Version 2020-4

® TÜV, TUEV and TUV are registered trademarks. Any use or application requires prior approval.

Certificate

Standard

Certificate number

Certificate holder
and developer

Product and
assurance level

Project number

Evaluation facility

ATS

®
‘Common Criteria Recognition
‘Arrangement for c
up to EALZ and ALC_FLR.3

 

‘SOGIS Mutual Recognition
Agreement for components up
10 EAL 7 and ALC_FLR3

Validity

€

PODÈTS
Ru CUS

Accredited by the Dutch

Council for Accreditation

www.tuv.com/nl

Common Criteria for Information Technology Security Evaluation (CC),
Version 3.1 Revision 5 Parts 1, 2 & 3
(ISO/IEC 15408-1, ISO/IEC 15408-2 & ISO/IEC 15408-3)

CC-21-0023577

TUV Rheinland Nederland B.V. certifies:

NXP Semiconductors GmbH
Troplowitzstrasse 20, 22529 Hamburg, Germany

NXP JCOP 5.2 on SN100.C58 Secure Element

Assurance Package:
= EALS5 augmented with AVA_VAN.5, ALC_DVS.2, ASE_TSS.2 and ALC_FLR.1
Protection Profile Conformance:
Java Card Protection Profile - Open Configuration, version 3.0.5 (December
2017), published by Oracle, Inc. (BSI-CC-PP-0099-2017)
= Embedded UICC for Consumer Devices, GSMA Association, Version 1.0 05-
June-2018, 05 June 2018 (BSI-CC-PP-0100-2018)
= Common Criteria Protection Profile Cryptographic Service Provider version 0.9.8
(BSI-CC-PP-0104-2019)

0023577_3

Brightsight BV located in Delft, the Netherlands

Applying the Common Methodology for Information Technology Security
Evaluation (CEM), Version 3.1 Revision 5 (ISO/IEC 18045)

‘The IT product identified in this certificate has been evaluated at an accredited and licensed/approved
evaluation facllity using the Common Methodology for IT Security Evaluation version 3.1 Revision 5 for
conformance to the Common Criteria for IT Security Evaluation version 3.1 Revision 5. This certificate
applies only to the specific version and release of the product in its evaluated configuration and in
Conjunction with the complete certification report. The evaluation has been conducted in accordance with
the provisions of the Netherlands scheme for certification in the area of IT security [NSCIB] and the
conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence
adduced. This certificate is not an endorsement of the IT product by TÜV Rheinland Nederland B.V. or by
other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by
TUV Rheinland Nederland B.V. or by any other organisation that recognises or gives effect to this
certificate, is either expressed or implied.

Date of 1% issue : 02-12-2019

Date of 2" issue : 09-07-2020

Date of 3 issue : 14-06-2021

Certificate expiry : 14-06-2026
R.L. Kruit, LFM Systems
TÜV Rheinland Nederland B.V.
Westervoortsedijk 73, 6827 AV Amhem

P.O. Box 2220, NL-6802 CE Arnhem
The Netherlands

A TUVRheinland®
Precisely Right.