This page was not yet optimized for use on mobile devices.
d'COMPASS version 2.0.0
CSV information ?
| Status | archived |
|---|---|
| Valid from | 24.12.2014 |
| Valid until | 24.12.2019 |
| Scheme | 🇲🇾 MY |
| Manufacturer | TriAset Sdn Bhd |
| Category | Other Devices and Systems |
| Security level | EAL2 |
Heuristics summary ?
Certificate ID: ISCB-5-RPT-C056-CR-v1
Certificate ?
Certification report ?
Extracted keywords
Hash functions
SHA-256, SHA-2Protocols
SSL, TLSVendor
MicrosoftSecurity level
EAL2Security Functional Requirements (SFR)
FCS_COP.1, FDP_ACC.1, FDP_ACF.1, FIA_UID.2, FIA_UAU.2, FMT_SMR.1, FMT_MTD, FMT_SMF.1, FMT_MSA.1, FTP_TRP.1Certificates
ISCB-5-RPT-C056-CR-v1File metadata
| Title | C056 Certification Report |
|---|---|
| Subject | d'COMPASS v2.0.0 |
| Keywords | d'COMPASS |
| Author | ISCB Department |
| Creation date | D:20150205002010+08'00' |
| Modification date | D:20150205002010+08'00' |
| Pages | 26 |
| Creator | Microsoft® Word 2013 |
| Producer | Microsoft® Word 2013 |
Security target ?
Extracted keywords
Hash functions
SHA-256, SHA-2Protocols
SSL, TLSVendor
MicrosoftSecurity level
EAL2Claims
O.ACCESS, O.COMM, O.MANAGE, O.PASSWORD_DATA, O.USER, O.PASSWORD_DAT, T.EAVESDROP, T.MANAGEMENT, T.PASSWORD_DATA, T.UNAUTHORISED_A, T.UNAUTHORISED_AC, A.ADMIN, A.ENVIRONMENT, A.PASSWORD, A.PATCH, A.PHYSICAL, A.SSL_CONFIG, OE.ADMIN, OE.AUTHDATA, OE.ENVIRONMENT, OE.PHYSICAL, OE.PATCH, OE.SSL_CONFIGSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.2, ADV_TDS.1, AGD_OPE.1, AGD_PRE.1, ALC_CMS.2, ALC_CMC.2, ALC_DEL.1, ATE_IND.2, ATE_FUN.1, ATE_COV.1, AVA_VAN.2, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.2, ASE_REQ.2, ASE_TSS.1, ASE_ECD.1Security Functional Requirements (SFR)
FCS_COP.1, FCS_COP.1.1, FCS_CKM.1, FCS_CKM.4, FDP_ACC.1, FDP_ACF.1, FDP_IFF, FDP_ITC.1, FDP_ITC.2, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_IFC.1, FIA_UAU.2, FIA_UID.2, FIA_UAU.1, FIA_UAU.2.1, FIA_UID.1, FIA_UID.2.1, FMT_MSA.1, FMT_MTD, FMT_SMF.1, FMT_SMR.1, FMT_MSA.1.1, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FTP_TRP.1, FTP_TRP.1.1, FTP_TRP.1.2, FTP_TRP.1.3File metadata
| Creation date | D:20150205003146+08'00' |
|---|---|
| Modification date | D:20150205003255+08'00' |
| Pages | 28 |
| Producer | Foxit Reader PDF Printer Version 7.0.1.831 |
Heuristics ?
Certificate ID: ISCB-5-RPT-C056-CR-v1
Extracted SARs
ASE_CCL.1, AGD_PRE.1, ASE_REQ.2, ASE_TSS.1, ATE_COV.1, ATE_IND.2, ADV_FSP.2, ASE_ECD.1, ALC_CMS.2, ASE_SPD.1, ALC_DEL.1, ADV_TDS.1, ASE_INT.1, ALC_CMC.2, ATE_FUN.1, ASE_OBJ.2, AVA_VAN.2, ADV_ARC.1, AGD_OPE.1Scheme data ?
