This page was not yet optimized for use on mobile devices.
CardOS V5.3 QES, V1.0
CSV information ?
| Status | archived |
|---|---|
| Valid from | 06.08.2014 |
| Valid until | 01.09.2019 |
| Scheme | 🇩🇪 DE |
| Manufacturer | Atos IT Solutions and Services GmbH |
| Category | Products for Digital Signatures |
| Security level | EAL4+, AVA_VAN.5 |
| Maintenance updates | CardOS V5.3 QES, V1.0 (04.07.2017) Certification report |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-0921-2014
Certificate ?
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, 3DES, TDES, Triple-DES, TDEA, CMACAsymmetric Algorithms
ECDSA, ECC, DSAHash functions
SHA-256, SHA-384, SHA-512, SHA-2Schemes
Key AgreementRandomness
RNGLibraries
v1.02.013Elliptic Curves
Curve P-256, Curve P-384, curve P-256, curve P-384, P-256, P-384, secp256r1, secp384r1, brainpoolP256r1, brainpoolP384r1Block cipher modes
CBCVendor
Infineon, Infineon Technologies AGSecurity level
EAL 4, EAL 5, EAL1, EAL4, EAL5+, EAL6, EAL3, EAL5, EAL7, EAL2, EAL 4 augmented, ITSEC EvaluationClaims
OE.HID_VADSecurity Assurance Requirements (SAR)
ADV_ARC, ADV_COMP.1, ADV_ARC.1, ADV_FSP.1, ADV_FSP.2, ADV_FSP.3, ADV_FSP.4, ADV_FSP.5, ADV_FSP.6, ADV_IMP.1, ADV_IMP.2, ADV_INT.1, ADV_INT.2, ADV_INT.3, ADV_SPM.1, ADV_TDS.1, ADV_TDS.2, ADV_TDS.3, ADV_TDS.4, ADV_TDS.5, ADV_TDS.6, ADV_FSP, ADV_IMP, ADV_INT, ADV_SPM, ADV_TDS, AGD_OPE.1, AGD_PRE.1, AGD_OPE, AGD_PRE, ALC_CMC.1, ALC_CMC.2, ALC_CMC.3, ALC_CMC.4, ALC_CMC.5, ALC_CMS.1, ALC_CMS.2, ALC_CMS.3, ALC_CMS.4, ALC_CMS.5, ALC_DEL.1, ALC_DVS.1, ALC_DVS.2, ALC_FLR.1, ALC_FLR.2, ALC_FLR.3, ALC_LCD.1, ALC_LCD.2, ALC_TAT.1, ALC_TAT.2, ALC_TAT.3, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS, ALC_FLR, ALC_TAT, ATE_FUN, ATE_COV, ATE_DPT, ATE_IND, ATE_COV.1, ATE_COV.2, ATE_COV.3, ATE_DPT.1, ATE_DPT.2, ATE_DPT.3, ATE_DPT.4, ATE_FUN.1, ATE_FUN.2, ATE_IND.1, ATE_IND.2, ATE_IND.3, AVA_VAN.5, AVA_VAN, AVA_VAN.1, AVA_VAN.2, AVA_VAN.3, AVA_VAN.4, APE_INT.1, APE_CCL.1, APE_SPD.1, APE_OBJ.1, APE_OBJ.2, APE_ECD.1, APE_REQ.1, APE_REQ.2, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_OBJ.2, ASE_ECD.1, ASE_REQ.1, ASE_REQ.2, ASE_TSS.1, ASE_TSS.2, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_SPD, ASE_TSSSecurity Functional Requirements (SFR)
FCS_CKM, FCS_COP, FIA_AFL, FIA_UID.1, FIA_UAU.1, FMT_SMF.1, FMT_MTDProtection profiles
BSI-CC-PP-0059-2009-MA-01Certificates
BSI-DSZ-CC-0921-2014, BSI-DSZ-CC-0782-2012-MA-01, BSI-DSZ-CC-0782-2012, BSI-DSZ-CC-0782Evaluation facilities
TÃœV Informationstechnik, TÃœViTCertification process
Technical Report BSI-DSZ-CC-0921-2014, Version 3.0, 31 July 2014, TÜV Informationstechnik GmbH, (confidential document) [9] Certification Report BSI-DSZ-CC-0782-2012 for Infineon Security Controller M7892 B11 with, ETR-COMP), M7892 B11, BSI-DSZ-CC-0782, Version 5, 20 March 2014, TÜV Informationstechnik GmbH, (confidential document) [12] Configuration List 'CardOS V5.3 QES, V1.0', Revision 1.30, 30 July 2014, Atos IT Solutions, Services GmbH, (confidential document) [13] Users Manual CardOS V5.3, Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential, & Release Notes 'CardOS V5.3 QES, V1.0', Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential document) [15] Administrator Guidance 'CardOS V5.3 QES, V1.0', Revision 1.20, 07 May 2014, Atos IT Solutions, Services GmbH, (confidential document) [16] User Guidance 'CardOS V5.3 QES, V1.0', Revision 1.30, 02 May 2014, Atos IT Solutions and, GmbH, (confidential document) [17] Application Digital Signature 'CardOS V5.3 QES, V1.0', Revision 1.10, 07 May 2014, Atos IT, and Services GmbH, (confidential document) [18] ISO 7816 Part 3: Electronic Signals and Transmission Protocols – ISO/IEC 7816-3:1997/AmdSide-channel analysis
JILCertification process
Technical Report BSI-DSZ-CC-0921-2014, Version 3.0, 31 July 2014, TÜV Informationstechnik GmbH, (confidential document) [9] Certification Report BSI-DSZ-CC-0782-2012 for Infineon Security Controller M7892 B11 with, ETR-COMP), M7892 B11, BSI-DSZ-CC-0782, Version 5, 20 March 2014, TÜV Informationstechnik GmbH, (confidential document) [12] Configuration List 'CardOS V5.3 QES, V1.0', Revision 1.30, 30 July 2014, Atos IT Solutions, Services GmbH, (confidential document) [13] Users Manual CardOS V5.3, Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential, & Release Notes 'CardOS V5.3 QES, V1.0', Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential document) [15] Administrator Guidance 'CardOS V5.3 QES, V1.0', Revision 1.20, 07 May 2014, Atos IT Solutions, Services GmbH, (confidential document) [16] User Guidance 'CardOS V5.3 QES, V1.0', Revision 1.30, 02 May 2014, Atos IT Solutions and, GmbH, (confidential document) [17] Application Digital Signature 'CardOS V5.3 QES, V1.0', Revision 1.10, 07 May 2014, Atos IT, and Services GmbH, (confidential document) [18] ISO 7816 Part 3: Electronic Signals and Transmission Protocols – ISO/IEC 7816-3:1997/AmdStandards
