Entrust nShield Solo XC Hardware Security Module v12.60.15

CSV information ?

Status active
Valid from 17.03.2021
Valid until 17.03.2026
Scheme 🇳🇱 NL
Manufacturer Entrust, Inc.
Category Products for Digital Signatures
Security level AVA_VAN.5, ALC_FLR.2, EAL4+
Maintenance updates Assurance Continuity Maintenance Report (22.07.2021) Certification report Security target

Heuristics summary ?

Certificate ID: NSCIB-CC-0368256-CR

Certificate ?

Extracted keywords

Security level
EAL2, EAL7, EAL4, EAL4 augmented
Claims
R.L
Security Assurance Requirements (SAR)
ALC_FLR.3, ALC_FLR.2, AVA_VAN.5
Protection profiles
ANSSI-CC-PP-2016/05-M01
Certificates
ANSSI-CC-PP-2016/05-M01, CC-21-0368256
Evaluation facilities
Brightsight

Standards
ISO/IEC 15408-2, ISO/IEC 15408-3, ISO/IEC 18045

File metadata

Title C458-M&S21061411400
Creation date D:20210614114037+01'00'
Modification date D:20210614123528+02'00'
Pages 1
Creator C458-M
Producer KONICA MINOLTA bizhub C458

Certification report ?

Extracted keywords

Symmetric Algorithms
AES
Asymmetric Algorithms
ECDSA, ECC
Randomness
TRNG, RNG
Libraries
OpenSSL

Security level
EAL4, EAL4+, EAL 4, EAL4 augmented, EAL 4 augmented
Security Assurance Requirements (SAR)
ALC_FLR.2, ATE_IND.2, AVA_VAN.5
Security Functional Requirements (SFR)
FAU_GEN, FCS_COP, FTP_TRP
Protection profiles
ANSSI-CC-PP-2016/05-M01
Certificates
ANSSI-CC-PP-2016/05-M01, NSCIB-CC-0368256-CR
Evaluation facilities
Brightsight

Side-channel analysis
physical tampering, JIL, JIL-AAPHD, JIL-AMHD

Standards
ISO/IEC 19790:2012

File metadata

Title Certification Report
Author Denise Cater
Creation date D:20210604161002+01'00'
Modification date D:20210614122611+02'00'
Pages 12
Creator Microsoft® Word 2010
Producer Microsoft® Word 2010

Frontpage

Certificate ID NSCIB-CC-0368256-CR
Certified item nShield Solo XC Hardware Security Module v12.60.15
Certification lab Brightsight B.V
Developer nCipher Security Limited (an Entrust company

Security target ?

Extracted keywords

Symmetric Algorithms
AES, Triple-DES, TDEA, HMAC, HMAC-SHA-224, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512, CMAC, CBC-MAC
Asymmetric Algorithms
ECDH, ECDSA, Diffie-Hellman, DH, DSA
Hash functions
SHA-1, SHA-224, SHA-384, SHA-512
Randomness
DRBG, RNG
Elliptic Curves
P-192, P-224, P-256, P-384, P-521, NIST P-192, K-163, K-233, K-283, K-409, K-571, B-163, B-233, B-283, B-409, B-571, NIST P-224, brainpoolP160r1, brainpoolP192r1, brainpoolP224r1, brainpoolP256r1, brainpoolP320r1, brainpoolP384r1, brainpoolP512r1, brainpoolP192t1, brainpoolP224t1, brainpoolP256t1, brainpoolP320t1, brainpoolP384t1, brainpoolP512t1
Block cipher modes
ECB, CBC, CTR, GCM, CCM

