secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0

CSV information ?

Status active
Valid from 08.03.2024
Valid until 07.03.2029
Scheme 🇩🇪 DE
Manufacturer Secunet Security Networks AG
Category Network and Network-Related Devices and Systems
Security level ALC_FLR.2, EAL4

Heuristics summary ?

Certificate ID: BSI-DSZ-CC-1216-2024

Certificate ?

Extracted keywords

Security level
EAL 4, EAL 2, EAL 4 augmented
Security Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLR
Certificates
BSI-DSZ-CC-1216-2024

Standards
ISO/IEC 15408, ISO/IEC 18045

File metadata

Title Certificate BSI-DSZ-CC-1216-2024
Subject Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel
Keywords "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel"
Author Bundesamt für Sicherheit in der Informationstechnik
Pages 1

Certification report ?

Extracted keywords

Symmetric Algorithms
AES, HMAC, CMAC
Asymmetric Algorithms
ECDSA
Hash functions
SHA-1, SHA256, SHA-256
Protocols
TLS 1.2
Elliptic Curves
secp224r1, secp384r1, secp512r1, secp256r1, sect233k1, sect283k1, sect283r1, sect409k1, sect409r1, sect571k1, sect571r1, brainpoolP256r1, brainpoolP256t1, brainpoolP320r1, brainpoolP320t1, brainpoolP384r1, brainpoolP384t1, brainpoolP512r1, brainpoolP512t1
Block cipher modes
CBC

Operating System name
STARCOS 3
Vendor
Infineon

Security level
EAL 4, EAL 2, EAL 1, EAL 4 augmented
Security Assurance Requirements (SAR)
AGD_PRE.1, AGD_OPE.1, ALC_FLR.2, ALC_FLR, ALC_CMS.4, AVA_VAN.3
Certificates
BSI-DSZ-CC-1216-2024, 383-6-3-CR
Evaluation facilities
SRC Security Research & Consulting
Certification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, 07.03.2024, Evaluation Technical Report (ETR) – Summary, SRC Security Research & Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011, Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 und

Certification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, 07.03.2024, Evaluation Technical Report (ETR) – Summary, SRC Security Research & Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011, Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 und

Standards
FIPS 186-5, FIPS197, FIPS180-2, FIPS 197, SP 800-38B, SP 800-38A, PKCS5, AIS 32, RFC2104, RFC 5280, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ICAO, X.509
Technical reports
BSI TR-03110, BSI TR-02102, BSI 7148

File metadata

Title Certification Report BSI-DSZ-CC-1216
Subject Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel
Keywords "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel"
Author Bundesamt für Sicherheit in der Informationstechnik
Pages 34

Frontpage

Certificate ID BSI-DSZ-CC-1216-2024
Certified item secunet eID PKI Suite Certified CA Kernel SC Version 3.0.0
Certification lab BSI
Developer secunet Security Networks AG

Security target ?

Extracted keywords

Symmetric Algorithms
AES, HMAC, CMAC
Asymmetric Algorithms
ECDSA
Hash functions
SHA-1, SHA-256
Schemes
MAC
Protocols
SSL
Randomness
RNG
Elliptic Curves
brainpoolP256r1, brainpoolP256t1, brainpoolP320t1, brainpoolP384t1, brainpoolP512t1
Block cipher modes
CBC

