This page was not yet optimized for use on mobile devices.
secunet konnektor 2.0.0, Version 5.0.5:2.0.0
CSV information ?
| Status | active |
|---|---|
| Valid from | 08.04.2022 |
| Valid until | 07.04.2027 |
| Scheme | 🇩🇪 DE |
| Manufacturer | Secunet Security Networks AG |
| Category | Key Management Systems |
| Security level | ALC_FLR.2, ADV_FSP.4, AVA_VAN.3, ADV_IMP.1, ALC_TAT.1, EAL3+, ADV_TDS.3 |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-1184-2022
Certificate ?
Extracted keywords
Security level
EAL 3, EAL 2Security Assurance Requirements (SAR)
ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ALC_TAT.1, ALC_FLR.2, ALC_FLR, AVA_VAN.3Protection profiles
BSI-CC-PP-0098-V3-2021Certificates
BSI-DSZ-CC-1184-2022Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
| Title | Zertifikat BSI-DSZ-CC-1184-2022 |
|---|---|
| Subject | Zertifikat BSI-DSZ-CC-1184-2022 |
| Keywords | "Common Criteria, Certification, Zertifizierung, eHealth, Konnektor" |
| Author | Bundesamt für Sicherheit in der Informtionstechnik |
| Creation date | D:20220822073346+02'00' |
| Modification date | D:20220823094549+02'00' |
| Pages | 1 |
| Creator | Writer |
| Producer | LibreOffice 6.3 |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, AES-128, AES-, AES-256, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512Asymmetric Algorithms
RSAOAEP, ECDH, ECDSA, ECIES, ECC, Diffie-Hellman, DHHash functions
SHA-1, SHA-256, SHA-512Schemes
Key Exchange, AEADProtocols
TLS, TLS v1.2, TLS 1.2, IKEv2, IKE, IPsec, VPNElliptic Curves
brainpoolP256r1, FRP256v1Block cipher modes
ECB, CBC, GCMOperating System name
STARCOS 3Security level
EAL 3, EAL 2, EAL 1, EAL 4, EAL 2+Claims
OE.NK, OE.AKSecurity Assurance Requirements (SAR)
ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ALC_TAT.1, ALC_FLR.2, ALC_FLR, ALC_CMS.4, ALC_CMS, AVA_VAN.3, AVA_ACCSecurity Functional Requirements (SFR)
FCS_COP.1, FCS_COP, FCS_CKM.1, FCS_CKM, FDP_DAU, FDP_ITC, FDP_UIT, FMT_MTD, FPT_TDC, FTP_ITC, FTP_TRPProtection profiles
BSI-CC-PP-0098-V3-2021, BSI-CC-PP-0097Certificates
BSI-DSZ-CC-1184-2022Evaluation facilities
SRC Security Research & ConsultingStandards
FIPS 180-4, FIPS186-4, FIPS 197, FIPS180-4, FIPS PUB 180-4, FIPS197, SP 800-38D, PKCS#1, PKCS#12, AIS 20, AIS 32, RFC5652, RFC-8017, RFC-5639, RFC5639, RFC-6931, RFC 8017, RFC7027, RFC-3526, RFC-7296, RFC-5246, RFC-3268, RFC-4492, RFC-2404, RFC-2104, RFC-5869, RFC4055, RFC5280, RFC7292, RFC-4868, RFC-3602, RFC-4303, RFC-4301, RFC-5289, RFC-5116, RFC-5652, RFC-5751, RFC-5083, RFC-5084, RFC-4880, RFC-8018, RFC2104, RFC 2104, RFC2404, RFC3268, RFC 3268, RFC3526, RFC3602, RFC4301, RFC4303, RFC4346, RFC4868, RFC4880, RFC5246, RFC5289, RFC 5652, RFC5996, RFC7296, RFC8017, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, X.509Technical reports
BSI TR-02102, BSI TR-03116-1, BSI TR-03154, BSI TR-03155, BSI TR-03157, BSI 7148File metadata
| Title | Zertifizierungsreport BSI-DSZ-CC-1184-2022 |
|---|---|
| Subject | Zertifizierungsreport BSI-DSZ-CC-1184-2022 |
| Keywords | "Common Criteria, Certification, Zertifizierung, eHealth, Konnektor" |
| Author | Bundesamt für Sicherheit in der Informtionstechnik |
| Creation date | D:20220822073346+02'00' |
| Modification date | D:20220822080121+02'00' |
| Pages | 45 |
| Creator | Writer |
| Producer | LibreOffice 6.3 |
Frontpage
| Certificate ID | BSI-DSZ-CC-1184-2022 |
|---|---|
| Certified item | secunet konnektor 2.0.0, Version 5.0.5:2.0.0 |
| Certification lab | BSI |
| Developer | secunet Security Networks AG |
References
Incoming- BSI-DSZ-CC-1201-2022 - active - secunet konnektor 2.0.0, Version 5.1.2:2.0.0
- BSI-DSZ-CC-1190-2022 - active - secunet konnektor 2.1.0, Version 5.0.5:2.1.0
Security target ?
Extracted keywords
Symmetric Algorithms
AES128, AES256, AES, AES-128, AES-256, AES-, HPC, E2, DES, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512Asymmetric Algorithms
RSA 2048, RSA-2048, RSAOAEP, ECDH, ECDSA, ECIES, ECC, Diffie-HellmanHash functions
SHA-1, SHA-256, SHA-384, SHA-512, SHA256, SHA-2Schemes
MAC, Key ExchangeProtocols
SSL, TLS, TLS 1.2, TLS 1.3, IKEv2, IKE, IPsec, VPNRandomness
RNGElliptic Curves
P-256, P-384, brainpoolP256r1, brainpoolP384r1Block cipher modes
CBC, GCMTLS cipher suites
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384146Operating System name
STARCOS 3Trusted Execution Environments
SESecurity level
EAL3Claims
O.NK, O.AK, T.NK, T.AK, A.AK, A.NK, OE.NK, OE.AK, OSP.AK, OSP.NKSecurity Assurance Requirements (SAR)
ADV_FSP.4, ADV_TDS.3, ADV_IMP.1, ADV_ARC.1, ADV_TDS, ADV_FSP, ADV_IMP, AGD_OPE.1, AGD_OPE, AGD_PRE.1, ALC_TAT.1, ALC_FLR.2, ALC_DEL.1, AVA_VAN.3, AVA_VAN, AVA_VAN.5, ASE_TSS.1Security Functional Requirements (SFR)
FAU_STG, FAU_GEN, FAU_GEN.1, FAU_GEN.2, FAU_SAR, FAU_SAR.1, FAU_STG.1, FAU_STG.3, FAU_STG.4, FCS_COP, FCS_CKM.1, FCS_CKM.4, FCS_COP.1, FCS_CKM, FCS_CKM.2, FCS_CMK.4, FDP_ACF, FDP_IFC, FDP_IFF, FDP_IFF.1, FDP_IFC.1, FDP_RIP, FDP_RIP.1, FDP_ACC.1, FDP_ACC, FDP_ACF.1, FDP_ITC, FDP_ITC.1, FDP_UIT, FDP_UIT.1, FDP_ITC.2, FDP_ETC, FDP_ETC.2, FDP_SOS.2, FDP_UCT, FDP_UCT.1, FDP_ACF.1.2, FDP_DAU, FDP_DAU.1, FDP_DAU.2, FDP_DAU.2.1, FDP_SDI, FDP_SDI.1, FDP_SDI.2, FIA_API, FIA_UAU, FIA_API.1, FIA_UAU.5, FIA_API.1.1, FIA_UID.1, FIA_UID, FIA_UAU.1, FIA_SOS, FIA_SOS.1, FIA_SOS.2, FMT_MTD.1, FMT_MSA, FMT_MSA.3, FMT_MSA.1, FMT_SMR.1, FMT_SMR.1.1, FMT_MOF, FMT_MTD, FMT_SMF.1, FMT_SMF, FMT_MOF.1, FMT_MSA.4, FMT_SMR, FPT_EMS, FPT_EMS.1, FPT_STM, FPT_EMS.1.1, FPT_EMS.1.2, FPT_TDC, FPT_STM.1, FPT_TDC.1, FPT_TST, FPT_TST.1, FPT_TDC.1.2, FPT_FLS, FPT_FLS.1, FPT_TEE, FPT_TEE.1, FTA_TAB, FTA_TAB.1, FTP_ITC, FTP_TRP, FTP_ITC.1, FTP_TRP.1Protection profiles
BSI-CC-PP-0098, BSI-CC-PP-0098“, BSI-CC-PP-0097, BSI-PP-0032Certificates
BSI-DSZ-CC-1184, CC-1163-2021Side-channel analysis
side channelStandards
