CCRArecognition for components
up to EAL 2 and ALC_FLR only
@ @
centro criptoldgico nacional
CERTIFICATE
CCN-CC-56/2025
MK Lotus GovID IMDa in EAC with PACE configuration v4.6.8.8
Type of product Tarjetas inteligentes y dispositivos similares
Conformanceof functionality PP Conformancefunctionality
Protection Profile Conformance Common Criteria Protection Profile Machine Readable Travel
Documentusing Standard Inspection Procedure with PACE (PACE PP),
BSI-CC-PP-0068-V2-2011-MA-01 (Version 1.01, 22th July 2014)
CommonCriteria Protection Profile Machine Readable Travel
Documentwith ,,ICAO Application”, Extended Access Control with
PACE (EAC PP), BSI-CC-PP-0056-V2-2012 (Version 1.3.2, O5th
December 2012)
Evaluation Facility Applus Laboratories
Certification Report CCN-CC/2023-40/INF-4733
Expiration Date See Certification Report
Pursuant to the authority vested in me under Act 11/2002 regulating the NationalIntelligence
Centre, and under Article 1 and Article 2.2.c of Royal Decree 421/2004 of March 12th
regulating the National Cryptologic Centre, | hereby:
Certify that the security of MK Lotus GovID IMDa in EAC with PACE configuration v4.6.8.8,
requested by MK Smart Joint Stock Company, Lot 40, Quang Minh, Industrial Zone, Me Linh,
Hanoi 100000, Vietnam, has been evaluated using Common Methodology for Information
Technology Security Evaluation/Common Criteria for Information Technology Security
Evaluation version 3.1 release 5, and it has met the requirementsof its Security Target identified
as “Security Target Description — MK Lotus GovID IMDa 4.6.8.8 — Extended Access Control with
PACE, version 1.14 (12 December 2025)”, for evaluation assurance level EAL5+
(ALC_DVS.2,AVA_VAN.5).
Madrid, 23 December 2025
Secretar irector
Esperanza Casteleiro
Llamazares
This certificate, its scope and validity are subject to the terms, conditions and requirements specified in the
“Reglamento de Evaluación y Certificación de la Seguridad de las T.1.C.” at PRE/2740/2007, September 19th.
ENAC
CENTIFICACIÓN
190 17065
1048/CPRNO
The above-mentioned Security Target and Certification Report are available at the National Cryptologic Centre.
This certificate will come into effect the following day that the associated certificate resolution
signed by the Secretary of State Director of CCN is published in the Official State Gazette (B.O.E
— https://www.boe.es).
The IT product identified in this certificate has been evaluated at an accredited and
licensed/approved evaluation facility using the Common Methodology for Information
Technology Security Evaluation/Common Criteria for Information Technology Security
Evaluation version 3.1 release 5 and CC Supporting Documentsas listed in the Certification
Report. This certificate applies only to the specific version and release of the productin its
evaluated configuration and in conjunction with the complete Certification Report. The
evaluation has been conducted in accordance with the provisions of the Spanish IT Security
Evaluation and Certification Scheme, PRE/2740/2007 September the 19th, and the conclusions
of the evaluation facility in the evaluation technical report are consistent with the evidence
adduced. This certificate is not an endorsement of the IT product by the Spanish Schemeorby
any otherorganisation that recognisesorgives effect to this certificate, and no warranty of the
IT product by the Spanish Schemeorby anyotherorganisation that recognisesorgives effect to
this certificate, is either expressed or implied.