Insurance Security Token Server (ISTS), Version 2.0.9
CSV information ?
Status | active |
---|---|
Valid from | 02.02.2021 |
Valid until | 01.02.2026 |
Scheme | 🇩🇪 DE |
Manufacturer | GDV Dienstleistungs-GmbH |
Category | Network and Network-Related Devices and Systems |
Security level | EAL2 |
Heuristics summary ?
Certificate ?
Extracted keywords
Security level
EAL 2Certificates
BSI-DSZ-CC-1150-2021Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
Title | Zertifizierungsreport BSI-DSZ-CC-1150-2021 |
---|---|
Subject | Insurance Security Token Server (ISTS), Version 2.0.9 |
Keywords | "Common Criteria, Certification, Zertifizierung, Serveranwendung, ISTS" |
Author | Bundesamt für Sicherheit in der Informationstechnik |
Creation date | D:20210205065853+01'00' |
Modification date | D:20210302091356+01'00' |
Pages | 1 |
Creator | Writer |
Producer | LibreOffice 6.3 |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES256Hash functions
SHA-256, SHA256Protocols
SSL, TLSLibraries
OpenSSLSecurity level
EAL 2, EAL 1, EAL 4Claims
OE.ENVIRONMENT, OE.NOEVIL, OE.PHYSEC, OE.PUBLIC, OE.PKISecurity Assurance Requirements (SAR)
ADV_FSP, AGD_OPE, AGD_PRE, ALC_FLRCertificates
BSI-DSZ-CC-1150-2021, BSI-DSZ-CC-1038-2017Evaluation facilities
TÜV Informationstechnik, TÜViTStandards
AIS 14, AIS 19, AIS 32, AIS 41, AIS 45, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, X.509Technical reports
BSI 7148File metadata
Title | Zertifizierungsreport BSI-DSZ-CC-1150-2021 |
---|---|
Subject | Insurance Security Token Server (ISTS), Version 2.0.9 |
Keywords | "Common Criteria, Certification, Zertifizierung, Serveranwendung, ISTS" |
Author | Bundesamt für Sicherheit in der Informationstechnik |
Creation date | D:20210205065853+01'00' |
Modification date | D:20210218090032+01'00' |
Pages | 31 |
Creator | Writer |
Producer | LibreOffice 6.3 |
Frontpage
Certificate ID | BSI-DSZ-CC-1150-2021 |
---|---|
Certified item | Insurance Security Token Server (ISTS), Version 2.0.9 |
Certification lab | BSI |
Developer | GDV Dienstleistungs-GmbH |
References
Outgoing- BSI-DSZ-CC-1038-2017 - archived - Insurance Security Token Server (ISTS), Version 2.0.5
Security target ?
Extracted keywords
Symmetric Algorithms
AES, DES, HMACHash functions
SHA-256, SHA256, SHA512, SHA-512Protocols
SSL, TLSTLS cipher suites
TLS_RSA_WITH_AES_256_CBC_SHASecurity level
EAL2, EAL 2Claims
O.ACCOUNT, O.AUDREC, O.STS, T.UNDETECTED, A.ENVIRONMENT, A.NOEVIL, A.PHYSEC, A.PUBLIC, A.PKI, OE.ENVIRONMENT, OE.NOEVIL, OE.PHYSEC, OE.PUBLIC, OE.PKISecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.2, ADV_TDS.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.2, ALC_CMS.2, ALC_DEL.1, ATE_COV.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.2, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_GEN, FAU_GEN.1, FAU_GEN.2, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FIA_UAU.1, FIA_UAU.5, FIA_UID.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UID.1.1, FIA_UID.1.2, FMT_SMF.1, FMT_SMF.1.1, FPT_STM.1Evaluation facilities
TÜV Informationstechnik, tuvit, TÜViTStandards
FIPS PUB 180-4, FIPS PUB 197, PKCS#1, RFC 6238, RFC6931, RFC3268, RFC 3268, RFC6234, RFC 6234, RFC6238, RFC 6931, X.509, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003File metadata
Creation date | D:20200727143427+02'00' |
---|---|
Modification date | D:20200727143427+02'00' |
Pages | 53 |
Creator | Microsoft® Word 2016 |
Producer | Microsoft® Word 2016 |
Heuristics ?