FIPS PUB 180-4, FIPS 197, FIPS PUB 186-4, FIPS 180-4, PKCS#1, PKCS#12, PKCS#7, PKCS #12, RFC 2131, RFC 2132, RFC 5652, RFC 5751, RFC 4301, RFC 4303, RFC 7296, RFC 3602, RFC 2404, RFC 4868, RFC 8017, RFC 5246, RFC-5639, RFC-7027, RFC 2104, RFC 8422, RFC 5289, RFC 4055, RFC 5639, RFC5652, RFC 5083, RFC 5084, RFC 4122, RFC4122, RFC2617, RFC2818, RFC-5246, RFC-5869, RFC 5116, RFC 5126, RFC 2560, RFC7296, RFC 5905, RFC 4302, RFC 2406, RFC 3526, RFC 4106, RFC 8446, RFC 3268, RFC 4492, RFC 5280, RFC 2045, RFC 2046, RFC 2047, RFC 2048, RFC 2049, RFC 5869, RFC 7027, X.509, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004Technical reports
BSI TR-03114, BSI TR-03144, BSI TR-03116-1, BSI TR-03111, BSI TR-03154, BSI TR-03155, BSI TR-03157File metadata
| Author | Röhnelt, Andreas |
|---|---|
| Creation date | D:20220303172336+01'00' |
| Modification date | D:20220303172336+01'00' |
| Pages | 425 |
| Creator | Microsoft® Word 2016 |
| Producer | Microsoft® Word 2016 |
Heuristics ?
Certificate ID: BSI-DSZ-CC-1184-2022
Extracted SARs
ADV_FSP.4, AVA_VAN.3, ALC_TAT.1, ASE_TSS.1, AGD_OPE.1, ALC_FLR.2, ALC_DEL.1, ALC_CMS.4, ADV_IMP.1, ADV_TDS.3, AGD_PRE.1, ADV_ARC.1Similar certificates
| Name | Certificate ID | |
|---|---|---|
| secunet konnektor 2.0.0, Version 5.0.5:2.0.0 | BSI-DSZ-CC-1044-V5-2022 | Compare |
| secunet konnektor 2.0.0 und 2.0.1, Version 5.50.1:2.0.0 und 5.50.1:2.0.1 | BSI-DSZ-CC-1044-V7-2023 | Compare |
| secunet konnektor 2.0.0, Version 5.1.2:2.0.0 | BSI-DSZ-CC-1044-V6-2022 | Compare |
| secunet konnektor 2.0.0, Version 5.1.2:2.0.0 | BSI-DSZ-CC-1201-2022 | Compare |
| secunet konnektor 2.1.0, Version 5.0.5:2.1.0 | BSI-DSZ-CC-1190-2022 | Compare |
| secunet konnektor 2.1.0, Version 5.0.5:2.1.0 | BSI-DSZ-CC-1128-V4-2022 | Compare |
| secunet konnektor 2.0.0, Version 3.5.0:2.0.0 | BSI-DSZ-CC-1044-V3-2020 | Compare |
| secunet konnektor 2.0.0 Version 3.5.0:2.0.0 | BSI-DSZ-CC-1135-2020 | Compare |
| secunet Konnektor 2.1.0, Version 3.5.0:2.1.0 | BSI-DSZ-CC-1157-2020 | Compare |
| secunet konnektor 2.1.0, Version 5.1.2:2.1.0 | BSI-DSZ-CC-1202-2022 | Compare |
| secunet konnektor 2.1.0, Version 5.1.2:2.1.0 | BSI-DSZ-CC-1128-V5-2022 | Compare |
| secunet konnektor 2.1.0, Version 3.5.0:2.1.0 | BSI-DSZ-CC-1128-V2-2020 | Compare |
Showing 5 out of 12.
Scheme data ?
| Cert Id | BSI-DSZ-CC-1128-V6-2023 | |
|---|---|---|
| Product | secunet konnektor 2.1.0, Version 5.50.1:2.1.0 | |
| Vendor | secunet Security Networks AG | |
| Certification Date | 19.10.2023 | |
| Category | eHealth | |
| Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html | |
| Enhanced | ||
| Product | secunet konnektor 2.1.0, Version 5.50.1:2.1.0 | |
| Applicant | secunet Security Networks AG Kurfürstenstraße 58 45138 Essen | |
| Evaluation Facility | SRC Security Research & Consulting GmbH | |
| Assurance Level | EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4 | |
| Protection Profile | Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021 | |
| Certification Date | 19.10.2023 | |
| Expiration Date | 18.10.2028 | |
| Entries | [frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)', 'description': 'Hardware'}), frozendict({'id': 'BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)', 'description': 'Hardware'}), frozendict({'id': 'BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)', 'description': 'Server'}), frozendict({'id': 'BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)', 'description': 'Certificate'}), frozendict({'id': 'BSI-DSZ-CC-1128-V2-2020 (06.11.2020)\nZertifizierungsreport / Certification Report', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)', 'description': '-instances of the net-connector which are installed on two separate circuit boards.'}), frozendict({'id': 'BSI-DSZ-CC-1128-2019 (20.12.2019)\nZertifizierungsreport / Certification Report', 'description': 'Certificate'})] | |
| Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile&v=1 | |
| Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile&v=1 | |
| Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile&v=1 | |
| Description | The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards. | |
| Subcategory | Software | |
References ?
Updates ?
-
07.10.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was updated, with the
{'cert_id': 'BSI-DSZ-CC-1128-V6-2023', 'product': 'secunet konnektor 2.1.0, Version 5.50.1:2.1.0', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html', 'enhanced': {'__update__': {'product': 'secunet konnektor 2.1.0, Version 5.50.1:2.1.0', 'applicant': 'secunet Security Networks AG\nKurfürstenstraße 58\n45138 Essen', 'assurance_level': 'EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4', 'protection_profile': 'Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021', 'entries': {'7': {'__update__': {'id': 'BSI-DSZ-CC-1128-V2-2020 (06.11.2020)\nZertifizierungsreport / Certification Report', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}}, '8': {'__update__': {'id': 'BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)', 'description': '-instances of the net-connector which are installed on two separate circuit boards.'}}, '9': {'__update__': {'id': 'BSI-DSZ-CC-1128-2019 (20.12.2019)\nZertifizierungsreport / Certification Report'}}, '__insert__': [[0, {'id': 'BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}], [1, {'id': 'BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}], [2, {'id': 'BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)', 'description': 'Hardware'}], [3, {'id': 'BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}], [4, {'id': 'BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)', 'description': 'Hardware'}], [5, {'id': 'BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)', 'description': 'Server'}], [6, {'id': 'BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)', 'description': 'Certificate'}]]}, 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile&v=1', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile&v=1', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile&v=1', 'description': 'The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards.'}}}data.