Vendor
Microsoft, Microsoft Corporation

Security level
EAL4, EAL4 augmented
Claims
R.RAD, OT.RNG, OT.D, OT.A
Security Assurance Requirements (SAR)
ALC_FLR.2, AVA_VAN.5
Security Functional Requirements (SFR)
FAU_GEN.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2, FAU_GEN.2.1, FAU_STG.2, FAU_STG.1, FAU_STG.2.1, FAU_STG.2.2, FAU_STG.2.3, FCS_CKM.1, FCS_COP.1, FCS_CKM.4, FCS_CKM.1.1, FCS_RNG, FCS_CKM.4.1, FCS_COP.1.1, FCS_RNG.1, FCS_CKM.2, FDP_IFC, FDP_IFF.1, FDP_IFC.1, FDP_IFF, FDP_ACC, FDP_ACF.1, FDP_ACC.1, FDP_ACF, FDP_SDI.2, FDP_SDI.1, FDP_SDI.2.1, FDP_SDI.2.2, FDP_RIP.1, FDP_RIP.1.1, FDP_ITC.1, FDP_ITC.2, FIA_UID.1, FIA_UID.1.1, FIA_UAU.1, FIA_UID.1.2, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU, FIA_UAU.6, FIA_AFL.1, FIA_AFL.1.1, FIA_AFL.1.2, FMT_MSA.3, FMT_MTD, FMT_SMR.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMF.1, FMT_SMF.1.1, FMT_MTD.1, FMT_MSA, FMT_MSA.1, FPT_TST_EXT.1, FPT_STM.1, FPT_STM.1.1, FPT_TST_EXT.1.1, FPT_PHP.1, FPT_PHP.1.1, FPT_PHP.1.2, FPT_PHP.3, FPT_PHP.3.1, FPT_FLS.1, FPT_FLS.1.1, FTP_TRP, FTP_TRP.1
Protection profiles
ANSSI-CC-PP-, ANSSI-CC-PP-2016/05-

Side-channel analysis
side-channels, physical tampering, Malfunction
Certification process
out of scope, Impath, out of scope) with a remote Hardserver (typically on an application server or PC, for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries, support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 3 Configuration 1: TOE in Connect XC 8 of 55 nShield Solo XC HSM Security, support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 4 Configuration 2: TOE in host server 1.3.3 Usage and major security features of

Standards
FIPS 186-4, FIPS 140-2, FIPS 197, FIPS 180-4, FIPS 198-1, SP 800-90A, NIST SP 800-90A, SP 800-56A, NIST SP 800-22, SP 800-38A, SP 800-38B, SP 800-38C, SP 800-38D, SP 800-67, SP 800-38F, SP 800-108, PKCS#11, PKCS#1, PKCS #1, AIS 31, AIS 20, AIS31, RFC 8017, ISO/IEC 19790:2012, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003

File metadata

Title nShield Word Template
Author Robert, Natalya
Creation date D:20210309162209+01'00'
Modification date D:20210309162209+01'00'
Pages 55
Creator Microsoft® Word 2016
Producer Microsoft® Word 2016

Heuristics ?

Certificate ID: NSCIB-CC-0368256-CR

Extracted SARs

ALC_FLR.2, ATE_IND.2, AVA_VAN.5

Similar certificates

Name Certificate ID
nShield Solo XC Hardware Security Module v12.60.15 CSA_CC_21008 Compare

Scheme data ?

Manufacturer Entrust
Product nShield Solo XC Hardware Security Module v12.60.15
Scheme NSCIB
Cert Id NSCIB-CC-21-0368256-CR
Manufacturer Link https://www.entrust.com/
Level EAL4 augmented with AVA_VAN.5 and ALC_FLR.2
Cert Link https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/06/nscib-certificate-21-0368256.pdf
Report Link https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/06/nscib-cc-0368256-cr-1.0.pdf
Target Link https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/07/nscib-cc-0368256_1m1-st.pdf
Maintenance Link https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/07/nscib-cc-0368256_1m1-ma-1.0.pdf

References ?

No references are available for this certificate.

Updates ?

  • 21.11.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'prev_certificates': [], 'next_certificates': []}.
  • 09.11.2024 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'cc_cert_id': {'__insert__': {'FR': {'ANSSI-CC-PP-2016/05-M01': 1}}}} data.
    • The cert_keywords property was updated, with the {'cc_cert_id': {'__insert__': {'FR': {'ANSSI-CC-PP-2016/05-M01': 1}}}} data.

    The computed heuristics were updated.

