® TÜV, TUEV and TUV are registered trademarks. Any use or application requires prior approval. Certificate Standard Certificate number Certificate holder and developer Product and assurance level Project number Evaluation facility OH ® ‘Common Criteria Recognition ‘Arrangement for components up to EAL2 SOGIS Mutual Recognition ‘Agreement for components up to BAL? Validity a PRODUCTS RvACO/8 Accredited by the Dutch Council for Accreditation www.tuv.com/nl Common Criteria for Information Technology Security Evaluation (CC), Version 3.1 Revision 4 (ISO/IEC 15408) CC-17-37322 TÜV Rheinland Nederland B.V. certifies: NXP Semiconductors Germany GmbH, Business Unit Security and Connectivity Stresemannallee 101, D-22529 Hamburg, Germany Crypto Library V1.0 on P60D024/016/012yVB(Y/Z/A)/yVF Assurance Package: = EAL6 augmented with ALC_FLR.1 and ASE_TSS.2 Protection Profile Conformance: = Security IC Platform Protection Profile, Version 1.0, 15.06.2007; published under the reference BSI-PP-0035 NSCIB-CC-37322 Brightsight BV located in Delft, the Netherlands Applying the Common Methodology for Information Technology Security Evaluation (CEM), Version 3.1 Revision 4 (ISO/IEC 18045) The IT product identified in this certificate has been evaluated at an accredited and licensed/approved evaluation facility using the Common Methodology for IT Security Evaluation version 3.1 Revision 4 for conformance to the Common Criteria for IT Security Evaluation version 3.1 Revision 4. This certificate applies only to the specific version and release of the product in its evaluated configuration and in conjunction with the complete certification report. The evaluation has been conducted in accordance with the provisions of the Netherlands scheme for certification in the area of IT security [NSCIB] and the conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by TUV Rheinland Nederland B V. or by other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by TÜV Rheinland Nederland B.V. or by any other organisation that recognises or gives effect to this certificate, is either expressed or implied Date of 1tissue: 13-11-2013 Date of 1* re-issue: 06-10-2016 Date of 2" re-issue: 12-06-2017 Certificate expiry: 13-11-2018 The Netherlands TUVRheinland® Precisely Right.