FIPS PUB 197, PKCS1, AIS 34, AIS 25, AIS 26, AIS 32, AIS 36, AIS 20, AIS 31, AIS 38, RFC3447, RFC 5639, ISO/IEC 15946-2Technical reports
BSI TR-02102, BSI 7125, BSI 7148File metadata
| Title | Certification Report BSI-DSZ-CC-0921-2014 |
|---|---|
| Subject | Common Criteria Certification |
| Keywords | "Common Criteria, Certification, Zertifizierung, SSCD, ATOS, SLE78, 0921" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Creation date | D:20140825113014+02'00' |
| Modification date | D:20140825114646+02'00' |
| Pages | 48 |
| Creator | Writer |
| Producer | LibreOffice 3.6 |
Frontpage
| Certificate ID | BSI-DSZ-CC-0921-2014 |
|---|---|
| Certified item | CardOS V5.3 QES, V1.0 |
| Certification lab | BSI |
| Developer | Atos IT Solutions and Services GmbH |
References
Outgoing- BSI-DSZ-CC-0782-2012 - archived - Infineon Security Controller M7892 B11 with optional RSA2048/4096 v1.02.013, EC v1.02.013, SHA-2 v1.01 and Toolbox v1.02.013 libraries and with specific IC dedicated software (firmware)
Security target ?
Extracted keywords
Symmetric Algorithms
AES, DES, 3DES, TDES, Triple-DES, CMACAsymmetric Algorithms
ECDSA, ECC, DSAHash functions
SHA-1, SHA-256, SHA-384, SHA-512, SHA-2Schemes
MAC, Key AgreementRandomness
RNGLibraries
v1.02.013Elliptic Curves
Curve P-256, Curve P-384, P-256, P-384, secp256r1, secp384r1, brainpoolP256r1, brainpoolP384r1Block cipher modes
CBCTrusted Execution Environments
SSC, SEVendor
NXP Semiconductors, Infineon Technologies AG, Infineon, Infineon Technologies, STMicroelectronicsSecurity level
EAL 4, EAL4, EAL 4+, EAL 6+, EAL4 augmentedClaims
A.CGA, A.SCA, A.III, OE.HID_VADSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_DVS.1, ALC_LCD.1, ALC_TAT.1, ALC_DVS, ALC_DEL, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.5, ASE_INT, ASE_CCL, ASE_SPD, ASE_OBJ, ASE_ECD, ASE_REQ, ASE_TSS, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_GEN, FAU_SAS.1, FCS_CKM, FCS_CKM.4, FCS_COP, FCS_CKM.1, FCS_COP.1, FCS_CKM.2, FCS_CKM.4.1, FCS_RNG.1, FDP_ACC, FDP_ACF, FDP_RIP.1, FDP_SDI, FDP_ITC.1, FDP_ITC.2, FDP_ACF.1, FDP_ACC.1, FDP_RIP.1.1, FDP_SDI.1, FDP_SDI.2, FDP_IFC.1, FDP_ITT.1, FIA_API, FIA_UID.1, FIA_UAU.1, FIA_AFL, FIA_API.1, FIA_AFL.1, FIA_API.1.1, FIA_UID.1.1, FIA_UID.1.2, FIA_UAU.1.1, FIA_UAU.1.2, FMT_SMR.1, FMT_SMF.1, FMT_MOF.1, FMT_MSA, FMT_MSA.2, FMT_MSA.3, FMT_MSA.4, FMT_MTD, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMF.1.1, FMT_MOF.1.1, FMT_MSA.1, FMT_MSA.2.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MSA.4.1, FMT_MTD.1, FMT_LIM.1, FMT_LIM.2, FPT_EMS, FPT_EMS.1, FPT_FLS.1, FPT_PHP.1, FPT_PHP.3, FPT_TST.1, FPT_EMS.1.1, FPT_EMS.1.2, FPT_FLS.1.1, FPT_TST, FPT_PHP.1.1, FPT_PHP.1.2, FPT_PHP.3.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FPT_TST.2, FRU_FLT.2, FTP_ITC, FTP_ITC.1Protection profiles
BSI-PP-0035, BSI-CC-PP-0035-2007, BSI-CC-PP-0071, BSI-CC-PP-0071-2012, BSI-CC-PP-0059-2009-MA-01, BSI-PP0059-2009, BSI-CC-PP-0059-, BSI-CC-PP-0059-2009-MA-, BSI-PP-0006-2002, BSI-CC-PP- 0059-2009-MA-01Certificates
BSI-DSZ-CC-0782-2012-MA-01, BSI-DSZ-CC-921, CC-3Certification process
out of scope, no longer needed for any tasks concerning Application for QES. It has to be deleted. 10. Step 22 is out of scope of the TOE. 28 Security Target 'CardOS V5.3 QES, V1.0', Rev. 1.61, Edition 07/2014 Copyright © AtosSide-channel analysis
physical probing, DPA, SPA, timing attacks, physical tampering, DFA, fault injectionCertification process
out of scope, no longer needed for any tasks concerning Application for QES. It has to be deleted. 10. Step 22 is out of scope of the TOE. 28 Security Target 'CardOS V5.3 QES, V1.0', Rev. 1.61, Edition 07/2014 Copyright © AtosStandards
FIPS PUB 197, PKCS1, RFC 5639, RFC3447, CCMB-2012-09-001, CCMB-2012-09-002, CCMB-2012-09-003, CCMB-2012-09-004File metadata
| Title | Security Target 'CardOS V5.3 QES, V1.0', Rev. 1.61, Edition 07/2014 |
|---|---|
| Subject | Security Target CardOS V5.3 QES (SSCD for QES) |
| Keywords | Common Criteria, Security Target, CardOS |
| Author | Atos IT Solutions and Services GmbH |
| Creation date | D:20140723191014+02'00' |
| Modification date | D:20140723191641+02'00' |
| Pages | 102 |
| Creator | Writer |
| Producer | OpenOffice.org 3.2 |
Heuristics ?
