates ?
-
10.03.2025 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was set to
{'cert_id': 'BSI-DSZ-CC-1000-V2-2025', 'product': 'Secure Smart Grid Hub (SGH-S), V1.02', 'vendor': 'EFR GmbH', 'certification_date': '2025-02-03', 'category': 'Intelligent measuring systems', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/1000.html', 'enhanced': {'product': 'Secure Smart Grid Hub (SGH-S), V1.02', 'applicant': 'EFR GmbH Nymphenburger Straße 20b 80335 München', 'evaluation_facility': 'SRC Security Research & Consulting GmbH', 'assurance_level': 'EAL4+,ALC_FLR.2,AVA_VAN.5', 'protection_profile': 'Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014', 'certification_date': '2025-02-03', 'expiration_date': '2033-02-02', 'entries': [{'id': 'BSI-DSZ-CC-1000-V2-2025', 'description': "This re-certification was necessary because of the re-location of IT infrastructure in the development Environment and a changed delivery method due to enable delivery chains according to [MSB-LK, see: https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Standards-und-Zertifizierung/Smart-metering/Smart-Meter- Gateway/MSB/MSB_node.html ]. Also, the developer updated third-party components of the TOE and corrected defects in the implementation. There were no changes to the TOE's security functionality."}, {'id': 'BSI-DSZ-CC-1000-2023-MA-01', 'description': '(National Metrology Institute) requirements.'}], 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2a_pdf.pdf?__blob=publicationFile&v=2', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2b_pdf.pdf?__blob=publicationFile&v=2', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2c_pdf.pdf?__blob=publicationFile&v=2', 'description': 'The TOE is the security functionality of a Smart Meter Gateway that serves as the communi-cation unit between devices of private and commercial consumers and commodity industry service providers (e.g., electricity, gas, water, etc.). It also collects, processes and stores Meter Data and is responsible for the distribution of this data to external entities'}, 'subcategory': '(Smart Meter Gateway)'}.
- The scheme_data property was set to
-
03.03.2025 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was set to
None.
- The scheme_data property was set to
-
24.02.2025 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was set to
{'cert_id': 'BSI-DSZ-CC-1000-V2-2025', 'product': 'Secure Smart Grid Hub (SGH-S), V1.02', 'vendor': 'EFR GmbH', 'certification_date': '2025-02-03', 'category': 'Intelligent measuring systems', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/1000.html', 'enhanced': {'product': 'Secure Smart Grid Hub (SGH-S), V1.02', 'applicant': 'EFR GmbH Nymphenburger Straße 20b 80335 München', 'evaluation_facility': 'SRC Security Research & Consulting GmbH', 'assurance_level': 'EAL4+,ALC_FLR.2,AVA_VAN.5', 'protection_profile': 'Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014', 'certification_date': '2025-02-03', 'expiration_date': '2033-02-02', 'entries': [{'id': 'BSI-DSZ-CC-1000-V2-2025', 'description': "This re-certification was necessary because of the re-location of IT infrastructure in the development Environment and a changed delivery method due to enable delivery chains according to [MSB-LK, see: https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Standards-und-Zertifizierung/Smart-metering/Smart-Meter- Gateway/MSB/MSB_node.html ]. Also, the developer updated third-party components of the TOE and corrected defects in the implementation. There were no changes to the TOE's security functionality."}, {'id': 'BSI-DSZ-CC-1000-2023-MA-01', 'description': '(National Metrology Institute) requirements.'}], 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2a_pdf.pdf?__blob=publicationFile&v=2', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2b_pdf.pdf?__blob=publicationFile&v=2', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2c_pdf.pdf?__blob=publicationFile&v=2', 'description': 'The TOE is the security functionality of a Smart Meter Gateway that serves as the communi-cation unit between devices of private and commercial consumers and commodity industry service providers (e.g., electricity, gas, water, etc.). It also collects, processes and stores Meter Data and is responsible for the distribution of this data to external entities'}, 'subcategory': '(Smart Meter Gateway)'}.
