secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0
CSV information ?
Status | active |
---|---|
Valid from | 08.03.2024 |
Valid until | 07.03.2029 |
Scheme | 🇩🇪 DE |
Manufacturer | Secunet Security Networks AG |
Category | Network and Network-Related Devices and Systems |
Security level | ALC_FLR.2, EAL4 |
Heuristics summary ?
Certificate ?
Extracted keywords
Security level
EAL 4, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLRCertificates
BSI-DSZ-CC-1216-2024Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
Title | Certificate BSI-DSZ-CC-1216-2024 |
---|---|
Subject | Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel |
Keywords | "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel" |
Author | Bundesamt für Sicherheit in der Informationstechnik |
Pages | 1 |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, HMAC, CMACAsymmetric Algorithms
ECDSAHash functions
SHA-1, SHA256, SHA-256Protocols
TLS 1.2Elliptic Curves
secp224r1, secp384r1, secp512r1, secp256r1, sect233k1, sect283k1, sect283r1, sect409k1, sect409r1, sect571k1, sect571r1, brainpoolP256r1, brainpoolP256t1, brainpoolP320r1, brainpoolP320t1, brainpoolP384r1, brainpoolP384t1, brainpoolP512r1, brainpoolP512t1Block cipher modes
CBCOperating System name
STARCOS 3Vendor
InfineonSecurity level
EAL 4, EAL 2, EAL 1, EAL 4 augmentedSecurity Assurance Requirements (SAR)
AGD_PRE.1, AGD_OPE.1, ALC_FLR.2, ALC_FLR, ALC_CMS.4, AVA_VAN.3Certificates
BSI-DSZ-CC-1216-2024, 383-6-3-CREvaluation facilities
SRC Security Research & ConsultingCertification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, 07.03.2024, Evaluation Technical Report (ETR) – Summary, SRC Security Research & Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011, Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 undCertification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, 07.03.2024, Evaluation Technical Report (ETR) – Summary, SRC Security Research & Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011, Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 undStandards
FIPS 186-5, FIPS197, FIPS180-2, FIPS 197, SP 800-38B, SP 800-38A, PKCS5, AIS 32, RFC2104, RFC 5280, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ICAO, X.509Technical reports
BSI TR-03110, BSI TR-02102, BSI 7148File metadata
Title | Certification Report BSI-DSZ-CC-1216 |
---|---|
Subject | Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel |
Keywords | "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel" |
Author | Bundesamt für Sicherheit in der Informationstechnik |
Pages | 34 |
Frontpage
Certificate ID | BSI-DSZ-CC-1216-2024 |
---|---|
Certified item | secunet eID PKI Suite Certified CA Kernel SC Version 3.0.0 |
Certification lab | BSI |
Developer | secunet Security Networks AG |
Security target ?
Extracted keywords
Symmetric Algorithms
AES, HMAC, CMACAsymmetric Algorithms
ECDSAHash functions
SHA-1, SHA-256Schemes
MACProtocols
SSLRandomness
RNGElliptic Curves
brainpoolP256r1, brainpoolP256t1, brainpoolP320t1, brainpoolP384t1, brainpoolP512t1Block cipher modes
CBCVendor
InfineonSecurity level
EAL 4, EAL4, EAL 4 augmented, EAL4 augmentedClaims
A.CPS, A.HSM, OE.CPS, OE.HSMSecurity Assurance Requirements (SAR)
ADV_ARC, ADV_FSP, ADV_IMP.1, ADV_TDS, AGD_OPE, AGD_PRE, ALC_FLR.2, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS.1, ALC_FLR, ALC_LCD.1, ALC_TAT.1, ATE_COV, ATE_DPT.1, ATE_FUN, ATE_IND, AVA_VANSecurity Functional Requirements (SFR)