    • The scheme_data property was updated, with the {'cert_id': 'NSCIB-CC-21-0368256-CR'} data.
  • 22.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '30b448fefb2c731b5a164f67396d5afe599ec1824f72f55c98e981dd8d236ab6', 'txt_hash': 'e57c11fe9fc4fa6a1f6cf3418a62202f81243fea956aaf3adb0882baa1b97c87'} data.
    • The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '1625edea8f3774d9a73246e3f470e43d65a24cd3131a89586c93ca76629e5aab', 'txt_hash': '7efdc5fed5d64568b21216151f21de070883dc81d47ec4ab6b6300698cae1f48'} data.
    • The cert property was updated, with the {'download_ok': True, 'convert_garbage': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '52438c5795337a55cc5b471c2f654cdec5fdab6095250da5910fe38ead46524f', 'txt_hash': '89d4acaad3bece11dd2aade40def05d7a2767e79a1834b21ee3e4dba616a0f8a'} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to {'pdf_file_size_bytes': 506174, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 12, '/Author': 'Denise Cater', '/CreationDate': "D:20210604161002+01'00'", '/Creator': 'Microsoft® Word 2010', '/ModDate': "D:20210614122611+02'00'", '/Producer': 'Microsoft® Word 2010', '/Title': 'Certification Report', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['mailto:[email protected]', 'http://www.tuv.com/nl', 'http://www.sogisportal.eu/', 'http://www.commoncriteriaportal.org/']}}.
    • The st_metadata property was set to {'pdf_file_size_bytes': 1463778, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 55, '/Title': 'nShield Word Template', '/Author': 'Robert, Natalya', '/Creator': 'Microsoft® Word 2016', '/CreationDate': "D:20210309162209+01'00'", '/ModDate': "D:20210309162209+01'00'", '/Producer': 'Microsoft® Word 2016', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['mailto:[email protected]', 'https://nshieldsupport.entrust.com/', 'https://www.entrust.com/']}}.
    • The cert_metadata property was set to {'pdf_file_size_bytes': 210038, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/CreationDate': "D:20210614114037+01'00'", '/Creator': 'C458-M', '/ModDate': "D:20210614123528+02'00'", '/Producer': 'KONICA MINOLTA bizhub C458', '/Title': 'C458-M&S21061411400', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.
    • The report_frontpage property was set to {'NL': {'cert_id': 'NSCIB-CC-0368256-CR', 'cert_item': 'nShield Solo XC Hardware Security Module v12.60.15', 'developer': 'nCipher Security Limited (an Entrust company', 'cert_lab': ' Brightsight B.V'}}.