- The scheme_data property was set to
-
17.02.2025 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name Secure Smart Grid Hub (SGH-S), V1.02 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Other Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1000V2c_pdf.pdf",
"dgst": "086e8d4dead89abf",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1000-V2-2025",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"eal": "EAL4+",
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"1.02"
]
},
"indirect_transitive_cves": null,
"next_certificates": null,
"prev_certificates": null,
"protection_profiles": {
"_type": "Set",
"elements": [
"989546572bfeab5c"
]
},
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1000-2023"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1000-2023"
]
}
},
"scheme_data": {
"category": "Intelligent measuring systems",
"cert_id": "BSI-DSZ-CC-1000-V2-2025",
"certification_date": "2025-02-03",
"enhanced": {
"applicant": "EFR GmbH Nymphenburger Stra\u00dfe 20b 80335 M\u00fcnchen",
"assurance_level": "EAL4+,ALC_FLR.2,AVA_VAN.5",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2c_pdf.pdf?__blob=publicationFile\u0026v=2",
"certification_date": "2025-02-03",
"description": "The TOE is the security functionality of a Smart Meter Gateway that serves as the communi-cation unit between devices of private and commercial consumers and commodity industry service providers (e.g., electricity, gas, water, etc.). It also collects, processes and stores Meter Data and is responsible for the distribution of this data to external entities",
"entries": [
{
"description": "This re-certification was necessary because of the re-location of IT infrastructure in the development Environment and a changed delivery method due to enable delivery chains according to [MSB-LK, see: https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Standards-und-Zertifizierung/Smart-metering/Smart-Meter- Gateway/MSB/MSB_node.html ]. Also, the developer updated third-party components of the TOE and corrected defects in the implementation. There were no changes to the TOE\u0027s security functionality.",
"id": "BSI-DSZ-CC-1000-V2-2025"
},
{
"description": "(National Metrology Institute) requirements.",
"id": "BSI-DSZ-CC-1000-2023-MA-01"
}
],
"evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
"expiration_date": "2033-02-02",
"product": "Secure Smart Grid Hub (SGH-S), V1.02",
"protection_profile": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2a_pdf.pdf?__blob=publicationFile\u0026v=2",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000V2b_pdf.pdf?__blob=publicationFile\u0026v=2"
},
"product": "Secure Smart Grid Hub (SGH-S), V1.02",
"subcategory": "(Smart Meter Gateway)",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/1000.html",
"vendor": "EFR GmbH"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1003-2018"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0891-V2-2016",
"ANSSI-CC-2017/54",
"BSI-DSZ-CC-1003-2018"
]
}
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "EFR GmbH",
"manufacturer_web": "https://www.efr.de",
"name": "Secure Smart Grid Hub (SGH-S), V1.02",
"not_valid_after": "2033-02-02",
"not_valid_before": "2025-02-03",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1000V2c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1000-V2-2025": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0073-2014": 1