FAU_STG.1, FAU_GEN.1, FAU_GEN.2, FAU_SEL.1, FAU_STG.4, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FAU_SEL.1.1, FAU_STG.1.1, FAU_STG.1.2, FAU_STG.4.1, FCO_NRO_CIMC.3, FCO_NRO_CIMC.4, FCO_NRO_CIMC.3.1, FCO_NRO_CIMC.3.2, FCO_NRO_CIMC.3.3, FCO_NRO_CIMC.4.1, FCO_NRO_CIMC.4.2, FCS_COP.1, FCS_CKM.1, FCS_RNG, FCS_RNG.1, FCS_RNG.1.1, FCS_RNG.1.2, FCS_CKM_CIMC.5, FCS_CKM.4, FCS_CKM_CIMC.5.1, FCS_CKM.1.1, FCS_CKM.2, FCS_CKM.4.1, FCS_COP.1.1, FCS_CKM.5, FDP_CIMC_CER.1, FDP_ETC_CIMC.5, FDP_UCT.1, FDP_ITT.1, FDP_ACC.1, FDP_ACF.1, FDP_CIMC_CRL.1, FDP_CIMC_CSE.1, FDP_SDI_CIMC.3, FDP_CIMC_OCSP.1, FDP_ACF_CIMC.2, FDP_ACF_CIMC.3, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_CIMC_CSE.1.1, FDP_SDI_CIMC.3.1, FDP_SDI_CIMC.3.2, FDP_ITC.1, FDP_ITC.2, FDP_CIMC_CER.1.1, FDP_CIMC_CER.1.2, FDP_CIMC_CER.1.3, FDP_CIMC_CER.1.4, FDP_CIMC_CRL.1.1, FDP_IFC.1, FIA_ATD.1, FIA_SOS.1, FIA_UAU.1, FIA_UID.1, FIA_USB.1, FIA_ATD.1.1, FIA_SOS.1.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UID.1.1, FIA_UID.1.2, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FIA_UAU, FMT_MTD_CIMC.7, FMT_MOF.1, FMT_MOF_CIMC.3, FMT_MOF_CIMC.5, FMT_MTD.1, FMT_MSA.1, FMT_SMR.1, FMT_MOF_CIMC.6, FMT_MTD_CIMC.4, FMT_MTD_CIMC.5, FMT_MOF.1.1, FMT_MSA.1.1, FMT_MTD.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MOF_CIMC.3.1, FMT_MOF_CIMC.3.2, FMT_MOF_CIMC.3.3, FMT_MOF_CIMC.3.4, FMT_MOF_CIMC.5.1, FMT_MOF_CIMC.5.2, FMT_MOF_CIMC.5.3, FMT_MSA.3, FMT_SMF.1, FPT_ITC.1, FPT_ITT.1, FPT_CIMC_TSP.1, FPT_STM.1, FPT_CIMC_TSP.1.1, FPT_CIMC_TSP.1.2, FPT_CIMC_TSP.1.3, FPT_CIMC_TSP.1.4Certificates
BSI-DSZ-CC-1216Standards
FIPS197, FIPS 186-5, FIPS180-2, FIPS 186-2, FIPS 140-2, FIPS140-2, FIPS PUB 140-2, FIPS 197, FIPS180-4, SP 800-38B, AIS 31, RFC5639, RFC5280, RFC6960, RFC2104, RFC 5280, RFC4210, RFC4211, ICAO, X.509, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004Technical reports
BSI TR-03110, BSI TR-03111File metadata
Title | secunet eID PKI Suite Certified CA Kernel Security Target |
---|---|
Keywords | secunet eID PKI Suite, Certified CA Kernel, Security Target |
Author | secunet Security Networks AG |
Pages | 75 |
Heuristics ?
Extracted SARs
ALC_FLR.2, ALC_LCD.1, ALC_DVS.1, ALC_TAT.1, AGD_PRE.1, AVA_VAN.3, ATE_DPT.1, ADV_IMP.1, AGD_OPE.1, ALC_CMS.4Scheme data ?
Cert Id | BSI-DSZ-CC-1216-2024 | |
---|---|---|
Product | secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0 | |
Vendor | Secunet Security Networks AG | |
Certification Date | 08.03.2024 | |
Category | Network and Network related Devices and Systems | |
Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1216.html | |
Enhanced | ||
Product | secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0 | |
Applicant | Secunet Security Networks AG Kurfürstenstraße 58 45138 Essen | |
Evaluation Facility | SRC Security Research & Consulting GmbH | |
Assurance Level | EAL4,ALC_FLR.2 | |
Certification Date | 08.03.2024 | |
Expiration Date | 07.03.2029 | |
Entries | [frozendict({'id': 'BSI-DSZ-CC-1216-2024-MA-01 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report', 'description': '(Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.'}), frozendict({'id': 'BSI-DSZ-CC-1216-2024', 'description': 'Certificate'})] | |
Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216a_pdf.pdf?__blob=publicationFile&v=2 | |
Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216b_pdf.pdf?__blob=publicationFile&v=2 | |
Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216c_pdf.pdf?__blob=publicationFile&v=2 | |
Description | The TOE is a CA (Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information. |
References ?