- The scheme_data property was updated, with the
-
30.09.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was updated, with the
{'cert_id': 'BSI-DSZ-CC-1209-2023', 'product': 'secunet konnektor 2.0.0 und 2.0.1 Version 5.50.1:2.0.0 und 5.50.1:2.0.1', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1209.html', 'enhanced': {'__update__': {'product': 'secunet konnektor 2.0.0 und 2.0.1 Version 5.50.1:2.0.0 und 5.50.1:2.0.1', 'applicant': 'secunet Security Networks AG\n\nWeidenauer Straße 223-225\n57076 Siegen\nDeutschland', 'assurance_level': 'EAL3,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_FLR.2,ALC_TAT.1,AVA_VAN.3', 'protection_profile': 'Common Criteria Schutzprofil (Protection Profile), Schutzprofil 2: Anforderungen an den Konnektor, BSI-CC-PP-0098-V3-2021-MA-02, Version 1.6.1, 15.03.2023, Bundesamt für Sicherheit in der Informationstechnik (BSI)', 'entries': {'0': {'__update__': {'id': 'BSI-DSZ-CC-1209-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024)', 'description': 'Security Target'}}, '1': {'__update__': {'id': 'BSI-DSZ-CC-1209-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)', 'description': 'Security Target'}}, '2': {'__update__': {'id': 'BSI-DSZ-CC-1209-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültlig bis / valid until 18.10.2028)'}}, '__delete__': [5, 4, 3, 2, 1, 0]}, 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209a_pdf.pdf?__blob=publicationFile&v=2', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209b_pdf.pdf?__blob=publicationFile&v=2', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209c_pdf.pdf?__blob=publicationFile&v=2', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten.'}}}data.
- The scheme_data property was updated, with the
-
22.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '16f97538dd9c70e247a6e527db4959db798de1f75763a51c61e04e4c722f85aa', 'txt_hash': '0d55aa2b97bdc352e875546a46d0a3641d5fdf5e0dfb01e4485aa734843ba385'}data. - The cert property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'f7d8c6e5dee866115469f1e51743fd51c0116ef60d74ee3a0c9be002e1981387', 'txt_hash': 'f2cdf7b3154fe222e23e85019495afa662b119e828126b9e5c7e6dc3db9d4d80'}data.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 3931481, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 425, '/Author': 'Röhnelt, Andreas', '/Creator': 'Microsoft® Word 2016', '/CreationDate': "D:20220303172336+01'00'", '/ModDate': "D:20220303172336+01'00'", '/Producer': 'Microsoft® Word 2016', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.secg.org/sec1-v2.pdf', 'http://www.gematik.de/', 'http://www.rfc-editor.org/rfc/rfc3526.txt', 'http://www.ietf.org/rfc/rfc5751.txt', 'https://www.w3.org/TR/2007/REC-xslt20-20070123/', 'http://www.rfc-editor.org/rfc/rfc4055.txt', 'http://www.ietf.org/rfc/rfc5652.txt', 'https://www.w3.org/TR/xml/', 'http://www.unicode.org/versions/Unicode6.2.0/', 'https://www.w3.org/TR/2008/REC-xmldsig-core-20080610/', 'https://www.w3.org/TR/2013/REC-xmlenc-core1-20130411/', 'http://www.ietf.org/rfc/rfc2406.txt', 'http://www.rfc-editor.org/rfc/rfc2404.txt', 'http://www.rfc-editor.org/rfc/rfc4868.txt', 'http://www.etsi.org/', 'http://www.ietf.org/rfc/rfc2132.txt', 'http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf', 'https://tools.ietf.org/html/rfc5639', 'http://www.ietf.org/rfc/rfc7296.txt', 'http://www.ietf.org/rfc/rfc5905.txt', 'http://tools.ietf.org/html/rfc2560', 'https://tools.ietf.org/html/rfc5116', 'http://www.ietf.org/rfc/rfc8017.txt', 'http://www.ietf.org/rfc/rfc5280.txt', 'http://www.rfc-editor.org/rfc/rfc4106.txt', 'http://www.rfc-editor.org/rfc/rfc3602.txt', 'http://www.ietf.org/rfc/rfc7027.txt', 'http://www.ietf.org/rfc/rfc4303.txt', 'http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256', 'https://www.w3.org/TR/2010/REC-xpath20-20101214/', 'http://partners.adobe.com/public/developer/en/tiff/TIFF6.pdf', 'https://tools.ietf.org/html/rfc4122', 'http://www.rfc-editor.org/rfc/rfc8017.txt', 'http://www.ietf.org/rfc/rfc2131.txt', 'http://uri.etsi.org/TrstSvc/Svctype/unspecified']}}. - The cert_metadata property was set to
{'pdf_file_size_bytes': 394472, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informtionstechnik', '/CreationDate': "D:20220822073346+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor"', '/ModDate': "D:20220823094549+02'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'Zertifikat BSI-DSZ-CC-1184-2022', '/Title': 'Zertifikat BSI-DSZ-CC-1184-2022', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}. - The st_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1184': 1}, 'NL': {'CC-1163-2021': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0098': 21, 'BSI-CC-PP-0098“': 1, 'BSI-CC-PP-0097': 6, 'BSI-PP-0032': 1}}, 'cc_security_level': {'EAL': {'EAL3': 8}}, 'cc_sar': {'ADV': {'ADV_FSP.4': 6, 'ADV_TDS.3': 6, 'ADV_IMP.1': 6, 'ADV_ARC.1': 3, 'ADV_TDS': 1, 'ADV_FSP': 1, 'ADV_IMP': 1}, 'AGD': {'AGD_OPE.1': 13, 'AGD_OPE': 1, 'AGD_PRE.1': 4}, 'ALC': {'ALC_TAT.1': 6, 'ALC_FLR.2': 6, 'ALC_DEL.1': 6}, 'AVA': {'AVA_VAN.3': 7, 'AVA_VAN': 1, 'AVA_VAN.5': 2}, 'ASE': {'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_STG': 14, 'FAU_GEN': 26, 'FAU_GEN.1': 12, 'FAU_GEN.2': 1, 'FAU_SAR': 6, 'FAU_SAR.1': 2, 'FAU_STG.1': 2, 'FAU_STG.3': 1, 'FAU_STG.4': 1}, 'FCS': {'FCS_COP': 308, 'FCS_CKM.1': 38, 'FCS_CKM.4': 36, 'FCS_COP.1': 35, 'FCS_CKM': 131, 'FCS_CKM.2': 8, 'FCS_CMK.4': 1}, 'FDP': {'FDP_ACF': 115, 'FDP_IFC': 19, 'FDP_IFF': 21, 'FDP_IFF.1': 20, 'FDP_IFC.1': 19, 'FDP_RIP': 21, 'FDP_RIP.1': 2, 'FDP_ACC.1': 43, 'FDP_ACC': 97, 'FDP_ACF.1': 72, 'FDP_ITC': 36, 'FDP_ITC.1': 37, 'FDP_UIT': 16, 'FDP_UIT.1': 6, 'FDP_ITC.2': 54, 'FDP_ETC': 17, 'FDP_ETC.2': 8, 'FDP_SOS.2': 1, 'FDP_UCT': 5, 'FDP_UCT.1': 1, 'FDP_ACF.1.2': 1, 'FDP_DAU': 33, 'FDP_DAU.1': 3, 'FDP_DAU.2': 9, 'FDP_DAU.2.1': 1, 'FDP_SDI': 7, 'FDP_SDI.1': 1, 'FDP_SDI.2': 2}, 'FIA': {'FIA_API': 13, 'FIA_UAU': 41, 'FIA_API.1': 3, 'FIA_UAU.5': 4, 'FIA_API.1.1': 2, 'FIA_UID.1': 12, 'FIA_UID': 14, 'FIA_UAU.1': 4, 'FIA_SOS': 17, 'FIA_SOS.1': 1, 'FIA_SOS.2': 3}, 'FMT': {'FMT_MTD.1': 7, 'FMT_MSA': 108, 'FMT_MSA.3': 28, 'FMT_MSA.1': 10, 'FMT_SMR.1': 43, 'FMT_SMR.1.1': 1, 'FMT_MOF': 18, 'FMT_MTD': 44, 'FMT_SMF.1': 14, 'FMT_SMF': 29, 'FMT_MOF.1': 2, 'FMT_MSA.4': 2, 'FMT_SMR': 10}, 'FPT': {'FPT_EMS': 16, 'FPT_EMS.1': 