Certificate ID: BSI-DSZ-CC-0921-2014
Extracted SARs
ASE_ECD.1, AVA_VAN.5, ALC_DEL.1, APE_ECD.1, APE_OBJ.2, AGD_PRE.1, ADV_IMP.1, APE_CCL.1, ALC_LCD.1, ADV_FSP.4, ATE_FUN.1, ASE_REQ.2, ALC_CMS.4, ALC_TAT.1, ASE_CCL.1, ASE_OBJ.2, ATE_COV.2, ADV_ARC.1, ALC_FLR.3, ATE_IND.2, ALC_DVS.1, ATE_DPT.1, APE_REQ.2, APE_INT.1, ADV_INT.3, ADV_COMP.1, ASE_SPD.1, AGD_OPE.1, ASE_INT.1, ALC_CMC.4, APE_SPD.1, ASE_TSS.1, ADV_SPM.1, ADV_TDS.3References ?
Updates ?
-
22.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'a88803c39ce0fa055febf8db7817855832de0ee5160131c531621896f01f39ad', 'txt_hash': '069808a91f45c90fdf2b2242cf8a8e48ba947459d8cbdf23bfbcb5b64eec770a'}data. - The st property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'c6028dfe01fb9ee387cba93bbd7236f457c4ccf9b4ae6c467a0a9b2dab9be57f', 'txt_hash': 'ed77c808e0005fb5556daed9409c2830f5e85874e5f9523118ca272e0a585aee'}data.
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 1331954, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 48, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20140825113014+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, SSCD, ATOS, SLE78, 0921"', '/ModDate': "D:20140825114646+02'00'", '/Producer': 'LibreOffice 3.6', '/Subject': 'Common Criteria Certification', '/Title': 'Certification Report BSI-DSZ-CC-0921-2014', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/zertifizierung', 'http://www.ris.bka.gv.at/', 'https://www.bsi.bund.de/']}}. - The st_metadata property was set to
{'pdf_file_size_bytes': 530532, 'pdf_is_encrypted': True, 'pdf_number_of_pages': 102, '/Author': 'Atos IT Solutions and Services GmbH', '/CreationDate': "D:20140723191014+02'00'", '/Creator': 'Writer', '/Keywords': 'Common Criteria, Security Target, CardOS', '/ModDate': "D:20140723191641+02'00'", '/Producer': 'OpenOffice.org 3.2', '/Subject': 'Security Target CardOS V5.3 QES (SSCD for QES)', '/Title': "Security Target 'CardOS V5.3 QES, V1.0', Rev. 1.61, Edition 07/2014", 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-0921-2014', 'cert_item': 'CardOS V5.3 QES, V1.0', 'developer': 'Atos IT Solutions and Services GmbH', 'cert_lab': 'BSI'}}. - The report_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-0921-2014': 27, 'BSI-DSZ-CC-0782-2012-MA-01': 4, 'BSI-DSZ-CC-0782-2012': 2, 'BSI-DSZ-CC-0782': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0059-2009-MA-01': 4}}, 'cc_security_level': {'EAL': {'EAL 4': 6, 'EAL 5': 2, 'EAL1': 7, 'EAL4': 9, 'EAL5+': 1, 'EAL6': 4, 'EAL3': 4, 'EAL5': 6, 'EAL7': 4, 'EAL2': 3, 'EAL 4 augmented': 3}, 'ITSEC': {'ITSEC Evaluation': 1}}, 'cc_sar': {'ADV': {'ADV_ARC': 2, 'ADV_COMP.1': 1, 'ADV_ARC.1': 1, 'ADV_FSP.1': 1, 'ADV_FSP.2': 1, 'ADV_FSP.3': 1, 'ADV_FSP.4': 1, 'ADV_FSP.5': 1, 'ADV_FSP.6': 1, 'ADV_IMP.1': 1, 'ADV_IMP.2': 1, 'ADV_INT.1': 1, 'ADV_INT.2': 1, 'ADV_INT.3': 1, 'ADV_SPM.1': 1, 'ADV_TDS.1': 1, 'ADV_TDS.2': 1, 'ADV_TDS.3': 1, 'ADV_TDS.4': 1, 'ADV_TDS.5': 1, 'ADV_TDS.6': 1, 'ADV_FSP': 1, 'ADV_IMP': 1, 'ADV_INT': 1, 'ADV_SPM': 1, 'ADV_TDS': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1, 'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_CMC.1': 1, 'ALC_CMC.2': 1, 'ALC_CMC.3': 1, 'ALC_CMC.4': 2, 'ALC_CMC.5': 1, 'ALC_CMS.1': 1, 'ALC_CMS.2': 1, 'ALC_CMS.3': 1, 'ALC_CMS.4': 2, 'ALC_CMS.5': 1, 'ALC_DEL.1': 2, 'ALC_DVS.1': 2, 'ALC_DVS.2': 1, 'ALC_FLR.1': 1, 'ALC_FLR.2': 1, 'ALC_FLR.3': 1, 'ALC_LCD.1': 2, 'ALC_LCD.2': 1, 'ALC_TAT.1': 2, 'ALC_TAT.2': 1, 'ALC_TAT.3': 1, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_FLR': 1, 'ALC_TAT': 1}, 'ATE': {'ATE_FUN': 2, 'ATE_COV': 2, 'ATE_DPT': 2, 'ATE_IND': 2, 'ATE_COV.1': 1, 'ATE_COV.2': 1, 'ATE_COV.3': 1, 'ATE_DPT.1': 1, 'ATE_DPT.2': 1, 'ATE_DPT.3': 1, 'ATE_DPT.4': 1, 'ATE_FUN.1': 1, 'ATE_FUN.2': 1, 'ATE_IND.1': 1, 'ATE_IND.2': 1, 'ATE_IND.3': 1}, 'AVA': {'AVA_VAN.5': 6, 'AVA_VAN': 4, 'AVA_VAN.1': 1, 'AVA_VAN.2': 1, 'AVA_VAN.3': 1, 'AVA_VAN.4': 1}, 'APE': {'APE_INT.1': 1, 'APE_CCL.1': 1, 'APE_SPD.1': 1, 'APE_OBJ.1': 1, 'APE_OBJ.2': 1, 'APE_ECD.1': 1, 'APE_REQ.1': 1, 'APE_REQ.2': 1}, 'ASE': {'ASE_INT.1': 1, 'ASE_CCL.1': 1, 'ASE_SPD.1': 1, 'ASE_OBJ.1': 1, 'ASE_OBJ.2': 1, 'ASE_ECD.1': 1, 'ASE_REQ.1': 1, 'ASE_REQ.2': 1, 'ASE_TSS.1': 1, 'ASE_TSS.2': 1, 'ASE_CCL': 1, 'ASE_ECD': 1, 'ASE_INT': 1, 'ASE_OBJ': 1, 'ASE_SPD': 1, 'ASE_TSS': 1}}, 'cc_sfr': {'FCS': {'FCS_CKM': 2, 'FCS_COP': 2}, 'FIA': {'FIA_AFL': 3, 'FIA_UID.1': 1, 'FIA_UAU.1': 1}, 'FMT': {'FMT_SMF.1': 