No references are available for this certificate.
Updates ?
-
02.09.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was updated, with the
{'enhanced': {'__update__': {'entries': {'__insert__': [[0, {'id': 'BSI-DSZ-CC-1216-2024-MA-01 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report', 'description': '(Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.'}]]}}}}
data.
- The scheme_data property was updated, with the
-
22.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'c4e98d6bd6e7b326ef9d127dca205442fcbbc1a6f9b1fd04c00a26e4393351e5', 'txt_hash': 'd8062a6f29aecded2b4e7055d22ee3a02b2080f33bc818f7c77af8eddfa084ad'}
data. - The cert property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'f2fa786185731451971457b90df72952fd7241924cac1fe0a60a8cd251497494', 'txt_hash': '74ffe4fe66c2f511a5637a6a3042f75dda24dcd57892cf5a6def9f892f1f0cab'}
data.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 1124130, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 75, '/Author': 'secunet Security Networks AG', '/Keywords': 'secunet eID PKI Suite, Certified CA Kernel, Security Target', '/Title': 'secunet eID PKI Suite Certified CA Kernel Security Target', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://tools.ietf.org/html/rfc2104', 'http://www.bsi.de/', 'http://www.itu.int/', 'http://www.commoncriteriaportal.org/', 'http://tools.ietf.org/html/rfc6960', 'http://www.nist.gov/', 'http://tools.ietf.org/html/rfc5280']}}
. - The cert_metadata property was set to
{'pdf_file_size_bytes': 339280, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel"', '/Subject': 'Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel', '/Title': 'Certificate BSI-DSZ-CC-1216-2024', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}
. - The st_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1216': 2}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 3, 'EAL4': 1, 'EAL 4 augmented': 2, 'EAL4 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP.1': 1, 'ADV_TDS': 1}, 'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_FLR.2': 4, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS.1': 1, 'ALC_FLR': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_COV': 1, 'ATE_DPT.1': 1, 'ATE_FUN': 1, 'ATE_IND': 1}, 'AVA': {'AVA_VAN': 1}}, 'cc_sfr': {'FAU': {'FAU_STG.1': 10, 'FAU_GEN.1': 16, 'FAU_GEN.2': 6, 'FAU_SEL.1': 8, 'FAU_STG.4': 6, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2.1': 1, 'FAU_SEL.1.1': 1, 'FAU_STG.1.1': 1, 'FAU_STG.1.2': 1, 'FAU_STG.4.1': 1}, 'FCO': {'FCO_NRO_CIMC.3': 12, 'FCO_NRO_CIMC.4': 6, 'FCO_NRO_CIMC.3.1': 1, 'FCO_NRO_CIMC.3.2': 1, 'FCO_NRO_CIMC.3.3': 5, 'FCO_NRO_CIMC.4.1': 1, 'FCO_NRO_CIMC.4.2': 1}, 'FCS': {'FCS_COP.1': 12, 'FCS_CKM.1': 14, 'FCS_RNG': 2, 'FCS_RNG.1': 9, 'FCS_RNG.1.1': 2, 'FCS_RNG.1.2': 2, 'FCS_CKM_CIMC.5': 7, 'FCS_CKM.4': 14, 'FCS_CKM_CIMC.5.1': 1, 'FCS_CKM.1.1': 1, 'FCS_CKM.2': 2, 'FCS_CKM.4.1': 1, 'FCS_COP.1.1': 1, 'FCS_CKM.5': 1}, 'FDP': {'FDP_CIMC_CER.1': 7, 'FDP_ETC_CIMC.5': 3, 'FDP_UCT.1': 2, 