    • The report_keywords property was set to {'cc_cert_id': {'NL': {'NSCIB-CC-0368256-CR': 12}}, 'cc_protection_profile_id': {'ANSSI': {'ANSSI-CC-PP-2016/05-M01': 1}}, 'cc_security_level': {'EAL': {'EAL4': 2, 'EAL4+': 2, 'EAL 4': 1, 'EAL4 augmented': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 2}, 'ATE': {'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.5': 4}}, 'cc_sfr': {'FAU': {'FAU_GEN': 1}, 'FCS': {'FCS_COP': 1}, 'FTP': {'FTP_TRP': 1}}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'BrightSight': {'Brightsight': 2}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 1}, 'ECC': {'ECC': 1}}}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {'TRNG': {'TRNG': 1}, 'RNG': {'RNG': 1}}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {'FI': {'physical tampering': 1}, 'other': {'JIL': 1, 'JIL-AAPHD': 1, 'JIL-AMHD': 1}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 19790:2012': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The st_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {'ANSSI': {'ANSSI-CC-PP-': 1, 'ANSSI-CC-PP-2016/05-': 1}}, 'cc_security_level': {'EAL': {'EAL4': 59, 'EAL4 augmented': 3}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 58}, 'AVA': {'AVA_VAN.5': 60}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 10, 'FAU_GEN.1.1': 2, 'FAU_GEN.1.2': 1, 'FAU_GEN.2': 5, 'FAU_GEN.2.1': 1, 'FAU_STG.2': 5, 'FAU_STG.1': 1, 'FAU_STG.2.1': 1, 'FAU_STG.2.2': 1, 'FAU_STG.2.3': 1}, 'FCS': {'FCS_CKM.1': 11, 'FCS_COP.1': 10, 'FCS_CKM.4': 11, 'FCS_CKM.1.1': 1, 'FCS_RNG': 12, 'FCS_CKM.4.1': 1, 'FCS_COP.1.1': 1, 'FCS_RNG.1': 5, 'FCS_CKM.2': 1}, 'FDP': {'FDP_IFC': 10, 'FDP_IFF.1': 10, 'FDP_IFC.1': 7, 'FDP_IFF': 9, 'FDP_ACC': 15, 'FDP_ACF.1': 12, 'FDP_ACC.1': 10, 'FDP_ACF': 14, 'FDP_SDI.2': 6, 'FDP_SDI.1': 1, 'FDP_SDI.2.1': 1, 'FDP_SDI.2.2': 1, 'FDP_RIP.1': 6, 'FDP_RIP.1.1': 1, 'FDP_ITC.1': 2, 'FDP_ITC.2': 2}, 'FIA': {'FIA_UID.1': 14, 'FIA_UID.1.1': 1, 'FIA_UAU.1': 9, 'FIA_UID.1.2': 1, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1, 'FIA_UAU': 13, 'FIA_UAU.6': 2, 'FIA_AFL.1': 6, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 1}, 'FMT': {'FMT_MSA.3': 9, 'FMT_MTD': 12, 'FMT_SMR.1': 18, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_SMF.1': 11, 'FMT_SMF.1.1': 1, 'FMT_MTD.1': 2, 'FMT_MSA': 22, 'FMT_MSA.1': 5}, 'FPT': {'FPT_TST_EXT.1': 9, 'FPT_STM.1': 7, 'FPT_STM.1.1': 1, 'FPT_TST_EXT.1.1': 1, 'FPT_PHP.1': 4, 'FPT_PHP.1.1': 1, 'FPT_PHP.1.2': 1, 'FPT_PHP.3': 4, 'FPT_PHP.3.1': 1, 'FPT_FLS.1': 6, 'FPT_FLS.1.1': 1}, 'FTP': {'FTP_TRP': 15, 'FTP_TRP.1': 3}}, 'cc_claims': {'R': {'R.RAD': 1}, 'OT': {'OT.RNG': 3, 'OT.D': 2, 'OT.A': 1}}, 'vendor': {'Microsoft': {'Microsoft': 1, 'Microsoft Corporation': 1}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 8}}, 'DES': {'3DES': {'Triple-DES': 4, 'TDEA': 1}}, 'constructions': {'MAC': {'HMAC': 2, 'HMAC-SHA-224': 1, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1, 'CMAC': 3, 'CBC-MAC': 2}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 1}, 'ECDSA': {'ECDSA': 2}}, 'FF': {'DH': {'Diffie-Hellman': 3, 'DH': 1}, 