2, 'FMT_MTD': 4}}, 'cc_claims': {'OE': {'OE.HID_VAD': 1}}, 'vendor': {'Infineon': {'Infineon': 9, 'Infineon Technologies AG': 5}}, 'eval_facility': {'TUV': {'TÜV Informationstechnik': 4, 'TÜViT': 1}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 11}}, 'DES': {'3DES': {'3DES': 4, 'TDES': 5, 'Triple-DES': 1, 'TDEA': 1}}, 'constructions': {'MAC': {'CMAC': 2}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 8}, 'ECC': {'ECC': 1}}, 'FF': {'DSA': {'DSA': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-256': 6, 'SHA-384': 3, 'SHA-512': 2, 'SHA-2': 5}}}, 'crypto_scheme': {'KA': {'Key Agreement': 1}}, 'crypto_protocol': {}, 'randomness': {'RNG': {'RNG': 2}}, 'cipher_mode': {'CBC': {'CBC': 2}}, 'ecc_curve': {'NIST': {'Curve P-256': 4, 'Curve P-384': 4, 'curve P-256': 1, 'curve P-384': 1, 'P-256': 5, 'P-384': 5, 'secp256r1': 2, 'secp384r1': 2}, 'Brainpool': {'brainpoolP256r1': 3, 'brainpoolP384r1': 3}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'Infineon': {'v1.02.013': 11}}, 'vulnerability': {}, 'side_channel_analysis': {'other': {'JIL': 3}}, 'technical_report_id': {'BSI': {'BSI TR-02102': 1, 'BSI 7125': 2, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 197': 2}, 'PKCS': {'PKCS1': 4}, 'BSI': {'AIS 34': 2, 'AIS 25': 2, 'AIS 26': 2, 'AIS 32': 2, 'AIS 36': 3, 'AIS 20': 2, 'AIS 31': 2, 'AIS 38': 1}, 'RFC': {'RFC3447': 4, 'RFC 5639': 1}, 'ISO': {'ISO/IEC 15946-2': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'Technical Report BSI-DSZ-CC-0921-2014, Version 3.0, 31 July 2014, TÜV Informationstechnik GmbH, (confidential document) [9] Certification Report BSI-DSZ-CC-0782-2012 for Infineon Security Controller M7892 B11 with': 1, "ETR-COMP), M7892 B11, BSI-DSZ-CC-0782, Version 5, 20 March 2014, TÜV Informationstechnik GmbH, (confidential document) [12] Configuration List 'CardOS V5.3 QES, V1.0', Revision 1.30, 30 July 2014, Atos IT Solutions": 1, 'Services GmbH, (confidential document) [13] Users Manual CardOS V5.3, Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential': 1, "& Release Notes 'CardOS V5.3 QES, V1.0', Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential document) [15] Administrator Guidance 'CardOS V5.3 QES, V1.0', Revision 1.20, 07 May 2014, Atos IT Solutions": 1, "Services GmbH, (confidential document) [16] User Guidance 'CardOS V5.3 QES, V1.0', Revision 1.30, 02 May 2014, Atos IT Solutions and": 1, "GmbH, (confidential document) [17] Application Digital Signature 'CardOS V5.3 QES, V1.0', Revision 1.10, 07 May 2014, Atos IT": 1, 'and Services GmbH, (confidential document) [18] ISO 7816 Part 3: Electronic Signals and Transmission Protocols – ISO/IEC 7816-3:1997/Amd': 1}}}. - The st_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-0782-2012-MA-01': 6, 'BSI-DSZ-CC-921': 1}, 'NL': {'CC-3': 10}}, 'cc_protection_profile_id': {'BSI': {'BSI-PP-0035': 4, 'BSI-CC-PP-0035-2007': 2, 'BSI-CC-PP-0071': 4, 'BSI-CC-PP-0071-2012': 2, 'BSI-CC-PP-0059-2009-MA-01': 45, 'BSI-PP0059-2009': 2, 'BSI-CC-PP-0059-': 3, 'BSI-CC-PP-0059-2009-MA-': 2, 'BSI-PP-0006-2002': 1, 'BSI-CC-PP- 0059-2009-MA-01': 1}}, 'cc_security_level': {'EAL': {'EAL 4': 2, 'EAL4': 8, 'EAL 4+': 1, 'EAL 6+': 3, 'EAL4 augmented': 5}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 2, 'ADV_FSP.4': 2, 'ADV_IMP.1': 2, 'ADV_TDS.3': 2}, 'AGD': {'AGD_OPE.1': 2, 'AGD_PRE.1': 2}, 'ALC': {'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_DVS.1': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1, 'ALC_DVS': 1, 'ALC_DEL': 1}, 'ATE': {'ATE_COV.2': 1, 'ATE_DPT.1': 2, 'ATE_FUN.1': 1, 'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.5': 7}, 'ASE': {'ASE_INT': 16, 'ASE_CCL': 10, 'ASE_SPD': 6, 'ASE_OBJ': 11, 'ASE_ECD': 5, 'ASE_REQ': 33, 'ASE_TSS': 17, 'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 1, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN': 1, 'FAU_SAS.1': 1}, 'FCS': {'FCS_CKM': 62, 'FCS_CKM.4': 33, 'FCS_COP': 98, 'FCS_CKM.1': 26, 'FCS_COP.1': 15, 'FCS_CKM.2': 6, 'FCS_CKM.4.1': 1, 'FCS_RNG.1': 1}, 'FDP': {'FDP_ACC': 55, 'FDP_ACF': 39, 'FDP_RIP.1': 11, 'FDP_SDI': 19, 'FDP_ITC.1': 20, 'FDP_ITC.2': 20, 'FDP_ACF.1': 25, 'FDP_ACC.1': 23, 'FDP_RIP.1.1': 1, 'FDP_SDI.1': 3, 'FDP_SDI.2': 5, 'FDP_IFC.1': 11, 'FDP_ITT.1': 1}, 'FIA': {'FIA_API': 17, 'FIA_UID.1': 14, 'FIA_UAU.1': 21, 'FIA_AFL': 54, 'FIA_API.1': 5, 'FIA_AFL.1': 14, 'FIA_API.1.1': 1, 'FIA_UID.1.1': 1, 'FIA_UID.1.2': 1, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1}, 