Vendor
Infineon

Security level
EAL 4, EAL4, EAL 4 augmented, EAL4 augmented
Claims
A.CPS, A.HSM, OE.CPS, OE.HSM
Security Assurance Requirements (SAR)
ADV_ARC, ADV_FSP, ADV_IMP.1, ADV_TDS, AGD_OPE, AGD_PRE, ALC_FLR.2, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS.1, ALC_FLR, ALC_LCD.1, ALC_TAT.1, ATE_COV, ATE_DPT.1, ATE_FUN, ATE_IND, AVA_VAN
Security Functional Requirements (SFR)
FAU_STG.1, FAU_GEN.1, FAU_GEN.2, FAU_SEL.1, FAU_STG.4, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FAU_SEL.1.1, FAU_STG.1.1, FAU_STG.1.2, FAU_STG.4.1, FCO_NRO_CIMC.3, FCO_NRO_CIMC.4, FCO_NRO_CIMC.3.1, FCO_NRO_CIMC.3.2, FCO_NRO_CIMC.3.3, FCO_NRO_CIMC.4.1, FCO_NRO_CIMC.4.2, FCS_COP.1, FCS_CKM.1, FCS_RNG, FCS_RNG.1, FCS_RNG.1.1, FCS_RNG.1.2, FCS_CKM_CIMC.5, FCS_CKM.4, FCS_CKM_CIMC.5.1, FCS_CKM.1.1, FCS_CKM.2, FCS_CKM.4.1, FCS_COP.1.1, FCS_CKM.5, FDP_CIMC_CER.1, FDP_ETC_CIMC.5, FDP_UCT.1, FDP_ITT.1, FDP_ACC.1, FDP_ACF.1, FDP_CIMC_CRL.1, FDP_CIMC_CSE.1, FDP_SDI_CIMC.3, FDP_CIMC_OCSP.1, FDP_ACF_CIMC.2, FDP_ACF_CIMC.3, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_CIMC_CSE.1.1, FDP_SDI_CIMC.3.1, FDP_SDI_CIMC.3.2, FDP_ITC.1, FDP_ITC.2, FDP_CIMC_CER.1.1, FDP_CIMC_CER.1.2, FDP_CIMC_CER.1.3, FDP_CIMC_CER.1.4, FDP_CIMC_CRL.1.1, FDP_IFC.1, FIA_ATD.1, FIA_SOS.1, FIA_UAU.1, FIA_UID.1, FIA_USB.1, FIA_ATD.1.1, FIA_SOS.1.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UID.1.1, FIA_UID.1.2, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FIA_UAU, FMT_MTD_CIMC.7, FMT_MOF.1, FMT_MOF_CIMC.3, FMT_MOF_CIMC.5, FMT_MTD.1, FMT_MSA.1, FMT_SMR.1, FMT_MOF_CIMC.6, FMT_MTD_CIMC.4, FMT_MTD_CIMC.5, FMT_MOF.1.1, FMT_MSA.1.1, FMT_MTD.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MOF_CIMC.3.1, FMT_MOF_CIMC.3.2, FMT_MOF_CIMC.3.3, FMT_MOF_CIMC.3.4, FMT_MOF_CIMC.5.1, FMT_MOF_CIMC.5.2, FMT_MOF_CIMC.5.3, FMT_MSA.3, FMT_SMF.1, FPT_ITC.1, FPT_ITT.1, FPT_CIMC_TSP.1, FPT_STM.1, FPT_CIMC_TSP.1.1, FPT_CIMC_TSP.1.2, FPT_CIMC_TSP.1.3, FPT_CIMC_TSP.1.4
Certificates
BSI-DSZ-CC-1216

Standards
FIPS197, FIPS 186-5, FIPS180-2, FIPS 186-2, FIPS 140-2, FIPS140-2, FIPS PUB 140-2, FIPS 197, FIPS180-4, SP 800-38B, AIS 31, RFC5639, RFC5280, RFC6960, RFC2104, RFC 5280, RFC4210, RFC4211, ICAO, X.509, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004
Technical reports
BSI TR-03110, BSI TR-03111

File metadata

Title secunet eID PKI Suite Certified CA Kernel Security Target
Keywords secunet eID PKI Suite, Certified CA Kernel, Security Target
Author secunet Security Networks AG
Pages 75

Heuristics ?

Certificate ID: BSI-DSZ-CC-1216-2024

Extracted SARs

ALC_FLR.2, ALC_LCD.1, ALC_DVS.1, ALC_TAT.1, AGD_PRE.1, AVA_VAN.3, ATE_DPT.1, ADV_IMP.1, AGD_OPE.1, ALC_CMS.4

Scheme data ?

Cert Id BSI-DSZ-CC-1216-2024
Product secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0
Vendor Secunet Security Networks AG
Certification Date 08.03.2024
Category Network and Network related Devices and Systems
Url https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1216.html
Enhanced
Product secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0
Applicant Secunet Security Networks AG Kurfürstenstraße 58 45138 Essen
Evaluation Facility SRC Security Research & Consulting GmbH
Assurance Level EAL4,ALC_FLR.2
Certification Date 08.03.2024
Expiration Date 07.03.2029
Entries [frozendict({'id': 'BSI-DSZ-CC-1216-2024-MA-01 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report', 'description': '(Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.'}), frozendict({'id': 'BSI-DSZ-CC-1216-2024', 'description': 'Certificate'})]
Report Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216a_pdf.pdf?__blob=publicationFile&v=2
Target Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216b_pdf.pdf?__blob=publicationFile&v=2
Cert Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216c_pdf.pdf?__blob=publicationFile&v=2
Description The TOE is a CA (Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.

References ?

No references are available for this certificate.

Updates ?