9, 'FPT_STM': 17, 'FPT_EMS.1.1': 2, 'FPT_EMS.1.2': 2, 'FPT_TDC': 49, 'FPT_STM.1': 4, 'FPT_TDC.1': 17, 'FPT_TST': 24, 'FPT_TST.1': 10, 'FPT_TDC.1.2': 1, 'FPT_FLS': 10, 'FPT_FLS.1': 2, 'FPT_TEE': 9, 'FPT_TEE.1': 2}, 'FTA': {'FTA_TAB': 14, 'FTA_TAB.1': 2}, 'FTP': {'FTP_ITC': 136, 'FTP_TRP': 15, 'FTP_ITC.1': 56, 'FTP_TRP.1': 11}}, 'cc_claims': {'O': {'O.NK': 209, 'O.AK': 385}, 'T': {'T.NK': 131, 'T.AK': 113}, 'A': {'A.AK': 88, 'A.NK': 67}, 'OE': {'OE.NK': 207, 'OE.AK': 199}, 'OSP': {'OSP.AK': 84, 'OSP.NK': 23}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES128': 4, 'AES256': 4, 'AES': 81, 'AES-128': 4, 'AES-256': 11, 'AES-': 1}, 'HPC': {'HPC': 5}, 'E2': {'E2': 2}}, 'DES': {'DES': {'DES': 4}}, 'constructions': {'MAC': {'HMAC': 41, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1}}}, 'asymmetric_crypto': {'RSA': {'RSA 2048': 2, 'RSA-2048': 1, 'RSAOAEP': 11}, 'ECC': {'ECDH': {'ECDH': 4}, 'ECDSA': {'ECDSA': 33}, 'ECIES': {'ECIES': 40}, 'ECC': {'ECC': 27}}, 'FF': {'DH': {'Diffie-Hellman': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 7}, 'SHA2': {'SHA-256': 36, 'SHA-384': 6, 'SHA-512': 5, 'SHA256': 1, 'SHA-2': 8}}}, 'crypto_scheme': {'MAC': {'MAC': 1}, 'KEX': {'Key Exchange': 3}}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}, 'TLS': {'TLS': 283, 'TLS 1.2': 3, 'TLS 1.3': 2}}, 'IKE': {'IKEv2': 7, 'IKE': 22}, 'IPsec': {'IPsec': 33}, 'VPN': {'VPN': 60}}, 'randomness': {'RNG': {'RNG': 15}}, 'cipher_mode': {'CBC': {'CBC': 4}, 'GCM': {'GCM': 11}}, 'ecc_curve': {'NIST': {'P-256': 2, 'P-384': 2}, 'Brainpool': {'brainpoolP256r1': 4, 'brainpoolP384r1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256': 3, 'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384': 2, 'TLS_DHE_RSA_WITH_AES_128_CBC_SHA': 3, 'TLS_DHE_RSA_WITH_AES_256_CBC_SHA': 3, 'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA': 3, 'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA': 3, 'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256': 3, 'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384': 3, 'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256': 3, 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384': 2, 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384146': 1}}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'side channel': 1}}, 'technical_report_id': {'BSI': {'BSI TR-03114': 2, 'BSI TR-03144': 8, 'BSI TR-03116-1': 4, 'BSI TR-03111': 2, 'BSI TR-03154': 1, 'BSI TR-03155': 1, 'BSI TR-03157': 1}}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 1}}, 'os_name': {'STARCOS': {'STARCOS 3': 2}}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 180-4': 15, 'FIPS 197': 11, 'FIPS PUB 186-4': 2, 'FIPS 180-4': 1}, 'PKCS': {'PKCS#1': 24, 'PKCS#12': 2, 'PKCS#7': 1, 'PKCS #12': 1}, 'RFC': {'RFC 2131': 3, 'RFC 2132': 3, 'RFC 5652': 2, 'RFC 5751': 5, 'RFC 4301': 4, 'RFC 4303': 5, 'RFC 7296': 6, 'RFC 3602': 3, 'RFC 2404': 2, 'RFC 4868': 2, 'RFC 8017': 4, 'RFC 5246': 7, 'RFC-5639': 1, 'RFC-7027': 1, 'RFC 2104': 2, 'RFC 8422': 2, 'RFC 5289': 2, 'RFC 4055': 2, 'RFC 5639': 7, 'RFC5652': 3, 'RFC 5083': 2, 'RFC 5084': 2, 'RFC 4122': 2, 'RFC4122': 2, 'RFC2617': 1, 'RFC2818': 1, 'RFC-5246': 2, 'RFC-5869': 2, 'RFC 5116': 3, 'RFC 5126': 1, 'RFC 2560': 1, 'RFC7296': 1, 'RFC 5905': 1, 'RFC 4302': 1, 'RFC 2406': 1, 'RFC 3526': 1, 'RFC 4106': 1, 'RFC 8446': 1, 'RFC 3268': 1, 'RFC 4492': 1, 'RFC 5280': 1, 'RFC 2045': 1, 'RFC 2046': 1, 'RFC 2047': 1, 'RFC 2048': 1, 'RFC 2049': 1, 'RFC 5869': 1, 'RFC 7027': 1}, 'X509': {'X.509': 32}, 'CC': {'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}. - The cert_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1184-2022': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0098-V3-2021': 1}}, 'cc_security_level': {'EAL': {'EAL 3': 1, 'EAL 2': 1}}, 'cc_sar': {'ADV': {'ADV_FSP.4': 1, 'ADV_IMP.1': 1, 'ADV_TDS.3': 1}, 'ALC': {'ALC_TAT.1': 1, 'ALC_FLR.2': 1, 'ALC_FLR': 1}, 'AVA': {'AVA_VAN.3': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}. - The st_filename property was set to
1184b_pdf.pdf. - The cert_filename property was set to
1184c_pdf.pdf.
The computed heuristics were updated.
- The report_references property was updated, with the
{'directly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1201-2022', 'BSI-DSZ-CC-1190-2022']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1202-2022', 'BSI-DSZ-CC-1201-2022', 'BSI-DSZ-CC-1190-2022']}}data. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}]}values added. - The scheme_data property was updated, with the
{'cert_id': 'BSI-DSZ-CC-1128-V6-2023', 'product': 'secunet konnektor 2.1.0, Version 5.50.1:2.1.0', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html', 'enhanced': {'__update__': {'product': 'secunet konnektor 2.1.0, Version 5.50.1:2.1.0', 'applicant': 'secunet Security Networks AG\nKurfürstenstraße 58\n45138 Essen', 'assurance_level': 'EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4', 'protection_profile': 'Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021', 'entries': {'7': {'__update__': {'id': 'BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)', 'description': '-instances of the net-connector which are installed on two separate circuit boards.'}}, '8': {'__update__': {'id': 'BSI-DSZ-CC-1128-2019 (20.12.2019)\nZertifizierungsreport / Certification Report'}}, '__insert__': [[0, {'id': 'BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}], [1, {'id': 'BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)', 'description': 'Hardware'}], [2, {'id': 'BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}], [3, {'id': 'BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)', 'description': 'Hardware'}], [4, {'id': 'BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)', 'description': 'Server'}], [5, {'id': 'BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)', 'description': 'Certificate'}], [6, {'id': 'BSI-DSZ-CC-1128-V2-2020 (06.11.2020)\nZertifizierungsreport / Certification Report', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}]]}, 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile&v=1', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile&v=1', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile&v=1', 'description': 'The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards.'}}}data.