'FMT': {'FMT_SMR.1': 29, 'FMT_SMF.1': 39, 'FMT_MOF.1': 7, 'FMT_MSA': 28, 'FMT_MSA.2': 12, 'FMT_MSA.3': 25, 'FMT_MSA.4': 8, 'FMT_MTD': 40, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_SMF.1.1': 1, 'FMT_MOF.1.1': 1, 'FMT_MSA.1': 7, 'FMT_MSA.2.1': 1, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_MSA.4.1': 1, 'FMT_MTD.1': 3, 'FMT_LIM.1': 1, 'FMT_LIM.2': 1}, 'FPT': {'FPT_EMS': 8, 'FPT_EMS.1': 22, 'FPT_FLS.1': 8, 'FPT_PHP.1': 6, 'FPT_PHP.3': 8, 'FPT_TST.1': 14, 'FPT_EMS.1.1': 4, 'FPT_EMS.1.2': 3, 'FPT_FLS.1.1': 1, 'FPT_TST': 1, 'FPT_PHP.1.1': 1, 'FPT_PHP.1.2': 1, 'FPT_PHP.3.1': 1, 'FPT_TST.1.1': 6, 'FPT_TST.1.2': 1, 'FPT_TST.1.3': 1, 'FPT_TST.2': 1}, 'FRU': {'FRU_FLT.2': 1}, 'FTP': {'FTP_ITC': 8, 'FTP_ITC.1': 3}}, 'cc_claims': {'A': {'A.CGA': 4, 'A.SCA': 5, 'A.III': 2}, 'OE': {'OE.HID_VAD': 3}}, 'vendor': {'NXP': {'NXP Semiconductors': 1}, 'Infineon': {'Infineon Technologies AG': 3, 'Infineon': 17, 'Infineon Technologies': 1}, 'STMicroelectronics': {'STMicroelectronics': 1}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 34}}, 'DES': {'DES': {'DES': 3}, '3DES': {'3DES': 7, 'TDES': 15, 'Triple-DES': 10}}, 'constructions': {'MAC': {'CMAC': 3}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 14}, 'ECC': {'ECC': 3}}, 'FF': {'DSA': {'DSA': 3}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA-256': 15, 'SHA-384': 8, 'SHA-512': 6, 'SHA-2': 11}}}, 'crypto_scheme': {'MAC': {'MAC': 17}, 'KA': {'Key Agreement': 1}}, 'crypto_protocol': {}, 'randomness': {'RNG': {'RNG': 3}}, 'cipher_mode': {'CBC': {'CBC': 7}}, 'ecc_curve': {'NIST': {'Curve P-256': 4, 'Curve P-384': 4, 'P-256': 8, 'P-384': 8, 'secp256r1': 3, 'secp384r1': 3}, 'Brainpool': {'brainpoolP256r1': 5, 'brainpoolP384r1': 5}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'Infineon': {'v1.02.013': 15}}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'physical probing': 2, 'DPA': 2, 'SPA': 3, 'timing attacks': 2}, 'FI': {'physical tampering': 5, 'DFA': 1, 'fault injection': 1}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {'IBM': {'SSC': 7, 'SE': 1}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 197': 4}, 'PKCS': {'PKCS1': 8}, 'RFC': {'RFC 5639': 1, 'RFC3447': 7}, 'CC': {'CCMB-2012-09-001': 1, 'CCMB-2012-09-002': 1, 'CCMB-2012-09-003': 1, 'CCMB-2012-09-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 1, "no longer needed for any tasks concerning Application for QES. It has to be deleted. 10. Step 22 is out of scope of the TOE. 28 Security Target 'CardOS V5.3 QES, V1.0', Rev. 1.61, Edition 07/2014 Copyright © Atos": 1}}}. - The report_filename property was set to
0921a_pdf.pdf. - The st_filename property was set to
0921b_pdf.pdf.
The computed heuristics were updated.
- The cert_lab property was set to
['BSI']. - The cert_id property was set to
BSI-DSZ-CC-0921-2014. - The report_references property was updated, with the
{'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0782-2012']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0782-2012']}}data. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_INT', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_COMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_SPM', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}]}values added.
- The report property was updated, with the
-
17.08.2024 The certificate data changed.
Certificate changed
The report_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0921a_pdf.pdf.
The st_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0921b_pdf.pdf.
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data. - The st property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data.
The PDF extraction data was updated.
- The report_metadata property was set to
None. - The st_metadata property was set to
None. - The report_frontpage property was set to
None. - The report_keywords property was set to
None. - The st_keywords property was set to
None. - The report_filename property was set to
None. - The st_filename property was set to
None.
The computed heuristics were updated.
- The cert_lab property was set to
None. - The cert_id property was set to
None. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_INT', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_COMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_SPM', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}]}values discarded.