  • 02.09.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The scheme_data property was updated, with the {'enhanced': {'__update__': {'entries': {'__insert__': [[0, {'id': 'BSI-DSZ-CC-1216-2024-MA-01 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report', 'description': '(Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.'}]]}}}} data.
  • 22.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'c4e98d6bd6e7b326ef9d127dca205442fcbbc1a6f9b1fd04c00a26e4393351e5', 'txt_hash': 'd8062a6f29aecded2b4e7055d22ee3a02b2080f33bc818f7c77af8eddfa084ad'} data.
    • The cert property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'f2fa786185731451971457b90df72952fd7241924cac1fe0a60a8cd251497494', 'txt_hash': '74ffe4fe66c2f511a5637a6a3042f75dda24dcd57892cf5a6def9f892f1f0cab'} data.

    The PDF extraction data was updated.

    • The st_metadata property was set to {'pdf_file_size_bytes': 1124130, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 75, '/Author': 'secunet Security Networks AG', '/Keywords': 'secunet eID PKI Suite, Certified CA Kernel, Security Target', '/Title': 'secunet eID PKI Suite Certified CA Kernel Security Target', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://tools.ietf.org/html/rfc2104', 'http://www.bsi.de/', 'http://www.itu.int/', 'http://www.commoncriteriaportal.org/', 'http://tools.ietf.org/html/rfc6960', 'http://www.nist.gov/', 'http://tools.ietf.org/html/rfc5280']}}.
    • The cert_metadata property was set to {'pdf_file_size_bytes': 339280, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel"', '/Subject': 'Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel', '/Title': 'Certificate BSI-DSZ-CC-1216-2024', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.
    • The st_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1216': 2}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 3, 'EAL4': 1, 'EAL 4 augmented': 2, 'EAL4 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP.1': 1, 'ADV_TDS': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_FLR.2': 4, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS.1': 1, 'ALC_FLR': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_COV': 1, 'ATE_DPT.1': 1, 'ATE_FUN': 1, 'ATE_IND': 1}, 'AVA': {'AVA_VAN': 1}}, 'cc_sfr': {'FAU': {'FAU_STG.1': 10, 'FAU_GEN.1': 16, 'FAU_GEN.2': 6, 'FAU_SEL.1': 8, 'FAU_STG.4': 6, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2.1': 1, 'FAU_SEL.1.1': 1, 'FAU_STG.1.1': 1, 'FAU_STG.1.2': 1, 'FAU_STG.4.1': 1}, 'FCO': {'FCO_NRO_CIMC.3': 12, 'FCO_NRO_CIMC.4': 6, 'FCO_NRO_CIMC.3.1': 1, 'FCO_NRO_CIMC.3.2': 1, 'FCO_NRO_CIMC.3.3': 5, 'FCO_NRO_CIMC.4.1': 1, 'FCO_NRO_CIMC.4.2': 1}, 'FCS': {'FCS_COP.1': 12, 'FCS_CKM.1': 14, 'FCS_RNG': 2, 'FCS_RNG.1': 9, 'FCS_RNG.1.1': 2, 'FCS_RNG.1.2': 2, 'FCS_CKM_CIMC.5': 7, 'FCS_CKM.4': 14, 'FCS_CKM_CIMC.5.1': 1, 'FCS_CKM.1.1': 1, 'FCS_CKM.2': 2, 'FCS_CKM.4.1': 1, 'FCS_COP.1.1': 1, 'FCS_CKM.5': 1}, 'FDP': {'FDP_CIMC_CER.1': 