- The st property was updated, with the
-
19.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '49077a2c04e20fae57b426f8c574783a33772158f596a585ad7a187188e65770', 'txt_hash': 'f2fc7675b43bc6ad1b92bbe956606bda8a7dec8a95edaf14b49711c4ccc39cf9'}data.
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 1261839, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 45, '/Author': 'Bundesamt für Sicherheit in der Informtionstechnik', '/CreationDate': "D:20220822073346+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor"', '/ModDate': "D:20220822080121+02'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'Zertifizierungsreport BSI-DSZ-CC-1184-2022', '/Title': 'Zertifizierungsreport BSI-DSZ-CC-1184-2022', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.bsi.bund.de/', 'https://www.commoncriteriaportal.org/', 'https://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/zertifizierung', 'https://www.bsi.bund.de/AIS', 'https://www.bsi.bund.de/zertifizierungsreporte', 'https://www.sogis.eu/']}}. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)'], 'cert_id': 'BSI-DSZ-CC-1184-2022', 'cert_item': 'secunet konnektor 2.0.0, Version 5.0.5:2.0.0', 'developer': 'secunet Security Networks AG', 'cert_lab': 'BSI'}}. - The report_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1184-2022': 23}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0098-V3-2021': 3, 'BSI-CC-PP-0097': 1}}, 'cc_security_level': {'EAL': {'EAL 3': 4, 'EAL 2': 2, 'EAL 1': 1, 'EAL 4': 2, 'EAL 2+': 1}}, 'cc_sar': {'ADV': {'ADV_FSP.4': 4, 'ADV_IMP.1': 4, 'ADV_TDS.3': 4}, 'ALC': {'ALC_TAT.1': 4, 'ALC_FLR.2': 4, 'ALC_FLR': 3, 'ALC_CMS.4': 1, 'ALC_CMS': 1}, 'AVA': {'AVA_VAN.3': 5, 'AVA_ACC': 6}}, 'cc_sfr': {'FCS': {'FCS_COP.1': 2, 'FCS_COP': 43, 'FCS_CKM.1': 1, 'FCS_CKM': 8}, 'FDP': {'FDP_DAU': 5, 'FDP_ITC': 2, 'FDP_UIT': 2}, 'FMT': {'FMT_MTD': 2}, 'FPT': {'FPT_TDC': 15}, 'FTP': {'FTP_ITC': 5, 'FTP_TRP': 1}}, 'cc_claims': {'OE': {'OE.NK': 4, 'OE.AK': 6}}, 'vendor': {}, 'eval_facility': {'SRC': {'SRC Security Research & Consulting': 4}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 27, 'AES-128': 2, 'AES-': 2, 'AES-256': 2}}, 'constructions': {'MAC': {'HMAC': 13, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1}}}, 'asymmetric_crypto': {'RSA': {'RSAOAEP': 4}, 'ECC': {'ECDH': {'ECDH': 7}, 'ECDSA': {'ECDSA': 25}, 'ECIES': {'ECIES': 8}, 'ECC': {'ECC': 4}}, 'FF': {'DH': {'Diffie-Hellman': 3, 'DH': 7}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA-256': 17, 'SHA-512': 1}}}, 'crypto_scheme': {'KEX': {'Key Exchange': 4}, 'AEAD': {'AEAD': 3}}, 'crypto_protocol': {'TLS': {'TLS': {'TLS': 42, 'TLS v1.2': 6, 'TLS 1.2': 2}}, 'IKE': {'IKEv2': 9, 'IKE': 3}, 'IPsec': {'IPsec': 9}, 'VPN': {'VPN': 9}}, 'randomness': {}, 'cipher_mode': {'ECB': {'ECB': 1}, 'CBC': {'CBC': 1}, 'GCM': {'GCM': 12}}, 'ecc_curve': {'Brainpool': {'brainpoolP256r1': 1}, 'ANSSI': {'FRP256v1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-02102': 1, 'BSI TR-03116-1': 1, 'BSI TR-03154': 1, 'BSI TR-03155': 1, 'BSI TR-03157': 2, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {'STARCOS': {'STARCOS 3': 2}}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS 180-4': 22, 'FIPS186-4': 4, 'FIPS 197': 8, 'FIPS180-4': 1, 'FIPS PUB 180-4': 1, 'FIPS197': 1}, 'NIST': {'SP 800-38D': 5}, 'PKCS': {'PKCS#1': 8, 'PKCS#12': 2}, 'BSI': {'AIS 20': 2, 'AIS 32': 1}, 'RFC': {'RFC5652': 2, 'RFC-8017': 12, 'RFC-5639': 14, 'RFC5639': 14, 'RFC-6931': 1, 'RFC 8017': 1, 'RFC7027': 3, 'RFC-3526': 2, 'RFC-7296': 4, 'RFC-5246': 4, 'RFC-3268': 3, 'RFC-4492': 2, 'RFC-2404': 2, 'RFC-2104': 3, 'RFC-5869': 2, 'RFC4055': 1, 'RFC5280': 1, 'RFC7292': 1, 'RFC-4868': 1, 'RFC-3602': 2, 'RFC-4303': 2, 'RFC-4301': 2, 'RFC-5289': 1, 'RFC-5116': 3, 'RFC-5652': 3, 'RFC-5751': 1, 'RFC-5083': 1, 'RFC-5084': 1, 'RFC-4880': 1, 'RFC-8018': 1, 'RFC2104': 1, 'RFC 2104': 1, 'RFC2404': 1, 'RFC3268': 1, 'RFC 3268': 1, 'RFC3526': 1, 'RFC3602': 1, 'RFC4301': 1, 'RFC4303': 1, 'RFC4346': 1, 'RFC4868': 1, 'RFC4880': 1, 'RFC5246': 1, 'RFC5289': 1, 'RFC 5652': 1, 'RFC5996': 1, 'RFC7296': 1, 'RFC8017': 1}, 'ISO': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}, 'X509': {'X.509': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}. - The report_filename property was set to
1184a_pdf.pdf.
The computed heuristics were updated.
- The cert_lab property was set to
['BSI']. - The cert_id property was set to
BSI-DSZ-CC-1184-2022. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}]}values added.
- The report property was updated, with the
-
17.08.2024 The certificate data changed.
Certificate changed
The report_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1184a_pdf.pdf.
The st_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1184b_pdf.pdf.
The state of the certificate object was updated.
- The st property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data. - The cert property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data.
The PDF extraction data was updated.
- The st_metadata property was set to
None. - The cert_metadata property was set to
None. - The st_keywords property was set to
None. - The cert_keywords property was set to
None. - The st_filename property was set to
None. - The cert_filename property was set to
None.
The computed heuristics were updated.