| Cert No | 2014-004-C056 | |
|---|---|---|
| Developer | TriAset Sdn Bhd | |
| Level | EAL2 | |
| Product | d'COMPASS version 2.0.0 | |
| Certification Date | 24-12-2014 | |
| Expiration Date | 24-12-2019 | |
| Recognition | CCRA | |
| Url | https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/146 | |
| Enhanced | ||
| Cert Id | C056 | |
| Product | d'COMPASS version 2.0.0 | |
| Developer | Elaine TanCorporate Service ManagerTriAset Sdn BhdUnit 23-5, 5th Floor Block E1 Jalan PJU 1/42Dataran Prima 47301 Petaling Jaya, Selangor, Malaysia URL: http://triaset.com/Email: elainetan@triaset.comPhone: +603 7880 9562Fax: +603 7880 9563 | |
| Category | Other Devices and Systems | |
| Type | Online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks. | |
| Scope | d'COMPASS v2.0.0 is an online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks. It is a web application that is developed entirely from Java-based technologies which is installed into a Java EE-compliant application server and accessible via a web browser and it also provides a complete solution from back to the front office fund management operation. Following are the major security functions provided by the TOE: Access control - the TOE manages access control within each organisation based on user Ids, user roles and access control lists. Each ACL maps users and roles to the operations that they are permitted to perform on the object. Identification and Authentication - the TOE requires that each user is successfully identified (user IDs) and authenticated (password) before any interaction with protected resources is permitted. Security Management - the TOE provides functions that allow management of the TOE and its security functions. The TOE restricts access to the management functions based on the role of the user. Security Communication - the TOE is able to protect the user data from disclosure and modification using SSL as a secure communication between users’ browser and the TOE. | |
| Assurance Level | EAL2 | |
| Certification Date | 24-12-2014 | |
| Expiration Date | 24-12-2019 | |
| Mutual Recognition | CCRA | |
| Target Link | https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/d'COMPASS%20Security%20Target%20v1.0.pdf | |
| Report Link | https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/ISCB-5-RPT-C056-CR-v1.pdf | |
| Status | Archive | |
References ?
No references are available for this certificate.
Updates ?
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name d'COMPASS version 2.0.0 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Other Devices and Systems",
"cert_link": null,
"dgst": "2437da21a2df0903",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "ISCB-5-RPT-C056-CR-v1",
"cert_lab": null,
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"2.0.0"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"scheme_data": {
"cert_no": "2014-004-C056",
"certification_date": "24-12-2014",
"developer": "TriAset Sdn Bhd",
"enhanced": {
"assurance_level": "EAL2",
"category": "Other Devices and Systems",
"cert_id": "C056",
"certification_date": "24-12-2014",
"developer": "Elaine TanCorporate Service ManagerTriAset Sdn BhdUnit 23-5, 5th Floor Block E1 Jalan PJU 1/42Dataran Prima 47301 Petaling Jaya, Selangor, Malaysia\nURL: http://triaset.com/Email: elainetan@triaset.comPhone: +603 7880 9562Fax: +603 7880 9563",
"expiration_date": "24-12-2019",
"mutual_recognition": "CCRA",
"product": "d\u0027COMPASS version 2.0.0",
"report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/ISCB-5-RPT-C056-CR-v1.pdf",
"scope": "d\u0027COMPASS v2.0.0 is an online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks.\nIt is a web application that is developed entirely from Java-based technologies which is installed into a Java EE-compliant application server and accessible via a web browser and it also provides a complete solution from back to the front office fund management operation.\nFollowing are the major security functions provided by the TOE:\n\nAccess control - the TOE manages access control within each organisation based on user Ids, user roles and access control lists. Each ACL maps users and roles to the operations that they are permitted to perform on the object.\nIdentification and Authentication - the TOE requires that each user is successfully identified (user IDs) and authenticated (password) before any interaction with protected resources is permitted.\nSecurity Management - the TOE provides functions that allow management of the TOE and its security functions. The TOE restricts access to the management functions based on the role of the user.\nSecurity Communication - the TOE is able to protect the user data from disclosure and modification using SSL as a secure communication between users\u2019 browser and the TOE.",
"status": "Archive",
"target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/d\u0027COMPASS%20Security%20Target%20v1.0.pdf",
"type": "Online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks."