7, 'FDP_ETC_CIMC.5': 3, 'FDP_UCT.1': 2, 'FDP_ITT.1': 2, 'FDP_ACC.1': 11, 'FDP_ACF.1': 12, 'FDP_CIMC_CRL.1': 7, 'FDP_CIMC_CSE.1': 6, 'FDP_SDI_CIMC.3': 5, 'FDP_CIMC_OCSP.1': 2, 'FDP_ACF_CIMC.2': 1, 'FDP_ACF_CIMC.3': 1, 'FDP_ACC.1.1': 1, 'FDP_ACF.1.1': 5, 'FDP_ACF.1.2': 1, 'FDP_ACF.1.3': 2, 'FDP_ACF.1.4': 2, 'FDP_CIMC_CSE.1.1': 1, 'FDP_SDI_CIMC.3.1': 2, 'FDP_SDI_CIMC.3.2': 2, 'FDP_ITC.1': 4, 'FDP_ITC.2': 4, 'FDP_CIMC_CER.1.1': 2, 'FDP_CIMC_CER.1.2': 2, 'FDP_CIMC_CER.1.3': 2, 'FDP_CIMC_CER.1.4': 1, 'FDP_CIMC_CRL.1.1': 1, 'FDP_IFC.1': 1}, 'FIA': {'FIA_ATD.1': 8, 'FIA_SOS.1': 8, 'FIA_UAU.1': 9, 'FIA_UID.1': 19, 'FIA_USB.1': 6, 'FIA_ATD.1.1': 1, 'FIA_SOS.1.1': 1, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1, 'FIA_UID.1.1': 1, 'FIA_UID.1.2': 1, 'FIA_USB.1.1': 1, 'FIA_USB.1.2': 1, 'FIA_USB.1.3': 1, 'FIA_UAU': 1}, 'FMT': {'FMT_MTD_CIMC.7': 3, 'FMT_MOF.1': 16, 'FMT_MOF_CIMC.3': 7, 'FMT_MOF_CIMC.5': 8, 'FMT_MTD.1': 10, 'FMT_MSA.1': 8, 'FMT_SMR.1': 18, 'FMT_MOF_CIMC.6': 3, 'FMT_MTD_CIMC.4': 1, 'FMT_MTD_CIMC.5': 1, 'FMT_MOF.1.1': 1, 'FMT_MSA.1.1': 1, 'FMT_MTD.1.1': 1, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_MOF_CIMC.3.1': 2, 'FMT_MOF_CIMC.3.2': 3, 'FMT_MOF_CIMC.3.3': 3, 'FMT_MOF_CIMC.3.4': 2, 'FMT_MOF_CIMC.5.1': 2, 'FMT_MOF_CIMC.5.2': 3, 'FMT_MOF_CIMC.5.3': 3, 'FMT_MSA.3': 2, 'FMT_SMF.1': 6}, 'FPT': {'FPT_ITC.1': 2, 'FPT_ITT.1': 2, 'FPT_CIMC_TSP.1': 7, 'FPT_STM.1': 3, 'FPT_CIMC_TSP.1.1': 1, 'FPT_CIMC_TSP.1.2': 1, 'FPT_CIMC_TSP.1.3': 1, 'FPT_CIMC_TSP.1.4': 1}}, 'cc_claims': {'A': {'A.CPS': 3, 'A.HSM': 3}, 'OE': {'OE.CPS': 5, 'OE.HSM': 4}}, 'vendor': {'Infineon': {'Infineon': 1}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 9}}, 'constructions': {'MAC': {'HMAC': 10, 'CMAC': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA-256': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 4}}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 2}}}, 'randomness': {'RNG': {'RNG': 5}}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {'Brainpool': {'brainpoolP256r1': 1, 'brainpoolP256t1': 1, 'brainpoolP320t1': 1, 'brainpoolP384t1': 1, 'brainpoolP512t1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-03110': 7, 'BSI TR-03111': 7}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS197': 3, 'FIPS 186-5': 5, 'FIPS180-2': 1, 'FIPS 186-2': 2, 'FIPS 140-2': 1, 'FIPS140-2': 1, 'FIPS PUB 140-2': 1, 'FIPS 197': 1, 'FIPS180-4': 1}, 'NIST': {'SP 800-38B': 3}, 'BSI': {'AIS 31': 1}, 'RFC': {'RFC5639': 1, 'RFC5280': 4, 'RFC6960': 3, 'RFC2104': 5, 'RFC 5280': 3, 'RFC4210': 1, 'RFC4211': 1}, 'ICAO': {'ICAO': 2}, 'X509': {'X.509': 30}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The cert_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1216-2024': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 1, 'ALC_FLR': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The st_filename property was set to 1216b_pdf.pdf.
    • The cert_filename property was set to 1216c_pdf.pdf.