'DSA': {'DSA': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA-224': 1, 'SHA-384': 1, 'SHA-512': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {'PRNG': {'DRBG': 3}, 'RNG': {'RNG': 31}}, 'cipher_mode': {'ECB': {'ECB': 2}, 'CBC': {'CBC': 2}, 'CTR': {'CTR': 1}, 'GCM': {'GCM': 2}, 'CCM': {'CCM': 1}}, 'ecc_curve': {'NIST': {'P-192': 1, 'P-224': 4, 'P-256': 6, 'P-384': 6, 'P-521': 6, 'NIST P-192': 1, 'K-163': 1, 'K-233': 3, 'K-283': 3, 'K-409': 3, 'K-571': 3, 'B-163': 1, 'B-233': 3, 'B-283': 3, 'B-409': 3, 'B-571': 3, 'NIST P-224': 2}, 'Brainpool': {'brainpoolP160r1': 1, 'brainpoolP192r1': 1, 'brainpoolP224r1': 3, 'brainpoolP256r1': 3, 'brainpoolP320r1': 3, 'brainpoolP384r1': 3, 'brainpoolP512r1': 3, 'brainpoolP192t1': 1, 'brainpoolP224t1': 1, 'brainpoolP256t1': 3, 'brainpoolP320t1': 3, 'brainpoolP384t1': 3, 'brainpoolP512t1': 3}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'side-channels': 1}, 'FI': {'physical tampering': 2, 'Malfunction': 2}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS 186-4': 2, 'FIPS 140-2': 6, 'FIPS 197': 2, 'FIPS 180-4': 1, 'FIPS 198-1': 1}, 'NIST': {'SP 800-90A': 3, 'NIST SP 800-90A': 3, 'SP 800-56A': 2, 'NIST SP 800-22': 1, 'SP 800-38A': 1, 'SP 800-38B': 1, 'SP 800-38C': 1, 'SP 800-38D': 1, 'SP 800-67': 1, 'SP 800-38F': 1, 'SP 800-108': 1}, 'PKCS': {'PKCS#11': 2, 'PKCS#1': 2, 'PKCS #1': 1}, 'BSI': {'AIS 31': 9, 'AIS 20': 1, 'AIS31': 2}, 'RFC': {'RFC 8017': 1}, 'ISO': {'ISO/IEC 19790:2012': 1}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 3, 'Impath, out of scope) with a remote Hardserver (typically on an application server or PC': 1, 'for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries': 1, 'support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 3 Configuration 1: TOE in Connect XC 8 of 55 nShield Solo XC HSM Security': 1, 'support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 4 Configuration 2: TOE in host server 1.3.3 Usage and major security features of': 1}}}.
    • The cert_keywords property was set to {'cc_cert_id': {'NL': {'CC-21-0368256': 1}}, 'cc_protection_profile_id': {'ANSSI': {'ANSSI-CC-PP-2016/05-M01': 1}}, 'cc_security_level': {'EAL': {'EAL2': 1, 'EAL7': 1, 'EAL4': 1, 'EAL4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.3': 1, 'ALC_FLR.2': 1}, 'AVA': {'AVA_VAN.5': 1}}, 'cc_sfr': {}, 'cc_claims': {'R': {'R.L': 1}}, 'vendor': {}, 'eval_facility': {'BrightSight': {'Brightsight': 1}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408-2': 1, 'ISO/IEC 15408-3': 1, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The report_filename property was set to NSCIB-CC-0368256-CR-1.0.pdf.
    • The st_filename property was set to NSCIB-CC-0368256-ST-1.1.pdf.
    • The cert_filename property was set to NSCIB-certificate 21-0368256.pdf.