'FDP_ITT.1': 2, 'FDP_ACC.1': 11, 'FDP_ACF.1': 12, 'FDP_CIMC_CRL.1': 7, 'FDP_CIMC_CSE.1': 6, 'FDP_SDI_CIMC.3': 5, 'FDP_CIMC_OCSP.1': 2, 'FDP_ACF_CIMC.2': 1, 'FDP_ACF_CIMC.3': 1, 'FDP_ACC.1.1': 1, 'FDP_ACF.1.1': 5, 'FDP_ACF.1.2': 1, 'FDP_ACF.1.3': 2, 'FDP_ACF.1.4': 2, 'FDP_CIMC_CSE.1.1': 1, 'FDP_SDI_CIMC.3.1': 2, 'FDP_SDI_CIMC.3.2': 2, 'FDP_ITC.1': 4, 'FDP_ITC.2': 4, 'FDP_CIMC_CER.1.1': 2, 'FDP_CIMC_CER.1.2': 2, 'FDP_CIMC_CER.1.3': 2, 'FDP_CIMC_CER.1.4': 1, 'FDP_CIMC_CRL.1.1': 1, 'FDP_IFC.1': 1}, 'FIA': {'FIA_ATD.1': 8, 'FIA_SOS.1': 8, 'FIA_UAU.1': 9, 'FIA_UID.1': 19, 'FIA_USB.1': 6, 'FIA_ATD.1.1': 1, 'FIA_SOS.1.1': 1, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1, 'FIA_UID.1.1': 1, 'FIA_UID.1.2': 1, 'FIA_USB.1.1': 1, 'FIA_USB.1.2': 1, 'FIA_USB.1.3': 1, 'FIA_UAU': 1}, 'FMT': {'FMT_MTD_CIMC.7': 3, 'FMT_MOF.1': 16, 'FMT_MOF_CIMC.3': 7, 'FMT_MOF_CIMC.5': 8, 'FMT_MTD.1': 10, 'FMT_MSA.1': 8, 'FMT_SMR.1': 18, 'FMT_MOF_CIMC.6': 3, 'FMT_MTD_CIMC.4': 1, 'FMT_MTD_CIMC.5': 1, 'FMT_MOF.1.1': 1, 'FMT_MSA.1.1': 1, 'FMT_MTD.1.1': 1, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_MOF_CIMC.3.1': 2, 'FMT_MOF_CIMC.3.2': 3, 'FMT_MOF_CIMC.3.3': 3, 'FMT_MOF_CIMC.3.4': 2, 'FMT_MOF_CIMC.5.1': 2, 'FMT_MOF_CIMC.5.2': 3, 'FMT_MOF_CIMC.5.3': 3, 'FMT_MSA.3': 2, 'FMT_SMF.1': 6}, 'FPT': {'FPT_ITC.1': 2, 'FPT_ITT.1': 2, 'FPT_CIMC_TSP.1': 7, 'FPT_STM.1': 3, 'FPT_CIMC_TSP.1.1': 1, 'FPT_CIMC_TSP.1.2': 1, 'FPT_CIMC_TSP.1.3': 1, 'FPT_CIMC_TSP.1.4': 1}}, 'cc_claims': {'A': {'A.CPS': 3, 'A.HSM': 3}, 'OE': {'OE.CPS': 5, 'OE.HSM': 4}}, 'vendor': {'Infineon': {'Infineon': 1}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 9}}, 'constructions': {'MAC': {'HMAC': 10, 'CMAC': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA-256': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 4}}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 2}}}, 'randomness': {'RNG': {'RNG': 5}}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {'Brainpool': {'brainpoolP256r1': 1, 'brainpoolP256t1': 1, 'brainpoolP320t1': 1, 'brainpoolP384t1': 1, 'brainpoolP512t1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-03110': 7, 'BSI TR-03111': 7}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS197': 3, 'FIPS 186-5': 5, 'FIPS180-2': 1, 'FIPS 186-2': 2, 'FIPS 140-2': 1, 'FIPS140-2': 1, 'FIPS PUB 140-2': 1, 'FIPS 197': 1, 'FIPS180-4': 1}, 'NIST': {'SP 800-38B': 3}, 'BSI': {'AIS 31': 1}, 'RFC': {'RFC5639': 1, 'RFC5280': 4, 'RFC6960': 3, 'RFC2104': 5, 'RFC 5280': 3, 'RFC4210': 1, 'RFC4211': 1}, 'ICAO': {'ICAO': 2}, 'X509': {'X.509': 30}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The cert_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1216-2024': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 1, 'ALC_FLR': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The st_filename property was set to
1216b_pdf.pdf
. - The cert_filename property was set to
1216c_pdf.pdf
.
The computed heuristics were updated.
- The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}]}
values added.