Extracted SARs
ADV_TDS.1, ATE_IND.2, ATE_COV.1, ADV_FSP.2, ASE_SPD.1, ASE_TSS.1, ADV_ARC.1, ASE_ECD.1, AVA_VAN.2, ALC_CMC.2, ALC_DEL.1, ATE_FUN.1, AGD_OPE.1, ASE_REQ.2, AGD_PRE.1, ASE_OBJ.2, ASE_INT.1, ASE_CCL.1, ALC_CMS.2Similar certificates
Name | Certificate ID | |
---|---|---|
Insurance Security Token Server (ISTS), Version 2.0.5 | BSI-DSZ-CC-1038-2017 | Compare |
NCR E10 New Generation FCR 2.0 (FCR Application Version 2.0, OpenSSL Version 1.0.2d Secure-IC firmware and hardware crypto library Version 0.0.6) | 21.0.03/TSE-CCCS-48 | Compare |
Scheme data ?
Cert Id | BSI-DSZ-CC-1150-2021 | |
---|---|---|
Product | Insurance Security Token Server (ISTS), Version 2.0.9 | |
Vendor | GDV Dienstleistungs-GmbH | |
Certification Date | 02.02.2021 | |
Category | Server applications | |
Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1150.html | |
Enhanced | ||
Product | Insurance Security Token Server (ISTS), Version 2.0.9 | |
Applicant | GDV Dienstleistungs-GmbH Glockengießerwall 1 20095 Hamburg | |
Evaluation Facility | TÜV Informationstechnik GmbH | |
Assurance Level | EAL2 | |
Certification Date | 02.02.2021 | |
Expiration Date | 01.02.2026 | |
Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150a_pdf.pdf?__blob=publicationFile&v=1 | |
Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150b_pdf.pdf?__blob=publicationFile&v=1 | |
Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150c_pdf.pdf?__blob=publicationFile&v=1 | |
Description | The Target of Evaluation (TOE) is a Security Token Service (STS). It has been implemented as a pure software application and due to the field of operation in the context of insurance it is further referenced as Insurance Security Token Service (ISTS). The software application provides software based security tokens used for authentication purposes of the Trusted German Insurance Cloud (TGIC) web services. In addition, the TOE provides the possibility to validate and to cancel the issued tokens. Further the security features of the TOE comprise the functionality Security Audit, Identification and Authentication whereas some authentication mechanisms are provided by the operational environment and finally Security Management. | |
Subcategory | Other server applications |
References ?
Updates ?
-
22.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'ffd9e673b9e0f80b210884cb42b9aa90720f492244a9169917b3e5e35844774a', 'txt_hash': '4401f640300ec41a659fabc352c18ed8152315a43280321f719b09f9e565b024'}
data. - The cert property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '8bfa8bb88e72a2d3747955d654280479308d69da00a2ec775ac612f6280d3f31', 'txt_hash': 'c703e66a0dc0d04a244bc1c38f3999b7fcc7a3bbaca5020ac0cfd81fada6fe77'}
data.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 1168252, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 53, '/Producer': 'Microsoft® Word 2016', '/Creator': 'Microsoft® Word 2016', '/CreationDate': "D:20200727143427+02'00'", '/ModDate': "D:20200727143427+02'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://gdv-dl.de/', 'http://www.w3.org/2001/04/xmldsig-more%20-%20rsa-sha256', 'http://www.w3.org/2001/04/xmlenc#aes256-cbc', 'http://www.w3.org/2001/04/xmlenc#rsa-1_5', 'https://www.tuvit.de/']}}
. - The cert_metadata property was set to
{'pdf_file_size_bytes': 255156, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20210205065853+01'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, Serveranwendung, ISTS"', '/ModDate': "D:20210302091356+01'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'Insurance Security Token Server (ISTS), Version 2.0.9', '/Title': 'Zertifizierungsreport BSI-DSZ-CC-1150-2021', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}
. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL2': 6, 'EAL 2': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 1, 'ADV_FSP.2': 1, 'ADV_TDS.1': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_CMC.2': 1, 'ALC_CMS.2': 1, 'ALC_DEL.1': 1}, 'ATE': {'ATE_COV.1': 1, 'ATE_FUN.1': 1, 'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.2': 2}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 1, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN': 3, 'FAU_GEN.1': 11, 'FAU_GEN.2': 9, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2.1': 1}, 'FIA': {'FIA_UAU.1': 13, 'FIA_UAU.5': 10, 'FIA_UID.1': 11, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1, 'FIA_UAU.5.1': 1, 'FIA_UAU.5.2': 1, 'FIA_UID.1.1': 1, 'FIA_UID.1.2': 1}, 'FMT': {'FMT_SMF.1': 8, 'FMT_SMF.1.1': 1}, 'FPT': {'FPT_STM.1': 2}}, 'cc_claims': {'O': {'O.ACCOUNT': 6, 'O.AUDREC': 4, 'O.STS': 5}, 'T': {'T.UNDETECTED': 3}, 'A': {'A.ENVIRONMENT': 3, 'A.NOEVIL': 3, 'A.PHYSEC': 3, 