- The cert_id property was set to
None. - The report_references property was updated, with the
{'directly_referenced_by': None, 'indirectly_referenced_by': None}data. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}]}values discarded. - The scheme_data property was updated, with the
{'cert_id': 'BSI-DSZ-CC-1209-2023', 'product': 'secunet konnektor 2.0.0 und 2.0.1 Version 5.50.1:2.0.0 und 5.50.1:2.0.1', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1209.html', 'enhanced': {'__update__': {'product': 'secunet konnektor 2.0.0 und 2.0.1 Version 5.50.1:2.0.0 und 5.50.1:2.0.1', 'applicant': 'secunet Security Networks AG\n\nWeidenauer Straße 223-225\n57076 Siegen\nDeutschland', 'assurance_level': 'EAL3,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_FLR.2,ALC_TAT.1,AVA_VAN.3', 'protection_profile': 'Common Criteria Schutzprofil (Protection Profile), Schutzprofil 2: Anforderungen an den Konnektor, BSI-CC-PP-0098-V3-2021-MA-02, Version 1.6.1, 15.03.2023, Bundesamt für Sicherheit in der Informationstechnik (BSI)', 'entries': {'0': {'__update__': {'id': 'BSI-DSZ-CC-1209-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)', 'description': 'Security Target'}}, '1': {'__update__': {'id': 'BSI-DSZ-CC-1209-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültlig bis / valid until 18.10.2028)'}}, '__delete__': [6, 5, 4, 3, 2, 1, 0]}, 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209a_pdf.pdf?__blob=publicationFile&v=2', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209b_pdf.pdf?__blob=publicationFile&v=2', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209c_pdf.pdf?__blob=publicationFile&v=2', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten.'}}}data.
- The new value is
-
12.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data.
The PDF extraction data was updated.
- The report_metadata property was set to
None. - The report_frontpage property was set to
None. - The report_keywords property was set to
None. - The report_filename property was set to
None.
The computed heuristics were updated.
- The cert_lab property was set to
None. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}]}values discarded.
- The report property was updated, with the
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name secunet konnektor 2.0.0, Version 5.0.5:2.0.0 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Key Management Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1184c_pdf.pdf",
"dgst": "1058338ef56397d4",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1184-2022",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 4
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"5.0.5",
"2.0.0"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1201-2022",
"BSI-DSZ-CC-1190-2022"
]
},
"directly_referencing": null,
"indirectly_referenced_by": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1201-2022",
"BSI-DSZ-CC-1190-2022",
"BSI-DSZ-CC-1202-2022"
]
},
"indirectly_referencing": null
},
"scheme_data": {
"category": "eHealth",
"cert_id": "BSI-DSZ-CC-1128-V6-2023",
"certification_date": "19.10.2023",
"enhanced": {
"applicant": "secunet Security Networks AG\nKurf\u00fcrstenstra\u00dfe 58\n45138 Essen",
"assurance_level": "EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile\u0026v=1",
"certification_date": "19.10.2023",
"description": "The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards.",
"entries": [
{
"description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
"id": "BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report"
},
{
"description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
"id": "BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)\nMaintenance Report"
},
{
"description": "Hardware",
"id": "BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, g\u00fcltig bis / valid until 18.10.2028)"
},
{
"description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
"id": "BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022)\nMaintenance Report"
},
{
"description": "Hardware",
"id": "BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, g\u00fcltig bis / valid until 08.09.2027)"
},
{
"description": "Server",
"id": "BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, g\u00fcltig bis / valid until 07.04.2027)"
},
{
"description": "Certificate",
"id": "BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, g\u00fcltig bis / valid until 15.07.2026)"
},
{
"description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
"id": "BSI-DSZ-CC-1128-V2-2020 (06.11.2020)\nZertifizierungsreport / Certification Report"
},
{
"description": "-instances of the net-connector which are installed on two separate circuit boards.",
"id": "BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)"
},
{
"description": "Certificate",
"id": "BSI-DSZ-CC-1128-2019 (20.12.2019)\nZertifizierungsreport / Certification Report"
}
],
"evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
"expiration_date": "18.10.2028",
"product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0",
"protection_profile": "Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile\u0026v=1",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile\u0026v=1"
},
"product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0",
"subcategory": "Software",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html",
"vendor": "secunet Security Networks AG"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Secunet Security Networks AG",
"manufacturer_web": "https://www.secunet.com/en/",
"name": "secunet konnektor 2.0.0, Version 5.0.5:2.0.0",
"not_valid_after": "2027-04-07",
"not_valid_before": "2022-04-08",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1184c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1184-2022": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0098-V3-2021": 1
}
},
"cc_sar": {
"ADV": {
"ADV_FSP.4": 1,
"ADV_IMP.1": 1,
"ADV_TDS.3": 1
},
"ALC": {
"ALC_FLR": 1,
"ALC_FLR.2": 1,
"ALC_TAT.1": 1
},
"AVA": {
"AVA_VAN.3": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 3": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informtionstechnik",
"/CreationDate": "D:20220822073346+02\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor\"",
"/ModDate": "D:20220823094549+02\u002700\u0027",
"/Producer": "LibreOffice 6.3",
"/Subject": "Zertifikat BSI-DSZ-CC-1184-2022",
"/Title": "Zertifikat BSI-DSZ-CC-1184-2022",