    The computed heuristics were updated.

    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}]} values added.
  • 19.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd4bb813a82d801b219b7768a8eabb559fe2c39684f2fd8365a924b3e53240af8', 'txt_hash': 'be8a2e65d926b0588a7ef019dca2ecde9efa5f725ef9e42f848c29047c7d5066'} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to {'pdf_file_size_bytes': 558182, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 34, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel"', '/Subject': 'Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel', '/Title': 'Certification Report BSI-DSZ-CC-1216', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.bsi.bund.de/zertifizierung', 'https://www.bsi.bund.de/', 'https://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/zertifizierungsreporte', 'http://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/AIS', 'http://www.commoncriteriaportal.org/', 'https://www.sogis.eu/']}}.
    • The report_frontpage property was set to {'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-1216-2024', 'cert_item': 'secunet eID PKI Suite Certified CA Kernel SC Version 3.0.0', 'developer': 'secunet Security Networks AG', 'cert_lab': 'BSI', 'ref_protection_profiles': 'None', 'cc_version': 'Product specific Security Target Common Criteria Part 2 extended', 'cc_security_level': 'Common Criteria Part 3 conformant EAL 4 augmented by ALC_FLR.2 valid until: 07 March 2029'}}.
    • The report_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1216-2024': 18}, 'CA': {'383-6-3-CR': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 5, 'EAL 2': 3, 'EAL 1': 1, 'EAL 4 augmented': 3}}, 'cc_sar': {'AGD': {'AGD_PRE.1': 1, 'AGD_OPE.1': 1}, 'ALC': {'ALC_FLR.2': 4, 'ALC_FLR': 3, 'ALC_CMS.4': 1}, 'AVA': {'AVA_VAN.3': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {'Infineon': {'Infineon': 1}}, 'eval_facility': {'SRC': {'SRC Security Research & Consulting': 3}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 5}}, 'constructions': {'MAC': {'HMAC': 6, 'CMAC': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA256': 10, 'SHA-256': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'TLS': {'TLS 1.2': 1}}}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {'NIST': {'secp224r1': 2, 'secp384r1': 2, 'secp512r1': 2, 'secp256r1': 2, 'sect233k1': 4, 'sect283k1': 2, 'sect283r1': 2, 'sect409k1': 2, 'sect409r1': 2, 'sect571k1': 2, 'sect571r1': 2}, 'Brainpool': {'brainpoolP256r1': 2, 'brainpoolP256t1': 2, 'brainpoolP320r1': 2, 'brainpoolP320t1': 2, 'brainpoolP384r1': 2, 'brainpoolP384t1': 2, 'brainpoolP512r1': 2, 'brainpoolP512t1': 2}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-03110': 2, 'BSI TR-02102': 1, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {'STARCOS': {'STARCOS 3': 7}}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS 186-5': 4, 'FIPS197': 1, 'FIPS180-2': 1, 'FIPS 197': 1}, 'NIST': {'SP 800-38B': 1, 'SP 800-38A': 1}, 'PKCS': {'PKCS5': 1}, 'BSI': {'AIS 32': 1}, 'RFC': {'RFC2104': 2, 'RFC 5280': 2}, 'ISO': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}, 'ICAO': {'ICAO': 2}, 'X509': {'X.509': 4}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, '07.03.2024, Evaluation Technical Report (ETR) – Summary, SRC Security Research & Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011': 1, 'Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 und': 1}}}.
    • The report_filename property was set to 1216a_pdf.pdf.

    The computed heuristics were updated.

    • The cert_lab property was set to ['BSI'].
    • The cert_id property was set to BSI-DSZ-CC-1216-2024.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}]} values added.
  • 17.08.2024 The certificate data changed.
    Certificate changed

    The report_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216a_pdf.pdf.

    The st_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216b_pdf.pdf.

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
    • The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
    • The cert property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to None.
    • The st_metadata property was set to None.
    • The cert_metadata property was set to None.
    • The report_frontpage property was set to None.
    • The report_keywords property was set to None.
    • The st_keywords property was set to None.
    • The cert_keywords property was set to None.
    • The report_filename property was set to None.
    • The st_filename property was set to None.
    • The cert_filename property was set to None.

    The computed heuristics were updated.