- The new value is
-
12.08.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The report_references property was updated, with the
{'directly_referencing': None, 'indirectly_referencing': None}data.
- The report_references property was updated, with the
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name CardOS V5.3 QES, V1.0 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Products for Digital Signatures",
"cert_link": null,
"dgst": "60c5f6b486bdffeb",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-0921-2014",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_INT",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_COMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_SPM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"1.0",
"5.3"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0782-2012"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0782-2012"
]
}
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.cc.CCCertificate.MaintenanceReport",
"maintenance_date": "2017-07-04",
"maintenance_report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0921ma1a_pdf.pdf",
"maintenance_st_link": null,
"maintenance_title": "CardOS V5.3 QES, V1.0"
}
]
},
"manufacturer": "Atos IT Solutions and Services GmbH",
"manufacturer_web": "https://www.de.atos.net",
"name": "CardOS V5.3 QES, V1.0",
"not_valid_after": "2019-09-01",
"not_valid_before": "2014-08-06",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": null,
"cert_frontpage": null,
"cert_keywords": null,
"cert_metadata": null,
"report_filename": "0921a_pdf.pdf",
"report_frontpage": {
"DE": {
"cert_id": "BSI-DSZ-CC-0921-2014",
"cert_item": "CardOS V5.3 QES, V1.0",
"cert_lab": "BSI",
"developer": "Atos IT Solutions and Services GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
]
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 1
},
"ECDSA": {
"ECDSA": 8
}
},
"FF": {
"DSA": {
"DSA": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-0782": 1,
"BSI-DSZ-CC-0782-2012": 2,
"BSI-DSZ-CC-0782-2012-MA-01": 4,
"BSI-DSZ-CC-0921-2014": 27
}
},
"cc_claims": {
"OE": {
"OE.HID_VAD": 1
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0059-2009-MA-01": 4
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 2,
"ADV_ARC.1": 1,
"ADV_COMP.1": 1,
"ADV_FSP": 1,
"ADV_FSP.1": 1,
"ADV_FSP.2": 1,
"ADV_FSP.3": 1,
"ADV_FSP.4": 1,
"ADV_FSP.5": 1,
"ADV_FSP.6": 1,
"ADV_IMP": 1,
"ADV_IMP.1": 1,
"ADV_IMP.2": 1,
"ADV_INT": 1,
"ADV_INT.1": 1,
"ADV_INT.2": 1,
"ADV_INT.3": 1,
"ADV_SPM": 1,
"ADV_SPM.1": 1,
"ADV_TDS": 1,
"ADV_TDS.1": 1,
"ADV_TDS.2": 1,
"ADV_TDS.3": 1,
"ADV_TDS.4": 1,
"ADV_TDS.5": 1,
"ADV_TDS.6": 1
},
"AGD": {
"AGD_OPE": 1,
"AGD_OPE.1": 1,
"AGD_PRE": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMC": 1,
"ALC_CMC.1": 1,
"ALC_CMC.2": 1,
"ALC_CMC.3": 1,
"ALC_CMC.4": 2,
"ALC_CMC.5": 1,
"ALC_CMS": 1,
"ALC_CMS.1": 1,
"ALC_CMS.2": 1,
"ALC_CMS.3": 1,
"ALC_CMS.4": 2,
"ALC_CMS.5": 1,
"ALC_DEL": 1,
"ALC_DEL.1": 2,
"ALC_DVS": 1,
"ALC_DVS.1": 2,
"ALC_DVS.2": 1,
"ALC_FLR": 1,
"ALC_FLR.1": 1,
"ALC_FLR.2": 1,
"ALC_FLR.3": 1,
"ALC_LCD.1": 2,
"ALC_LCD.2": 1,
"ALC_TAT": 1,
"ALC_TAT.1": 2,
"ALC_TAT.2": 1,
"ALC_TAT.3": 1
},
"APE": {
"APE_CCL.1": 1,
"APE_ECD.1": 1,
"APE_INT.1": 1,
"APE_OBJ.1": 1,
"APE_OBJ.2": 1,
"APE_REQ.1": 1,
"APE_REQ.2": 1,
"APE_SPD.1": 1
},
"ASE": {
"ASE_CCL": 1,
"ASE_CCL.1": 1,
"ASE_ECD": 1,
"ASE_ECD.1": 1,
"ASE_INT": 1,
"ASE_INT.1": 1,
"ASE_OBJ": 1,
"ASE_OBJ.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.1": 1,
"ASE_REQ.2": 1,
"ASE_SPD": 1,
"ASE_SPD.1": 1,
"ASE_TSS": 1,
"ASE_TSS.1": 1,
"ASE_TSS.2": 1
},
"ATE": {
"ATE_COV": 2,
"ATE_COV.1": 1,
"ATE_COV.2": 1,
"ATE_COV.3": 1,
"ATE_DPT": 2,
"ATE_DPT.1": 1,
"ATE_DPT.2": 1,
"ATE_DPT.3": 1,
"ATE_DPT.4": 1,
"ATE_FUN": 2,
"ATE_FUN.1": 1,
"ATE_FUN.2": 1,
"ATE_IND": 2,
"ATE_IND.1": 1,
"ATE_IND.2": 1,
"ATE_IND.3": 1
},
"AVA": {
"AVA_VAN": 4,
"AVA_VAN.1": 1,
"AVA_VAN.2": 1,
"AVA_VAN.3": 1,
"AVA_VAN.4": 1,
"AVA_VAN.5": 6
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 6,
"EAL 4 augmented": 3,
"EAL 5": 2,
"EAL1": 7,
"EAL2": 3,
"EAL3": 4,
"EAL4": 9,
"EAL5": 6,
"EAL5+": 1,
"EAL6": 4,
"EAL7": 4
},
"ITSEC": {
"ITSEC Evaluation": 1
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM": 2,
"FCS_COP": 2
},
"FIA": {
"FIA_AFL": 3,
"FIA_UAU.1": 1,
"FIA_UID.1": 1
},
"FMT": {
"FMT_MTD": 4,
"FMT_SMF.1": 2
}
},
"certification_process": {
"ConfidentialDocument": {
"\u0026 Release Notes \u0027CardOS V5.3 QES, V1.0\u0027, Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential document) [15] Administrator Guidance \u0027CardOS V5.3 QES, V1.0\u0027, Revision 1.20, 07 May 2014, Atos IT Solutions": 1,