}
},
"cc_sar": {
"ALC": {
"ALC_FLR": 1,
"ALC_FLR.2": 1
},
"AVA": {
"AVA_VAN.5": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 2,
"EAL 4 augmented": 1,
"EAL 5": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Federal Office for Information Security",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025",
"/Title": "Certificate BSI-DSZ-CC-1000-V2-2025",
"pdf_file_size_bytes": 335426,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1000V2a_pdf.pdf",
"report_frontpage": {
"DE": {
"cc_security_level": "Common Criteria Part 3 extended EAL 4 augmented by AVA_VAN.5 and ALC_FLR.2 valid until: 2 February 2033",
"cc_version": "PP conformant Common Criteria Part 2 extended",
"cert_id": "BSI-DSZ-CC-1000-V2-2025",
"cert_item": "Secure Smart Grid Hub (SGH-S) Version 1.02",
"cert_lab": "BSI",
"developer": "EFR GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
],
"ref_protection_profiles": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 3
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1000-2023": 3,
"BSI-DSZ-CC-1000-V2-2025": 14
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0073": 1,
"BSI-CC-PP-0073-2014": 5,
"BSI-CC-PP-0077-V2-2015": 1
}
},
"cc_sar": {
"ALC": {
"ALC_CMS": 1,
"ALC_FLR": 3,
"ALC_FLR.2": 4
},
"ATE": {
"ATE_COV": 1,
"ATE_DPT": 1,
"ATE_IND": 1
},
"AVA": {
"AVA_VAN.5": 5
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 3,
"EAL 4": 8,
"EAL 4 augmented": 3,
"EAL 5": 3,
"EAL 5+": 1,
"EAL 6": 1
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM.1": 2
},
"FMT": {
"FMT_SMR.1": 1
}
},
"certification_process": {
"ConfidentialDocument": {
"7] Evaluation Technical Report, Version 2.3, 21.01.2025, SRC Security Research \u0026 Consulting GmbH, (confidential document) [8] Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014": 1,
"ALC_CMS \u201cKonfigurations-Management-Scope Konfigurationsliste\u201d, v1.19_e; 13.01.2025, EFR GmbH (confidential document) [11] Servicetechniker Handbuch f\u00fcr das Smart-Meter-Gateway (SMGW) Secure Smart Grid Hub EFR SGH-S": 1,
"being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
},
"OutOfScope": {
"2. Multiple Communication Modules for LTE exist, however these are non-TOE components and as such out of scope for this certification. 16 / 26 BSI-DSZ-CC-1000-V2-2025 Certification Report 9. Results of the": 1,
"out of scope": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
},
"GCM": {
"GCM": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"SSH": {
"SSH": 1
},
"TLS": {
"TLS": {
"TLS": 7
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 2,
"Key agreement": 1
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 3
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 2,
"SHA-384": 1,
"SHA-512": 1,
"SHA256": 5
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"TRNG": {
"TRNG": 3
}
},
"side_channel_analysis": {
"FI": {
"malfunction": 1,
"physical tampering": 1
},
"SCA": {
"side channel": 1
}
},
"standard_id": {
"BSI": {
"AIS 1": 1,
"AIS 32": 1,
"AIS 34": 2,
"AIS 38": 1,
"AIS 46": 2,
"AIS 48": 2
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 3
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18033-": 1,
"ISO/IEC 18045": 4
},
"RFC": {
"RFC 2104": 2,
"RFC 3394": 2,
"RFC 4493": 3,
"RFC 5084": 3,
"RFC 5246": 1,
"RFC 5289": 4,