"pdf_file_size_bytes": 394472,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1184a_pdf.pdf",
"report_frontpage": {
"DE": {
"cert_id": "BSI-DSZ-CC-1184-2022",
"cert_item": "secunet konnektor 2.0.0, Version 5.0.5:2.0.0",
"cert_lab": "BSI",
"developer": "secunet Security Networks AG",
"match_rules": [
"(BSI-DSZ-CC-.+?) zu (.+?) der (.*)"
]
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 4
},
"ECDH": {
"ECDH": 7
},
"ECDSA": {
"ECDSA": 25
},
"ECIES": {
"ECIES": 8
}
},
"FF": {
"DH": {
"DH": 7,
"Diffie-Hellman": 3
}
},
"RSA": {
"RSAOAEP": 4
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1184-2022": 23
}
},
"cc_claims": {
"OE": {
"OE.AK": 6,
"OE.NK": 4
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0097": 1,
"BSI-CC-PP-0098-V3-2021": 3
}
},
"cc_sar": {
"ADV": {
"ADV_FSP.4": 4,
"ADV_IMP.1": 4,
"ADV_TDS.3": 4
},
"ALC": {
"ALC_CMS": 1,
"ALC_CMS.4": 1,
"ALC_FLR": 3,
"ALC_FLR.2": 4,
"ALC_TAT.1": 4
},
"AVA": {
"AVA_ACC": 6,
"AVA_VAN.3": 5
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 2,
"EAL 2+": 1,
"EAL 3": 4,
"EAL 4": 2
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM": 8,
"FCS_CKM.1": 1,
"FCS_COP": 43,
"FCS_COP.1": 2
},
"FDP": {
"FDP_DAU": 5,
"FDP_ITC": 2,
"FDP_UIT": 2
},
"FMT": {
"FMT_MTD": 2
},
"FPT": {
"FPT_TDC": 15
},
"FTP": {
"FTP_ITC": 5,
"FTP_TRP": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 1
},
"ECB": {
"ECB": 1
},
"GCM": {
"GCM": 12
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 3,
"IKEv2": 9
},
"IPsec": {
"IPsec": 9
},
"TLS": {
"TLS": {
"TLS": 42,
"TLS 1.2": 2,
"TLS v1.2": 6
}
},
"VPN": {
"VPN": 9
}
},
"crypto_scheme": {
"AEAD": {
"AEAD": 3
},
"KEX": {
"Key Exchange": 4
}
},
"device_model": {},
"ecc_curve": {
"ANSSI": {
"FRP256v1": 1
},
"Brainpool": {
"brainpoolP256r1": 1
}
},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 4
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 2
},
"SHA2": {
"SHA-256": 17,
"SHA-512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {
"STARCOS": {
"STARCOS 3": 2
}
},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 20": 2,
"AIS 32": 1
},
"FIPS": {
"FIPS 180-4": 22,
"FIPS 197": 8,
"FIPS PUB 180-4": 1,
"FIPS180-4": 1,
"FIPS186-4": 4,
"FIPS197": 1
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18045": 4
},
"NIST": {
"SP 800-38D": 5
},
"PKCS": {
"PKCS#1": 8,
"PKCS#12": 2
},
"RFC": {
"RFC 2104": 1,
"RFC 3268": 1,
"RFC 5652": 1,
"RFC 8017": 1,
"RFC-2104": 3,
"RFC-2404": 2,
"RFC-3268": 3,
"RFC-3526": 2,
"RFC-3602": 2,
"RFC-4301": 2,
"RFC-4303": 2,
"RFC-4492": 2,
"RFC-4868": 1,
"RFC-4880": 1,
"RFC-5083": 1,
"RFC-5084": 1,
"RFC-5116": 3,
"RFC-5246": 4,
"RFC-5289": 1,
"RFC-5639": 14,
"RFC-5652": 3,
"RFC-5751": 1,
"RFC-5869": 2,
"RFC-6931": 1,
"RFC-7296": 4,
"RFC-8017": 12,
"RFC-8018": 1,
"RFC2104": 1,
"RFC2404": 1,
"RFC3268": 1,
"RFC3526": 1,
"RFC3602": 1,
"RFC4055": 1,
"RFC4301": 1,
"RFC4303": 1,
"RFC4346": 1,
"RFC4868": 1,
"RFC4880": 1,
"RFC5246": 1,
"RFC5280": 1,
"RFC5289": 1,
"RFC5639": 14,
"RFC5652": 2,
"RFC5996": 1,
"RFC7027": 3,
"RFC7292": 1,
"RFC7296": 1,
"RFC8017": 1
},
"X509": {
"X.509": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 27,
"AES-": 2,
"AES-128": 2,
"AES-256": 2
}
},
"constructions": {
"MAC": {
"HMAC": 13,
"HMAC-SHA-256": 1,
"HMAC-SHA-384": 1,
"HMAC-SHA-512": 1
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-02102": 1,
"BSI TR-03116-1": 1,
"BSI TR-03154": 1,
"BSI TR-03155": 1,
"BSI TR-03157": 2
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informtionstechnik",
"/CreationDate": "D:20220822073346+02\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor\"",
"/ModDate": "D:20220822080121+02\u002700\u0027",
"/Producer": "LibreOffice 6.3",
"/Subject": "Zertifizierungsreport BSI-DSZ-CC-1184-2022",
"/Title": "Zertifizierungsreport BSI-DSZ-CC-1184-2022",
"pdf_file_size_bytes": 1261839,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.commoncriteriaportal.org/cc/",
"https://www.bsi.bund.de/",
"https://www.bsi.bund.de/zertifizierung",
"https://www.sogis.eu/",
"https://www.bsi.bund.de/zertifizierungsreporte",
"https://www.bsi.bund.de/AIS",
"https://www.commoncriteriaportal.org/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 45
},
"st_filename": "1184b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 27
},
"ECDH": {
"ECDH": 4
},
"ECDSA": {
"ECDSA": 33
},
"ECIES": {
"ECIES": 40
}
},
"FF": {
"DH": {
"Diffie-Hellman": 1
}
},
"RSA": {
"RSA 2048": 2,
"RSA-2048": 1,
"RSAOAEP": 11
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1184": 1
},
"NL": {
"CC-1163-2021": 1
}
},
"cc_claims": {
"A": {
"A.AK": 88,
"A.NK": 67
},
"O": {
"O.AK": 385,
"O.NK": 209
},
"OE": {
"OE.AK": 199,
"OE.NK": 207
},
"OSP": {
"OSP.AK": 84,
"OSP.NK": 23
},
"T": {
"T.AK": 113,
"T.NK": 131
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0097": 6,
"BSI-CC-PP-0098": 21,
"BSI-CC-PP-0098\u201c": 1,
"BSI-PP-0032": 1
}
},
"cc_sar": {
"ADV": {
"ADV_ARC.1": 3,
"ADV_FSP": 1,
"ADV_FSP.4": 6,
"ADV_IMP": 1,
"ADV_IMP.1": 6,
"ADV_TDS": 1,
"ADV_TDS.3": 6
},
"AGD": {
"AGD_OPE": 1,
"AGD_OPE.1": 13,
"AGD_PRE.1": 4
},
"ALC": {
"ALC_DEL.1": 6,
"ALC_FLR.2": 6,
"ALC_TAT.1": 6
},
"ASE": {
"ASE_TSS.1": 1
},
"AVA": {
"AVA_VAN": 1,
"AVA_VAN.3": 7,
"AVA_VAN.5": 2
}
},
"cc_security_level": {
"EAL": {
"EAL3": 8
}
},
"cc_sfr": {
"FAU": {
"FAU_GEN": 26,
"FAU_GEN.1": 12,
"FAU_GEN.2": 1,
"FAU_SAR": 6,
"FAU_SAR.1": 2,
"FAU_STG": 14,
"FAU_STG.1": 2,
"FAU_STG.3": 1,
"FAU_STG.4": 1
},
"FCS": {
"FCS_CKM": 131,
"FCS_CKM.1": 38,
"FCS_CKM.2": 8,
"FCS_CKM.4": 36,
"FCS_CMK.4": 1,
"FCS_COP": 308,
"FCS_COP.1": 35
},
"FDP": {
"FDP_ACC": 97,
"FDP_ACC.1": 43,
"FDP_ACF": 115,
"FDP_ACF.1": 72,
"FDP_ACF.1.2": 1,
"FDP_DAU": 33,
"FDP_DAU.1": 3,
"FDP_DAU.2": 9,
"FDP_DAU.2.1": 1,
"FDP_ETC": 17,
"FDP_ETC.2": 8,
"FDP_IFC": 19,
"FDP_IFC.1": 19,
"FDP_IFF": 21,
"FDP_IFF.1": 20,
"FDP_ITC": 36,
"FDP_ITC.1": 37,
"FDP_ITC.2": 54,
"FDP_RIP": 21,
"FDP_RIP.1": 2,
"FDP_SDI": 7,
"FDP_SDI.1": 1,
"FDP_SDI.2": 2,
"FDP_SOS.2": 1,
"FDP_UCT": 5,
"FDP_UCT.1": 1,
"FDP_UIT": 16,
"FDP_UIT.1": 6
},
"FIA": {
"FIA_API": 13,
"FIA_API.1": 3,
"FIA_API.1.1": 2,
"FIA_SOS": 17,
"FIA_SOS.1": 1,
"FIA_SOS.2": 3,
"FIA_UAU": 41,
"FIA_UAU.1": 4,
"FIA_UAU.5": 4,
"FIA_UID": 14,
"FIA_UID.1": 12
},
"FMT": {
"FMT_MOF": 18,
"FMT_MOF.1": 2,
"FMT_MSA": 108,
"FMT_MSA.1": 10,
"FMT_MSA.3": 28,
"FMT_MSA.4": 2,
"FMT_MTD": 44,
"FMT_MTD.1": 7,
"FMT_SMF": 29,
"FMT_SMF.1": 14,
"FMT_SMR": 10,
"FMT_SMR.1": 43,
"FMT_SMR.1.1": 1
},