'A.PUBLIC': 3, 'A.PKI': 3}, 'OE': {'OE.ENVIRONMENT': 3, 'OE.NOEVIL': 2, 'OE.PHYSEC': 3, 'OE.PUBLIC': 2, 'OE.PKI': 3}}, 'vendor': {}, 'eval_facility': {'TUV': {'TÜV Informationstechnik': 3, 'tuvit': 1, 'TÜViT': 1}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 3}}, 'DES': {'DES': {'DES': 1}}, 'constructions': {'MAC': {'HMAC': 2}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-256': 4, 'SHA256': 1, 'SHA512': 1, 'SHA-512': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}, 'TLS': {'TLS': 2}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_RSA_WITH_AES_256_CBC_SHA': 1}}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 180-4': 1, 'FIPS PUB 197': 1}, 'PKCS': {'PKCS#1': 4}, 'RFC': {'RFC 6238': 2, 'RFC6931': 3, 'RFC3268': 2, 'RFC 3268': 1, 'RFC6234': 1, 'RFC 6234': 1, 'RFC6238': 1, 'RFC 6931': 1}, 'X509': {'X.509': 12}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The cert_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1150-2021': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 2': 1}}, 'cc_sar': {}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The st_filename property was set to
1150b_pdf.pdf
. - The cert_filename property was set to
1150c_pdf.pdf
.
The computed heuristics were updated.
- The report_references property was updated, with the
{'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1038-2017']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0943-2015', 'BSI-DSZ-CC-1038-2017']}}
data. - The extracted_sars property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 2}]}
.
- The st property was updated, with the
-
19.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'cfd2da236516c741ab0b47fba51509e7571ee9a57bc3d8e268f900fc2aab5119', 'txt_hash': '19f3ae480fcdf5b8a6ec4adf5143c1783ed20599d11dcd16213e994b43048da4'}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 473718, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 31, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20210205065853+01'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, Serveranwendung, ISTS"', '/ModDate': "D:20210218090032+01'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'Insurance Security Token Server (ISTS), Version 2.0.9', '/Title': 'Zertifizierungsreport BSI-DSZ-CC-1150-2021', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/AIS', 'https://www.bsi.bund.de/zertifizierungsreporte', 'https://www.sogis.eu/', 'https://www.ibm.com/support/knowledgecenter/SS9H2Y_10.0/com.ibm.dp.doc/introduction.html', 'https://www.bsi.bund.de/zertifizierung', 'https://www.commoncriteriaportal.org/cc/']}}
. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)'], 'cert_id': 'BSI-DSZ-CC-1150-2021', 'cert_item': 'Insurance Security Token Server (ISTS), Version 2.0.9', 'developer': 'GDV Dienstleistungs-GmbH', 'cert_lab': 'BSI'}}
. - The report_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1150-2021': 15, 'BSI-DSZ-CC-1038-2017': 2}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 2': 5, 'EAL 1': 1, 'EAL 4': 1}}, 'cc_sar': {'ADV': {'ADV_FSP': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_FLR': 1}}, 'cc_sfr': {}, 'cc_claims': {'OE': {'OE.ENVIRONMENT': 1, 'OE.NOEVIL': 1, 'OE.PHYSEC': 1, 'OE.PUBLIC': 1, 'OE.PKI': 1}}, 'vendor': {}, 'eval_facility': {'TUV': {'TÜV Informationstechnik': 3, 'TÜViT': 2}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES256': 1}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-256': 2, 'SHA256': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}, 'TLS': {'TLS': 1}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'BSI': {'AIS 14': 1, 'AIS 19': 1, 'AIS 32': 1, 'AIS 41': 1, 'AIS 45': 1}, 'ISO': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}, 'X509': {'X.509': 4}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The report_filename property was set to
1150a_pdf.pdf
.
The computed heuristics were updated.
- The cert_lab property was set to
['BSI']
. - The cert_id property was set to
BSI-DSZ-CC-1150-2021
.
- The report property was updated, with the
-
17.08.2024 The certificate data changed.
Certificate changed
The report_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150a_pdf.pdf
.
The st_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150b_pdf.pdf
.
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data. - The st property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
None
. - The st_metadata property was set to
None
. - The report_frontpage property was set to
None
. - The report_keywords property was set to
None
. - The st_keywords property was set to
None
. - The report_filename property was set to
None
. - The st_filename property was set to
None
.
The computed heuristics were updated.