"ETR-COMP), M7892 B11, BSI-DSZ-CC-0782, Version 5, 20 March 2014, T\u00dcV Informationstechnik GmbH, (confidential document) [12] Configuration List \u0027CardOS V5.3 QES, V1.0\u0027, Revision 1.30, 30 July 2014, Atos IT Solutions": 1,
"GmbH, (confidential document) [17] Application Digital Signature \u0027CardOS V5.3 QES, V1.0\u0027, Revision 1.10, 07 May 2014, Atos IT": 1,
"Services GmbH, (confidential document) [13] Users Manual CardOS V5.3, Edition 05/2014, Atos IT Solutions and Services GmbH, (confidential": 1,
"Services GmbH, (confidential document) [16] User Guidance \u0027CardOS V5.3 QES, V1.0\u0027, Revision 1.30, 02 May 2014, Atos IT Solutions and": 1,
"Technical Report BSI-DSZ-CC-0921-2014, Version 3.0, 31 July 2014, T\u00dcV Informationstechnik GmbH, (confidential document) [9] Certification Report BSI-DSZ-CC-0782-2012 for Infineon Security Controller M7892 B11 with": 1,
"and Services GmbH, (confidential document) [18] ISO 7816 Part 3: Electronic Signals and Transmission Protocols \u2013 ISO/IEC 7816-3:1997/Amd": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"Infineon": {
"v1.02.013": 11
}
},
"crypto_protocol": {},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 3,
"brainpoolP384r1": 3
},
"NIST": {
"Curve P-256": 4,
"Curve P-384": 4,
"P-256": 5,
"P-384": 5,
"curve P-256": 1,
"curve P-384": 1,
"secp256r1": 2,
"secp384r1": 2
}
},
"eval_facility": {
"TUV": {
"T\u00dcV Informationstechnik": 4,
"T\u00dcViT": 1
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-2": 5,
"SHA-256": 6,
"SHA-384": 3,
"SHA-512": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 2
}
},
"side_channel_analysis": {
"other": {
"JIL": 3
}
},
"standard_id": {
"BSI": {
"AIS 20": 2,
"AIS 25": 2,
"AIS 26": 2,
"AIS 31": 2,
"AIS 32": 2,
"AIS 34": 2,
"AIS 36": 3,
"AIS 38": 1
},
"FIPS": {
"FIPS PUB 197": 2
},
"ISO": {
"ISO/IEC 15946-2": 1
},
"PKCS": {
"PKCS1": 4
},
"RFC": {
"RFC 5639": 1,
"RFC3447": 4
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 11
}
},
"DES": {
"3DES": {
"3DES": 4,
"TDEA": 1,
"TDES": 5,
"Triple-DES": 1
}
},
"constructions": {
"MAC": {
"CMAC": 2
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7125": 2,
"BSI 7148": 1,
"BSI TR-02102": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Infineon": {
"Infineon": 9,
"Infineon Technologies AG": 5
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20140825113014+02\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, SSCD, ATOS, SLE78, 0921\"",
"/ModDate": "D:20140825114646+02\u002700\u0027",
"/Producer": "LibreOffice 3.6",
"/Subject": "Common Criteria Certification",
"/Title": "Certification Report BSI-DSZ-CC-0921-2014",
"pdf_file_size_bytes": 1331954,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.bsi.bund.de/zertifizierung",
"https://www.bsi.bund.de/",
"http://www.commoncriteriaportal.org/",
"http://www.ris.bka.gv.at/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 48
},
"st_filename": "0921b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 3
},
"ECDSA": {
"ECDSA": 14
}
},
"FF": {
"DSA": {
"DSA": 3
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-0782-2012-MA-01": 6,
"BSI-DSZ-CC-921": 1
},
"NL": {
"CC-3": 10
}
},
"cc_claims": {
"A": {
"A.CGA": 4,
"A.III": 2,
"A.SCA": 5
},
"OE": {
"OE.HID_VAD": 3
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP- 0059-2009-MA-01": 1,
"BSI-CC-PP-0035-2007": 2,
"BSI-CC-PP-0059-": 3,
"BSI-CC-PP-0059-2009-MA-": 2,
"BSI-CC-PP-0059-2009-MA-01": 45,
"BSI-CC-PP-0071": 4,
"BSI-CC-PP-0071-2012": 2,
"BSI-PP-0006-2002": 1,
"BSI-PP-0035": 4,
"BSI-PP0059-2009": 2
}
},
"cc_sar": {
"ADV": {
"ADV_ARC.1": 2,
"ADV_FSP.4": 2,
"ADV_IMP.1": 2,
"ADV_TDS.3": 2
},
"AGD": {
"AGD_OPE.1": 2,
"AGD_PRE.1": 2
},
"ALC": {
"ALC_CMC.4": 1,
"ALC_CMS.4": 1,
"ALC_DEL": 1,
"ALC_DEL.1": 1,
"ALC_DVS": 1,
"ALC_DVS.1": 1,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ASE": {
"ASE_CCL": 10,
"ASE_CCL.1": 1,
"ASE_ECD": 5,
"ASE_ECD.1": 1,
"ASE_INT": 16,
"ASE_INT.1": 1,
"ASE_OBJ": 11,
"ASE_OBJ.2": 1,
"ASE_REQ": 33,
"ASE_REQ.2": 1,
"ASE_SPD": 6,
"ASE_SPD.1": 1,
"ASE_TSS": 17,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_COV.2": 1,
"ATE_DPT.1": 2,
"ATE_FUN.1": 1,
"ATE_IND.2": 1
},
"AVA": {
"AVA_VAN.5": 7
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 2,
"EAL 4+": 1,
"EAL 6+": 3,
"EAL4": 8,
"EAL4 augmented": 5
}
},
"cc_sfr": {
"FAU": {
"FAU_GEN": 1,
"FAU_SAS.1": 1
},
"FCS": {
"FCS_CKM": 62,
"FCS_CKM.1": 26,
"FCS_CKM.2": 6,
"FCS_CKM.4": 33,
"FCS_CKM.4.1": 1,
"FCS_COP": 98,
"FCS_COP.1": 15,