"FPT": {
"FPT_EMS": 16,
"FPT_EMS.1": 9,
"FPT_EMS.1.1": 2,
"FPT_EMS.1.2": 2,
"FPT_FLS": 10,
"FPT_FLS.1": 2,
"FPT_STM": 17,
"FPT_STM.1": 4,
"FPT_TDC": 49,
"FPT_TDC.1": 17,
"FPT_TDC.1.2": 1,
"FPT_TEE": 9,
"FPT_TEE.1": 2,
"FPT_TST": 24,
"FPT_TST.1": 10
},
"FTA": {
"FTA_TAB": 14,
"FTA_TAB.1": 2
},
"FTP": {
"FTP_ITC": 136,
"FTP_ITC.1": 56,
"FTP_TRP": 15,
"FTP_TRP.1": 11
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 4
},
"GCM": {
"GCM": 11
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 22,
"IKEv2": 7
},
"IPsec": {
"IPsec": 33
},
"TLS": {
"SSL": {
"SSL": 1
},
"TLS": {
"TLS": 283,
"TLS 1.2": 3,
"TLS 1.3": 2
}
},
"VPN": {
"VPN": 60
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 3
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 4,
"brainpoolP384r1": 1
},
"NIST": {
"P-256": 2,
"P-384": 2
}
},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 7
},
"SHA2": {
"SHA-2": 8,
"SHA-256": 36,
"SHA-384": 6,
"SHA-512": 5,
"SHA256": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {
"STARCOS": {
"STARCOS 3": 2
}
},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 15
}
},
"side_channel_analysis": {
"SCA": {
"side channel": 1
}
},
"standard_id": {
"CC": {
"CCMB-2017-04-002": 1,
"CCMB-2017-04-003": 1,
"CCMB-2017-04-004": 1
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 11,
"FIPS PUB 180-4": 15,
"FIPS PUB 186-4": 2
},
"PKCS": {
"PKCS #12": 1,
"PKCS#1": 24,
"PKCS#12": 2,
"PKCS#7": 1
},
"RFC": {
"RFC 2045": 1,
"RFC 2046": 1,
"RFC 2047": 1,
"RFC 2048": 1,
"RFC 2049": 1,
"RFC 2104": 2,
"RFC 2131": 3,
"RFC 2132": 3,
"RFC 2404": 2,
"RFC 2406": 1,
"RFC 2560": 1,
"RFC 3268": 1,
"RFC 3526": 1,
"RFC 3602": 3,
"RFC 4055": 2,
"RFC 4106": 1,
"RFC 4122": 2,
"RFC 4301": 4,
"RFC 4302": 1,
"RFC 4303": 5,
"RFC 4492": 1,
"RFC 4868": 2,
"RFC 5083": 2,
"RFC 5084": 2,
"RFC 5116": 3,
"RFC 5126": 1,
"RFC 5246": 7,
"RFC 5280": 1,
"RFC 5289": 2,
"RFC 5639": 7,
"RFC 5652": 2,
"RFC 5751": 5,
"RFC 5869": 1,
"RFC 5905": 1,
"RFC 7027": 1,
"RFC 7296": 6,
"RFC 8017": 4,
"RFC 8422": 2,
"RFC 8446": 1,
"RFC-5246": 2,
"RFC-5639": 1,
"RFC-5869": 2,
"RFC-7027": 1,
"RFC2617": 1,
"RFC2818": 1,
"RFC4122": 2,
"RFC5652": 3,
"RFC7296": 1
},
"X509": {
"X.509": 32
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 81,
"AES-": 1,
"AES-128": 4,
"AES-256": 11,
"AES128": 4,
"AES256": 4
},
"E2": {
"E2": 2
},
"HPC": {
"HPC": 5
}
},
"DES": {
"DES": {
"DES": 4
}
},
"constructions": {
"MAC": {
"HMAC": 41,
"HMAC-SHA-256": 1,
"HMAC-SHA-384": 1,
"HMAC-SHA-512": 1
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03111": 2,
"BSI TR-03114": 2,
"BSI TR-03116-1": 4,
"BSI TR-03144": 8,
"BSI TR-03154": 1,
"BSI TR-03155": 1,
"BSI TR-03157": 1
}
},
"tee_name": {
"IBM": {
"SE": 1
}
},
"tls_cipher_suite": {
"TLS": {
"TLS_DHE_RSA_WITH_AES_128_CBC_SHA": 3,
"TLS_DHE_RSA_WITH_AES_256_CBC_SHA": 3,
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 3,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 2,
"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA": 3,
"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256": 3,
"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": 3,
"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA": 3,
"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384": 3,
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 2,
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384146": 1
}
},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"/Author": "R\u00f6hnelt, Andreas",
"/CreationDate": "D:20220303172336+01\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2016",
"/ModDate": "D:20220303172336+01\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2016",
"pdf_file_size_bytes": 3931481,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
"http://www.ietf.org/rfc/rfc5751.txt",
"http://tools.ietf.org/html/rfc2560",
"http://www.unicode.org/versions/Unicode6.2.0/",
"http://www.rfc-editor.org/rfc/rfc4055.txt",
"http://www.rfc-editor.org/rfc/rfc2404.txt",
"http://www.etsi.org/",
"https://www.w3.org/TR/xml/",
"http://www.ietf.org/rfc/rfc7027.txt",
"https://www.w3.org/TR/2010/REC-xpath20-20101214/",
"http://uri.etsi.org/TrstSvc/Svctype/unspecified",
"http://www.rfc-editor.org/rfc/rfc4106.txt",
"https://tools.ietf.org/html/rfc5639",
"https://www.w3.org/TR/2008/REC-xmldsig-core-20080610/",
"http://www.rfc-editor.org/rfc/rfc8017.txt",
"https://www.w3.org/TR/2007/REC-xslt20-20070123/",
"http://partners.adobe.com/public/developer/en/tiff/TIFF6.pdf",
"http://www.ietf.org/rfc/rfc7296.txt",
"http://www.rfc-editor.org/rfc/rfc3526.txt",
"https://tools.ietf.org/html/rfc4122",
"https://www.secg.org/sec1-v2.pdf",
"http://www.ietf.org/rfc/rfc2132.txt",
"http://www.ietf.org/rfc/rfc5652.txt",
"http://www.ietf.org/rfc/rfc4303.txt",
"http://www.rfc-editor.org/rfc/rfc3602.txt",
"http://www.ietf.org/rfc/rfc2406.txt",
"http://www.gematik.de/",
"http://www.rfc-editor.org/rfc/rfc4868.txt",
"http://www.ietf.org/rfc/rfc5905.txt",
"http://www.ietf.org/rfc/rfc5280.txt",
"http://www.ietf.org/rfc/rfc2131.txt",
"http://www.ietf.org/rfc/rfc8017.txt",
"https://www.w3.org/TR/2013/REC-xmlenc-core1-20130411/",
"http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256",
"https://tools.ietf.org/html/rfc5116"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 425
}
},
"protection_profiles": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"pp_eal": null,
"pp_ids": null,
"pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0098V3b_pdf.pdf",
"pp_name": "BSI-CC-PP-0098-V3-2021 - Schutzprofil 2: Anforderungen an den Konnektor"
}
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1184a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"AVA_VAN.3",
"EAL3+",
"ADV_FSP.4",
"ADV_TDS.3",
"ADV_IMP.1",
"ALC_TAT.1",
"ALC_FLR.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1184b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "f7d8c6e5dee866115469f1e51743fd51c0116ef60d74ee3a0c9be002e1981387",
"txt_hash": "f2cdf7b3154fe222e23e85019495afa662b119e828126b9e5c7e6dc3db9d4d80"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "49077a2c04e20fae57b426f8c574783a33772158f596a585ad7a187188e65770",
"txt_hash": "f2fc7675b43bc6ad1b92bbe956606bda8a7dec8a95edaf14b49711c4ccc39cf9"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "16f97538dd9c70e247a6e527db4959db798de1f75763a51c61e04e4c722f85aa",
"txt_hash": "0d55aa2b97bdc352e875546a46d0a3641d5fdf5e0dfb01e4485aa734843ba385"
}
},
"status": "active"
}