    The computed heuristics were updated.

    • The cert_lab property was set to [''].
    • The cert_id property was set to NSCIB-CC-0368256-CR.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}]} values added.
  • 17.08.2024 The certificate data changed.
    Certificate changed

    The report_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256-CR-1.0.pdf.

    The st_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256-ST-1.1.pdf.

    The state of the certificate object was updated.

    • The cert property was updated, with the {'download_ok': False, 'convert_garbage': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

    The PDF extraction data was updated.

    • The cert_metadata property was set to None.
    • The cert_keywords property was set to None.
    • The cert_filename property was set to None.

    The computed heuristics were updated.

    • The cert_id property was set to None.
  • 12.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
    • The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to None.
    • The st_metadata property was set to None.
    • The report_frontpage property was set to None.
    • The report_keywords property was set to None.
    • The st_keywords property was set to None.
    • The report_filename property was set to None.
    • The st_filename property was set to None.

    The computed heuristics were updated.

    • The cert_lab property was set to None.
    • The cert_id property was set to NSCIB-CC-21-0368256-CR.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}]} values discarded.
  • 23.07.2024 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name Entrust nShield Solo XC Hardware Security Module v12.60.15 was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Products for Digital Signatures",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-certificate%2021-0368256.pdf",
  "dgst": "5267a9b98b878ef1",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "NSCIB-CC-0368256-CR",
    "cert_lab": [
      ""
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 5
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "12.60.15"
      ]
    },
    "indirect_transitive_cves": null,
    "next_certificates": [],
    "prev_certificates": [],
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": {
      "cert_id": "NSCIB-CC-21-0368256-CR",
      "cert_link": "https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/06/nscib-certificate-21-0368256.pdf",
      "level": "EAL4 augmented with AVA_VAN.5 and ALC_FLR.2",
      "maintenance_link": "https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/07/nscib-cc-0368256_1m1-ma-1.0.pdf",
      "manufacturer": "Entrust",
      "manufacturer_link": "https://www.entrust.com/",
      "product": "nShield Solo XC Hardware Security Module v12.60.15",
      "report_link": "https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/06/nscib-cc-0368256-cr-1.0.pdf",
      "scheme": "NSCIB",
      "target_link": "https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/07/nscib-cc-0368256_1m1-st.pdf"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.cc.CCCertificate.MaintenanceReport",
        "maintenance_date": "2021-07-22",
        "maintenance_report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256_1m1-MA-1.0.pdf",
        "maintenance_st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256_1m1-ST.pdf",
        "maintenance_title": "Assurance Continuity Maintenance Report"
      }
    ]
  },
  "manufacturer": "Entrust, Inc.",
  "manufacturer_web": "https://www.entrust.com",
  "name": "Entrust nShield Solo XC Hardware Security Module v12.60.15",
  "not_valid_after": "2026-03-17",
  "not_valid_before": "2021-03-17",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "NSCIB-certificate 21-0368256.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "FR": {
          "ANSSI-CC-PP-2016/05-M01": 1
        },
        "NL": {
          "CC-21-0368256": 1
        }
      },
      "cc_claims": {
        "R": {
          "R.L": 1
        }
      },
      "cc_protection_profile_id": {
        "ANSSI": {
          "ANSSI-CC-PP-2016/05-M01": 1
        }
      },
      "cc_sar": {
        "ALC": {
          "ALC_FLR.2": 1,
          "ALC_FLR.3": 1
        },
        "AVA": {
          "AVA_VAN.5": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL2": 1,
          "EAL4": 1,
          "EAL4 augmented": 1,
          "EAL7": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "BrightSight": {
          "Brightsight": 1
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408-2": 1,
          "ISO/IEC 15408-3": 1,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/CreationDate": "D:20210614114037+01\u002700\u0027",
      "/Creator": "C458-M",
      "/ModDate": "D:20210614123528+02\u002700\u0027",
      "/Producer": "KONICA MINOLTA bizhub C458",
      "/Title": "C458-M\u0026S21061411400",
      "pdf_file_size_bytes": 210038,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "NSCIB-CC-0368256-CR-1.0.pdf",
    "report_frontpage": {
      "NL": {
        "cert_id": "NSCIB-CC-0368256-CR",
        "cert_item": "nShield Solo XC Hardware Security Module v12.60.15",
