x 7 E a
A
MRA recognition for components CCRArecognition for components
up to EAL 4 and ALC_FLR only up to EAL 2 and ALC_FLRonly
A 4
centro criptoldgico nacional
CERTIFICATE
CCN-CC-3/2025
Strong Customer Authentication for Apple Pay on MacBookAir 2024
with M3 running macOS Sonoma 14.4
Type of product Otras herramientas
Conformanceof functionality Product specific Security Target — CC Part 3 conformant
Evaluation Facility Applus Laboratories
Certification Report CCN-CC/2024-11/INF-4471
Expiration Date See Certification Report
Pursuantto the authority vested in me under Act 11/2002 regulating the NationalIntelligence
Centre, and underArticle 1 and Article 2.2.c of Royal Decree 421/2004 of March 12th
regulating the National Cryptologic Centre, | hereby:
Certify that the security of Strong Customer Authentication for Apple Pay on MacBook Air
2024 with M3 running macOS Sonoma 14.4, requested by Apple Inc., 1 Apple Park Way,
Cupertino, California, 95014, United states of America, has been evaluated using CC/CEM:2022
Revision 1, and it has met the requirements of its Security Target identified as “Strong
CustomerAuthentication for Apple Pay on MacBookAir 2024 with M3 running macOS Sonoma
14.4 Security Target version 8.0 (November, 14 2024).”, for evaluation assurance level EAL2+
(ADV_FSP.3, ALC_FLR.3).
Madrid, 03 March 2025
Secretary of State Director
Esperanza Casteleiro
Llamazares
This certificate, its scope and validity are subject to the terms, conditions and requirements specified in the
“Reglamento de Evaluacióny Certificación de la Seguridad delas T.1.C.” at PRE/2740/2007, September 19th.
ENAC
CERTIFICACIÓN
180 17065
1245/ C-PRIIO
The above-mentioned Security Target and Certification Report are available at the National Cryptologic Centre.
This certificate will come into effect the following day that the associated certificate resolution
signed by the Secretary of State Director of CCN is published in the Official State Gazette (B.O.E
— https://www.boe.es).
The IT product identified in this certificate has been evaluated at an accredited and
licensed/approved evaluation facility using the CC/CEM:2022 Revision 1 and CC Supporting
Documentsas listed in the Certification Report. This certificate applies only to the specific
version and release of the product in its evaluated configuration and in conjunction with the
complete Certification Report. The evaluation has been conducted in accordance with the
provisions of the Spanish IT Security Evaluation and Certification Scheme, PRE/2740/2007
September the 19th, and the conclusions of the evaluation facility in the evaluation technical
report are consistent with the evidence adduced.This certificate is not an endorsement of the
IT product by the Spanish Schemeorby any otherorganisation that recognisesor gives effect
to this certificate, and no warranty of the IT product by the Spanish Schemeor by any other
organisation that recognisesorgives effect to this certificate, is either expressed or implied.