"RFC 5652": 3,
"RFC-2104": 1,
"RFC-3394": 1,
"RFC4493": 1,
"RFC5246": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 9,
"AES-": 1
}
},
"constructions": {
"MAC": {
"CMAC": 1,
"HMAC": 2
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-02102-1": 1,
"BSI TR-03109-3": 1,
"BSI TR-03111": 1,
"BSI TR-03116": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Federal Office for Information Security",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, SMGW, Smart Meter Gateway, efr, BSI-DSZ-CC-1000-V2-2025",
"/Title": "Certification Report BSI-DSZ-CC-1000-V2-2025",
"pdf_file_size_bytes": 461034,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.bsi.bund.de/AIS",
"http://www.commoncriteriaportal.org/cc/",
"http://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/",
"https://www.commoncriteriaportal.org/",
"https://www.sogis.eu/",
"https://www.bsi.bund.de/zertifizierungsreporte",
"https://www.bsi.bund.de/zertifizierung"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 26
},
"st_filename": "1000V2b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDSA": {
"ECDSA": 1
}
},
"FF": {
"DH": {
"Diffie-Hellman": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1003-": 1,
"BSI-DSZ-CC-1003-2018": 2
}
},
"cc_claims": {
"OE": {
"OE.SM": 3
},
"OSP": {
"OSP.SM": 4
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0073-": 1,
"BSI-CC-PP-0073-2014": 5,
"BSI-CC-PP-0077-": 1,
"BSI-CC-PP-0077-2015": 2,
"BSI-CC-PP-0077-V2-2015": 1
}
},
"cc_sar": {
"ADV": {
"ADV_ARC.1": 1,
"ADV_IMP.1": 1
},
"AGD": {
"AGD_OPE.1": 1
},
"ALC": {
"ALC_CMC.4": 1,
"ALC_DEL.1": 5,
"ALC_FLR.2": 5,
"ALC_LCD.1": 1
},
"ASE": {
"ASE_CCL": 2,
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_OBJ": 2,
"ASE_OBJ.2": 1,
"ASE_SPD": 3,
"ASE_SPD.1": 1
},
"ATE": {
"ATE_COV.2": 1,
"ATE_FUN.1": 1
},
"AVA": {
"AVA_VAN.5": 6
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 4,
"EAL 4 augmented": 1,
"EAL4": 1,
"EAL4 augmented": 1
}
},
"cc_sfr": {
"FAU": {
"FAU_ARP": 9,
"FAU_GEN": 30,
"FAU_GEN.1": 22,
"FAU_GEN.2": 6,
"FAU_GEN.2.1": 1,
"FAU_SAA": 9,
"FAU_SAA.1": 5,
"FAU_SAR": 21,
"FAU_SAR.1": 9,
"FAU_STG": 23,
"FAU_STG.1": 8,
"FAU_STG.2": 10,
"FAU_STG.2.1": 1,
"FAU_STG.2.2": 1,
"FAU_STG.2.3": 2,
"FAU_STG.3": 3,
"FAU_STG.4": 3,
"FAU_STG.4.1": 1
},
"FCO": {
"FCO_NRO": 3,
"FCO_NRO.1": 1,
"FCO_NRO.2": 8,
"FCO_NRO.2.1": 1,
"FCO_NRO.2.2": 1,
"FCO_NRO.2.3": 1
},
"FCS": {
"FCS_CKM": 48,
"FCS_CKM.1": 6,
"FCS_CKM.2": 5,
"FCS_CKM.4": 28,
"FCS_CKM.4.1": 2,
"FCS_COP": 49,
"FCS_COP.1": 10
},
"FDP": {
"FDP_ACC": 2,
"FDP_ACC.1": 9,
"FDP_ACC.2": 8,
"FDP_ACC.2.1": 1,
"FDP_ACC.2.2": 1,
"FDP_ACF": 1,
"FDP_ACF.1": 7,
"FDP_ACF.1.1": 1,
"FDP_ACF.1.2": 1,
"FDP_ACF.1.3": 1,
"FDP_ACF.1.4": 1,
"FDP_IFC": 24,
"FDP_IFC.1": 12,
"FDP_IFC.2": 4,
"FDP_IFF": 20,
"FDP_IFF.1": 22,
"FDP_IFF.1.3": 1,
"FDP_ITC.1": 12,
"FDP_ITC.2": 12,
"FDP_RIP": 2,
"FDP_RIP.1": 1,
"FDP_RIP.2": 7,
"FDP_RIP.2.1": 1,
"FDP_SDI": 2,
"FDP_SDI.1": 1,
"FDP_SDI.2": 5,
"FDP_SDI.2.1": 1,
"FDP_SDI.2.2": 2
},
"FIA": {
"FIA_AFL": 3,
"FIA_AFL.1": 6,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 1,
"FIA_ATD": 3,
"FIA_ATD.1": 11,
"FIA_ATD.1.1": 1,
"FIA_UAU": 5,
"FIA_UAU.1": 2,
"FIA_UAU.2": 6,
"FIA_UAU.2.1": 1,
"FIA_UAU.5": 5,
"FIA_UAU.5.1": 1,
"FIA_UAU.5.2": 1,
"FIA_UAU.6": 6,
"FIA_UAU.6.1": 1,
"FIA_UID": 3,
"FIA_UID.1": 8,
"FIA_UID.2": 10,
"FIA_UID.2.1": 1,
"FIA_USB": 3,
"FIA_USB.1": 6,