        "cert_lab": " Brightsight B.V",
        "developer": "nCipher Security Limited (an Entrust company"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDSA": {
            "ECDSA": 1
          }
        }
      },
      "cc_cert_id": {
        "FR": {
          "ANSSI-CC-PP-2016/05-M01": 1
        },
        "NL": {
          "NSCIB-CC-0368256-CR": 12
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "ANSSI": {
          "ANSSI-CC-PP-2016/05-M01": 1
        }
      },
      "cc_sar": {
        "ALC": {
          "ALC_FLR.2": 2
        },
        "ATE": {
          "ATE_IND.2": 1
        },
        "AVA": {
          "AVA_VAN.5": 4
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 4": 1,
          "EAL 4 augmented": 1,
          "EAL4": 2,
          "EAL4 augmented": 1,
          "EAL4+": 2
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN": 1
        },
        "FCS": {
          "FCS_COP": 1
        },
        "FTP": {
          "FTP_TRP": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 1
        }
      },
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "BrightSight": {
          "Brightsight": 2
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 1
        },
        "TRNG": {
          "TRNG": 1
        }
      },
      "side_channel_analysis": {
        "FI": {
          "physical tampering": 1
        },
        "other": {
          "JIL": 1,
          "JIL-AAPHD": 1,
          "JIL-AMHD": 1
        }
      },
      "standard_id": {
        "ISO": {
          "ISO/IEC 19790:2012": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "Denise Cater",
      "/CreationDate": "D:20210604161002+01\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010",
      "/ModDate": "D:20210614122611+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010",
      "/Title": "Certification Report",
      "pdf_file_size_bytes": 506174,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.commoncriteriaportal.org/",
          "mailto:[email protected]",
          "http://www.tuv.com/nl",
          "http://www.sogisportal.eu/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 12
    },
    "st_filename": "NSCIB-CC-0368256-ST-1.1.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 1
          },
          "ECDSA": {
            "ECDSA": 2
          }
        },
        "FF": {
          "DH": {
            "DH": 1,
            "Diffie-Hellman": 3
          },
          "DSA": {
            "DSA": 2
          }
        }
      },
      "cc_cert_id": {},
      "cc_claims": {
        "OT": {
          "OT.A": 1,
          "OT.D": 2,
          "OT.RNG": 3
        },
        "R": {
          "R.RAD": 1
        }
      },
      "cc_protection_profile_id": {
        "ANSSI": {
          "ANSSI-CC-PP-": 1,
          "ANSSI-CC-PP-2016/05-": 1
        }
      },
      "cc_sar": {
        "ALC": {
          "ALC_FLR.2": 58
        },
        "AVA": {
          "AVA_VAN.5": 60
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL4": 59,
          "EAL4 augmented": 3
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN.1": 10,
          "FAU_GEN.1.1": 2,
          "FAU_GEN.1.2": 1,
          "FAU_GEN.2": 5,
          "FAU_GEN.2.1": 1,
          "FAU_STG.1": 1,
          "FAU_STG.2": 5,
          "FAU_STG.2.1": 1,
          "FAU_STG.2.2": 1,
          "FAU_STG.2.3": 1
        },
        "FCS": {
          "FCS_CKM.1": 11,
          "FCS_CKM.1.1": 1,
          "FCS_CKM.2": 1,
          "FCS_CKM.4": 11,
          "FCS_CKM.4.1": 1,
          "FCS_COP.1": 10,
          "FCS_COP.1.1": 1,
          "FCS_RNG": 12,
          "FCS_RNG.1": 5
        },
        "FDP": {
          "FDP_ACC": 15,
          "FDP_ACC.1": 10,
          "FDP_ACF": 14,
          "FDP_ACF.1": 12,
          "FDP_IFC": 10,
          "FDP_IFC.1": 7,
          "FDP_IFF": 9,
          "FDP_IFF.1": 10,
          "FDP_ITC.1": 2,
          "FDP_ITC.2": 2,
          "FDP_RIP.1": 6,
          "FDP_RIP.1.1": 1,
          "FDP_SDI.1": 1,
          "FDP_SDI.2": 6,
          "FDP_SDI.2.1": 1,
          "FDP_SDI.2.2": 1
        },
        "FIA": {
          "FIA_AFL.1": 6,
          "FIA_AFL.1.1": 1,
          "FIA_AFL.1.2": 1,
          "FIA_UAU": 13,
          "FIA_UAU.1": 9,
          "FIA_UAU.1.1": 1,
          "FIA_UAU.1.2": 1,
          "FIA_UAU.6": 2,
          "FIA_UID.1": 14,
          "FIA_UID.1.1": 1,
          "FIA_UID.1.2": 1
        },
        "FMT": {
          "FMT_MSA": 22,
          "FMT_MSA.1": 5,
          "FMT_MSA.3": 9,
          "FMT_MTD": 12,
          "FMT_MTD.1": 2,
          "FMT_SMF.1": 11,
          "FMT_SMF.1.1": 1,
          "FMT_SMR.1": 18,
          "FMT_SMR.1.1": 1,
          "FMT_SMR.1.2": 1
        },
        "FPT": {
          "FPT_FLS.1": 6,
          "FPT_FLS.1.1": 1,
          "FPT_PHP.1": 4,
          "FPT_PHP.1.1": 1,
          "FPT_PHP.1.2": 1,
          "FPT_PHP.3": 4,
          "FPT_PHP.3.1": 1,
          "FPT_STM.1": 7,
          "FPT_STM.1.1": 1,
          "FPT_TST_EXT.1": 9,
          "FPT_TST_EXT.1.1": 1
        },
        "FTP": {
          "FTP_TRP": 15,
          "FTP_TRP.1": 3
        }
      },
      "certification_process": {
        "OutOfScope": {