- The st property was updated, with the
-
19.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd4bb813a82d801b219b7768a8eabb559fe2c39684f2fd8365a924b3e53240af8', 'txt_hash': 'be8a2e65d926b0588a7ef019dca2ecde9efa5f725ef9e42f848c29047c7d5066'}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 558182, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 34, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel"', '/Subject': 'Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel', '/Title': 'Certification Report BSI-DSZ-CC-1216', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.bsi.bund.de/zertifizierung', 'https://www.bsi.bund.de/', 'https://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/zertifizierungsreporte', 'http://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/AIS', 'http://www.commoncriteriaportal.org/', 'https://www.sogis.eu/']}}
. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-1216-2024', 'cert_item': 'secunet eID PKI Suite Certified CA Kernel SC Version 3.0.0', 'developer': 'secunet Security Networks AG', 'cert_lab': 'BSI', 'ref_protection_profiles': 'None', 'cc_version': 'Product specific Security Target Common Criteria Part 2 extended', 'cc_security_level': 'Common Criteria Part 3 conformant EAL 4 augmented by ALC_FLR.2 valid until: 07 March 2029'}}
. - The report_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1216-2024': 18}, 'CA': {'383-6-3-CR': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 5, 'EAL 2': 3, 'EAL 1': 1, 'EAL 4 augmented': 3}}, 'cc_sar': {'AGD': {'AGD_PRE.1': 1, 'AGD_OPE.1': 1}, 'ALC': {'ALC_FLR.2': 4, 'ALC_FLR': 3, 'ALC_CMS.4': 1}, 'AVA': {'AVA_VAN.3': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {'Infineon': {'Infineon': 1}}, 'eval_facility': {'SRC': {'SRC Security Research & Consulting': 3}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 5}}, 'constructions': {'MAC': {'HMAC': 6, 'CMAC': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA256': 10, 'SHA-256': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'TLS': {'TLS 1.2': 1}}}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {'NIST': {'secp224r1': 2, 'secp384r1': 2, 'secp512r1': 2, 'secp256r1': 2, 'sect233k1': 4, 'sect283k1': 2, 'sect283r1': 2, 'sect409k1': 2, 'sect409r1': 2, 'sect571k1': 2, 'sect571r1': 2}, 'Brainpool': {'brainpoolP256r1': 2, 'brainpoolP256t1': 2, 'brainpoolP320r1': 2, 'brainpoolP320t1': 2, 'brainpoolP384r1': 2, 'brainpoolP384t1': 2, 'brainpoolP512r1': 2, 'brainpoolP512t1': 2}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-03110': 2, 'BSI TR-02102': 1, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {'STARCOS': {'STARCOS 3': 7}}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS 186-5': 4, 'FIPS197': 1, 'FIPS180-2': 1, 'FIPS 197': 1}, 'NIST': {'SP 800-38B': 1, 'SP 800-38A': 1}, 'PKCS': {'PKCS5': 1}, 'BSI': {'AIS 32': 1}, 'RFC': {'RFC2104': 2, 'RFC 5280': 2}, 'ISO': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}, 'ICAO': {'ICAO': 2}, 'X509': {'X.509': 4}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, '07.03.2024, Evaluation Technical Report (ETR) – Summary, SRC Security Research & Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011': 1, 'Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 und': 1}}}
. - The report_filename property was set to
1216a_pdf.pdf
.
The computed heuristics were updated.
- The cert_lab property was set to
['BSI']
. - The cert_id property was set to
BSI-DSZ-CC-1216-2024
. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}]}
values added.
- The report property was updated, with the
-
17.08.2024 The certificate data changed.
Certificate changed
The report_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216a_pdf.pdf
.
The st_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216b_pdf.pdf
.
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data. - The st property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data. - The cert property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
None
. - The st_metadata property was set to
None
. - The cert_metadata property was set to
None
. - The report_frontpage property was set to
None
. - The report_keywords property was set to
None
. - The st_keywords property was set to
None
. - The cert_keywords property was set to
None
. - The report_filename property was set to
None
. - The st_filename property was set to
None
. - The cert_filename property was set to
None
.
The computed heuristics were updated.
- The cert_lab property was set to
None
. - The cert_id property was set to
None
. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}]}
values discarded.
