Version 202 1-01 ® TÜV, TUEV and TUV are ® TÜV, TUEV and TUV are registered trademarks. Any use or application requires prior approval. Certificate Standard Common Criteria for Information Technology Security Evaluation (CC), Version 3.1 Revision 5 Parts 1, 2 & 3 (ISO/IEC 15408-1, ISO/IEC 15408-2 & ISO/IEC 15408-3) Certificate number CC-22-0322914/2 TÜV Rheinland Nederland B.V. certifies: Certificate holder and developer STMicroelectronics Lambroekstraat, 5 Building B, 1831 Diegem, Belgium Product and assurance level NesLib 6.7.4 on ST33K1M5C and ST33K1M5T B01 Assurance Package:  EAL5 augmented with AVA_VAN.5, ALC_DVS.2 and ALC_FLR.1 Protection Profile Conformance:  Security IC Platform Protection Profile with Augmentation Packages, BSI-CC-PP-0084-2014, Version 1.0, 13 January 2013. Project number 0322914_2 Evaluation facility Common Criteria Recognition Arrangement for components up to EAL2 and ALC_FLR.3 SOGIS Mutual Recognition Agreement for components up to EAL7 and ALC_FLR.3 SGS Brightsight BV located in Delft, the Netherlands Applying the Common Methodology for Information Technology Security Evaluation (CEM), Version 3.1 Revision 5 (ISO/IEC 18045) The IT product identified in this certificate has been evaluated at an accredited and licensed/approved evaluation facility using the Common Methodology for IT Security Evaluation version 3.1 Revision 5 for conformance to the Common Criteria for IT Security Evaluation version 3.1 Revision 5. This certificate applies only to the specific version and release of the product in its evaluated configuration and in conjunction with the complete certification report. The evaluation has been conducted in accordance with the provisions of the Netherlands scheme for certification in the area of IT security [NSCIB] and the conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by TÜV Rheinland Nederland B.V. or by other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by TÜV Rheinland Nederland B.V. or by any other organisation that recognises or gives effect to this certificate, is either expressed or implied. Validity Date of 1st issue : 19-06-2022 Date of 2nd issue : 24-11-2022 Certificate expiry : 24-11-2027 Accredited by the Dutch Council for Accreditation R.L. Kruit, LFM Systems TÜV Rheinland Nederland B.V. Westervoortsedijk 73, 6827 AV Arnhem P.O. Box 2220, NL-6802 CE Arnhem The Netherlands