"FCS_RNG.1": 1
},
"FDP": {
"FDP_ACC": 55,
"FDP_ACC.1": 23,
"FDP_ACF": 39,
"FDP_ACF.1": 25,
"FDP_IFC.1": 11,
"FDP_ITC.1": 20,
"FDP_ITC.2": 20,
"FDP_ITT.1": 1,
"FDP_RIP.1": 11,
"FDP_RIP.1.1": 1,
"FDP_SDI": 19,
"FDP_SDI.1": 3,
"FDP_SDI.2": 5
},
"FIA": {
"FIA_AFL": 54,
"FIA_AFL.1": 14,
"FIA_API": 17,
"FIA_API.1": 5,
"FIA_API.1.1": 1,
"FIA_UAU.1": 21,
"FIA_UAU.1.1": 1,
"FIA_UAU.1.2": 1,
"FIA_UID.1": 14,
"FIA_UID.1.1": 1,
"FIA_UID.1.2": 1
},
"FMT": {
"FMT_LIM.1": 1,
"FMT_LIM.2": 1,
"FMT_MOF.1": 7,
"FMT_MOF.1.1": 1,
"FMT_MSA": 28,
"FMT_MSA.1": 7,
"FMT_MSA.2": 12,
"FMT_MSA.2.1": 1,
"FMT_MSA.3": 25,
"FMT_MSA.3.1": 1,
"FMT_MSA.3.2": 1,
"FMT_MSA.4": 8,
"FMT_MSA.4.1": 1,
"FMT_MTD": 40,
"FMT_MTD.1": 3,
"FMT_SMF.1": 39,
"FMT_SMF.1.1": 1,
"FMT_SMR.1": 29,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_EMS": 8,
"FPT_EMS.1": 22,
"FPT_EMS.1.1": 4,
"FPT_EMS.1.2": 3,
"FPT_FLS.1": 8,
"FPT_FLS.1.1": 1,
"FPT_PHP.1": 6,
"FPT_PHP.1.1": 1,
"FPT_PHP.1.2": 1,
"FPT_PHP.3": 8,
"FPT_PHP.3.1": 1,
"FPT_TST": 1,
"FPT_TST.1": 14,
"FPT_TST.1.1": 6,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1,
"FPT_TST.2": 1
},
"FRU": {
"FRU_FLT.2": 1
},
"FTP": {
"FTP_ITC": 8,
"FTP_ITC.1": 3
}
},
"certification_process": {
"OutOfScope": {
"no longer needed for any tasks concerning Application for QES. It has to be deleted. 10. Step 22 is out of scope of the TOE. 28 Security Target \u0027CardOS V5.3 QES, V1.0\u0027, Rev. 1.61, Edition 07/2014 Copyright \u00a9 Atos": 1,
"out of scope": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"Infineon": {
"v1.02.013": 15
}
},
"crypto_protocol": {},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
},
"MAC": {
"MAC": 17
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 5,
"brainpoolP384r1": 5
},
"NIST": {
"Curve P-256": 4,
"Curve P-384": 4,
"P-256": 8,
"P-384": 8,
"secp256r1": 3,
"secp384r1": 3
}
},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 2
},
"SHA2": {
"SHA-2": 11,
"SHA-256": 15,
"SHA-384": 8,
"SHA-512": 6
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 3
}
},
"side_channel_analysis": {
"FI": {
"DFA": 1,
"fault injection": 1,
"physical tampering": 5
},
"SCA": {
"DPA": 2,
"SPA": 3,
"physical probing": 2,
"timing attacks": 2
}
},
"standard_id": {
"CC": {
"CCMB-2012-09-001": 1,
"CCMB-2012-09-002": 1,
"CCMB-2012-09-003": 1,
"CCMB-2012-09-004": 1
},
"FIPS": {
"FIPS PUB 197": 4
},
"PKCS": {
"PKCS1": 8
},
"RFC": {
"RFC 5639": 1,
"RFC3447": 7
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 34
}
},
"DES": {
"3DES": {
"3DES": 7,
"TDES": 15,
"Triple-DES": 10
},
"DES": {
"DES": 3
}
},
"constructions": {
"MAC": {
"CMAC": 3
}
}
},
"technical_report_id": {},
"tee_name": {
"IBM": {
"SE": 1,
"SSC": 7
}
},
"tls_cipher_suite": {},
"vendor": {
"Infineon": {
"Infineon": 17,
"Infineon Technologies": 1,
"Infineon Technologies AG": 3
},
"NXP": {
"NXP Semiconductors": 1
},
"STMicroelectronics": {
"STMicroelectronics": 1
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "Atos IT Solutions and Services GmbH",
"/CreationDate": "D:20140723191014+02\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "Common Criteria, Security Target, CardOS",
"/ModDate": "D:20140723191641+02\u002700\u0027",
"/Producer": "OpenOffice.org 3.2",
"/Subject": "Security Target CardOS V5.3 QES (SSCD for QES)",
"/Title": "Security Target \u0027CardOS V5.3 QES, V1.0\u0027, Rev. 1.61, Edition 07/2014",
"pdf_file_size_bytes": 530532,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": true,
"pdf_number_of_pages": 102
}
},
"protection_profiles": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"pp_eal": null,
"pp_ids": null,
"pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0059b_pdf.pdf",
"pp_name": "Protection Profile for Secure Signature Creation Device - Part 2: Device with Key Generation, Version..."
}
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0921a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL4+",
"AVA_VAN.5"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0921b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": false,
"download_ok": false,
"extract_ok": false,
"pdf_hash": null,
"txt_hash": null
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "a88803c39ce0fa055febf8db7817855832de0ee5160131c531621896f01f39ad",
"txt_hash": "069808a91f45c90fdf2b2242cf8a8e48ba947459d8cbdf23bfbcb5b64eec770a"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "c6028dfe01fb9ee387cba93bbd7236f457c4ccf9b4ae6c467a0a9b2dab9be57f",
"txt_hash": "ed77c808e0005fb5556daed9409c2830f5e85874e5f9523118ca272e0a585aee"
}
},
"status": "archived"
}