- The new value is
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Network and Network-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216c_pdf.pdf",
"dgst": "861e86f5c0105860",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1216-2024",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"3.0.0"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"scheme_data": {
"category": "Network and Network related Devices and Systems",
"cert_id": "BSI-DSZ-CC-1216-2024",
"certification_date": "08.03.2024",
"enhanced": {
"applicant": "Secunet Security Networks AG\nKurf\u00fcrstenstra\u00dfe 58\n45138 Essen",
"assurance_level": "EAL4,ALC_FLR.2",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216c_pdf.pdf?__blob=publicationFile\u0026v=2",
"certification_date": "08.03.2024",
"description": "The TOE is a CA (Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.",
"entries": [
{
"description": "(Certification Authority) Kernel that provides request, issuance, revocation, and overall management of certificates and certificate status information.",
"id": "BSI-DSZ-CC-1216-2024-MA-01 (Ausstellungsdatum / Certification Date 19.08.2024)\nMaintenance Report"
},
{
"description": "Certificate",
"id": "BSI-DSZ-CC-1216-2024"
}
],
"evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
"expiration_date": "07.03.2029",
"product": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216a_pdf.pdf?__blob=publicationFile\u0026v=2",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1216b_pdf.pdf?__blob=publicationFile\u0026v=2"
},
"product": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Netzwerk_und_Kommunikationsprodukte/1216.html",
"vendor": "Secunet Security Networks AG"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Secunet Security Networks AG",
"manufacturer_web": "https://www.secunet.com/en/",
"name": "secunet eID PKI Suite Certified CA Kernel SC, Version 3.0.0",
"not_valid_after": "2029-03-07",
"not_valid_before": "2024-03-08",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1216c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1216-2024": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"ALC": {
"ALC_FLR": 1,
"ALC_FLR.2": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 1,
"EAL 4 augmented": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel",
"/Title": "Certificate BSI-DSZ-CC-1216-2024",
"pdf_file_size_bytes": 339280,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1216a_pdf.pdf",
"report_frontpage": {
"DE": {
"cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_FLR.2 valid until: 07 March 2029",
"cc_version": "Product specific Security Target Common Criteria Part 2 extended",
"cert_id": "BSI-DSZ-CC-1216-2024",
"cert_item": "secunet eID PKI Suite Certified CA Kernel SC Version 3.0.0",
"cert_lab": "BSI",
"developer": "secunet Security Networks AG",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
],
"ref_protection_profiles": "None"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 1
}
}
},
"cc_cert_id": {
"CA": {
"383-6-3-CR": 1
},
"DE": {
"BSI-DSZ-CC-1216-2024": 18
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"AGD": {
"AGD_OPE.1": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMS.4": 1,
"ALC_FLR": 3,
"ALC_FLR.2": 4
},
"AVA": {
"AVA_VAN.3": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 3,
"EAL 4": 5,
"EAL 4 augmented": 3
}
},
"cc_sfr": {},
"certification_process": {
"ConfidentialDocument": {
"07.03.2024, Evaluation Technical Report (ETR) \u2013 Summary, SRC Security Research \u0026 Consulting GmbH, (confidential document) [8] Certificate Issuing and Management Components Protection Profile Version 1.5, 11 August, 2011": 1,