    • The cert_lab property was set to None.
    • The cert_id property was set to None.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}]} values discarded.
  • 23.07.2024 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0 was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Network and Network-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216c_pdf.pdf",
  "dgst": "861e86f5c0105860",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "BSI-DSZ-CC-1216-2024",
    "cert_lab": [
      "BSI"
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_DPT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_IMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_LCD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DVS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_TAT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.0.0"
      ]
    },
    "indirect_transitive_cves": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": {
      "category": "Network and Network related Devices and Systems",
      "cert_id": "BSI-DSZ-CC-1216-2024",
      "certification_date": "08.03.2024",
      "enhanced": {
        "applicant": "Secunet Security Networks AG\nKurf\u00fcrstenstra\u00dfe 58\n45138 Essen",
        "assurance_level": "EAL4,ALC_FLR.2",
        "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216c_pdf.pdf?__blob=publicationFile\u0026v=2",
        "certification_date": "08.03.2024",
        "description": "The TOE is a CA (Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.",
        "entries": [
          {
            "description": "(Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.",
            "id": "BSI-DSZ-CC-1216-2024-MA-01 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report"
          },
          {
            "description": "Certificate",
            "id": "BSI-DSZ-CC-1216-2024"
          }
        ],
        "evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
        "expiration_date": "07.03.2029",
        "product": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0",
        "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216a_pdf.pdf?__blob=publicationFile\u0026v=2",
        "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216b_pdf.pdf?__blob=publicationFile\u0026v=2"
      },
      "product": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0",
      "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1216.html",
      "vendor": "Secunet Security Networks AG"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "Secunet Security Networks AG",
  "manufacturer_web": "https://www.secunet.com/en/",
  "name": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0",
  "not_valid_after": "2029-03-07",
  "not_valid_before": "2024-03-08",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "1216c_pdf.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1216-2024": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ALC": {
          "ALC_FLR": 1,
          "ALC_FLR.2": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 2": 1,
          "EAL 4": 1,
          "EAL 4 augmented": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408": 2,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel\"",
      "/Subject": "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel",
      "/Title": "Certificate BSI-DSZ-CC-1216-2024",
      "pdf_file_size_bytes": 339280,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "1216a_pdf.pdf",
    "report_frontpage": {
      "DE": {
        "cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_FLR.2 valid until: 07 March 2029",
        "cc_version": "Product specific Security Target Common Criteria Part 2 extended",
        "cert_id": "BSI-DSZ-CC-1216-2024",
        "cert_item": "secunet eID PKI Suite Certified CA Kernel SC Version 3.0.0",
        "cert_lab": "BSI",
        "developer": "secunet Security Networks AG",
        "match_rules": [
          "(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
        ],
        "ref_protection_profiles": "None"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDSA": {
            "ECDSA": 1
          }
        }
      },
      "cc_cert_id": {
        "CA": {
          "383-6-3-CR": 1
        },
        "DE": {
          "BSI-DSZ-CC-1216-2024": 18
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMS.4": 1,
          "ALC_FLR": 3,
          "ALC_FLR.2": 4
        },
        "AVA": {
          "AVA_VAN.3": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 2": 3,
          "EAL 4": 5,
          "EAL 4 augmented": 3
        }
      },
      "cc_sfr": {},
      "certification_process": {
        "ConfidentialDocument": {
          "07.03.2024, Evaluation Technical Report (ETR) \u2013 Summary, SRC Security Research \u0026 Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011": 1,
          "Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 und": 1,
          "being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS 1.2": 1
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 2,
          "brainpoolP256t1": 2,
          "brainpoolP320r1": 2,
          "brainpoolP320t1": 2,
