CCRArecognition for components
up to EAL 2 and ALC_FLR only
centro criptolégico nacional
CERTIFICATE
CCN-CC-27/2022
Entrust SAM,version 1.0.3
Type of product QSCD/SSCD
Conformanceof functionality PP Conformancefunctionality
Protection Profile Conformance Trustworthy Systems Supporting ServerSigning Part 2:
Protection Profile for QSCD for Server Signing Protection Profile,
version 0.16, May 11, 2018, European Committee for
Standardization (CEN) TC 224
Evaluation Facility DEKRA Testing and Certification S.A.U.
Certification Report CCN-CC/2020-03/INF-3845
Expiration Date See Certification Report
Pursuantto the authority vested in me underAct 11/2002 regulating the National Intelligence Centre,
and underArticle 1 and Article 2.2.c of Royal Decree 421/2004 of March 12th regulating the National
Cryptologic Centre, | hereby:
Certify that the security of Entrust SAM, version 1.0.3, requested by Entrust EU, S.L., Parque Empresarial
La Finca, Paseo del Club Deportivo 1, Bloque 3, Bajo, 28223, Pozuelo de Alarcon (Madrid), Spain, has
been evaluated using Common Methodology for Information Technology Security Evaluation/Common
Criteria for Information Technology Security Evaluation version 3.1 release 5, and it has met the
requirements of its Security Target identified as “Security Target — Entrust Signature Activation Module
version 2.1”, for evaluation assurance level EAL4 + ALC_FLR.2 + AVA_VAN.5.
Madrid, 17 tune 2022
Esperanza |earl Llamazares
This certificate, its scope and validity are subject to the terms, conditions and requirements specified in the
“Reglamento de Evaluaciony Certificacién de la Seguridad de las T.I.C.” at PRE/2740/2007, September19th.
ENAC
CERTIFICACIÓN
150 17065
The above-mentioned Security Target and Certification Report are available atthe National Cryptologic Centre.
This certificate will come into effect the following day that the associated certificate resolution signed by
the Secretary of State Director of CCN is published in the Official State Gazette (B.O.E —
https://www.boe.es).
The IT product identified in this certificate has been evaluated at an accredited and licensed/approved
evaluation facility using the Common Methodology for Information Technology Security
Evaluation/CommonCriteria for Information Technology Security Evaluation version 3.1 release 5 and
CC Supporting Documentsaslisted in the Certification Report. This certificate applies only to the specific
version and release of the productin its evaluated configuration and in conjunction with the complete
Certification Report. The evaluation has been conducted in accordance with the provisions of the
Spanish IT Security Evaluation and Certification Scheme, PRE/2740/2007 Septemberthe 19th, and the
conclusionsof the evaluationfacility in the evaluation technical report are consistent with the evidence
adduced. This certificate is not an endorsementof the IT product by the Spanish Schemeorby any other
organisation that recognisesor gives effect to this certificate, and no warranty of the IT product by the
Spanish Schemeor by any other organisation that recognises or gives effect to this certificate, is either
expressed or implied.