- The cert_lab property was set to
None
. - The cert_id property was set to
None
. - The report_references property was updated, with the
{'directly_referencing': None, 'indirectly_referencing': None}
data. - The extracted_sars property was set to
None
.
- The new value is
-
12.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The cert property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data.
The PDF extraction data was updated.
- The cert_metadata property was set to
None
. - The cert_keywords property was set to
None
. - The cert_filename property was set to
None
.
- The cert property was updated, with the
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name Insurance Security Token Server (ISTS), Version 2.0.9 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Network and Network-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150c_pdf.pdf",
"dgst": "3a0c756666671c71",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1150-2021",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"2.0.9"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1038-2017"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1038-2017",
"BSI-DSZ-CC-0943-2015"
]
}
},
"scheme_data": {
"category": "Server applications",
"cert_id": "BSI-DSZ-CC-1150-2021",
"certification_date": "02.02.2021",
"enhanced": {
"applicant": "GDV Dienstleistungs-GmbH\nGlockengie\u00dferwall 1\n20095 Hamburg",
"assurance_level": "EAL2",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150c_pdf.pdf?__blob=publicationFile\u0026v=1",
"certification_date": "02.02.2021",
"description": "The Target of Evaluation (TOE) is a Security Token Service (STS). It has been implemented as a pure software application and due to the field of operation in the context of insurance it is further referenced as Insurance Security Token Service (ISTS).\nThe software application provides software based security tokens used for authentication purposes of the Trusted German Insurance Cloud (TGIC) web services. In addition, the TOE provides the possibility to validate and to cancel the issued tokens. Further the security features of the TOE comprise the functionality Security Audit, Identification and Authentication whereas some authentication mechanisms are provided by the operational environment and finally Security Management.",
"evaluation_facility": "T\u00dcV Informationstechnik GmbH",
"expiration_date": "01.02.2026",
"product": "Insurance Security Token Server (ISTS), Version 2.0.9",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150a_pdf.pdf?__blob=publicationFile\u0026v=1",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150b_pdf.pdf?__blob=publicationFile\u0026v=1"
},
"product": "Insurance Security Token Server (ISTS), Version 2.0.9",
"subcategory": "Other server applications",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1150.html",
"vendor": "GDV Dienstleistungs-GmbH"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "GDV Dienstleistungs-GmbH",
"manufacturer_web": "https://www.gdv-dl.de",
"name": "Insurance Security Token Server (ISTS), Version 2.0.9",
"not_valid_after": "2026-02-01",
"not_valid_before": "2021-02-02",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1150c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1150-2021": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {},
"cc_security_level": {
"EAL": {
"EAL 2": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20210205065853+01\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Serveranwendung, ISTS\"",
"/ModDate": "D:20210302091356+01\u002700\u0027",
"/Producer": "LibreOffice 6.3",
"/Subject": "Insurance Security Token Server (ISTS), Version 2.0.9",
"/Title": "Zertifizierungsreport BSI-DSZ-CC-1150-2021",
"pdf_file_size_bytes": 255156,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1150a_pdf.pdf",
"report_frontpage": {
"DE": {
"cert_id": "BSI-DSZ-CC-1150-2021",
"cert_item": "Insurance Security Token Server (ISTS), Version 2.0.9",
"cert_lab": "BSI",
"developer": "GDV Dienstleistungs-GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) zu (.+?) der (.*)"
]
}
},
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1038-2017": 2,
"BSI-DSZ-CC-1150-2021": 15
}
},
"cc_claims": {
"OE": {
"OE.ENVIRONMENT": 1,
"OE.NOEVIL": 1,
"OE.PHYSEC": 1,
"OE.PKI": 1,
"OE.PUBLIC": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_FSP": 1
},
"AGD": {
"AGD_OPE": 1,
"AGD_PRE": 1
},
"ALC": {
"ALC_FLR": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 5,
"EAL 4": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 1
}