"Konfigurationsliste ALC_CMS.4, cms_secunet+eID+PKI+Suite_V.1.3.9.pdf, secunet Security Networks AG (confidential document) [10] Guidance documentation for the TOE, Version 3.6.6, 20.02.2024, Handbuch (AGD_PRE.1 und": 1,
"being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"TLS": {
"TLS 1.2": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 2,
"brainpoolP256t1": 2,
"brainpoolP320r1": 2,
"brainpoolP320t1": 2,
"brainpoolP384r1": 2,
"brainpoolP384t1": 2,
"brainpoolP512r1": 2,
"brainpoolP512t1": 2
},
"NIST": {
"secp224r1": 2,
"secp256r1": 2,
"secp384r1": 2,
"secp512r1": 2,
"sect233k1": 4,
"sect283k1": 2,
"sect283r1": 2,
"sect409k1": 2,
"sect409r1": 2,
"sect571k1": 2,
"sect571r1": 2
}
},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 3
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 2
},
"SHA2": {
"SHA-256": 1,
"SHA256": 10
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {
"STARCOS": {
"STARCOS 3": 7
}
},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 32": 1
},
"FIPS": {
"FIPS 186-5": 4,
"FIPS 197": 1,
"FIPS180-2": 1,
"FIPS197": 1
},
"ICAO": {
"ICAO": 2
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18045": 4
},
"NIST": {
"SP 800-38A": 1,
"SP 800-38B": 1
},
"PKCS": {
"PKCS5": 1
},
"RFC": {
"RFC 5280": 2,
"RFC2104": 2
},
"X509": {
"X.509": 4
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 5
}
},
"constructions": {
"MAC": {
"CMAC": 1,
"HMAC": 6
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-02102": 1,
"BSI TR-03110": 2
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Infineon": {
"Infineon": 1
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, secunet, PKI Suite, CA Kernel",
"/Title": "Certification Report BSI-DSZ-CC-1216",
"pdf_file_size_bytes": 558182,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.bsi.bund.de/zertifizierungsreporte",
"https://www.bsi.bund.de/zertifizierung",
"https://www.bsi.bund.de/AIS",
"http://www.commoncriteriaportal.org/",
"https://www.sogis.eu/",
"https://www.bsi.bund.de/",
"https://www.commoncriteriaportal.org/",
"http://www.commoncriteriaportal.org/cc/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 34
},
"st_filename": "1216b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 2
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1216": 2
}
},
"cc_claims": {
"A": {
"A.CPS": 3,
"A.HSM": 3
},
"OE": {
"OE.CPS": 5,
"OE.HSM": 4
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_ARC": 1,
"ADV_FSP": 1,
"ADV_IMP.1": 1,
"ADV_TDS": 1
},
"AGD": {
"AGD_OPE": 1,
"AGD_PRE": 1
},
"ALC": {
"ALC_CMC": 1,
"ALC_CMS": 1,
"ALC_DEL": 1,
"ALC_DVS.1": 1,
"ALC_FLR": 1,
"ALC_FLR.2": 4,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ATE": {
"ATE_COV": 1,
"ATE_DPT.1": 1,
"ATE_FUN": 1,
"ATE_IND": 1
},
"AVA": {
"AVA_VAN": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 3,
"EAL 4 augmented": 2,
"EAL4": 1,
"EAL4 augmented": 1
}
},
"cc_sfr": {
"FAU": {
"FAU_GEN.1": 16,
"FAU_GEN.1.1": 1,
"FAU_GEN.1.2": 1,
"FAU_GEN.2": 6,
"FAU_GEN.2.1": 1,
"FAU_SEL.1": 8,
"FAU_SEL.1.1": 1,
"FAU_STG.1": 10,
"FAU_STG.1.1": 1,
"FAU_STG.1.2": 1,
"FAU_STG.4": 6,
"FAU_STG.4.1": 1
},
"FCO": {
"FCO_NRO_CIMC.3": 12,
"FCO_NRO_CIMC.3.1": 1,
"FCO_NRO_CIMC.3.2": 1,
"FCO_NRO_CIMC.3.3": 5,
"FCO_NRO_CIMC.4": 6,
"FCO_NRO_CIMC.4.1": 1,
"FCO_NRO_CIMC.4.2": 1
},
"FCS": {
"FCS_CKM.1": 14,
"FCS_CKM.1.1": 1,
"FCS_CKM.2": 2,
"FCS_CKM.4": 14,
"FCS_CKM.4.1": 1,
"FCS_CKM.5": 1,
"FCS_CKM_CIMC.5": 7,
"FCS_CKM_CIMC.5.1": 1,
"FCS_COP.1": 12,
"FCS_COP.1.1": 1,
"FCS_RNG": 2,
"FCS_RNG.1": 9,
"FCS_RNG.1.1": 2,
"FCS_RNG.1.2": 2
},
"FDP": {
"FDP_ACC.1": 11,
"FDP_ACC.1.1": 1,
"FDP_ACF.1": 12,
"FDP_ACF.1.1": 5,
"FDP_ACF.1.2": 1,
"FDP_ACF.1.3": 2,
"FDP_ACF.1.4": 2,
"FDP_ACF_CIMC.2": 1,
"FDP_ACF_CIMC.3": 1,
"FDP_CIMC_CER.1": 7,
"FDP_CIMC_CER.1.1": 2,
"FDP_CIMC_CER.1.2": 2,
"FDP_CIMC_CER.1.3": 2,
"FDP_CIMC_CER.1.4": 1,