},
"expiration_date": "24-12-2019",
"level": "EAL2",
"product": "d\u0027COMPASS version 2.0.0",
"recognition": "CCRA",
"url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/146"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "TriAset Sdn Bhd",
"manufacturer_web": "https://triaset.com/",
"name": "d\u0027COMPASS version 2.0.0",
"not_valid_after": "2019-12-24",
"not_valid_before": "2014-12-24",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": null,
"cert_frontpage": null,
"cert_keywords": null,
"cert_metadata": null,
"report_filename": "ISCB-5-RPT-C056-CR-v1.pdf",
"report_frontpage": {},
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"MY": {
"ISCB-5-RPT-C056-CR-v1": 25
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {},
"cc_security_level": {
"EAL": {
"EAL2": 10
}
},
"cc_sfr": {
"FCS": {
"FCS_COP.1": 1
},
"FDP": {
"FDP_ACC.1": 1,
"FDP_ACF.1": 1
},
"FIA": {
"FIA_UAU.2": 1,
"FIA_UID.2": 1
},
"FMT": {
"FMT_MSA.1": 1,
"FMT_MTD": 2,
"FMT_SMF.1": 1,
"FMT_SMR.1": 2
},
"FTP": {
"FTP_TRP.1": 1
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 8
},
"TLS": {
"TLS": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-2": 1,
"SHA-256": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 2
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "ISCB Department",
"/CreationDate": "D:20150205002010+08\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2013",
"/Keywords": "d\u0027COMPASS",
"/ModDate": "D:20150205002010+08\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2013",
"/Subject": "d\u0027COMPASS v2.0.0",
"/Title": "C056 Certification Report",
"pdf_file_size_bytes": 611097,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.cybersecurity.my/mycc",
"mailto:mycc@cybersecurity.my",
"http://www.commoncriteriaportal.org/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 26
},
"st_filename": "d\u0027COMPASS Security Target v1.0.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {
"A": {
"A.ADMIN": 3,
"A.ENVIRONMENT": 2,
"A.PASSWORD": 3,
"A.PATCH": 2,
"A.PHYSICAL": 3,
"A.SSL_CONFIG": 2
},
"O": {
"O.ACCESS": 5,
"O.COMM": 4,
"O.MANAGE": 4,
"O.PASSWORD_DAT": 1,
"O.PASSWORD_DATA": 3,
"O.USER": 5
},
"OE": {
"OE.ADMIN": 2,
"OE.AUTHDATA": 3,
"OE.ENVIRONMENT": 2,
"OE.PATCH": 2,
"OE.PHYSICAL": 2,
"OE.SSL_CONFIG": 3
},
"T": {
"T.EAVESDROP": 3,
"T.MANAGEMENT": 2,
"T.PASSWORD_DATA": 3,
"T.UNAUTHORISED_A": 1,
"T.UNAUTHORISED_AC": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_ARC.1": 1,
"ADV_FSP.2": 1,
"ADV_TDS.1": 1
},
"AGD": {
"AGD_OPE.1": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMC.2": 1,
"ALC_CMS.2": 1,
"ALC_DEL.1": 1
},
"ASE": {
"ASE_CCL.1": 4,
"ASE_ECD.1": 1,
"ASE_INT.1": 4,
"ASE_OBJ.2": 4,
"ASE_REQ.2": 4,
"ASE_SPD.1": 4,
"ASE_TSS.1": 4
},
"ATE": {
"ATE_COV.1": 1,
"ATE_FUN.1": 1,
"ATE_IND.2": 1
},
"AVA": {
"AVA_VAN.2": 1
}
},
"cc_security_level": {
"EAL": {
"EAL2": 9
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM.1": 3,
"FCS_CKM.4": 3,
"FCS_COP.1": 6,
"FCS_COP.1.1": 1
},
"FDP": {
"FDP_ACC.1": 12,
"FDP_ACC.1.1": 1,
"FDP_ACF.1": 7,
"FDP_ACF.1.1": 1,
"FDP_ACF.1.2": 1,
"FDP_ACF.1.3": 1,
"FDP_ACF.1.4": 1,
"FDP_IFC.1": 2,
"FDP_IFF": 2,
"FDP_ITC.1": 2,
"FDP_ITC.2": 2
},
"FIA": {
"FIA_UAU.1": 1,
"FIA_UAU.2": 6,
"FIA_UAU.2.1": 1,
"FIA_UID.1": 4,
"FIA_UID.2": 7,
"FIA_UID.2.1": 1
},
"FMT": {
"FMT_MSA.1": 6,
"FMT_MSA.1.1": 1,
"FMT_MTD": 14,
"FMT_SMF.1": 15,
"FMT_SMF.1.1": 1,
"FMT_SMR.1": 14,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FTP": {
"FTP_TRP.1": 6,
"FTP_TRP.1.1": 1,
"FTP_TRP.1.2": 1,
"FTP_TRP.1.3": 1
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 9
},
"TLS": {
"TLS": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-2": 1,
"SHA-256": 6
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 4
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "",
"/CreationDate": "D:20150205003146+08\u002700\u0027",
"/Creator": "",
"/Keywords": "",
"/ModDate": "D:20150205003255+08\u002700\u0027",
"/Producer": "Foxit Reader PDF Printer Version 7.0.1.831",
"/Subject": "",
"/Title": "",
"pdf_file_size_bytes": 748344,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 28
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/files/epfiles/ISCB-5-RPT-C056-CR-v1.pdf",
"scheme": "MY",
"security_level": {
"_type": "Set",
"elements": [
"EAL2"
]
},
"st_link": "https://www.commoncriteriaportal.org/files/epfiles/d\u0027COMPASS%20Security%20Target%20v1.0.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": false,
"download_ok": false,
"extract_ok": false,
"pdf_hash": null,
"txt_hash": null
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "b62877627c7869941b7097203548d1025f8bdc33d350bb8445957c0776b4b15a",
"txt_hash": "2faee92e0f4b9822b469daf3dba53ae9daeee14032ecece42937ea1c4d50e123"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "86255b1f90cddecd5702fdb93effa44d85a515860f1935271967e763f72ccde1",
"txt_hash": "8fd3c22a6b2ba1e748af46315fa8052a7e8f76c44fe6cae49e822c4cc40a98a2"
}
},
"status": "archived"
}