},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 1
},
"TLS": {
"TLS": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"TUV": {
"T\u00dcV Informationstechnik": 3,
"T\u00dcViT": 2
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 2,
"SHA256": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 14": 1,
"AIS 19": 1,
"AIS 32": 1,
"AIS 41": 1,
"AIS 45": 1
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18045": 4
},
"X509": {
"X.509": 4
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES256": 1
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20210205065853+01\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Serveranwendung, ISTS\"",
"/ModDate": "D:20210218090032+01\u002700\u0027",
"/Producer": "LibreOffice 6.3",
"/Subject": "Insurance Security Token Server (ISTS), Version 2.0.9",
"/Title": "Zertifizierungsreport BSI-DSZ-CC-1150-2021",
"pdf_file_size_bytes": 473718,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.bsi.bund.de/AIS",
"https://www.commoncriteriaportal.org/cc/",
"https://www.bsi.bund.de/zertifizierungsreporte",
"https://www.sogis.eu/",
"https://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/zertifizierung",
"https://www.ibm.com/support/knowledgecenter/SS9H2Y_10.0/com.ibm.dp.doc/introduction.html"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 31
},
"st_filename": "1150b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {
"A": {
"A.ENVIRONMENT": 3,
"A.NOEVIL": 3,
"A.PHYSEC": 3,
"A.PKI": 3,
"A.PUBLIC": 3
},
"O": {
"O.ACCOUNT": 6,
"O.AUDREC": 4,
"O.STS": 5
},
"OE": {
"OE.ENVIRONMENT": 3,
"OE.NOEVIL": 2,
"OE.PHYSEC": 3,
"OE.PKI": 3,
"OE.PUBLIC": 2
},
"T": {
"T.UNDETECTED": 3
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_ARC.1": 1,
"ADV_FSP.2": 1,
"ADV_TDS.1": 1
},
"AGD": {
"AGD_OPE.1": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMC.2": 1,
"ALC_CMS.2": 1,
"ALC_DEL.1": 1
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.2": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_COV.1": 1,
"ATE_FUN.1": 1,
"ATE_IND.2": 1
},
"AVA": {
"AVA_VAN.2": 2
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL2": 6
}
},
"cc_sfr": {
"FAU": {
"FAU_GEN": 3,
"FAU_GEN.1": 11,
"FAU_GEN.1.1": 1,
"FAU_GEN.1.2": 1,
"FAU_GEN.2": 9,
"FAU_GEN.2.1": 1
},
"FIA": {
"FIA_UAU.1": 13,
"FIA_UAU.1.1": 1,
"FIA_UAU.1.2": 1,
"FIA_UAU.5": 10,
"FIA_UAU.5.1": 1,
"FIA_UAU.5.2": 1,
"FIA_UID.1": 11,
"FIA_UID.1.1": 1,
"FIA_UID.1.2": 1
},
"FMT": {
"FMT_SMF.1": 8,
"FMT_SMF.1.1": 1
},
"FPT": {
"FPT_STM.1": 2
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 1
},
"TLS": {
"TLS": 2
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"TUV": {
"T\u00dcV Informationstechnik": 3,
"T\u00dcViT": 1,
"tuvit": 1
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 4,
"SHA-512": 1,
"SHA256": 1,
"SHA512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"CC": {
"CCMB-2017-04-001": 1,
"CCMB-2017-04-002": 1,
"CCMB-2017-04-003": 1
},
"FIPS": {
"FIPS PUB 180-4": 1,
"FIPS PUB 197": 1
},
"PKCS": {
"PKCS#1": 4
},
"RFC": {
"RFC 3268": 1,
"RFC 6234": 1,
"RFC 6238": 2,
"RFC 6931": 1,
"RFC3268": 2,
"RFC6234": 1,
"RFC6238": 1,
"RFC6931": 3
},
"X509": {
"X.509": 12
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 3
}
},
"DES": {
"DES": {
"DES": 1
}
},
"constructions": {
"MAC": {
"HMAC": 2
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_RSA_WITH_AES_256_CBC_SHA": 1
}
},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"/CreationDate": "D:20200727143427+02\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2016",
"/ModDate": "D:20200727143427+02\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2016",
"pdf_file_size_bytes": 1168252,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.tuvit.de/",
"http://www.w3.org/2001/04/xmldsig-more%20-%20rsa-sha256",
"http://www.w3.org/2001/04/xmlenc#aes256-cbc",
"http://www.w3.org/2001/04/xmlenc#rsa-1_5",
"http://gdv-dl.de/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 53
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL2"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "8bfa8bb88e72a2d3747955d654280479308d69da00a2ec775ac612f6280d3f31",
"txt_hash": "c703e66a0dc0d04a244bc1c38f3999b7fcc7a3bbaca5020ac0cfd81fada6fe77"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "cfd2da236516c741ab0b47fba51509e7571ee9a57bc3d8e268f900fc2aab5119",
"txt_hash": "19f3ae480fcdf5b8a6ec4adf5143c1783ed20599d11dcd16213e994b43048da4"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "ffd9e673b9e0f80b210884cb42b9aa90720f492244a9169917b3e5e35844774a",
"txt_hash": "4401f640300ec41a659fabc352c18ed8152315a43280321f719b09f9e565b024"
}
},
"status": "active"
}