"FDP_CIMC_CRL.1": 7,
"FDP_CIMC_CRL.1.1": 1,
"FDP_CIMC_CSE.1": 6,
"FDP_CIMC_CSE.1.1": 1,
"FDP_CIMC_OCSP.1": 2,
"FDP_ETC_CIMC.5": 3,
"FDP_IFC.1": 1,
"FDP_ITC.1": 4,
"FDP_ITC.2": 4,
"FDP_ITT.1": 2,
"FDP_SDI_CIMC.3": 5,
"FDP_SDI_CIMC.3.1": 2,
"FDP_SDI_CIMC.3.2": 2,
"FDP_UCT.1": 2
},
"FIA": {
"FIA_ATD.1": 8,
"FIA_ATD.1.1": 1,
"FIA_SOS.1": 8,
"FIA_SOS.1.1": 1,
"FIA_UAU": 1,
"FIA_UAU.1": 9,
"FIA_UAU.1.1": 1,
"FIA_UAU.1.2": 1,
"FIA_UID.1": 19,
"FIA_UID.1.1": 1,
"FIA_UID.1.2": 1,
"FIA_USB.1": 6,
"FIA_USB.1.1": 1,
"FIA_USB.1.2": 1,
"FIA_USB.1.3": 1
},
"FMT": {
"FMT_MOF.1": 16,
"FMT_MOF.1.1": 1,
"FMT_MOF_CIMC.3": 7,
"FMT_MOF_CIMC.3.1": 2,
"FMT_MOF_CIMC.3.2": 3,
"FMT_MOF_CIMC.3.3": 3,
"FMT_MOF_CIMC.3.4": 2,
"FMT_MOF_CIMC.5": 8,
"FMT_MOF_CIMC.5.1": 2,
"FMT_MOF_CIMC.5.2": 3,
"FMT_MOF_CIMC.5.3": 3,
"FMT_MOF_CIMC.6": 3,
"FMT_MSA.1": 8,
"FMT_MSA.1.1": 1,
"FMT_MSA.3": 2,
"FMT_MTD.1": 10,
"FMT_MTD.1.1": 1,
"FMT_MTD_CIMC.4": 1,
"FMT_MTD_CIMC.5": 1,
"FMT_MTD_CIMC.7": 3,
"FMT_SMF.1": 6,
"FMT_SMR.1": 18,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_CIMC_TSP.1": 7,
"FPT_CIMC_TSP.1.1": 1,
"FPT_CIMC_TSP.1.2": 1,
"FPT_CIMC_TSP.1.3": 1,
"FPT_CIMC_TSP.1.4": 1,
"FPT_ITC.1": 2,
"FPT_ITT.1": 2,
"FPT_STM.1": 3
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 2
}
}
},
"crypto_scheme": {
"MAC": {
"MAC": 4
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 1,
"brainpoolP256t1": 1,
"brainpoolP320t1": 1,
"brainpoolP384t1": 1,
"brainpoolP512t1": 1
}
},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 2
},
"SHA2": {
"SHA-256": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 5
}
},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 31": 1
},
"CC": {
"CCMB-2017-04-001": 1,
"CCMB-2017-04-002": 1,
"CCMB-2017-04-003": 1,
"CCMB-2017-04-004": 1
},
"FIPS": {
"FIPS 140-2": 1,
"FIPS 186-2": 2,
"FIPS 186-5": 5,
"FIPS 197": 1,
"FIPS PUB 140-2": 1,
"FIPS140-2": 1,
"FIPS180-2": 1,
"FIPS180-4": 1,
"FIPS197": 3
},
"ICAO": {
"ICAO": 2
},
"NIST": {
"SP 800-38B": 3
},
"RFC": {
"RFC 5280": 3,
"RFC2104": 5,
"RFC4210": 1,
"RFC4211": 1,
"RFC5280": 4,
"RFC5639": 1,
"RFC6960": 3
},
"X509": {
"X.509": 30
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 9
}
},
"constructions": {
"MAC": {
"CMAC": 1,
"HMAC": 10
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03110": 7,
"BSI TR-03111": 7
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Infineon": {
"Infineon": 1
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "secunet Security Networks AG",
"/Keywords": "secunet eID PKI Suite, Certified CA Kernel, Security Target",
"/Title": "secunet eID PKI Suite Certified CA Kernel Security Target",
"pdf_file_size_bytes": 1124130,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://tools.ietf.org/html/rfc6960",
"http://www.itu.int/",
"http://www.commoncriteriaportal.org/",
"http://tools.ietf.org/html/rfc2104",
"http://tools.ietf.org/html/rfc5280",
"http://www.bsi.de/",
"http://www.nist.gov/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 75
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL4",
"ALC_FLR.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1216b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "f2fa786185731451971457b90df72952fd7241924cac1fe0a60a8cd251497494",
"txt_hash": "74ffe4fe66c2f511a5637a6a3042f75dda24dcd57892cf5a6def9f892f1f0cab"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "d4bb813a82d801b219b7768a8eabb559fe2c39684f2fd8365a924b3e53240af8",
"txt_hash": "be8a2e65d926b0588a7ef019dca2ecde9efa5f725ef9e42f848c29047c7d5066"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "c4e98d6bd6e7b326ef9d127dca205442fcbbc1a6f9b1fd04c00a26e4393351e5",
"txt_hash": "d8062a6f29aecded2b4e7055d22ee3a02b2080f33bc818f7c77af8eddfa084ad"
}
},
"status": "active"
}