          "Impath, out of scope) with a remote Hardserver (typically on an application server or PC": 1,
          "for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries": 1,
          "out of scope": 3,
          "support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 3 Configuration 1: TOE in Connect XC 8 of 55 nShield Solo XC HSM Security": 1,
          "support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 4 Configuration 2: TOE in host server 1.3.3 Usage and major security features of": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "CCM": {
          "CCM": 1
        },
        "CTR": {
          "CTR": 1
        },
        "ECB": {
          "ECB": 2
        },
        "GCM": {
          "GCM": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP160r1": 1,
          "brainpoolP192r1": 1,
          "brainpoolP192t1": 1,
          "brainpoolP224r1": 3,
          "brainpoolP224t1": 1,
          "brainpoolP256r1": 3,
          "brainpoolP256t1": 3,
          "brainpoolP320r1": 3,
          "brainpoolP320t1": 3,
          "brainpoolP384r1": 3,
          "brainpoolP384t1": 3,
          "brainpoolP512r1": 3,
          "brainpoolP512t1": 3
        },
        "NIST": {
          "B-163": 1,
          "B-233": 3,
          "B-283": 3,
          "B-409": 3,
          "B-571": 3,
          "K-163": 1,
          "K-233": 3,
          "K-283": 3,
          "K-409": 3,
          "K-571": 3,
          "NIST P-192": 1,
          "NIST P-224": 2,
          "P-192": 1,
          "P-224": 4,
          "P-256": 6,
          "P-384": 6,
          "P-521": 6
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 2
          },
          "SHA2": {
            "SHA-224": 1,
            "SHA-384": 1,
            "SHA-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 3
        },
        "RNG": {
          "RNG": 31
        }
      },
      "side_channel_analysis": {
        "FI": {
          "Malfunction": 2,
          "physical tampering": 2
        },
        "SCA": {
          "side-channels": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 20": 1,
          "AIS 31": 9,
          "AIS31": 2
        },
        "CC": {
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1
        },
        "FIPS": {
          "FIPS 140-2": 6,
          "FIPS 180-4": 1,
          "FIPS 186-4": 2,
          "FIPS 197": 2,
          "FIPS 198-1": 1
        },
        "ISO": {
          "ISO/IEC 19790:2012": 1
        },
        "NIST": {
          "NIST SP 800-22": 1,
          "NIST SP 800-90A": 3,
          "SP 800-108": 1,
          "SP 800-38A": 1,
          "SP 800-38B": 1,
          "SP 800-38C": 1,
          "SP 800-38D": 1,
          "SP 800-38F": 1,
          "SP 800-56A": 2,
          "SP 800-67": 1,
          "SP 800-90A": 3
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 2,
          "PKCS#11": 2
        },
        "RFC": {
          "RFC 8017": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 8
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "Triple-DES": 4
          }
        },
        "constructions": {
          "MAC": {
            "CBC-MAC": 2,
            "CMAC": 3,
            "HMAC": 2,
            "HMAC-SHA-224": 1,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Microsoft": {
          "Microsoft": 1,
          "Microsoft Corporation": 1
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Robert, Natalya",
      "/CreationDate": "D:20210309162209+01\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2016",
      "/ModDate": "D:20210309162209+01\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2016",
      "/Title": "nShield Word Template",
      "pdf_file_size_bytes": 1463778,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.entrust.com/",
          "mailto:[email protected]",
          "https://nshieldsupport.entrust.com/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 55
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": null,
        "pp_ids": null,
        "pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/ANSSI-CC-PP-2016_05%20PP.pdf",
        "pp_name": "Protection profiles for TSP Cryptographic modules - Part 5- Cryptographic Module for Trust Services \u0026..."
      }
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256-CR-1.0.pdf",
  "scheme": "NL",
  "security_level": {
    "_type": "Set",
    "elements": [
      "AVA_VAN.5",
      "ALC_FLR.2",
      "EAL4+"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0368256-ST-1.1.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": true,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "52438c5795337a55cc5b471c2f654cdec5fdab6095250da5910fe38ead46524f",
      "txt_hash": "89d4acaad3bece11dd2aade40def05d7a2767e79a1834b21ee3e4dba616a0f8a"
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "30b448fefb2c731b5a164f67396d5afe599ec1824f72f55c98e981dd8d236ab6",
      "txt_hash": "e57c11fe9fc4fa6a1f6cf3418a62202f81243fea956aaf3adb0882baa1b97c87"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "1625edea8f3774d9a73246e3f470e43d65a24cd3131a89586c93ca76629e5aab",
      "txt_hash": "7efdc5fed5d64568b21216151f21de070883dc81d47ec4ab6b6300698cae1f48"
    }
  },
  "status": "active"
}