          "brainpoolP384r1": 2,
          "brainpoolP384t1": 2,
          "brainpoolP512r1": 2,
          "brainpoolP512t1": 2
        },
        "NIST": {
          "secp224r1": 2,
          "secp256r1": 2,
          "secp384r1": 2,
          "secp512r1": 2,
          "sect233k1": 4,
          "sect283k1": 2,
          "sect283r1": 2,
          "sect409k1": 2,
          "sect409r1": 2,
          "sect571k1": 2,
          "sect571r1": 2
        }
      },
      "eval_facility": {
        "SRC": {
          "SRC Security Research \u0026 Consulting": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 2
          },
          "SHA2": {
            "SHA-256": 1,
            "SHA256": 10
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {
        "STARCOS": {
          "STARCOS 3": 7
        }
      },
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "BSI": {
          "AIS 32": 1
        },
        "FIPS": {
          "FIPS 186-5": 4,
          "FIPS 197": 1,
          "FIPS180-2": 1,
          "FIPS197": 1
        },
        "ICAO": {
          "ICAO": 2
        },
        "ISO": {
          "ISO/IEC 15408": 4,
          "ISO/IEC 17065": 2,
          "ISO/IEC 18045": 4
        },
        "NIST": {
          "SP 800-38A": 1,
          "SP 800-38B": 1
        },
        "PKCS": {
          "PKCS5": 1
        },
        "RFC": {
          "RFC 5280": 2,
          "RFC2104": 2
        },
        "X509": {
          "X.509": 4
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 5
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 1,
            "HMAC": 6
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI 7148": 1,
          "BSI TR-02102": 1,
          "BSI TR-03110": 2
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Infineon": {
          "Infineon": 1
        }
      },
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel\"",
      "/Subject": "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel",
      "/Title": "Certification Report BSI-DSZ-CC-1216",
      "pdf_file_size_bytes": 558182,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.bsi.bund.de/zertifizierungsreporte",
          "https://www.bsi.bund.de/zertifizierung",
          "https://www.bsi.bund.de/AIS",
          "http://www.commoncriteriaportal.org/",
          "https://www.sogis.eu/",
          "https://www.bsi.bund.de/",
          "https://www.commoncriteriaportal.org/",
          "http://www.commoncriteriaportal.org/cc/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 34
    },
    "st_filename": "1216b_pdf.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDSA": {
            "ECDSA": 2
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1216": 2
        }
      },
      "cc_claims": {
        "A": {
          "A.CPS": 3,
          "A.HSM": 3
        },
        "OE": {
          "OE.CPS": 5,
          "OE.HSM": 4
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1,
          "ADV_FSP": 1,
          "ADV_IMP.1": 1,
          "ADV_TDS": 1
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_PRE": 1
        },
        "ALC": {
          "ALC_CMC": 1,
          "ALC_CMS": 1,
          "ALC_DEL": 1,
          "ALC_DVS.1": 1,
          "ALC_FLR": 1,
          "ALC_FLR.2": 4,
          "ALC_LCD.1": 1,
          "ALC_TAT.1": 1
        },
        "ATE": {
          "ATE_COV": 1,
          "ATE_DPT.1": 1,
          "ATE_FUN": 1,
          "ATE_IND": 1
        },
        "AVA": {
          "AVA_VAN": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 4": 3,
          "EAL 4 augmented": 2,
          "EAL4": 1,
          "EAL4 augmented": 1
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN.1": 16,
          "FAU_GEN.1.1": 1,
          "FAU_GEN.1.2": 1,
          "FAU_GEN.2": 6,
          "FAU_GEN.2.1": 1,
          "FAU_SEL.1": 8,
          "FAU_SEL.1.1": 1,
          "FAU_STG.1": 10,
          "FAU_STG.1.1": 1,
          "FAU_STG.1.2": 1,
          "FAU_STG.4": 6,
          "FAU_STG.4.1": 1
        },
        "FCO": {
          "FCO_NRO_CIMC.3": 12,
          "FCO_NRO_CIMC.3.1": 1,
          "FCO_NRO_CIMC.3.2": 1,
          "FCO_NRO_CIMC.3.3": 5,
          "FCO_NRO_CIMC.4": 6,
          "FCO_NRO_CIMC.4.1": 1,
          "FCO_NRO_CIMC.4.2": 1
        },
        "FCS": {
          "FCS_CKM.1": 14,
          "FCS_CKM.1.1": 1,
          "FCS_CKM.2": 2,
          "FCS_CKM.4": 14,
          "FCS_CKM.4.1": 1,
          "FCS_CKM.5": 1,
          "FCS_CKM_CIMC.5": 7,
          "FCS_CKM_CIMC.5.1": 1,
          "FCS_COP.1": 12,
          "FCS_COP.1.1": 1,
          "FCS_RNG": 2,
          "FCS_RNG.1": 9,
          "FCS_RNG.1.1": 2,
          "FCS_RNG.1.2": 2
        },
        "FDP": {
          "FDP_ACC.1": 11,
          "FDP_ACC.1.1": 1,
          "FDP_ACF.1": 12,
          "FDP_ACF.1.1": 5,
          "FDP_ACF.1.2": 1,
          "FDP_ACF.1.3": 2,
          "FDP_ACF.1.4": 2,
          "FDP_ACF_CIMC.2": 1,
          "FDP_ACF_CIMC.3": 1,
          "FDP_CIMC_CER.1": 7,
          "FDP_CIMC_CER.1.1": 2,
          "FDP_CIMC_CER.1.2": 2,
          "FDP_CIMC_CER.1.3": 2,
          "FDP_CIMC_CER.1.4": 1,
          "FDP_CIMC_CRL.1": 7,