"FIA_USB.1.1": 1,
"FIA_USB.1.2": 1,
"FIA_USB.1.3": 1
},
"FMT": {
"FMT_MOF": 1,
"FMT_MOF.1": 6,
"FMT_MOF.1.1": 1,
"FMT_MSA": 45,
"FMT_MSA.1": 10,
"FMT_MSA.3": 11,
"FMT_SMF": 2,
"FMT_SMF.1": 18,
"FMT_SMF.1.1": 1,
"FMT_SMR": 3,
"FMT_SMR.1": 25,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPR": {
"FPR_CON": 6,
"FPR_CON.1": 9,
"FPR_CON.1.1": 2,
"FPR_CON.1.2": 4,
"FPR_PSE": 2,
"FPR_PSE.1": 7,
"FPR_PSE.1.1": 1,
"FPR_PSE.1.2": 1,
"FPR_PSE.1.3": 1
},
"FPT": {
"FPT_FLS": 3,
"FPT_FLS.1": 10,
"FPT_FLS.1.1": 1,
"FPT_PHP": 1,
"FPT_PHP.1": 6,
"FPT_PHP.1.1": 1,
"FPT_PHP.1.2": 1,
"FPT_RPL": 3,
"FPT_RPL.1": 6,
"FPT_RPL.1.1": 1,
"FPT_RPL.1.2": 1,
"FPT_STM": 3,
"FPT_STM.1": 18,
"FPT_STM.1.1": 1,
"FPT_TST": 3,
"FPT_TST.1": 8,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1
},
"FTP": {
"FTP_ITC": 23,
"FTP_ITC.1": 8
}
},
"certification_process": {},
"cipher_mode": {
"GCM": {
"GCM": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 1
},
"TLS": {
"TLS": {
"TLS": 44,
"TLSv1.2": 2
}
},
"VPN": {
"VPN": 1
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 3,
"Key agreement": 2
},
"MAC": {
"MAC": 8
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"JH": {
"JH": 1
},
"SHA": {
"SHA2": {
"SHA-2": 3,
"SHA-256": 2,
"SHA-384": 2,
"SHA-512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"TRNG": {
"TRNG": 3
}
},
"side_channel_analysis": {
"FI": {
"malfunction": 3,
"physical tampering": 3
}
},
"standard_id": {
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 1
},
"NIST": {
"NIST SP 800-38D": 1,
"SP 800-38A": 1
},
"RFC": {
"RFC 2104": 1,
"RFC 3394": 1,
"RFC 4493": 1,
"RFC 5084": 1,
"RFC 5246": 1,
"RFC 5289": 1,
"RFC 5652": 1,
"RFC-2104": 2,
"RFC-3394": 2,
"RFC-4493": 3,
"RFC-5084": 2,
"RFC-5246": 3,
"RFC-5289": 3,
"RFC-5652": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 16,
"AES-": 1
}
},
"constructions": {
"MAC": {
"CMAC": 1,
"HMAC": 2
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03109-1": 2,
"BSI TR-03111": 1,
"BSI TR-03116-3": 1
}
},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256": 3,
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 3,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384": 3,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 3
}
},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"pdf_file_size_bytes": 1249957,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 94
}
},
"protection_profile_links": {
"_type": "Set",
"elements": [
"https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0073V2b_pdf.pdf"
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1000V2a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"AVA_VAN.5",
"EAL4+",
"ALC_FLR.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1000V2b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "ece10fb9e425c2872ca8385d5d5945eec70e4e0ca520b5a80cd0b3fefe05eb68",
"txt_hash": "03a71704bcd269fed5325f3da6559fa64e5b35cf54cd0e7bd1b4d5f0d1100cdf"
},
"report": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "ac81f03e0ca1fea2c7dfc32a1e409498080bab82e4d5674e0e32ad9930dfdb1c",
"txt_hash": "a651e2313201ad9e148da8255837431d2a82448bca978ca6ff7ae3ce85fe11fb"
},
"st": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "3da8d647a0e06abd2a4db159fc5625d6a651188c1d0ec5cb8c3dcf6d2a195d67",
"txt_hash": "18a0cc26558ca9280c98296c13860a2e2293cee112df053412b81d6f641afb61"
}
},
"status": "active"
}