          "FDP_CIMC_CRL.1.1": 1,
          "FDP_CIMC_CSE.1": 6,
          "FDP_CIMC_CSE.1.1": 1,
          "FDP_CIMC_OCSP.1": 2,
          "FDP_ETC_CIMC.5": 3,
          "FDP_IFC.1": 1,
          "FDP_ITC.1": 4,
          "FDP_ITC.2": 4,
          "FDP_ITT.1": 2,
          "FDP_SDI_CIMC.3": 5,
          "FDP_SDI_CIMC.3.1": 2,
          "FDP_SDI_CIMC.3.2": 2,
          "FDP_UCT.1": 2
        },
        "FIA": {
          "FIA_ATD.1": 8,
          "FIA_ATD.1.1": 1,
          "FIA_SOS.1": 8,
          "FIA_SOS.1.1": 1,
          "FIA_UAU": 1,
          "FIA_UAU.1": 9,
          "FIA_UAU.1.1": 1,
          "FIA_UAU.1.2": 1,
          "FIA_UID.1": 19,
          "FIA_UID.1.1": 1,
          "FIA_UID.1.2": 1,
          "FIA_USB.1": 6,
          "FIA_USB.1.1": 1,
          "FIA_USB.1.2": 1,
          "FIA_USB.1.3": 1
        },
        "FMT": {
          "FMT_MOF.1": 16,
          "FMT_MOF.1.1": 1,
          "FMT_MOF_CIMC.3": 7,
          "FMT_MOF_CIMC.3.1": 2,
          "FMT_MOF_CIMC.3.2": 3,
          "FMT_MOF_CIMC.3.3": 3,
          "FMT_MOF_CIMC.3.4": 2,
          "FMT_MOF_CIMC.5": 8,
          "FMT_MOF_CIMC.5.1": 2,
          "FMT_MOF_CIMC.5.2": 3,
          "FMT_MOF_CIMC.5.3": 3,
          "FMT_MOF_CIMC.6": 3,
          "FMT_MSA.1": 8,
          "FMT_MSA.1.1": 1,
          "FMT_MSA.3": 2,
          "FMT_MTD.1": 10,
          "FMT_MTD.1.1": 1,
          "FMT_MTD_CIMC.4": 1,
          "FMT_MTD_CIMC.5": 1,
          "FMT_MTD_CIMC.7": 3,
          "FMT_SMF.1": 6,
          "FMT_SMR.1": 18,
          "FMT_SMR.1.1": 1,
          "FMT_SMR.1.2": 1
        },
        "FPT": {
          "FPT_CIMC_TSP.1": 7,
          "FPT_CIMC_TSP.1.1": 1,
          "FPT_CIMC_TSP.1.2": 1,
          "FPT_CIMC_TSP.1.3": 1,
          "FPT_CIMC_TSP.1.4": 1,
          "FPT_ITC.1": 2,
          "FPT_ITT.1": 2,
          "FPT_STM.1": 3
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "SSL": {
            "SSL": 2
          }
        }
      },
      "crypto_scheme": {
        "MAC": {
          "MAC": 4
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 1,
          "brainpoolP256t1": 1,
          "brainpoolP320t1": 1,
          "brainpoolP384t1": 1,
          "brainpoolP512t1": 1
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 2
          },
          "SHA2": {
            "SHA-256": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 5
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "BSI": {
          "AIS 31": 1
        },
        "CC": {
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1,
          "CCMB-2017-04-004": 1
        },
        "FIPS": {
          "FIPS 140-2": 1,
          "FIPS 186-2": 2,
          "FIPS 186-5": 5,
          "FIPS 197": 1,
          "FIPS PUB 140-2": 1,
          "FIPS140-2": 1,
          "FIPS180-2": 1,
          "FIPS180-4": 1,
          "FIPS197": 3
        },
        "ICAO": {
          "ICAO": 2
        },
        "NIST": {
          "SP 800-38B": 3
        },
        "RFC": {
          "RFC 5280": 3,
          "RFC2104": 5,
          "RFC4210": 1,
          "RFC4211": 1,
          "RFC5280": 4,
          "RFC5639": 1,
          "RFC6960": 3
        },
        "X509": {
          "X.509": 30
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 9
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 1,
            "HMAC": 10
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI TR-03110": 7,
          "BSI TR-03111": 7
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Infineon": {
          "Infineon": 1
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "secunet Security Networks AG",
      "/Keywords": "secunet eID PKI Suite, Certified CA Kernel, Security Target",
      "/Title": "secunet eID PKI Suite Certified CA Kernel Security Target",
      "pdf_file_size_bytes": 1124130,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://tools.ietf.org/html/rfc6960",
          "http://www.itu.int/",
          "http://www.commoncriteriaportal.org/",
          "http://tools.ietf.org/html/rfc2104",
          "http://tools.ietf.org/html/rfc5280",
          "http://www.bsi.de/",
          "http://www.nist.gov/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 75
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": []
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216a_pdf.pdf",
  "scheme": "DE",
  "security_level": {
    "_type": "Set",
    "elements": [
      "EAL4",
      "ALC_FLR.2"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216b_pdf.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "f2fa786185731451971457b90df72952fd7241924cac1fe0a60a8cd251497494",
      "txt_hash": "74ffe4fe66c2f511a5637a6a3042f75dda24dcd57892cf5a6def9f892f1f0cab"
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "d4bb813a82d801b219b7768a8eabb559fe2c39684f2fd8365a924b3e53240af8",
      "txt_hash": "be8a2e65d926b0588a7ef019dca2ecde9efa5f725ef9e42f848c29047c7d5066"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "c4e98d6bd6e7b326ef9d127dca205442fcbbc1a6f9b1fd04c00a26e4393351e5",
      "txt_hash": "d8062a6f29aecded2b4e7055d22ee3a02b2080f33bc818f7c77af8eddfa084ad"
    }
  },
  "status": "active"
}